GeneralInformation

Hostnames	anqi9988.1688.com axjanja.1688.com fvzebogs.1688.com shog1442508391642.1688.com shog3078o27060063.1688.com shop6239730h56062.1688.com szdyyyxs.1688.com vidigod.1688.com yhnkwj.1688.com attg.ojibobo-ina.aon.alibaba-inc.com heno.stors.ojibobo-ina.aon.alibaba-inc.com svnort.stors.ojibobo-ina.aon.alibaba-inc.com xbootogs.ojibobo-ina.aon.alibaba-inc.com buc-test-qier.alibaba-inc.com hhpai-dsw-dsw56392-80.pcs-svr.alibaba-inc.com qt-changeplatform.alibaba.net ens-network-sqos-hybrid.alicdn.com 119152.aliexpress.com connect.aliexpress.com 1111.alimama.com sec.alimama.com www22.aliwork.com ob-gre.ojiyvn-ina.aon.aliyun-inc.com yvndvn-idi-server.ojiyvn-ina.aon.aliyun-inc.com adsprobe.aliyun.com alimama2.aliyun.com aloc-offline.aliyun.com iot.ap-southeast-1.aliyun.com api.aliyun.com bi.aliyun.com shop2b0883416a7i9.aliyun.com das.base.shuju.aliyun.com auth.wms.aliyun.com ajovdovth-intj.an-shonghoi.aliyuncs.com eci-vpc.ap-southeast-1.aliyuncs.com netriahvb-ans-an-beijing.aliyuncs.com oss-cn-shenzhen.aliyuncs.com qtnetria-shore.aliyuncs.com og-sovtheost-1.ron-internoj.aliyuncs.com m5-zb.amap.com nextci.amap.com xmap-alg-deploy-prepub.amap.com services-iss-sh.cainiao-inc.com b-manage.gfn.cainiao.com manage-cmscn.gfn.cainiao.com link.wt.cainiao.com hm1.cnzz.com api.dingtalk.com www.yx.fusion.design api.ascp-fresh-produce.hemayx.cn acs-m-sg.lazada.co.id admin.lazada.co.id new-university.lazada.co.id lighthouse.lazada.co.th pre-ids-gpcb.lazada.com sellercenter.lazada.com.my u.lazada.com.my m.sellercenter.lazada.com.ph admin-p.lazada.vn university.lazada.vn www.lex.co.id 10yuankaihutiyanjin-okta-network-drookings-mirror.accept.lex.vn nrcm.lydaas.com www2s.mashort.cn console-fc.alpha.redmart.com stars.shuqireader.com dod-tiger.taobao.com gigsijk.taobao.com gvonghe.taobao.com hovonojogin.taobao.com ojiaert.taobao.com shog36236233.taobao.com shog36315220.taobao.com shog36346889.taobao.com shog36600642.taobao.com shog36621603.taobao.com shog36977584.taobao.com shop36579394.taobao.com shop36674442.taobao.com yqza.taobao.com ocache.taobao.net opsx.vip.tbsite.net detoij.tmall.com jielitushu.tmall.com mail.wondfo.com.cn
Domains	1688.com alibaba-inc.com alibaba.net alicdn.com aliexpress.com alimama.com aliwork.com aliyun-inc.com aliyun.com aliyuncs.com amap.com cainiao-inc.com cainiao.com cnzz.com dingtalk.com fusion.design hemayx.cn lazada.co.id lazada.co.th lazada.com lazada.com.my lazada.com.ph lazada.vn lex.co.id lex.vn lydaas.com mashort.cn redmart.com shuqireader.com taobao.com taobao.net tbsite.net tmall.com wondfo.com.cn
Country	China
City	Shenzhen
Organization	Aliyun Computing Co., LTD
ISP	Hangzhou Alibaba Advertising Co.,Ltd.
ASN	AS37963

WebTechnologies

IaaS

Alibaba Cloud Object Storage Service

JavaScript frameworks

Prototype

JavaScript libraries

YUI

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2024-23897	7.5Jenkins 2.441 and earlier, LTS 2.426.2 and earlier does not disable a feature of its CLI command parser that replaces an '@' character followed by a file path in an argument with the file's contents, allowing unauthenticated attackers to read arbitrary files on the Jenkins controller file system.
CVE-2023-51767	OpenSSH through 9.6, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the integer value of authenticated in mm_answer_authpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim co-location in which the attacker has user privileges.
CVE-2023-51385	In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name.
CVE-2023-51384	In ssh-agent in OpenSSH before 9.6, certain destination constraints can be incompletely applied. When destination constraints are specified during addition of PKCS#11-hosted private keys, these constraints are only applied to the first key, even if a PKCS#11 token returns multiple keys.
CVE-2023-48795	The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.
CVE-2023-38408	The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forwarded to an attacker-controlled system. (Code in /usr/lib is not necessarily safe for loading into ssh-agent.) NOTE: this issue exists because of an incomplete fix for CVE-2016-10009.
CVE-2021-41617	4.4sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with group memberships of the sshd process, if the configuration specifies running the command as a different user.
CVE-2021-36368	2.6An issue was discovered in OpenSSH before 8.9. If a client is using public-key authentication with agent forwarding but without -oLogLevel=verbose, and an attacker has silently modified the server to support the None authentication option, then the user cannot determine whether FIDO authentication is going to confirm that the user wishes to connect to that server, or that the user wishes to allow that server to connect to a different server on the user's behalf. NOTE: the vendor's position is "this is not an authentication bypass, since nothing is being bypassed.
CVE-2020-15778	6.8scp in OpenSSH through 8.3p1 allows command injection in the scp.c toremote function, as demonstrated by backtick characters in the destination argument. NOTE: the vendor reportedly has stated that they intentionally omit validation of "anomalous argument transfers" because that could "stand a great chance of breaking existing workflows."
CVE-2020-14145	4.3The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts (where no host key for the server has been cached by the client). NOTE: some reports state that 8.5 and 8.6 are also affected.
CVE-2019-6111	5.8An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned (only directory traversal attacks are prevented). A malicious scp server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the scp client target directory. If recursive operation (-r) is performed, the server can manipulate subdirectories as well (for example, to overwrite the .ssh/authorized_keys file).
CVE-2019-6110	4.0In OpenSSH 7.9, due to accepting and displaying arbitrary stderr output from the server, a malicious server (or Man-in-The-Middle attacker) can manipulate the client output, for example to use ANSI control codes to hide additional files being transferred.
CVE-2019-6109	4.0An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-The-Middle attacker) can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This affects refresh_progress_meter() in progressmeter.c.
CVE-2019-16905	4.4OpenSSH 7.7 through 7.9 and 8.x before 8.1, when compiled with an experimental key type, has a pre-authentication integer overflow if a client or server is configured to use a crafted XMSS key. This leads to memory corruption and local code execution because of an error in the XMSS key parsing algorithm. NOTE: the XMSS implementation is considered experimental in all released OpenSSH versions, and there is no supported way to enable it when building portable OpenSSH.
CVE-2018-20685	2.6In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the target directory on the client side.
CVE-2018-15919	5.0Remotely observable behaviour in auth-gss2.c in OpenSSH through 7.8 could be used by remote attackers to detect existence of users on a target system when GSS2 is in use. NOTE: the discoverer states 'We understand that the OpenSSH developers do not want to treat such a username enumeration (or "oracle") as a vulnerability.'
CVE-2018-15473	5.0OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout for an invalid authenticating user until after the packet containing the request has been fully parsed, related to auth2-gss.c, auth2-hostbased.c, and auth2-pubkey.c.
CVE-2017-15906	5.0The process_open function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write operations in readonly mode, which allows attackers to create zero-length files.
CVE-2016-9244	5.0A BIG-IP virtual server configured with a Client SSL profile that has the non-default Session Tickets option enabled may leak up to 31 bytes of uninitialized memory. A remote attacker may exploit this vulnerability to obtain Secure Sockets Layer (SSL) session IDs from other sessions. It is possible that other data from uninitialized memory may be returned as well.
CVE-2016-3115	5.5Multiple CRLF injection vulnerabilities in session.c in sshd in OpenSSH before 7.2p2 allow remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data, related to the (1) do_authenticated1 and (2) session_x11_req functions.
CVE-2016-20012	4.3OpenSSH through 8.7 allows remote attackers, who have a suspicion that a certain combination of username and public key is known to an SSH server, to test whether this suspicion is correct. This occurs because a challenge is sent only when that combination could be valid for a login session. NOTE: the vendor does not recognize user enumeration as a vulnerability for this product
CVE-2016-1908	7.5The client in OpenSSH before 7.2 mishandles failed cookie generation for untrusted X11 forwarding and relies on the local X11 server for access-control decisions, which allows remote X11 clients to trigger a fallback and obtain trusted X11 forwarding privileges by leveraging configuration issues on this X11 server, as demonstrated by lack of the SECURITY extension on this X11 server.
CVE-2016-10708	5.0sshd in OpenSSH before 7.4 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an out-of-sequence NEWKEYS message, as demonstrated by Honggfuzz, related to kex.c and packet.c.
CVE-2016-10012	7.2The shared memory manager (associated with pre-authentication compression) in sshd in OpenSSH before 7.4 does not ensure that a bounds check is enforced by all compilers, which might allows local users to gain privileges by leveraging access to a sandboxed privilege-separation process, related to the m_zback and m_zlib data structures.
CVE-2016-10011	2.1authfile.c in sshd in OpenSSH before 7.4 does not properly consider the effects of realloc on buffer contents, which might allow local users to obtain sensitive private-key information by leveraging access to a privilege-separated child process.
CVE-2016-10010	6.9sshd in OpenSSH before 7.4, when privilege separation is not used, creates forwarded Unix-domain sockets as root, which might allow local users to gain privileges via unspecified vectors, related to serverloop.c.
CVE-2016-10009	7.5Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH before 7.4 allows remote attackers to execute arbitrary local PKCS#11 modules by leveraging control over a forwarded agent-socket.
CVE-2016-0777	4.0The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffer, as demonstrated by reading a private key.
CVE-2015-6564	6.9Use-after-free vulnerability in the mm_answer_pam_free_ctx function in monitor.c in sshd in OpenSSH before 7.0 on non-OpenBSD platforms might allow local users to gain privileges by leveraging control of the sshd uid to send an unexpectedly early MONITOR_REQ_PAM_FREE_CTX request.
CVE-2015-6563	1.9The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous username data in MONITOR_REQ_PAM_INIT_CTX requests, which allows local users to conduct impersonation attacks by leveraging any SSH login access in conjunction with control of the sshd uid to send a crafted MONITOR_REQ_PWNAM request, related to monitor.c and monitor_wrap.c.
CVE-2015-5600	8.5The kbdint_next_device function in auth2-chall.c in sshd in OpenSSH through 6.9 does not properly restrict the processing of keyboard-interactive devices within a single connection, which makes it easier for remote attackers to conduct brute-force attacks or cause a denial of service (CPU consumption) via a long and duplicative list in the ssh -oKbdInteractiveDevices option, as demonstrated by a modified client that provides a different password for each pam element on this list.
CVE-2015-5352	4.3The x11_open_helper function in channels.c in ssh in OpenSSH before 6.9, when ForwardX11Trusted mode is not used, lacks a check of the refusal deadline for X connections, which makes it easier for remote attackers to bypass intended access restrictions via a connection outside of the permitted time window.
CVE-2014-2653	5.8The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptable HostCertificate.
CVE-2014-2532	5.8sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshd_config, which allows remote attackers to bypass intended environment restrictions by using a substring located before a wildcard character.
CVE-2014-1692	7.5The hash_buffer function in schnorr.c in OpenSSH through 6.4, when Makefile.inc is modified to enable the J-PAKE protocol, does not initialize certain data structures, which might allow remote attackers to cause a denial of service (memory corruption) or have unspecified other impact via vectors that trigger an error condition.
CVE-2012-0814	3.5The auth_parse_options function in auth-options.c in sshd in OpenSSH before 5.7 provides debug messages containing authorized_keys command options, which allows remote authenticated users to obtain potentially sensitive information by reading these messages, as demonstrated by the shared user account required by Gitolite. NOTE: this can cross privilege boundaries because a user account may intentionally have no shell or filesystem access, and therefore may have no supported way to read an authorized_keys file in its own home directory.
CVE-2011-5000	3.5The ssh_gssapi_parse_ename function in gss-serv.c in OpenSSH 5.8 and earlier, when gssapi-with-mic authentication is enabled, allows remote authenticated users to cause a denial of service (memory consumption) via a large value in a certain length field. NOTE: there may be limited scenarios in which this issue is relevant.
CVE-2011-4327	2.1ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information via the ptrace system call.
CVE-2010-5107	5.0The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a TCP connection and completing a login, which makes it easier for remote attackers to cause a denial of service (connection-slot exhaustion) by periodically making many new TCP connections.
CVE-2010-4755	4.0The (1) remote_glob function in sftp-glob.c and the (2) process_put function in sftp.c in OpenSSH 5.8 and earlier, as used in FreeBSD 7.3 and 8.1, NetBSD 5.0.2, OpenBSD 4.7, and other products, allow remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames, as demonstrated by glob expressions in SSH_FXP_STAT requests to an sftp daemon, a different vulnerability than CVE-2010-2632.
CVE-2010-4478	7.5OpenSSH 5.6 and earlier, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, which allows remote attackers to bypass the need for knowledge of the shared secret, and successfully authenticate, by sending crafted values in each round of the protocol, a related issue to CVE-2010-4252.
CVE-2008-3844	9.3Certain Red Hat Enterprise Linux (RHEL) 4 and 5 packages for OpenSSH, as signed in August 2008 using a legitimate Red Hat GPG key, contain an externally introduced modification (Trojan Horse) that allows the package authors to have an unknown impact. NOTE: since the malicious packages were not distributed from any official Red Hat sources, the scope of this issue is restricted to users who may have obtained these packages through unofficial distribution points. As of 20080827, no unofficial distributions of this software are known.
CVE-2007-2768	4.3OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, allows remote attackers to determine the existence of certain user accounts, which displays a different response if the user account exists and is configured to use one-time passwords (OTP), a similar issue to CVE-2007-2243.

OpenPorts

11 13 15 17 19 21 25 26 37 43 49 53 70 79 80 83 102 104 110 111 113 119 122 131 135 143 175 179 195 221 222 264 311 340 389 427 443 444 450 465 502 503 515 548 554 593 631 636 666 771 789 873 992 993 995 1023 1025 1050 1099 1153 1177 1200 1234 1337 1433 1500 1515 1521 1599 1800 1801 1883 1911 1925 1926 1962 2000 2002 2008 2048 2058 2059 2061 2067 2081 2082 2083 2086 2087 2121 2122 2150 2154 2181 2222 2223 2323 2332 2345 2376 2404 2443 2455 2550 2557 2559 2628 2709 2761 2762 2806 3001 3050 3062 3076 3080 3091 3129 3200 3260 3268 3269 3299 3301 3306 3310 3311 3388 3389 3405 3479 3521 3541 3551 3570 3689 3749 3780 3790 3792 3910 4000 4022 4040 4064 4157 4242 4282 4321 4369 4433 4443 4500 4506 4664 4786 4840 4899 4911 4949 5000 5001 5005 5006 5007 5009 5010 5025 5050 5172 5201 5222 5269 5400 5431 5432 5435 5542 5560 5595 5599 5602 5672 5801 5822 5858 5900 5984 5986 6000 6001 6002 6009 6036 6363 6379 6443 6580 6588 6600 6605 6633 6653 6664 6666 6667 6668 6697 6789 6887 7000 7001 7022 7081 7171 7218 7415 7434 7443 7444 7535 7547 7548 7634 7700 7989 7998 8001 8009 8010 8025 8035 8036 8041 8056 8057 8069 8072 8080 8081 8083 8085 8087 8089 8099 8108 8118 8126 8139 8140 8181 8200 8238 8291 8333 8334 8403 8408 8411 8412 8415 8421 8426 8429 8430 8443 8500 8545 8554 8575 8586 8649 8728 8788 8810 8815 8818 8819 8827 8834 8837 8838 8849 8861 8863 8877 8879 8880 8889 8890 8990 9000 9001 9002 9007 9023 9031 9038 9042 9045 9051 9091 9094 9095 9097 9099 9105 9111 9151 9160 9200 9203 9210 9216 9221 9222 9295 9301 9302 9306 9418 9443 9530 9595 9600 9633 9761 9876 9898 9943 9944 9955 9981 9991 9993 9994 9998 9999 10000 10001 10134 10250 10443 10554 10909 10911 11000 11210 11300 11434 12000 12345 13579 14147 14265 14344 16010 16992 16993 18081 18245 19000 19071 20000 20256 20547 21025 21379 23023 25001 25105 25565 27015 27017 28015 28017 28080 30002 30003 31337 32764 33060 35000 37215 37777 41800 44158 44818 47990 48226 49152 50000 50070 50100 51235 54138 55000 55443 55553 55554 60129 61616 62078

2087396567 | 2024-05-05T00:31:01.946822

11 / tcp

kjnkjabhbanc283ubcsbhdc72

-1729629024 | 2024-05-04T16:15:19.653379

13 / tcp

101 imqbroker =unV

-1681927087 | 2024-04-28T19:33:27.285174

15 / tcp

kjnkjabhbanc283ubcsbhdc72

1852418385 | 2024-05-03T03:39:05.388422

17 / tcp

RTSP/1.0 453 Not Enough Bandwidth
Server: AirTunes/7l_wZ

829384519 | 2024-05-04T12:25:57.855759

19 / tcp

 !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefg
!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUV

1210838212 | 2024-04-23T14:12:01.344636

21 / tcp

220 DiskStation FTP server ready.

-1699556818 | 2024-05-03T16:08:10.002331

25 / tcp

\x01remshd: Kerberos Authentication not enabled.\n

2098371729 | 2024-05-08T06:28:52.297648

26 / tcp

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>\nA<!DOCTYPE GANGLIA_XML [\n   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...\n

1110767461 | 2024-04-17T13:07:03.530475

37 / tcp

HTTP/1.1 200 OK
Server: nginx/1

2087396567 | 2024-05-08T12:49:03.353030

43 / tcp

kjnkjabhbanc283ubcsbhdc72

1685693176 | 2024-04-21T20:51:08.653221

49 / tcp

HTTP/1.1 200 OK
X-Powered-By: PHP/5.5.9-1ubuntu4.21
Server: cisco-CPA

1369632081 | 2024-05-07T22:36:15.579674

53 / tcp

9
\x81\x80\x00\x01\x00\x02\x00\x00\x00\x00\x08clients1\x06google\x03com\x00\x00\x01\x00\x01\xc0\x00\x05\x00\x01\x00\x00\x01\x03\x00\x07clients\x01l\xc0\x15\xc01\x00\x01\x00\x01\x00\x00\x01\x14\x00\x04\xac٠N
\x00\x06\x85\x80\x00\x01\x00\x01\x00\x00\x00

1738069263 | 2024-05-03T10:18:02.825117

70 / tcp

\x01remshd: Kerberos Authentication not enabled.

627290832 | 2024-04-23T11:22:24.767547

79 / tcp

ÿû\x01SOYO_SIP VBNQyQSKc settings
Password:

1511143740 | 2024-05-04T13:13:21.276685

80 / tcp

HTTP/1.1 403 Forbidden
Server: AliyunOSS
Date: Sat, 04 May 2024 13:13:21 GMT
Content-Type: application/xml
Content-Length: 345
Connection: keep-alive
x-oss-request-id: 6636347151C5F93834E28F6C
x-oss-server-time: 0
x-oss-ec: 0003-00001201

472902042 | 2024-04-25T16:12:23.599058

83 / tcp

"Magic:ActiveMQ
Version:12
<ActiveMQ*TcpNoDelayEnabledSizePrefixDisabled CacheSizeProviderName ActiveMQStackTraceEnabledPlatformDetails JavaCacheEnabledTightEncodingEnabledMaxFrameSize@MaxInac

320677201 | 2024-05-03T13:54:03.052410

102 / tcp

H\x00\x00\x00\xc3\xbfj\x04Host \'101.133.140.114\' is not allowed to \nconnect to this MySQL server

-1329831334 | 2024-05-05T17:37:27.558007

104 / tcp

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00 \x00\x00\n04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00\\...\n

937756010 | 2024-04-26T18:08:05.909003

110 / tcp

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x01\x00\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

1690634669 | 2024-05-08T02:34:55.862529

111 / tcp

455076604 | 2024-05-10T04:12:00.029156

113 / tcp

!\x07version\x04bind7 t{RPowerDNS Recursor 410

141730637 | 2024-05-07T19:09:49.514263

119 / tcp

HTTP/1.0 200 OK
Server: Proxy

-1839934832 | 2024-04-11T19:53:51.851786

122 / tcp

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

820958131 | 2024-05-01T11:52:00.187301

131 / tcp

kjnkjabhbanc283ubcsbhdc72\x02

1483120365 | 2024-04-26T07:19:28.104022

135 / tcp

\\x05\\x00\r\\x03\\x10\\x00\\x00\\x00\\x18\\x00\\x00\\x00\\x01\\x00\\x00\\x00\\x04\\x00\\x01\\x05\\x00\\x00\\x00\\x00\n\nServerAlive2: \n IP1: OP2\n IP2: 192.168.0.20\n IP3: 61.230.135.142\n IP4: 2001:b011:2006:c3ef:18c0:9e02:ef7:84c8\n\nNTLMSSP:\nTarget_Name: OP2\nProduct_Version: 6.1.7601 Ntlm 15\nOS: Windows 7, Service Pack 1/Windows Server 2008 R2, Service Pack 1\nNetBIOS_Domain_Name: OP2\nNetBIOS_Computer_Name: OP2\nDNS_Domain_Name: OP2\nDNS_Computer_Name: OP2\nSystem_Time: 2024-01-22 07:10:42 +0000 UTC\n\nDCERPC Dump:\n4b112204-0e19-11d3-b42b-

-398621179 | 2024-05-06T14:54:45.954540

143 / tcp

* OK everfull.com.cn IMAP4rev1 MDaemon 12.5.6 ready\r\n

-1839934832 | 2024-05-07T23:41:05.875909

175 / tcp

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

-399606100 | 2024-05-07T03:20:01.744717

179 / tcp

BGP Message\nType: 3\nMajor error Code: 6\nMinor error Code: 5\n

819727972 | 2024-05-08T04:07:27.362519

195 / tcp

SSH-2.0-OpenSSH_7.4

1911457608 | 2024-05-06T08:46:02.135588

221 / tcp

\x00[\x00\x00\x00\x00\x00\x00

819727972 | 2024-04-27T05:05:40.147522

222 / tcp

SSH-2.0-OpenSSH_7.4

-1718229072 | 2024-05-02T12:42:19.814119

264 / tcp

CheckPoint\nFirewall Host: gw2\nSmartCenter Host: SMS..6sxmht\\x00\n

67948279 | 2024-05-09T00:17:23.661845

311 / tcp

HTTP/1.1 200 OK
Content-Type: text/html
Accept-Ranges: bytes
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET

-444830029 | 2024-04-28T01:55:41.625821

340 / tcp

HTTP/1.1 401 Unauthorized
Server: xhmmhttpsv130-20200310
Cache-Control: no-cache,no-store
Content-Type: text/html; charset=%s
Connection: close

811247330 | 2024-04-23T02:51:25.259286

389 / tcp

HTTP/1.1 200 OK
Server: Apache
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Permitted-Cross-Domain-Policies: none
X-Robots-Tag: noindex, nofollow, noarchive, nosnippet, nosnippet, notranslate, noimageindex
Content-Type: text/html; charset=utf-8

-349937125 | 2024-05-10T13:12:51.760179

427 / tcp

SAAdvert Response:\nVersion: 2\nFunction: SA Advertisement (11)\nURL: service:service-agent://192.168.118.88\nScopeList: default\nAttrributeList: \n\n\nserviceTypes:\nservice:VMwareInfrastructure\nservice:wbem:https\n\nResponse of service:VMwareInfrastructure SrvReq:\nVersion: 2\nFunction: Service Reply (2)\nErrorCode: SUCCESS (0)\nURL Entries:\n  Lifetime: 65535\n  URL: service:VMwareInfrastructure://192.168.118.88\n\n\nResponse of service:VMwareInfrastructure AttrRqst:\nVersion: 2\nFunction: Attribute Reply (7)\nErrorCode: SUCCE

670368840 | 2024-05-02T13:01:40.821776

443 / tcp

HTTP/1.1 403 Forbidden
Server: AliyunOSS
Date: Thu, 02 May 2024 13:01:40 GMT
Content-Type: application/xml
Content-Length: 367
Connection: keep-alive
x-oss-request-id: 66338EB451C5F931368C4839
x-oss-server-time: 0
x-oss-ec: 0003-00000905

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            39:9a:a0:c2:cd:6d:5c:60:bc:f2:7a:08
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G3
        Validity
            Not Before: Jan 26 02:11:18 2024 GMT
            Not After : Feb 26 02:11:17 2025 GMT
        Subject: C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.oss-cn-shenzhen.aliyuncs.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b0:c7:54:83:40:8e:09:77:61:48:ac:c9:ca:24:
                    6b:a5:f6:40:76:6a:c2:5e:38:f5:c3:d9:fa:b8:28:
                    2b:0e:8e:1d:d8:e3:c2:c3:e4:cc:bb:ce:ed:dc:88:
                    cf:31:05:22:ef:ae:26:bf:a2:15:1f:dd:cb:1f:46:
                    8f:4e:bc:41:5f:58:65:97:ad:8e:07:54:c3:f7:d8:
                    23:9e:3e:8e:a6:1b:36:86:e3:0d:f0:6f:fc:1e:a0:
                    c7:33:e3:2c:13:02:a1:12:10:d2:a8:8a:a2:ce:8e:
                    73:8c:83:e5:c5:51:c4:63:bf:57:a3:ff:37:4c:db:
                    bc:44:d9:91:cc:ee:88:9e:83:74:91:30:a2:d6:c7:
                    2b:ad:1b:68:de:63:a1:e6:13:b9:e4:2e:9c:64:18:
                    0e:b6:20:81:7b:00:14:c1:46:80:31:a4:cb:10:5d:
                    38:a2:6c:d7:77:09:8f:12:d1:6e:47:69:a1:79:c6:
                    35:c7:90:0b:84:09:ec:33:26:6c:56:98:fb:2d:38:
                    e4:a6:8a:98:1a:d5:f9:ac:d2:40:58:44:5d:a2:cb:
                    c1:34:98:c7:31:9a:78:f8:1e:98:26:4a:42:ef:78:
                    c8:27:b5:57:c3:c2:c4:f7:9a:dc:e0:66:75:56:0e:
                    02:c4:88:e5:16:e6:25:db:bf:24:26:b9:96:8c:07:
                    e2:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            Authority Information Access: 
                CA Issuers - URI:http://secure.globalsign.com/cacert/gsorganizationvalsha2g3.crt
                OCSP - URI:http://ocsp2.globalsign.com/gsorganizationvalsha2g3
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.4146.1.20
                  CPS: https://www.globalsign.com/repository/
                Policy: 2.23.140.1.2.2
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.globalsign.com/gsorganizationvalsha2g3.crl
            X509v3 Subject Alternative Name: 
                DNS:*.oss-cn-shenzhen.aliyuncs.com, DNS:*.oss-cn-shenzhen-finance-1.aliyuncs.com, DNS:*.oss-cn-shenzhen-internal.aliyuncs.com, DNS:*.img-cn-shenzhen-internal.aliyuncs.com, DNS:*.oss-cn-shenzhen-internal-cross.aliyuncs.com, DNS:*.oss-cn-szfinance.aliyuncs.com, DNS:*.oss-cn-shenzhen-diku-internal.aliyuncs.com, DNS:*.oss-cn-shenzhen-finance-1-internal.aliyuncs.com, DNS:*.cn-heyuan.oss.aliyuncs.com, DNS:*.oss-cn-shenzhen-cross.aliyuncs.com, DNS:*.oss-enet-cn-south.aliyuncs.com, DNS:*.oss-internal.aliyuncs.com, DNS:*.oss-cn-guangzhou.aliyuncs.com, DNS:*.oss-cn-guangzhou-cross.aliyuncs.com, DNS:*.oss-accelerate.aliyuncs.com, DNS:*.oss-cn-heyuan-internal.aliyuncs.com, DNS:*.oss-accelerate-overseas.aliyuncs.com, DNS:*.aliyuncs.com, DNS:*.oss.aliyuncs.com, DNS:*.oss-cn-heyuan-cross.aliyuncs.com, DNS:*.img-cn-shenzhen.aliyuncs.com, DNS:*.oss-enet.aliyuncs.com, DNS:*.oss-cn-szfinance-internal.aliyuncs.com, DNS:*.vpc100-oss-cn-shenzhen.aliyuncs.com, DNS:*.cn-shenzhen.oss.aliyuncs.com, DNS:*.oss-cn-heyuan.aliyuncs.com, DNS:*.oss-cn-guangzhou-internal.aliyuncs.com, DNS:*.cn-guangzhou.oss.aliyuncs.com, DNS:*.cn-shenzhen-finance.oss.aliyuncs.com, DNS:*.cn-shenzhen-dualstack.oss.aliyuncs.com, DNS:*.cn-shenzhen-vpc.oss.aliyuncs.com, DNS:*.oss-accesspoint.aliyuncs.com, DNS:*.oss-cn-shenzhen.oss-accesspoint.aliyuncs.com, DNS:*.oss-cn-shenzhen-internal.oss-accesspoint.aliyuncs.com, DNS:*.oss-cn-heyuan.oss-accesspoint.aliyuncs.com, DNS:*.oss-cn-heyuan-internal.oss-accesspoint.aliyuncs.com, DNS:*.oss-cn-guangzhou.oss-accesspoint.aliyuncs.com, DNS:*.oss-cn-guangzhou-internal.oss-accesspoint.aliyuncs.com, DNS:*.cn-shenzhen.oss-console.aliyuncs.com, DNS:*.s3.oss-cn-shenzhen.aliyuncs.com, DNS:*.s3.oss-cn-shenzhen-internal.aliyuncs.com, DNS:*.cn-shenzhen.mgw.aliyuncs.com, DNS:*.oss.cn-shenzhen.privatelink.aliyuncs.com, DNS:*.oss-cn-shenzhen.oss-object-process.aliyuncs.com, DNS:*.oss-cn-shenzhen-internal.oss-object-process.aliyuncs.com, DNS:oss-cn-shenzhen.aliyuncs.com
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Authority Key Identifier: 
                68:86:B8:7D:7A:D9:6D:49:6B:87:2F:18:8B:15:34:6C:D7:B4:7A:0E
            X509v3 Subject Key Identifier: 
                6F:0A:05:0F:AD:E0:67:D5:94:20:25:0A:B9:A1:6C:32:00:B2:CD:87
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Jan 26 02:11:21.372 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:B7:ED:79:37:99:E1:86:8C:72:1F:71:
                                09:CC:48:09:04:03:EE:EB:B9:7B:D6:89:EB:43:EE:DE:
                                73:14:10:BA:DF:02:21:00:88:1A:C7:57:51:2D:2C:A3:
                                D6:2D:FF:21:19:1E:6B:2D:07:30:8C:D4:DE:72:CA:B3:
                                B0:A0:EB:DB:03:1E:8B:D8
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Jan 26 02:11:21.644 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:2F:A8:B4:0D:2B:FF:F7:61:91:DB:16:FA:
                                F6:0C:0D:FD:47:18:0B:C8:94:8A:39:1C:37:BB:E2:67:
                                1C:77:D2:04:02:21:00:ED:35:07:18:F9:AA:BC:69:88:
                                4A:BB:2B:DF:7A:04:EE:A3:4C:75:E3:27:49:A7:C9:0D:
                                3A:EC:01:71:77:E3:98
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E0:92:B3:FC:0C:1D:C8:E7:68:36:1F:DE:61:B9:96:4D:
                                0A:52:78:19:8A:72:D6:72:C4:B0:4D:A5:6D:6F:54:04
                    Timestamp : Jan 26 02:11:21.558 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:31:3F:0E:E2:CD:8A:05:16:91:C9:09:64:
                                C7:53:66:7C:0A:3E:F1:7E:BB:59:87:D1:8C:A5:5F:98:
                                CB:28:E7:FA:02:20:5F:91:81:4A:0C:DE:7D:51:FE:C3:
                                F2:50:06:D2:EE:64:8B:71:16:3D:B0:FE:83:8C:30:BE:
                                39:EF:29:A6:3A:31
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        5d:06:65:d0:19:50:88:38:e5:cb:b9:02:fe:c3:29:34:b3:01:
        de:36:9f:31:83:f1:ac:61:6d:42:62:a4:f8:fb:2b:c3:67:38:
        c0:81:5f:44:4c:94:0f:03:15:90:e9:ef:fc:7c:17:d4:41:92:
        f7:61:e7:87:79:f1:a8:5a:b0:f4:c4:00:ce:1b:50:68:4a:44:
        7b:c5:7a:ec:6e:fa:d0:31:5f:db:08:5b:6b:95:74:46:4c:46:
        57:00:ba:df:94:69:49:11:ff:05:8b:1f:80:ca:b8:e7:f8:54:
        35:d6:45:d3:f7:a8:72:5d:8b:3e:0d:25:74:ab:5a:2b:43:03:
        e1:5c:3c:78:cd:65:05:b6:86:93:f5:19:5b:1e:e1:38:5d:9b:
        ef:56:d4:8b:15:b2:6e:fe:15:41:6e:50:a8:72:f0:b1:28:20:
        ce:f9:1a:7c:b8:d3:a2:f8:51:1f:3f:dc:58:cf:6e:2e:d3:20:
        26:e6:da:2b:9a:5d:5c:07:b8:f1:d8:36:e0:23:43:bc:d9:b4:
        7d:39:04:d1:09:8d:7c:39:6b:1b:0d:33:9e:af:13:6a:19:41:
        c0:38:08:85:40:7d:ee:48:bb:5f:a0:1c:07:bd:f0:54:b0:29:
        2a:ac:9d:5a:aa:bd:9a:b5:34:20:eb:5f:e7:0e:c2:ab:cf:60:
        36:19:e9:d3

550048729 | 2024-05-07T18:03:40.548344

444 / tcp

ÿÿÿ
0 ...

1761482307 | 2024-04-14T07:55:05.543498

450 / tcp

\x00[\xc2\xa5\t\xc2\xbe\x7f\x00\x00

897328069 | 2024-05-04T21:23:13.188840

465 / tcp

220 mail.scott000.com ESMTP

2098371729 | 2024-05-05T00:33:14.562543

502 / tcp

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>\nA<!DOCTYPE GANGLIA_XML [\n   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...\n

1975288991 | 2024-04-25T07:40:58.724770

503 / tcp

OPTI

1282941221 | 2024-04-22T15:20:02.993747

515 / tcp

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

155249582 | 2024-04-23T16:40:08.992645

548 / tcp

Fast Copy: Yes\nExtended Sleep: Yes\nUUIDs: Yes\nUTF8 Server Name: Yes\nDirectory Services: Yes\nReconnect: No\nServer Notifications: Yes\nTCP/IP: Yes\nServer Signature: Yes\nServer Message: No\nPassword Saving Prohibited: No\nPassword Changing: No\nCopy File: Yes\nServer Name: NGU\nMachine Type: \rNetatalk3.1.8\nAFP Versions: AFP2.2, AFPX03, AFP3.1, AFP3.2, AFP3.3, AFP3.4\nUAMs: Cleartxt Passwrd\\x04,DHX2\t,DHCAST128\\x00\nServer Signature: 00000000008002000180030002800280

735639583 | 2024-05-01T12:37:34.631321

554 / tcp

RTSP/1.0 200 OK
Server: H264DVR 1.0
Cseq: 1
Public: OPTIONS, DESCRIBE, SETUP, TEARDOWN, GET_PARAMETER, SET_PARAMETER, PLAY, PAUSE

1308377066 | 2024-05-09T15:51:40.825464

593 / tcp

ncacn_http/1.0

178736976 | 2024-04-17T11:26:44.055333

631 / tcp

SSH-58-Ingrian_SSH

1255568492 | 2024-04-18T10:52:11.921250

636 / tcp

HTTP/1.1 400 Bad Request
Content-Type: text/html
Cache-Control: no-cache, no-store
Connection: close
X-Iinfo: 12-56308661-0 0NNN RT(1705912410675 113) q(-1 -1 -1 -1) r(0 -1) b1

1300162323 | 2024-04-24T22:15:28.964618

666 / tcp

HTTP/1.1 404 Not Found
Content-Type: text/plain; charset=utf-8
X-Content-Type-Options: nosniff

1504401647 | 2024-05-06T15:23:12.656355

771 / tcp

:dircproxy NOTICE AUTH :Looking up your hostname...\r\n:dircproxy NOTICE AUTH :Got your hostname.\r\n

165188539 | 2024-05-10T14:14:19.412646

789 / tcp

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

-976882525 | 2024-05-10T10:29:10.132441

873 / tcp

HTTP/1.1 400 Bad Request
Server: nginx/1.23.1
Content-Type: text/html
Connection: close

-936692830 | 2024-04-15T19:08:11.033189

992 / tcp

HTTP/1.1 202 OK
Connection: Keep-Alive
Content-Type: text/html
Keep-Alive: timeout=15; max=19

-801484042 | 2024-05-07T11:05:06.648319

993 / tcp

ERR 27

-740312032 | 2024-05-09T09:49:17.547628

995 / tcp

+OK Dovecot (Ubuntu) ready.\r\n

1632932802 | 2024-05-01T09:51:57.199889

1023 / tcp

819727972 | 2024-04-27T00:53:48.445837

1025 / tcp

SSH-2.0-OpenSSH_7.4

-303199180 | 2024-05-02T01:14:27.761371

1050 / tcp

Content-Type: text/rude-rejection\nContent-Length: 24\n\n\nAccess Denied, go away.\nContent-Type: text/disconnect-notice\nC...\n

-1399940268 | 2024-05-06T00:24:43.453320

1099 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-1399940268 | 2024-05-08T22:29:31.050223

1153 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1375509841 | 2024-04-30T18:00:27.189938

1177 / tcp

ÿû

no data rcvd for version string

recv version id unsuccessful

SSH Session task 0xY: Version Exchange Failed

1161309183 | 2024-05-07T13:37:40.047719

1200 / tcp

ProxyServer is ready

819727972 | 2024-05-05T03:12:42.064947

1234 / tcp

SSH-2.0-OpenSSH_7.4

-1375131644 | 2024-05-04T20:46:21.193151

1337 / tcp

\x00[v\xc3\xbdC\x7f\x00\x00

555056254 | 2024-05-08T12:35:03.296604

1433 / tcp

MSSQL Server\nVersion: 171050560 (0xa320640)\nSub-Build: 0\nEncryption:Not available\n\nMSSQL NTLM Info:\nTarget_Name: 3NXCU7QCCJGSTII\nProduct_Version: 6.1.7601 Ntlm 15\nOS: Windows 7, Service Pack 1/Windows Server 2008 R2, Service Pack 1\nNetBIOS_Domain_Name: 3NXCU7QCCJGSTII\nNetBIOS_Computer_Name: 3NXCU7QCCJGSTII\nDNS_Domain_Name: 3NXCU7QCCJGSTII\nDNS_Computer_Name: 3NXCU7QCCJGSTII\nMsvAvFlags: 01000000\nSystem_Time: 2024-01-22 01:19:47 +0000 UTC\n\n

-1713467553 | 2024-04-16T23:35:38.342580

1500 / tcp

HTTP/1.1 400 Bad Request
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Connection: close

819727972 | 2024-05-10T03:22:19.189205

1515 / tcp

SSH-2.0-OpenSSH_7.4

-1184558916 | 2024-04-20T06:12:48.579677

1521 / tcp

Version:11.2.0.4.0\n"\\x00\\x00Y(DESCRIPTION=(TMP=)(VSNNUM=186647552)(ERR=1189)(ERROR_STACK=(ERROR=(CODE=1189)(EMFI=4))))

-1189269828 | 2024-05-06T09:36:13.298738

1599 / tcp

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\xc2\x80\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

1911457608 | 2024-05-01T05:30:10.674599

1800 / tcp

\x00[\x00\x00\x00\x00\x00\x00

1725077471 | 2024-04-16T06:11:36.110509

1801 / tcp

\\x10Z\x0b\\x00LIOR<\\x02\\x00\\x00\\xff\\xff\\xff\\xff\\x00\\x00\\x12\\x00a36a0e421af47074\\x92\\xb4\\xd9\\x13@w\\xa5F\\xbf\\xbd_\\x00\\xe9(Z\\x1992d3\\x10\\x03\\x00\\x00ZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ

-1189269828 | 2024-04-29T09:42:35.608059

1883 / tcp

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\xc2\x80\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

-1428621233 | 2024-05-06T16:08:50.102276

1911 / tcp

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

104385780 | 2024-04-22T00:12:36.115262

1925 / tcp

ceph v2

-1626979812 | 2024-04-26T23:19:33.607150

1926 / tcp

220 Service ready for new user.

-2089734047 | 2024-05-06T08:30:55.740836

1962 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

-1399940268 | 2024-05-07T05:11:24.446308

2000 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-441419608 | 2024-05-04T18:46:00.375122

2002 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

2087396567 | 2024-05-08T10:10:24.499379

2008 / tcp

kjnkjabhbanc283ubcsbhdc72

1911457608 | 2024-04-23T17:44:06.275320

2048 / tcp

\x00[\x00\x00\x00\x00\x00\x00

575925250 | 2024-04-29T16:02:52.949226

2058 / tcp

AMQP:\ncluster_name:rabbit@rabbitmq-0.rabbitmq-headless.rabbitmq.svc.cluster.local\ncopyright:Copyright (c) 2007-2021 VMware, Inc. or its affiliates.\ninformation:Licensed under the MPL 2.0. Website: https://rabbitmq.com\nplatform:Erlang/OTP 24.1\nproduct:RabbitMQ\nversion:3.9.7\nCapabilities:\npublisher_confirms:true\nexchange_exchange_bindings:true\nbasic.nack:true\nconsumer_cancel_notify:true\nconnection.blocked:true\nconsumer_priorities:true\nauthentication_failure_close:true\nper_consumer_qos:true\ndirect_reply_to:tru

1911457608 | 2024-04-13T14:53:51.924006

2059 / tcp

\x00[\x00\x00\x00\x00\x00\x00

-1279886438 | 2024-04-19T23:03:15.805722

2061 / tcp

GET / HTTP/1.0 : USERID : UNIX : TKUXZmP\r\n : USERID : UNIX : Cr8\r\n

-321444299 | 2024-05-09T20:41:23.655178

2067 / tcp

:dircproxy NOTICE AUTH :Looking up your hostname...
:dircproxy NOTICE AUTH :Got your hostname.

897328069 | 2024-05-07T18:15:34.837868

2081 / tcp

220 mail.scott000.com ESMTP

104385780 | 2024-04-23T00:22:36.061454

2082 / tcp

ceph v2

-2031152423 | 2024-04-24T23:28:16.367994

2083 / tcp

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

291723434 | 2024-05-06T17:03:37.303470

2086 / tcp


Lantronix MSS100 Version V118/523(045538937)

Type HELP at the 'Local_61349> ' prompt for assistance.



Username>

2087396567 | 2024-05-09T00:32:59.031639

2087 / tcp

kjnkjabhbanc283ubcsbhdc72

141730637 | 2024-05-04T16:45:09.268683

2121 / tcp

HTTP/1.0 200 OK
Server: Proxy

-1626979812 | 2024-04-21T05:13:27.910944

2122 / tcp

220 Service ready for new user.

1911457608 | 2024-04-29T21:29:28.648344

2150 / tcp

\x00[\x00\x00\x00\x00\x00\x00

740837454 | 2024-04-22T07:22:56.727050

2154 / tcp

SSH-2.0-OpenSSH_5.3

546151771 | 2024-05-03T04:58:09.915858

2181 / tcp

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC
Clients:
/*.*.*.*:11264[0](queued=0,recved=1,sent=0)

Latency min/avg/max: 0/0.0/0
Received: 8557
Sent: 11410
Connections: 1
Outstanding: 0
Zxid: 0x332907ad3391
Mode: follower
Node count: 104618

372433470 | 2024-05-10T20:11:04.647100

2222 / tcp

HTTP/1.1 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm=""

-2107996212 | 2024-05-02T22:23:14.098381

2223 / tcp

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

1662205251 | 2024-04-27T04:49:15.446106

2323 / tcp

HTTP/1.0 404 FAIL
Content-length:5
Connection:Close

1887224352 | 2024-05-04T10:15:27.911605

2332 / tcp

599074451 | 2024-05-03T13:48:36.775643

2345 / tcp

msg

2087396567 | 2024-05-10T02:01:28.097863

2376 / tcp

kjnkjabhbanc283ubcsbhdc72

-1399940268 | 2024-05-07T02:00:03.000456

2404 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

819727972 | 2024-04-15T14:02:12.855327

2443 / tcp

SSH-2.0-OpenSSH_7.4

-1036370807 | 2024-05-10T08:11:00.885996

2455 / tcp

JDWP-Handshake

-1036370807 | 2024-05-09T08:49:34.656364

2550 / tcp

JDWP-Handshake

-1804465946 | 2024-04-17T19:42:54.233775

2557 / tcp

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Server: Kestrel
Transfer-Encoding: chunked
Strict-Transport-Security: max-age=2592000

2063598737 | 2024-04-14T11:29:31.260240

2559 / tcp

/0 0 L\r\n/0 0 HUH\r\n

2087396567 | 2024-04-15T10:03:55.025352

2628 / tcp

kjnkjabhbanc283ubcsbhdc72

-1399940268 | 2024-04-26T20:24:51.890468

2709 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

740837454 | 2024-04-21T10:46:22.198047

2761 / tcp

SSH-2.0-OpenSSH_5.3

-1487943323 | 2024-05-03T13:04:09.597004

2762 / tcp

431 Unable to negotiate secure command connection.\r\n

-904840257 | 2024-05-05T15:48:36.452472

2806 / tcp

572 Relay not authorized\r\n

2087396567 | 2024-05-06T15:58:03.443657

3001 / tcp

kjnkjabhbanc283ubcsbhdc72

1911457608 | 2024-05-06T19:28:23.570393

3050 / tcp

\x00[\x00\x00\x00\x00\x00\x00

1519486042 | 2024-05-10T18:03:26.304282

3062 / tcp

<KU_goodbye>Protocol Error: XML data is not well-formed.</KU_goodbye>

-1839934832 | 2024-04-20T08:16:06.248512

3076 / tcp

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

-2089734047 | 2024-04-22T16:17:25.863846

3080 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

-1399940268 | 2024-05-07T21:31:22.258855

3091 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-2089734047 | 2024-05-06T19:18:48.264248

3129 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

-1045760528 | 2024-04-14T21:50:30.217365

3200 / tcp

HTTP/1.1 302 Found
Connection: close
Location: http://*.*.*.*/solr/

-862070606 | 2024-04-16T14:30:51.353866

3260 / tcp

Login Response Success(0x0000)\nKey/Value Pairs\nAuthMethod=None\nTargetAlias=LIO Target\nTargetPortalGroupTag=1\n\n

921482974 | 2024-05-05T00:15:42.333505

3268 / tcp

HTTP/1.1 301 Moved Permanently
Location: /web/index.html
Server: HTTPD
Connection: close
Content-Type: text/html

819727972 | 2024-05-02T10:31:29.348562

3269 / tcp

SSH-2.0-OpenSSH_7.4

2103111368 | 2024-05-01T00:00:31.182596

3299 / tcp

HTTP/1.0 403 Access denied
Server: tinyproxy/1.8.3
0AContent-Type: text/html
Connection: close

<?...

819727972 | 2024-05-03T14:48:31.043586

3301 / tcp

SSH-2.0-OpenSSH_7.4

1047846045 | 2024-04-21T20:26:59.417185

3306 / tcp

H\\x00\\x00\\x01\\xffj\\x04Host \'*.*.*.*\' is not allowed to connect to this MariaDB server

921225407 | 2024-05-09T22:17:06.834751

3310 / tcp

\x00\x00\x00\x04\x00\x00\x00\x00\x00

50497985 | 2024-04-14T13:28:08.877457

3311 / tcp

\x00[\xc3\x88\xc3\x9dS\x7f\x00\x00

-1399940268 | 2024-05-02T04:42:30.244712

3388 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-2036484723 | 2024-04-27T12:00:13.137796

3389 / tcp

Remote Desktop Protocol\n\\x03\\x00\\x00\\x13\\x0e\\xd0\\x00\\x00\\x124\\x00\\x02\\x1f\\x08\\x00\\x08\\x00\\x00\\x00\n\nGuess_OS:Windows Server 2016 or 2019 or 2022\nFlag: PROTOCOL_HYBRID_EX\n

1210754493 | 2024-04-17T16:11:16.904487

3405 / tcp

0\x0c\x02\x01\x01a\x07\n\x01\x00\x04\x00\x04\x00

-1399940268 | 2024-05-02T16:47:58.088959

3479 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-1888448627 | 2024-04-21T12:39:46.446266

3521 / tcp

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

-21576419 | 2024-05-07T04:04:41.111394

3541 / tcp


ÿûUDo you want ANSI color? (Y/n)

198844676 | 2024-05-04T22:21:08.285736

3551 / tcp

HTTP/1.1 404 Not Found
Server: Jetty/9.4.31.v20200723
Content-Type: text/plain; charset=utf-8
Connection: close

1975288991 | 2024-04-26T00:41:35.773208

3570 / tcp

OPTI

1921398876 | 2024-05-09T14:04:37.183049

3689 / tcp

ÿý"
LinuxNode v06953 (ggfks)

login:

676476721 | 2024-04-30T19:06:10.190681

3749 / tcp

ELM Enterprise Manager _l
Copyright © 18668511-928641920 TNT Software, Inc.

-1148066627 | 2024-05-02T22:14:51.785391

3780 / tcp

\x00[\xc2\x84\xc2\x86\xc3\xb2\x7f\x00\x00

103159425 | 2024-04-27T06:03:39.775025

3790 / tcp

SSH-1.99-RGOS_SSH

599074451 | 2024-04-19T11:34:34.679060

3792 / tcp

msg

165188539 | 2024-04-29T12:50:57.045793

3910 / tcp

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

-801484042 | 2024-05-09T06:42:17.038275

4000 / tcp

ERR 27

-616720387 | 2024-05-06T20:23:29.540294

4022 / tcp

SSH-2.0-SSHD_0.7.6

-1142844482 | 2024-05-06T23:33:36.855252

4040 / tcp

ÿûSOYO_SIP VBNQyQSKc settings
Password:

1642597142 | 2024-04-17T14:25:34.104202

4064 / tcp

\x00y\xc3\x90\x02\xc3\xbf\xc3\xbf\x00s\x12L\x00\x06\x11I\x00\x08\x00N\x11S\x00\xc3\x93

539065883 | 2024-05-07T18:58:50.108870

4157 / tcp

-1341662640 | 2024-05-09T02:50:35.055512

4242 / tcp

HTTP/1.1 301 Moved Permanently
Server: Zope/(2.13.23, python 1.7.18, linux2) ZServer/1.1
Content-Type: text/plain; charset=utf-8
Connection: close

-1681927087 | 2024-05-10T18:35:00.726010

4282 / tcp

kjnkjabhbanc283ubcsbhdc72

-1250504565 | 2024-04-17T13:36:16.176049

4321 / tcp

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x80\x00\x04\x00\x01\x00\x00\x00\x05\x00\xff\xff\xff\x00\x00\x04\x08\x00\x00\x00\x00\x00\x7f\xff\x00\x00\x00\x00\x08\x07\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01

1911457608 | 2024-05-07T14:27:40.100455

4369 / tcp

\x00[\x00\x00\x00\x00\x00\x00

1778988322 | 2024-05-08T21:13:33.261887

4433 / tcp

* OK GroupWise IMAP4rev1 Server Ready

141533638 | 2024-04-18T22:38:10.640488

4443 / tcp

HTTP/1.1 302 Found
Location: /index.html

-784071826 | 2024-05-06T22:08:15.666599

4500 / tcp

SSH-2.0-OpenSSH_8.0

1984588611 | 2024-05-05T19:54:18.089942

4506 / tcp

-1311598826 | 2024-05-05T01:26:26.334598

4664 / tcp

AMQP:
cluster_name:rabbit@rabbitmq-0.rabbitmq-headless.rabbitmq.svc.cluster.local
copyright:Copyright (c) 2007-2021 VMware, Inc. or its affiliates.
information:Licensed under the MPL 2.0. Website: https://rabbitmq.com
platform:Erlang/OTP 24.1
product:RabbitMQ
version:3.9.7
Capabilities:
publisher_confirms:true
exchange_exchange_bindings:true
basic.nack:true
consumer_cancel_notify:true
connection.blocked:true
consumer_priorities:true
authentication_failure_close:true
per_consumer_qos:true
direct_reply_to:tru

971933601 | 2024-05-07T02:36:50.464979

4786 / tcp

HTTP/1.0 404 Not Found
Content-Length: 0
Server: HTTPD
Connection: close
Content-Type: text/html

-2089734047 | 2024-05-07T21:50:53.114614

4840 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

-984990168 | 2024-04-22T05:02:48.442271

4899 / tcp


0ÿñ

-1399940268 | 2024-04-27T11:10:59.529588

4911 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

819727972 | 2024-04-20T14:12:54.896101

4949 / tcp

SSH-2.0-OpenSSH_7.4

770016595 | 2024-04-25T15:46:24.014554

5000 / tcp

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache

971933601 | 2024-05-03T23:11:26.726432

5001 / tcp

HTTP/1.0 404 Not Found
Content-Length: 0
Server: HTTPD
Connection: close
Content-Type: text/html

1134517380 | 2024-05-06T04:05:10.897558

5005 / tcp

welcome to Pandora console!\r\n----------------------------\n-------------------------\n|     Login Time     |     2021-12-08 1...\n

-971970408 | 2024-05-08T14:19:00.517142

5006 / tcp

820958131 | 2024-05-02T23:08:06.952225

5007 / tcp

kjnkjabhbanc283ubcsbhdc72\x02

1182822286 | 2024-05-10T03:40:18.452320

5009 / tcp

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae237b_dianxun172_7460-1469

580340387 | 2024-05-10T03:30:52.187373

5010 / tcp

220 Microsoft FTP Service\n530 User cannot log in.\n214-The following commands are recognized (* ==>\'s unimplemented).\n    ABOR \n    ACCT \n    ADAT *\n    ALLO \n    APPE \n    AUTH \n    CCC \n    CDUP \n    CWD \n    DELE \n    ENC *\n    EPRT \n    EPSV \n    FEAT \n    HELP \n    HOST \n    LANG \n    LIST ...

-358801646 | 2024-04-29T00:35:17.471436

5025 / tcp

SSH-2.0-OpenSSH_6.6.1

410249975 | 2024-05-08T04:09:35.980640

5050 / tcp

LNS READY<>

-1392039491 | 2024-04-26T03:22:52.106417

5172 / tcp

"Broadband Router"

<HTML><HEAD><TITLE>401 Unauthorized</TITLE></HEAD><BODY onLoad

1332894250 | 2024-04-12T22:44:13.630763

5201 / tcp

\xc3\xbf\xc3\xbb\x01SOYO_SIP VBNQyQSKc settings\r\nPassword:

2087396567 | 2024-04-29T11:15:27.168323

5222 / tcp

kjnkjabhbanc283ubcsbhdc72

-1074907534 | 2024-04-30T19:32:48.958189

5269 / tcp

HTTP/1.1 400 Bad Request
Server: CWAP-waf
Content-Type: text/html
Connection: close
WZWS-RAY: 1249-1705938603.82-w-waf02tjgt

1426971893 | 2024-04-27T18:45:10.500565

5400 / tcp

\x00[s\xc3\x85\xc3\x93\x7f\x00\x00

-981921233 | 2024-04-21T23:33:05.226277

5431 / tcp

HTTP/1.1 404 Not Found
DATE: Fri, 19 Jan 2024 11:56:43 GMT
Connection: Keep-Alive
Server: LINUX/2.4 UPnP/1.0 BRCM400/1.0
Content-Type: text/xml; charset="utf-8"
EXT:

-1399940268 | 2024-05-02T12:10:40.987411

5432 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1492413928 | 2024-04-17T06:26:08.685064

5435 / tcp

SSH-2.0-OpenSSH_7.5

819727972 | 2024-05-04T11:15:35.799768

5542 / tcp

SSH-2.0-OpenSSH_7.4

60948681 | 2024-04-23T10:22:06.185263

5560 / tcp

lpd [@Boyk]: Print-services are not available to your host (aF2qXkQ2m).

-2089734047 | 2024-04-29T13:08:56.106913

5595 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

-1399940268 | 2024-04-14T20:57:25.138545

5599 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

819727972 | 2024-04-14T20:55:54.991232

5602 / tcp

SSH-2.0-OpenSSH_7.4

575925250 | 2024-05-07T00:21:20.264104

5672 / tcp

AMQP:\ncluster_name:rabbit@rabbitmq-0.rabbitmq-headless.rabbitmq.svc.cluster.local\ncopyright:Copyright (c) 2007-2021 VMware, Inc. or its affiliates.\ninformation:Licensed under the MPL 2.0. Website: https://rabbitmq.com\nplatform:Erlang/OTP 24.1\nproduct:RabbitMQ\nversion:3.9.7\nCapabilities:\npublisher_confirms:true\nexchange_exchange_bindings:true\nbasic.nack:true\nconsumer_cancel_notify:true\nconnection.blocked:true\nconsumer_priorities:true\nauthentication_failure_close:true\nper_consumer_qos:true\ndirect_reply_to:tru

-2118655245 | 2024-04-24T05:32:31.355735

5801 / tcp

HTTP/1.0 500 Internal Server Error
Content-Length: 20

-1547976805 | 2024-05-09T20:47:35.730229

5822 / tcp

HTTP/1.1 403 Forbidden
Server: nginx
Content-Type: text/html
Connection: close

-971970408 | 2024-05-09T05:38:59.478960

5858 / tcp

497968563 | 2024-05-07T03:03:27.708618

5900 / tcp

RFB 003.008

VNC:
  Protocol Version: 3.8

1999272906 | 2024-05-10T12:13:59.892100

5984 / tcp

HTTP/1.0 200 OK
Cache-Control: must-revalidate
Content-Type: application/json
Server: CouchDB/3.2.0 (Erlang OTP/20)
X-Cloudant-Action: cloudantnosqldb.account-meta-info.read
X-Couch-Request-ID: a2da79eef6
X-Content-Type-Options: nosniff
X-Cloudant-Request-Class: unlimited
X-Cloudant-Backend: bm-cc-uk-01
Via: 1.0 lb1.bm-cc-uk-01 (Glum/1.101.1)

1332894250 | 2024-04-15T05:59:50.741101

5986 / tcp

\xc3\xbf\xc3\xbb\x01SOYO_SIP VBNQyQSKc settings\r\nPassword:

-1399940268 | 2024-05-09T20:51:01.163939

6000 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

819727972 | 2024-04-17T08:11:30.441204

6001 / tcp

SSH-2.0-OpenSSH_7.4

-21576419 | 2024-04-30T19:03:31.424403

6002 / tcp


ÿûUDo you want ANSI color? (Y/n)

2143741142 | 2024-04-23T20:05:39.493440

6009 / tcp

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae220c_yw174_28978-12872

-832380282 | 2024-04-21T16:52:47.728823

6036 / tcp

lpd [@Boyk]: Print-services are not available to your host (aF2qXkQ2m).\n

1308377066 | 2024-05-07T11:03:54.404777

6363 / tcp

ncacn_http/1.0

321971019 | 2024-05-05T16:15:24.009448

6379 / tcp

-ERR client ip is not in whitelist\r

-766597521 | 2024-04-25T21:10:51.025276

6443 / tcp

HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 21:10:50 GMT
Content-Type: text/html
Content-Length: 2789
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: no-cache, no-store
Etag: "584a79d5-386"
Server: Tengine
Set-Cookie: SERVERID=2df22bb4e02a2b09f0f8d6a06d400594|1714079450|1714079450;Path=/
Vary: Accept-Encoding
Location: htps://jyurlriskinspectioninner-inner.vpc-proxy.aliyuncs.com

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            70:a7:27:29:07:10:52:7c:ae:c7:4a:96
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2
        Validity
            Not Before: Sep 12 07:56:08 2023 GMT
            Not After : Feb 20 10:00:00 2024 GMT
        Subject: CN=*.aliyuncs.com, O=Alibaba (China) Technology Co., Ltd., L=Hangzhou, ST=Zhejiang, C=CN
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:dd:4b:74:ed:c6:5a:af:d8:ec:b8:00:f8:be:09:
                    34:31:59:b1:d9:1b:77:36:69:8b:27:30:12:a2:ff:
                    69:4e:58:2b:8d:98:ed:55:24:6a:9b:b3:5a:6b:54:
                    68:b8:b7:af:ee:8b:2d:5b:86:f0:92:f6:ef:ba:25:
                    40:b6:ac:30:eb:0c:b4:35:17:25:82:6f:84:57:5b:
                    d7:d9:0c:eb:9d:09:dc:bd:17:bf:92:98:db:b9:3b:
                    d3:70:74:bc:b4:ad:55:c7:e2:85:17:3e:f7:03:ce:
                    a3:7a:d4:61:4b:27:99:3c:8a:b8:7f:bd:f0:02:67:
                    55:75:cc:b7:cd:2b:91:3f:d9:11:a0:74:0c:9d:8a:
                    4a:b9:b8:5a:bc:1e:97:a1:b3:79:5b:5d:30:ea:a5:
                    8b:a2:23:05:02:22:9b:d4:f8:25:e6:99:c0:6d:4b:
                    d6:e0:ad:f0:01:a3:c9:e2:db:c2:bc:66:5e:3f:1b:
                    cd:c9:01:ad:68:50:77:ca:41:b9:a2:cf:58:9b:d9:
                    5c:1d:f2:b4:9c:9e:f9:c7:84:fe:65:8f:68:b5:e3:
                    2c:43:31:a0:a6:5c:65:eb:67:63:da:9b:0a:91:f8:
                    c1:f2:ba:0f:4e:48:53:f7:12:ca:6c:35:4e:4b:96:
                    02:d7:bc:3b:77:ad:80:17:9b:7a:4d:37:a1:e3:8c:
                    85:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                BD:22:FF:00:93:D9:9B:FA:87:FC:C5:14:21:44:0A:DD:BF:4A:AA:A6
            X509v3 Authority Key Identifier: 
                96:DE:61:F1:BD:1C:16:29:53:1C:C0:CC:7D:3B:83:00:40:E6:1A:7C
            Authority Information Access: 
                OCSP - URI:http://ocsp2.globalsign.com/gsorganizationvalsha2g2
                CA Issuers - URI:http://secure.globalsign.com/cacert/gsorganizationvalsha2g2r1.crt
            X509v3 Subject Alternative Name: 
                DNS:*.aliyuncs.com, DNS:*.cn-hangzhou-mybk.aliyuncs.com, DNS:*.cn-nantong.aliyuncs.com, DNS:*.cn-shenzhen-finance-1.aliyuncs.com, DNS:*.cn-sichuan.aliyuncs.com, DNS:*.jp-fudao.aliyuncs.com, DNS:*.ap-south-1.aliyuncs.com, DNS:*.cn-wulanchabu.aliyuncs.com, DNS:*.cn-huhehaote.aliyuncs.com, DNS:*.cn-chengdu.aliyuncs.com, DNS:*.rus-west-1.aliyuncs.com, DNS:*.ap-southeast-1.aliyuncs.com, DNS:*.in-mumbai.aliyuncs.com, DNS:*.cn-guangzhou.aliyuncs.com, DNS:*.cn-hangzhou.aliyuncs.com, DNS:dod-tiger.taobao.com, DNS:yqza.taobao.com, DNS:sec.alimama.com, DNS:buc-test-qier.alibaba-inc.com, DNS:heno.stors.ojibobo-ina.aon.alibaba-inc.com, DNS:stars.shuqireader.com, DNS:www2s.mashort.cn, DNS:opsx.vip.tbsite.net, DNS:shog36977584.taobao.com, DNS:szdyyyxs.1688.com, DNS:hovonojogin.taobao.com, DNS:shop36674442.taobao.com, DNS:svnort.stors.ojibobo-ina.aon.alibaba-inc.com, DNS:xbootogs.ojibobo-ina.aon.alibaba-inc.com, DNS:university.lazada.vn, DNS:shog36621603.taobao.com, DNS:api.dingtalk.com, DNS:shog36600642.taobao.com, DNS:admin-p.lazada.vn, DNS:ocache.taobao.net, DNS:10yuankaihutiyanjin-okta-network-drookings-mirror.accept.lex.vn, DNS:lighthouse.lazada.co.th, DNS:api.aliyun.com, DNS:admin.lazada.co.id, DNS:ajovdovth-intj.an-shonghoi.aliyuncs.com, DNS:ob-gre.ojiyvn-ina.aon.aliyun-inc.com, DNS:shop2b0883416a7i9.aliyun.com, DNS:acs-m-sg.lazada.co.id, DNS:auth.wms.aliyun.com, DNS:qtnetria-shore.aliyuncs.com, DNS:m5-zb.amap.com, DNS:mail.wondfo.com.cn, DNS:m.sellercenter.lazada.com.ph, DNS:yvndvn-idi-server.ojiyvn-ina.aon.aliyun-inc.com, DNS:xmap-alg-deploy-prepub.amap.com, DNS:qt-changeplatform.alibaba.net, DNS:yhnkwj.1688.com, DNS:www22.aliwork.com, DNS:eci-vpc.ap-southeast-1.aliyuncs.com, DNS:b-manage.gfn.cainiao.com, DNS:sellercenter.lazada.com.my, DNS:aloc-offline.aliyun.com, DNS:hhpai-dsw-dsw56392-80.pcs-svr.alibaba-inc.com, DNS:attg.ojibobo-ina.aon.alibaba-inc.com, DNS:shop6239730h56062.1688.com, DNS:api.ascp-fresh-produce.hemayx.cn, DNS:console-fc.alpha.redmart.com, DNS:shog1442508391642.1688.com, DNS:fvzebogs.1688.com, DNS:das.base.shuju.aliyun.com, DNS:ojiaert.taobao.com, DNS:og-sovtheost-1.ron-internoj.aliyuncs.com, DNS:119152.aliexpress.com, DNS:shog36315220.taobao.com, DNS:nextci.amap.com, DNS:shop36579394.taobao.com, DNS:ens-network-sqos-hybrid.alicdn.com, DNS:manage-cmscn.gfn.cainiao.com, DNS:detoij.tmall.com, DNS:jielitushu.tmall.com, DNS:new-university.lazada.co.id, DNS:bi.aliyun.com, DNS:shog3078o27060063.1688.com, DNS:www.yx.fusion.design, DNS:hm1.cnzz.com, DNS:u.lazada.com.my, DNS:pre-ids-gpcb.lazada.com, DNS:adsprobe.aliyun.com, DNS:services-iss-sh.cainiao-inc.com, DNS:gigsijk.taobao.com, DNS:nrcm.lydaas.com, DNS:connect.aliexpress.com, DNS:vidigod.1688.com, DNS:axjanja.1688.com, DNS:alimama2.aliyun.com, DNS:shog36236233.taobao.com, DNS:anqi9988.1688.com, DNS:www.lex.co.id, DNS:shog36346889.taobao.com, DNS:gvonghe.taobao.com, DNS:iot.ap-southeast-1.aliyun.com, DNS:1111.alimama.com, DNS:netriahvb-ans-an-beijing.aliyuncs.com, DNS:link.wt.cainiao.com
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.4146.1.20
                Policy: 2.23.140.1.2.2
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.globalsign.com/gs/gsorganizationvalsha2g2.crl
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        55:c0:12:7a:04:5a:dd:93:46:07:dd:96:3f:75:3b:dd:07:3b:
        c0:4a:2e:56:65:f3:86:e1:0a:0a:4b:a4:e1:ca:e2:19:2c:ee:
        e3:f8:4f:06:c4:bb:bc:c8:20:28:67:7e:a2:69:d1:b5:7e:d7:
        bc:34:4f:11:9c:4f:74:37:b8:57:b4:05:45:cf:c8:87:24:ed:
        0c:ee:f6:7d:05:6c:98:f1:72:b7:e4:f3:2a:1a:64:4d:13:be:
        4e:e6:ff:c6:84:3b:4a:2d:3f:5a:1b:4d:77:21:38:e3:68:fd:
        a8:93:fb:2a:f4:ea:c7:89:f0:28:68:ea:3d:f2:ae:0e:31:f7:
        77:fa:01:a4:af:1e:6a:75:8e:6b:17:8d:ba:7b:35:70:3a:6e:
        c8:1c:dd:7a:4e:60:0f:f9:3f:3e:38:7c:39:2a:57:3c:83:ca:
        c5:5c:f8:d8:f3:8d:79:d2:4d:d6:37:63:d8:05:6d:86:91:ce:
        8b:bb:75:ee:92:af:e0:96:94:0f:d6:70:f6:55:62:91:21:10:
        e9:19:0e:23:75:04:d8:13:d9:5a:94:19:24:ac:52:10:b7:5a:
        cc:b2:9e:28:9c:70:21:65:c8:a8:c4:1d:e9:07:57:19:ee:75:
        91:2d:7a:28:52:db:b8:1f:28:78:16:13:f6:4d:ea:ff:79:3d:
        ab:a5:ec:59

-1056270173 | 2024-04-11T11:08:15.975251

6580 / tcp

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close

-339084706 | 2024-04-30T08:45:03.080196

6588 / tcp

200 ArGoSoft News Server for WinNT/2000/XP v 59869648 ready\r\n

-1327660293 | 2024-04-20T19:29:17.897549

6600 / tcp

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

1911457608 | 2024-04-16T11:05:19.548686

6605 / tcp

\x00[\x00\x00\x00\x00\x00\x00

-1019343788 | 2024-05-10T21:28:36.015929

6633 / tcp

W!\x00\x00\x00\x00

1911457608 | 2024-05-10T00:04:27.654848

6653 / tcp

\x00[\x00\x00\x00\x00\x00\x00

1960438949 | 2024-04-26T11:14:33.657495

6664 / tcp

Siemens 2766190798 T1E1 [COMBO] Router (7-382-) v13708 Ready
ÿûÿûÿýÿþUsername:

4935895 | 2024-05-10T09:09:11.937322

6666 / tcp

HTTP/1.1 400 Bad Request
Server: CloudWAF

2087396567 | 2024-05-08T12:29:09.491848

6667 / tcp

kjnkjabhbanc283ubcsbhdc72

-1839934832 | 2024-04-29T08:53:51.517245

6668 / tcp

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

1911457608 | 2024-05-04T17:35:00.276078

6697 / tcp

\x00[\x00\x00\x00\x00\x00\x00

-1399940268 | 2024-04-12T09:42:56.101896

6789 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

740837454 | 2024-05-02T14:00:05.924961

6887 / tcp

SSH-2.0-OpenSSH_5.3

-579195550 | 2024-05-01T07:08:50.335877

7000 / tcp

HTTP/1.1 407 Proxy Authentication Required 
Content-Type: text/plain; charset=utf-8
Proxy-Authenticate: Basic realm="proxy"

-274925451 | 2024-05-02T19:01:53.878880

7001 / tcp

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae2914_PSzqstdxnz35_3380-26211

2121220663 | 2024-05-01T22:05:15.752986

7022 / tcp

SSH-58-Ingrian_SSH\r\n

-2089734047 | 2024-04-21T23:47:45.789920

7081 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

1911457608 | 2024-04-30T00:57:04.831500

7171 / tcp

\x00[\x00\x00\x00\x00\x00\x00

-1839934832 | 2024-05-05T03:08:09.865258

7218 / tcp

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

921225407 | 2024-05-01T03:48:57.245885

7415 / tcp

\x00\x00\x00\x04\x00\x00\x00\x00\x00

1690634669 | 2024-05-05T00:00:42.784419

7434 / tcp

-1209805157 | 2024-05-06T01:23:07.337315

7443 / tcp

HTTP/1.1 403 Forbidden
Server: openresty
Content-Type: text/html
Connection: keep-alive
via: CHN-SH-COchilian1-CACHE1[1]
X-CCDN-FORBID-CODE: 040001

1975288991 | 2024-04-19T03:23:07.802127

7444 / tcp

OPTI

1543809371 | 2024-04-25T11:27:28.875012

7535 / tcp

220 corpease.net Anti-spam GT for Coremail System (icmhosting[2\n0181212])

660175493 | 2024-04-21T02:33:15.833615

7547 / tcp

1189133115 | 2024-04-25T07:40:34.623092

7548 / tcp

SSH-2.0-OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.8

1996932384 | 2024-04-18T01:59:01.321162

7634 / tcp

"raop" nonce

820958131 | 2024-05-09T23:17:37.643892

7700 / tcp

kjnkjabhbanc283ubcsbhdc72\x02

770016595 | 2024-05-05T02:23:59.950999

7989 / tcp

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache

-180163620 | 2024-04-18T10:13:29.764063

7998 / tcp

NPC Telnet permit one connection.\r\n But One connection() already keep alive.\r\nGood Bye !! \r\n

1072892569 | 2024-04-30T23:46:51.195922

8001 / tcp

HTTP/1.0 403 Access denied
Server: tinyproxy/1.8.3
0AContent-Type: text/html
Connection: close

996960436 | 2024-04-30T20:11:31.558069

8009 / tcp

572 Relay not authorized

-119996482 | 2024-05-01T17:54:16.516984

8010 / tcp

HTTP/1.1 408 Request Timeout
Content-Length: 0

-1399940268 | 2024-05-07T15:03:34.917552

8025 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

410249975 | 2024-04-29T22:06:22.013235

8035 / tcp

LNS READY<>

1911457608 | 2024-05-03T06:13:19.512910

8036 / tcp

\x00[\x00\x00\x00\x00\x00\x00

-1399940268 | 2024-05-07T16:25:32.085225

8041 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-438503381 | 2024-05-09T09:33:50.430357

8056 / tcp

WORLD OF WARCRAFT CONNECTION - SERVER TO CLIENT - V2

-2089734047 | 2024-04-28T23:17:39.737755

8057 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

641705735 | 2024-05-09T05:43:43.689449

8069 / tcp



0
dø...

-1648456501 | 2024-05-02T21:31:21.382399

8072 / tcp

\n\r\xc3\xbf\xc3\xbbUDo you want ANSI color? (Y/n)

226840647 | 2024-04-27T09:09:00.712376

8080 / tcp

HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate
Content-Length: 8373
Content-Type: text/html;charset=UTF-8
Date: Sat, 27 Apr 2024 09:09:00 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Permitted-Domain: https://parterner-q.aliyuncs.com/init/allocate-allocate/deactivate-thread
Server: Jetty(9.2.z-SNAPSHOT)
Set-Cookie: JSESSIONID.68aebc19=1tvoz0ll05tzrl1p03oekqs46;Path=/;HttpOnly
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Hudson: 1.395
X-Hudson-Cli-Port: 34255
X-Hudson-Theme: default
X-Instance-Identity: MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjmfMcEUCqpsfNM7LdWRGXQzwwGF41W6yfe6wWVkdLDYy7QHsEK+/8wQdtrt6rokKXdbcmIA6r5goaw5jgx1KYHEVshQpljzX79oLDK+EMn5Nq5gnyMe8N3jUALJiiYN2W2lUqlIxG6+9hfXE3o7tvvfJS7iAPHQrtetoVPI9bGfi/BLLncm9I82Z4SDJloIJmfkfDqOg5ivg5sPjabQVvZQKu0EeeVl6PhHG68Vyei8HC/Z5KAEl5CIuI2s7StJVhXJUvfkgkk8cGN6Sp7bsjuv7IADg3EV+OEoWqyzTRYsnUZ/vjHx9jeJo9DRYIECxhx/mGVVSgtBtXyiZqqo9VwIDAQAB
X-Jenkins: 2.46.1
X-Jenkins-Cli-Port: 34255
X-Jenkins-Cli2-Port: 34255
X-Jenkins-Session: f7c72f83
X-Ssh-Endpoint: 112.74.1.144:39067

171352214 | 2024-05-10T11:48:39.828509

8081 / tcp

-ERR client ip is not in whitelist

1308377066 | 2024-05-06T16:07:44.621196

8083 / tcp

ncacn_http/1.0

-971970408 | 2024-05-08T23:21:07.348082

8085 / tcp

-1399940268 | 2024-05-09T05:49:20.913325

8087 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

114471724 | 2024-05-05T22:13:29.343161

8089 / tcp

HTTP/1.1 302
X-Frame-Options: SAMEORIGIN
Server: NSX

-749939074 | 2024-05-05T19:19:54.939311

8099 / tcp

HTTP/1.1 200 
Cache-Control: private
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Origin: http://localhost:8009
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 0
Access-Control-Allow-Credentials: true
XDomainRequestAllowed: 1
Access-Control-Allow-Headers: Authorization,Origin, X-Requested-With, Content-Type, Accept,Access-Token
Content-Type: text/html;charset=UTF-8
Content-Language: en-US
Transfer-Encoding: chunked

-1261090339 | 2024-04-28T03:50:29.114452

8108 / tcp

\x00[l\xc2\xb6\xc3\x90\x7f\x00\x00

-2089734047 | 2024-04-29T19:24:42.421690

8118 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

-1969169410 | 2024-05-08T04:09:47.890282

8126 / tcp

ÿû
-> GET / HTTP/1.0
GET / HTTP/1.0
undefined symbol: GET
-> 
->

819727972 | 2024-05-01T10:41:45.815573

8139 / tcp

SSH-2.0-OpenSSH_7.4

819727972 | 2024-05-06T04:09:20.791619

8140 / tcp

SSH-2.0-OpenSSH_7.4

2087396567 | 2024-04-18T04:02:52.406478

8181 / tcp

kjnkjabhbanc283ubcsbhdc72

-877598700 | 2024-05-08T00:44:41.845699

8200 / tcp

\r\nSiemens 2766190798 T1E1 [COMBO] Router (7-382-) v13708 Ready\r\n\xc3\xbf\xc3\xbb\\x01\xc3\xbf\xc3\xbb\\x03\xc3\xbf\xc3\xbd\\x01\xc3\xbf\xc3\xbe\\x01Username:

-1032713145 | 2024-04-30T18:40:19.608756

8238 / tcp

\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x08\x00\x00\x00\n0\x00\x00\x00\x0e\xc3\xbf\xc3\xb1

1208318993 | 2024-05-06T16:16:11.864994

8291 / tcp

\x01\x00\x0b\x00\x00\x00=\x00\x01\x00\x00\x00\x00\x00\xc3\x80\x06\xc3\xbf\xc3\xbf?"<Z\x00DECWINDOWS Digital Equipment Corporation Digital UNIX V2eT03T7w_Q6\x00\x00\x01\x01

1096654864 | 2024-05-09T02:38:20.599560

8333 / tcp

HTTP/1.0 200 OK
Server: httpd/2.0
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
Content-Type: text/html
Connection: close

104385780 | 2024-04-22T15:47:48.583884

8334 / tcp

ceph v2

-1795027372 | 2024-04-13T07:34:04.909352

8403 / tcp

\xc3\xbf\xc3\xbd"\r\nLinuxNode v06953 (ggfks)\r\n\r\nlogin:

1308377066 | 2024-05-02T22:35:14.899723

8408 / tcp

ncacn_http/1.0

-1947777893 | 2024-05-01T00:56:44.212661

8411 / tcp

"Broadband Router"\r\n\r\n<HTML><HEAD><TITLE>401 Unauthorized</TITLE></HEAD><BODY onLoad

-441419608 | 2024-04-22T16:26:17.750690

8412 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

-1399940268 | 2024-04-14T09:26:56.485986

8415 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-1327660293 | 2024-04-25T21:32:09.573605

8421 / tcp

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

-1399940268 | 2024-05-05T07:12:19.834205

8426 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1911457608 | 2024-05-07T21:33:43.341434

8429 / tcp

\x00[\x00\x00\x00\x00\x00\x00

-1399940268 | 2024-04-30T02:31:41.784386

8430 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

814794075 | 2024-05-04T21:16:53.088745

8443 / tcp

HTTP/1.1 404 NOT FOUND
Content-Type: text/html; charset=utf-8
Access-Control-Allow-Origin: https://aitest.omnistorpoc.com

1662811133 | 2024-05-03T13:34:30.813685

8500 / tcp

MudNames 77 - (C) 1997-2001 Ragnar Hojland Espinosa <ragnar@ragnar-hojland.com>

-1099385124 | 2024-04-25T07:23:26.290828

8545 / tcp

"Magic:ActiveMQ\nVersion:12\n\x00\x00\x01<\x01ActiveMQ\x00\x00\x00\x0c\x01\x00\x00\x01*\x00\x00\x00\x0c\x00\x11TcpNoDelayEnabled\x01\x01\x00\x12SizePrefixDisabled\x01\x00\x00 CacheSize\x05\x00\x00\x04\x00\x00\x0cProviderName \x00\x08ActiveMQ\x00\x11StackTraceEnabled\x01\x01\x00\x0fPlatformDetails \x00\x04Java\x00\x0cCacheEnabled\x01\x01\x00\x14TightEncodingEnabled\x01\x01\x00\x0cMaxFrameSize\x06\x00\x00\x00\x00\x06@\x00\x00\x00\x15MaxInac

2087396567 | 2024-05-07T22:05:51.688827

8554 / tcp

kjnkjabhbanc283ubcsbhdc72

165188539 | 2024-04-16T16:11:05.152493

8575 / tcp

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

165188539 | 2024-05-07T15:50:04.551353

8586 / tcp

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

842535728 | 2024-05-10T05:22:52.188898

8649 / tcp

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>
A<!DOCTYPE GANGLIA_XML [
   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...

-1399940268 | 2024-05-03T11:42:36.074816

8728 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-1888448627 | 2024-05-03T14:07:21.494439

8788 / tcp

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

632542934 | 2024-04-22T16:25:58.960725

8810 / tcp

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

921225407 | 2024-04-21T21:27:39.349372

8815 / tcp

\x00\x00\x00\x04\x00\x00\x00\x00\x00

-1327660293 | 2024-04-14T09:19:41.764789

8818 / tcp

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

45131230 | 2024-04-15T20:17:41.786204

8819 / tcp

inv2W\x04\x0f\x00\x00\x00\x01\x00\t\x00\x00\x00

1911457608 | 2024-04-22T02:58:41.827007

8827 / tcp

\x00[\x00\x00\x00\x00\x00\x00

-445721795 | 2024-04-26T23:21:09.028384

8834 / tcp

\x00[\xc3\xaed\x1a\x7f\x00\x00

-1019343788 | 2024-05-06T09:02:09.957625

8837 / tcp

W!\x00\x00\x00\x00

-2046514463 | 2024-04-26T08:38:43.360377

8838 / tcp

AB\x01\t

-1099385124 | 2024-04-11T21:57:39.787770

8849 / tcp

"Magic:ActiveMQ\nVersion:12\n\x00\x00\x01<\x01ActiveMQ\x00\x00\x00\x0c\x01\x00\x00\x01*\x00\x00\x00\x0c\x00\x11TcpNoDelayEnabled\x01\x01\x00\x12SizePrefixDisabled\x01\x00\x00 CacheSize\x05\x00\x00\x04\x00\x00\x0cProviderName \x00\x08ActiveMQ\x00\x11StackTraceEnabled\x01\x01\x00\x0fPlatformDetails \x00\x04Java\x00\x0cCacheEnabled\x01\x01\x00\x14TightEncodingEnabled\x01\x01\x00\x0cMaxFrameSize\x06\x00\x00\x00\x00\x06@\x00\x00\x00\x15MaxInac

819727972 | 2024-05-08T09:21:00.555806

8861 / tcp

SSH-2.0-OpenSSH_7.4

819727972 | 2024-04-16T17:40:14.615182

8863 / tcp

SSH-2.0-OpenSSH_7.4

-1399940268 | 2024-04-13T22:04:58.524891

8877 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-653033013 | 2024-04-18T18:26:15.845964

8879 / tcp

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

819727972 | 2024-04-22T07:39:15.208478

8880 / tcp

SSH-2.0-OpenSSH_7.4

2087396567 | 2024-05-02T10:09:27.660362

8889 / tcp

kjnkjabhbanc283ubcsbhdc72

1504401647 | 2024-04-29T17:28:33.567007

8890 / tcp

:dircproxy NOTICE AUTH :Looking up your hostname...\r\n:dircproxy NOTICE AUTH :Got your hostname.\r\n

1761482307 | 2024-05-07T19:21:58.710438

8990 / tcp

\x00[\xc2\xa5\t\xc2\xbe\x7f\x00\x00

-1795676121 | 2024-04-30T10:41:56.927441

9000 / tcp

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65aded01_PS-000-01XB730_6341-708

-1026951088 | 2024-05-08T09:42:17.865531

9001 / tcp

erro ip

-1428621233 | 2024-05-08T15:28:49.362755

9002 / tcp

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

1492413928 | 2024-04-28T04:47:19.680224

9007 / tcp

SSH-2.0-OpenSSH_7.5

-288825733 | 2024-04-17T06:18:31.168483

9023 / tcp

HTTP/1.1 200 OK
Connection: close
Content-Length: 2619
Accept-Ranges: bytes
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: authorization,Content-Type
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, HEAD, DELETE
Content-Type: text/html
Server: Jetty(9.4.14.v20181114)
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1

-2089734047 | 2024-04-17T21:45:46.549280

9031 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

2063598737 | 2024-04-23T04:08:16.269838

9038 / tcp

/0 0 L\r\n/0 0 HUH\r\n

819727972 | 2024-04-30T22:35:40.326157

9042 / tcp

SSH-2.0-OpenSSH_7.4

-1399940268 | 2024-05-06T12:26:42.716746

9045 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-1839934832 | 2024-05-09T06:04:54.873284

9051 / tcp

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

-2031152423 | 2024-04-22T23:59:49.396242

9091 / tcp

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

-2080784861 | 2024-05-03T09:55:31.428192

9094 / tcp

GBPK\xc3\xbb\xc3\xb7n\xc2\x93W\xc2\xaf\xc2\x86\xc2\x93x@\xc2\xa9\x0e\xc3\x8a*\xc2\x9bS\x00

-971970408 | 2024-05-03T08:47:27.906698

9095 / tcp

1911457608 | 2024-05-01T23:20:14.617891

9097 / tcp

\x00[\x00\x00\x00\x00\x00\x00

-1914711518 | 2024-05-01T13:15:48.028136

9099 / tcp

HTTP/1.1 400 Bad Request
Connection: close
Server: Lego Server

1996932384 | 2024-04-13T20:30:22.300651

9105 / tcp

"raop" nonce

-358801646 | 2024-04-27T12:01:34.206391

9111 / tcp

SSH-2.0-OpenSSH_6.6.1

1267517148 | 2024-05-07T10:09:11.688680

9151 / tcp

=Àÿÿ?"<ZDECWINDOWS Digital Equipment Corporation Digital UNIX V2eT03T7w_Q6

-2046514463 | 2024-05-07T20:51:00.410182

9160 / tcp

AB\x01\t

-1163346640 | 2024-05-07T11:28:16.299368

9200 / tcp

HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
content-length: 215

921225407 | 2024-04-22T22:51:32.858943

9203 / tcp

\x00\x00\x00\x04\x00\x00\x00\x00\x00

-891714208 | 2024-05-05T08:35:37.751602

9210 / tcp

( success ( 2 2 ( ) ( edit-pipeline svndiff1 absent-entries com\nmit-revprops depth log-revprops partial-replay ) ) )

1911457608 | 2024-04-24T16:13:14.835437

9216 / tcp

\x00[\x00\x00\x00\x00\x00\x00

-407828767 | 2024-04-29T10:54:20.253288

9221 / tcp

\x00[\xc2\xbc/\xc2\x9f\x7f\x00\x00

-2033111675 | 2024-05-10T14:25:37.973927

9222 / tcp

~djb

-2081419599 | 2024-04-30T05:25:56.207260

9295 / tcp

@
03d

165188539 | 2024-04-23T20:58:23.195005

9301 / tcp

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

1332894250 | 2024-05-05T00:23:14.772400

9302 / tcp

\xc3\xbf\xc3\xbb\x01SOYO_SIP VBNQyQSKc settings\r\nPassword:

-375604792 | 2024-05-10T08:04:59.376210

9306 / tcp

220 Microsoft FTP Service

1529351907 | 2024-05-03T01:53:37.788246

9418 / tcp

HTTP/1.1 407 OK
Content-Type: text/plain; charset=utf-8
Connection: keep-alive

please add white ip *.*.*.*

-971970408 | 2024-05-04T00:51:11.258951

9443 / tcp

-1730858130 | 2024-05-10T19:54:55.106944

9530 / tcp

RFB 003.008
VNC:
  Protocol Version: 3.8

-527005584 | 2024-05-09T17:16:18.911300

9595 / tcp

/0 0 L
/0 0 HUH

-358801646 | 2024-05-10T20:09:55.232252

9600 / tcp

SSH-2.0-OpenSSH_6.6.1

-1839934832 | 2024-05-01T05:18:11.551115

9633 / tcp

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

1426971893 | 2024-04-28T13:20:51.498523

9761 / tcp

\x00[s\xc3\x85\xc3\x93\x7f\x00\x00

-1451615933 | 2024-05-08T07:31:51.363680

9876 / tcp

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
WZWS-RAY: 1249-1705941912.469-s5jhg

1320285193 | 2024-05-10T11:31:40.815471

9898 / tcp

HTTP/1.1 404 Not Found
Server: CloudWAF
Content-Type: text/html
Connection: keep-alive

491999737 | 2024-05-10T00:30:33.854819

9943 / tcp

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
WZWS-RAY: 1249-1705935095.837-s5jhg

550048729 | 2024-05-07T18:38:18.318828

9944 / tcp

ÿÿÿ
0 ...

632542934 | 2024-05-04T01:15:28.970428

9955 / tcp

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

-1990350878 | 2024-04-29T14:44:14.620552

9981 / tcp

 
04 \...

819727972 | 2024-04-15T02:41:43.207446

9991 / tcp

SSH-2.0-OpenSSH_7.4

1308377066 | 2024-04-17T12:04:19.339148

9993 / tcp

ncacn_http/1.0

-1399940268 | 2024-05-09T03:16:28.503765

9994 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-1917695220 | 2024-05-07T12:52:17.029341

9998 / tcp

HTTP/1.1 200 OK
Server: Jetty(9.4.8.v20171121)

1161309183 | 2024-05-09T00:09:16.204443

9999 / tcp

ProxyServer is ready

-321444299 | 2024-05-04T15:33:00.626380

10000 / tcp

:dircproxy NOTICE AUTH :Looking up your hostname...
:dircproxy NOTICE AUTH :Got your hostname.

1492413928 | 2024-05-04T01:59:24.890509

10001 / tcp

SSH-2.0-OpenSSH_7.5

1574088840 | 2024-05-09T03:39:06.993946

10134 / tcp

">Application and Content Networking Software 3.9</a>)\n</BODY><

1544300041 | 2024-05-10T17:33:19.377307

10250 / tcp

SSH-25453-Cisco-3524665.35

-1436553035 | 2024-04-29T15:22:53.995414

10443 / tcp

HTTP/1.1 403 Forbidden
Date: Mon, 29 Apr 2024 15:22:53 GMT
Content-Type: text/html
Content-Length: 238
Connection: keep-alive
Server: Tengine
Location: https://flow.aliyun.com
Via: vcache57.cn3302[,0]

819727972 | 2024-05-08T17:18:03.473131

10554 / tcp

SSH-2.0-OpenSSH_7.4

1911457608 | 2024-05-05T17:27:21.634529

10909 / tcp

\x00[\x00\x00\x00\x00\x00\x00

-1399940268 | 2024-04-19T21:32:06.060688

10911 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-1779118422 | 2024-05-09T10:23:08.111389

11000 / tcp

\x00[\xc2\xae\xc2\x8d{\x7f\x00\x00

-2089734047 | 2024-05-04T21:43:16.685178

11210 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

1911457608 | 2024-05-07T14:35:33.571171

11300 / tcp

\x00[\x00\x00\x00\x00\x00\x00

-319440554 | 2024-04-19T05:56:17.569306

11434 / tcp

-1723613895 | 2024-05-01T01:45:17.567272

12000 / tcp

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae2232_PS-HAK-01h6h34_6336-63973

265065882 | 2024-05-01T13:04:05.580421

12345 / tcp

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked

841014058 | 2024-04-14T18:24:37.388266

13579 / tcp

Hello, this is FRRouting (version 4.0).

Copyright 19
96-2005 Kunihiro Ishiguro, et al.




Use...

114471724 | 2024-05-10T17:36:53.949401

14147 / tcp

HTTP/1.1 302
X-Frame-Options: SAMEORIGIN
Server: NSX

-1888448627 | 2024-04-25T02:25:03.728406

14265 / tcp

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

-1399940268 | 2024-05-03T06:28:13.349768

14344 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

2009276894 | 2024-05-09T06:55:46.767134

16010 / tcp

N
5.6.40-logÅTUNEgVX2
¢!xlB...

-1900404274 | 2024-04-11T17:38:26.820485

16992 / tcp

Unknown command

819727972 | 2024-05-03T02:09:17.585881

16993 / tcp

SSH-2.0-OpenSSH_7.4

-1730858130 | 2024-05-08T13:14:51.053061

18081 / tcp

RFB 003.008
VNC:
  Protocol Version: 3.8

-1733106930 | 2024-04-25T01:29:53.237619

18245 / tcp

Mysql Version: 5.6.50-log\nN\n5.6.50-log\x14(\nG5se"tGE\xc3\xbf\xc3\xb7-\x02\x7f\xc2\x80\x15cB^3$Zwh$wM[mysql_native_password

1911457608 | 2024-05-08T10:47:49.879141

19000 / tcp

\x00[\x00\x00\x00\x00\x00\x00

841014058 | 2024-04-25T08:25:29.512091

19071 / tcp

Hello, this is FRRouting (version 4.0).

Copyright 19
96-2005 Kunihiro Ishiguro, et al.




Use...

1900503736 | 2024-05-06T07:38:39.074900

20000 / tcp

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: Microsoft-HTTPAPI/2.0

-1888448627 | 2024-04-13T12:23:03.602735

20256 / tcp

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

-1888448627 | 2024-05-09T21:42:00.194676

20547 / tcp

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

1741579575 | 2024-05-06T19:00:52.995373

21025 / tcp

1189133115 | 2024-05-03T18:48:07.069909

21379 / tcp

SSH-2.0-OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.8

648533320 | 2024-05-10T17:12:45.986763

23023 / tcp

[l¶Ð

-1399940268 | 2024-04-30T21:28:07.605146

25001 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-2118655245 | 2024-04-25T00:28:04.713538

25105 / tcp

HTTP/1.0 500 Internal Server Error
Content-Length: 20

819727972 | 2024-05-09T09:39:58.409184

25565 / tcp

SSH-2.0-OpenSSH_7.4

-80321085 | 2024-05-02T09:34:16.004342

27015 / tcp

Command: None
Size: 1802398315
ID: 1751277930
Type: 1668178274

1763259671 | 2024-04-21T19:18:33.395471

27017 / tcp

{\n"Version": "3.4.18",\n"VersionArray": [\n3,\n4,\n18,\n0\n],\n"GitVersion": "4410706bef6463369ea2f42399e9843903b31923",\n"OpenSSLVersion": "",\n"SysInfo": "",\n"Bits": 64,\n"Debug": false,\n"MaxObjectSize": 16777216\n}\n\n

-1399940268 | 2024-05-10T21:06:47.281793

28015 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-1453516345 | 2024-05-04T15:37:09.280831

28017 / tcp

HTTP/1.1 200 OK
Connection: close
Transfer-Encoding: chunked
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN

660175493 | 2024-05-02T02:29:38.712470

28080 / tcp

819727972 | 2024-04-17T14:59:46.134953

30002 / tcp

SSH-2.0-OpenSSH_7.4

-1111515360 | 2024-05-08T17:47:56.395124

30003 / tcp

remshd: Kerberos Authentication not enabled.

756886313 | 2024-05-08T05:14:08.163237

31337 / tcp

HTTP/1.0 200 OK
Connection: close
X-Powered-By: Undertow/1
Server: JBoss-EAP/7
Content-Type: text/html

539065883 | 2024-05-01T23:06:12.079282

32764 / tcp

819727972 | 2024-05-07T18:12:28.874377

33060 / tcp

SSH-2.0-OpenSSH_7.4

1642597142 | 2024-05-09T10:42:04.425258

35000 / tcp

\x00y\xc3\x90\x02\xc3\xbf\xc3\xbf\x00s\x12L\x00\x06\x11I\x00\x08\x00N\x11S\x00\xc3\x93

-119996482 | 2024-05-03T00:31:53.367552

37215 / tcp

HTTP/1.1 408 Request Timeout
Content-Length: 0

-146605374 | 2024-05-01T07:48:09.499709

37777 / tcp

\x00[\xc2\x81\xc2\x8b\xc3\xa7\x7f\x00\x00

114471724 | 2024-05-10T18:51:13.192329

41800 / tcp

HTTP/1.1 302
X-Frame-Options: SAMEORIGIN
Server: NSX

-433302150 | 2024-05-05T08:19:58.253581

44158 / tcp

/multistream/1.0.0

-1611764932 | 2024-05-06T07:50:12.908017

44818 / tcp

\x03\x00\x00\x10\x08\x02\xc2\x80\x00}\x08\x02\xc2\x80\xc3\xa2\x14\x01\x00

171352214 | 2024-04-28T14:53:56.731154

47990 / tcp

-ERR client ip is not in whitelist

-1329831334 | 2024-04-25T13:43:12.699223

48226 / tcp

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00 \x00\x00\n04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00\\...\n

750552733 | 2024-05-03T20:49:10.397251

49152 / tcp

HTTP/1.1 500 Internal Server Error
CONTENT-LENGTH: 411
CONTENT-TYPE: text/xml; charset="utf-8"
DATE: Mon, 22 Jan 2024 16:17:13 GMT
EXT:
SERVER: Linux, UPnP/1.0, Private Upnp SDK
X-User-Agent: redsonic

1308377066 | 2024-05-09T23:50:11.119865

50000 / tcp

ncacn_http/1.0

104385780 | 2024-04-27T00:48:26.770871

50070 / tcp

ceph v2

-1681927087 | 2024-05-01T18:18:38.330443

50100 / tcp

kjnkjabhbanc283ubcsbhdc72

-358801646 | 2024-04-23T06:00:28.766736

51235 / tcp

SSH-2.0-OpenSSH_6.6.1

-1399940268 | 2024-04-20T01:02:14.885008

54138 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1911457608 | 2024-05-03T21:19:04.257523

55000 / tcp

\x00[\x00\x00\x00\x00\x00\x00

-971970408 | 2024-04-25T13:01:11.209743

55443 / tcp

1492413928 | 2024-04-15T13:23:42.017023

55553 / tcp

SSH-2.0-OpenSSH_7.5

-971970408 | 2024-05-06T03:13:09.303856

55554 / tcp

819727972 | 2024-05-06T18:02:54.042240

60129 / tcp

SSH-2.0-OpenSSH_7.4

-971970408 | 2024-05-05T17:17:11.876178

61616 / tcp

-860824904 | 2024-04-26T13:49:55.529049

62078 / tcp

\x00\x01)

112.74.1.144

Last Seen: 2024-05-10

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

2087396567 | 2024-05-05T00:31:01.946822 11 / tcp

-1729629024 | 2024-05-04T16:15:19.653379 13 / tcp

-1681927087 | 2024-04-28T19:33:27.285174 15 / tcp

1852418385 | 2024-05-03T03:39:05.388422 17 / tcp

829384519 | 2024-05-04T12:25:57.855759 19 / tcp

1210838212 | 2024-04-23T14:12:01.344636 21 / tcp

-1699556818 | 2024-05-03T16:08:10.002331 25 / tcp

2098371729 | 2024-05-08T06:28:52.297648 26 / tcp

1110767461 | 2024-04-17T13:07:03.530475 37 / tcp

2087396567 | 2024-05-08T12:49:03.353030 43 / tcp

1685693176 | 2024-04-21T20:51:08.653221 49 / tcp

1369632081 | 2024-05-07T22:36:15.579674 53 / tcp

1738069263 | 2024-05-03T10:18:02.825117 70 / tcp

627290832 | 2024-04-23T11:22:24.767547 79 / tcp

1511143740 | 2024-05-04T13:13:21.276685 80 / tcp

472902042 | 2024-04-25T16:12:23.599058 83 / tcp

320677201 | 2024-05-03T13:54:03.052410 102 / tcp

-1329831334 | 2024-05-05T17:37:27.558007 104 / tcp

937756010 | 2024-04-26T18:08:05.909003 110 / tcp

1690634669 | 2024-05-08T02:34:55.862529 111 / tcp

455076604 | 2024-05-10T04:12:00.029156 113 / tcp

141730637 | 2024-05-07T19:09:49.514263 119 / tcp

-1839934832 | 2024-04-11T19:53:51.851786 122 / tcp

820958131 | 2024-05-01T11:52:00.187301 131 / tcp

1483120365 | 2024-04-26T07:19:28.104022 135 / tcp

-398621179 | 2024-05-06T14:54:45.954540 143 / tcp

-1839934832 | 2024-05-07T23:41:05.875909 175 / tcp

-399606100 | 2024-05-07T03:20:01.744717 179 / tcp

819727972 | 2024-05-08T04:07:27.362519 195 / tcp

1911457608 | 2024-05-06T08:46:02.135588 221 / tcp

819727972 | 2024-04-27T05:05:40.147522 222 / tcp

-1718229072 | 2024-05-02T12:42:19.814119 264 / tcp

67948279 | 2024-05-09T00:17:23.661845 311 / tcp

-444830029 | 2024-04-28T01:55:41.625821 340 / tcp

811247330 | 2024-04-23T02:51:25.259286 389 / tcp

-349937125 | 2024-05-10T13:12:51.760179 427 / tcp

670368840 | 2024-05-02T13:01:40.821776 443 / tcp

550048729 | 2024-05-07T18:03:40.548344 444 / tcp

1761482307 | 2024-04-14T07:55:05.543498 450 / tcp

897328069 | 2024-05-04T21:23:13.188840 465 / tcp

2098371729 | 2024-05-05T00:33:14.562543 502 / tcp

1975288991 | 2024-04-25T07:40:58.724770 503 / tcp

1282941221 | 2024-04-22T15:20:02.993747 515 / tcp

155249582 | 2024-04-23T16:40:08.992645 548 / tcp

735639583 | 2024-05-01T12:37:34.631321 554 / tcp

1308377066 | 2024-05-09T15:51:40.825464 593 / tcp

178736976 | 2024-04-17T11:26:44.055333 631 / tcp

1255568492 | 2024-04-18T10:52:11.921250 636 / tcp

1300162323 | 2024-04-24T22:15:28.964618 666 / tcp

1504401647 | 2024-05-06T15:23:12.656355 771 / tcp

165188539 | 2024-05-10T14:14:19.412646 789 / tcp

-976882525 | 2024-05-10T10:29:10.132441 873 / tcp

-936692830 | 2024-04-15T19:08:11.033189 992 / tcp

-801484042 | 2024-05-07T11:05:06.648319 993 / tcp

-740312032 | 2024-05-09T09:49:17.547628 995 / tcp

1632932802 | 2024-05-01T09:51:57.199889 1023 / tcp

819727972 | 2024-04-27T00:53:48.445837 1025 / tcp

-303199180 | 2024-05-02T01:14:27.761371 1050 / tcp

-1399940268 | 2024-05-06T00:24:43.453320 1099 / tcp

-1399940268 | 2024-05-08T22:29:31.050223 1153 / tcp

1375509841 | 2024-04-30T18:00:27.189938 1177 / tcp

1161309183 | 2024-05-07T13:37:40.047719 1200 / tcp

819727972 | 2024-05-05T03:12:42.064947 1234 / tcp

-1375131644 | 2024-05-04T20:46:21.193151 1337 / tcp

555056254 | 2024-05-08T12:35:03.296604 1433 / tcp

-1713467553 | 2024-04-16T23:35:38.342580 1500 / tcp

819727972 | 2024-05-10T03:22:19.189205 1515 / tcp

-1184558916 | 2024-04-20T06:12:48.579677 1521 / tcp

-1189269828 | 2024-05-06T09:36:13.298738 1599 / tcp

1911457608 | 2024-05-01T05:30:10.674599 1800 / tcp

1725077471 | 2024-04-16T06:11:36.110509 1801 / tcp

-1189269828 | 2024-04-29T09:42:35.608059 1883 / tcp

-1428621233 | 2024-05-06T16:08:50.102276 1911 / tcp

2087396567 | 2024-05-05T00:31:01.946822
11 / tcp

-1729629024 | 2024-05-04T16:15:19.653379
13 / tcp

-1681927087 | 2024-04-28T19:33:27.285174
15 / tcp

1852418385 | 2024-05-03T03:39:05.388422
17 / tcp

829384519 | 2024-05-04T12:25:57.855759
19 / tcp

1210838212 | 2024-04-23T14:12:01.344636
21 / tcp

-1699556818 | 2024-05-03T16:08:10.002331
25 / tcp

2098371729 | 2024-05-08T06:28:52.297648
26 / tcp

1110767461 | 2024-04-17T13:07:03.530475
37 / tcp

2087396567 | 2024-05-08T12:49:03.353030
43 / tcp

1685693176 | 2024-04-21T20:51:08.653221
49 / tcp

1369632081 | 2024-05-07T22:36:15.579674
53 / tcp

1738069263 | 2024-05-03T10:18:02.825117
70 / tcp

627290832 | 2024-04-23T11:22:24.767547
79 / tcp

1511143740 | 2024-05-04T13:13:21.276685
80 / tcp

472902042 | 2024-04-25T16:12:23.599058
83 / tcp

320677201 | 2024-05-03T13:54:03.052410
102 / tcp

-1329831334 | 2024-05-05T17:37:27.558007
104 / tcp

937756010 | 2024-04-26T18:08:05.909003
110 / tcp

1690634669 | 2024-05-08T02:34:55.862529
111 / tcp

455076604 | 2024-05-10T04:12:00.029156
113 / tcp

141730637 | 2024-05-07T19:09:49.514263
119 / tcp

-1839934832 | 2024-04-11T19:53:51.851786
122 / tcp

820958131 | 2024-05-01T11:52:00.187301
131 / tcp

1483120365 | 2024-04-26T07:19:28.104022
135 / tcp

-398621179 | 2024-05-06T14:54:45.954540
143 / tcp

-1839934832 | 2024-05-07T23:41:05.875909
175 / tcp

-399606100 | 2024-05-07T03:20:01.744717
179 / tcp

819727972 | 2024-05-08T04:07:27.362519
195 / tcp

1911457608 | 2024-05-06T08:46:02.135588
221 / tcp

819727972 | 2024-04-27T05:05:40.147522
222 / tcp

-1718229072 | 2024-05-02T12:42:19.814119
264 / tcp

67948279 | 2024-05-09T00:17:23.661845
311 / tcp

-444830029 | 2024-04-28T01:55:41.625821
340 / tcp

811247330 | 2024-04-23T02:51:25.259286
389 / tcp

-349937125 | 2024-05-10T13:12:51.760179
427 / tcp

670368840 | 2024-05-02T13:01:40.821776
443 / tcp

550048729 | 2024-05-07T18:03:40.548344
444 / tcp

1761482307 | 2024-04-14T07:55:05.543498
450 / tcp

897328069 | 2024-05-04T21:23:13.188840
465 / tcp

2098371729 | 2024-05-05T00:33:14.562543
502 / tcp

1975288991 | 2024-04-25T07:40:58.724770
503 / tcp

1282941221 | 2024-04-22T15:20:02.993747
515 / tcp

155249582 | 2024-04-23T16:40:08.992645
548 / tcp

735639583 | 2024-05-01T12:37:34.631321
554 / tcp

1308377066 | 2024-05-09T15:51:40.825464
593 / tcp

178736976 | 2024-04-17T11:26:44.055333
631 / tcp

1255568492 | 2024-04-18T10:52:11.921250
636 / tcp

1300162323 | 2024-04-24T22:15:28.964618
666 / tcp

1504401647 | 2024-05-06T15:23:12.656355
771 / tcp

165188539 | 2024-05-10T14:14:19.412646
789 / tcp

-976882525 | 2024-05-10T10:29:10.132441
873 / tcp

-936692830 | 2024-04-15T19:08:11.033189
992 / tcp

-801484042 | 2024-05-07T11:05:06.648319
993 / tcp

-740312032 | 2024-05-09T09:49:17.547628
995 / tcp

1632932802 | 2024-05-01T09:51:57.199889
1023 / tcp

819727972 | 2024-04-27T00:53:48.445837
1025 / tcp

-303199180 | 2024-05-02T01:14:27.761371
1050 / tcp

-1399940268 | 2024-05-06T00:24:43.453320
1099 / tcp

-1399940268 | 2024-05-08T22:29:31.050223
1153 / tcp

1375509841 | 2024-04-30T18:00:27.189938
1177 / tcp

1161309183 | 2024-05-07T13:37:40.047719
1200 / tcp

819727972 | 2024-05-05T03:12:42.064947
1234 / tcp

-1375131644 | 2024-05-04T20:46:21.193151
1337 / tcp

555056254 | 2024-05-08T12:35:03.296604
1433 / tcp

-1713467553 | 2024-04-16T23:35:38.342580
1500 / tcp

819727972 | 2024-05-10T03:22:19.189205
1515 / tcp

-1184558916 | 2024-04-20T06:12:48.579677
1521 / tcp

-1189269828 | 2024-05-06T09:36:13.298738
1599 / tcp

1911457608 | 2024-05-01T05:30:10.674599
1800 / tcp

1725077471 | 2024-04-16T06:11:36.110509
1801 / tcp

-1189269828 | 2024-04-29T09:42:35.608059
1883 / tcp

-1428621233 | 2024-05-06T16:08:50.102276
1911 / tcp

104385780 | 2024-04-22T00:12:36.115262
1925 / tcp

-1626979812 | 2024-04-26T23:19:33.607150
1926 / tcp

-2089734047 | 2024-05-06T08:30:55.740836
1962 / tcp

-1399940268 | 2024-05-07T05:11:24.446308
2000 / tcp

-441419608 | 2024-05-04T18:46:00.375122
2002 / tcp

2087396567 | 2024-05-08T10:10:24.499379
2008 / tcp

1911457608 | 2024-04-23T17:44:06.275320
2048 / tcp