GeneralInformation

Country	China
City	Shenzhen
Organization	Aliyun Computing Co., LTD
ISP	Hangzhou Alibaba Advertising Co.,Ltd.
ASN	AS37963

WebTechnologies

IaaS

Alibaba Cloud Object Storage Service

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-51767	OpenSSH through 9.6, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the integer value of authenticated in mm_answer_authpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim co-location in which the attacker has user privileges.
CVE-2023-51385	In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name.
CVE-2023-51384	In ssh-agent in OpenSSH before 9.6, certain destination constraints can be incompletely applied. When destination constraints are specified during addition of PKCS#11-hosted private keys, these constraints are only applied to the first key, even if a PKCS#11 token returns multiple keys.
CVE-2023-48795	The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.
CVE-2023-38408	The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forwarded to an attacker-controlled system. (Code in /usr/lib is not necessarily safe for loading into ssh-agent.) NOTE: this issue exists because of an incomplete fix for CVE-2016-10009.
CVE-2021-41617	4.4sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with group memberships of the sshd process, if the configuration specifies running the command as a different user.
CVE-2021-36368	2.6An issue was discovered in OpenSSH before 8.9. If a client is using public-key authentication with agent forwarding but without -oLogLevel=verbose, and an attacker has silently modified the server to support the None authentication option, then the user cannot determine whether FIDO authentication is going to confirm that the user wishes to connect to that server, or that the user wishes to allow that server to connect to a different server on the user's behalf. NOTE: the vendor's position is "this is not an authentication bypass, since nothing is being bypassed.
CVE-2020-15778	6.8scp in OpenSSH through 8.3p1 allows command injection in the scp.c toremote function, as demonstrated by backtick characters in the destination argument. NOTE: the vendor reportedly has stated that they intentionally omit validation of "anomalous argument transfers" because that could "stand a great chance of breaking existing workflows."
CVE-2020-14145	4.3The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts (where no host key for the server has been cached by the client). NOTE: some reports state that 8.5 and 8.6 are also affected.
CVE-2019-6111	5.8An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned (only directory traversal attacks are prevented). A malicious scp server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the scp client target directory. If recursive operation (-r) is performed, the server can manipulate subdirectories as well (for example, to overwrite the .ssh/authorized_keys file).
CVE-2019-6110	4.0In OpenSSH 7.9, due to accepting and displaying arbitrary stderr output from the server, a malicious server (or Man-in-The-Middle attacker) can manipulate the client output, for example to use ANSI control codes to hide additional files being transferred.
CVE-2019-6109	4.0An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-The-Middle attacker) can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This affects refresh_progress_meter() in progressmeter.c.
CVE-2018-20685	2.6In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the target directory on the client side.
CVE-2018-15919	5.0Remotely observable behaviour in auth-gss2.c in OpenSSH through 7.8 could be used by remote attackers to detect existence of users on a target system when GSS2 is in use. NOTE: the discoverer states 'We understand that the OpenSSH developers do not want to treat such a username enumeration (or "oracle") as a vulnerability.'
CVE-2018-15473	5.0OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout for an invalid authenticating user until after the packet containing the request has been fully parsed, related to auth2-gss.c, auth2-hostbased.c, and auth2-pubkey.c.
CVE-2017-15906	5.0The process_open function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write operations in readonly mode, which allows attackers to create zero-length files.
CVE-2016-3115	5.5Multiple CRLF injection vulnerabilities in session.c in sshd in OpenSSH before 7.2p2 allow remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data, related to the (1) do_authenticated1 and (2) session_x11_req functions.
CVE-2016-20012	4.3OpenSSH through 8.7 allows remote attackers, who have a suspicion that a certain combination of username and public key is known to an SSH server, to test whether this suspicion is correct. This occurs because a challenge is sent only when that combination could be valid for a login session. NOTE: the vendor does not recognize user enumeration as a vulnerability for this product
CVE-2016-1908	7.5The client in OpenSSH before 7.2 mishandles failed cookie generation for untrusted X11 forwarding and relies on the local X11 server for access-control decisions, which allows remote X11 clients to trigger a fallback and obtain trusted X11 forwarding privileges by leveraging configuration issues on this X11 server, as demonstrated by lack of the SECURITY extension on this X11 server.
CVE-2016-10708	5.0sshd in OpenSSH before 7.4 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an out-of-sequence NEWKEYS message, as demonstrated by Honggfuzz, related to kex.c and packet.c.
CVE-2016-10012	7.2The shared memory manager (associated with pre-authentication compression) in sshd in OpenSSH before 7.4 does not ensure that a bounds check is enforced by all compilers, which might allows local users to gain privileges by leveraging access to a sandboxed privilege-separation process, related to the m_zback and m_zlib data structures.
CVE-2016-10011	2.1authfile.c in sshd in OpenSSH before 7.4 does not properly consider the effects of realloc on buffer contents, which might allow local users to obtain sensitive private-key information by leveraging access to a privilege-separated child process.
CVE-2016-10010	6.9sshd in OpenSSH before 7.4, when privilege separation is not used, creates forwarded Unix-domain sockets as root, which might allow local users to gain privileges via unspecified vectors, related to serverloop.c.
CVE-2016-10009	7.5Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH before 7.4 allows remote attackers to execute arbitrary local PKCS#11 modules by leveraging control over a forwarded agent-socket.
CVE-2016-0777	4.0The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffer, as demonstrated by reading a private key.
CVE-2015-6564	6.9Use-after-free vulnerability in the mm_answer_pam_free_ctx function in monitor.c in sshd in OpenSSH before 7.0 on non-OpenBSD platforms might allow local users to gain privileges by leveraging control of the sshd uid to send an unexpectedly early MONITOR_REQ_PAM_FREE_CTX request.
CVE-2015-6563	1.9The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous username data in MONITOR_REQ_PAM_INIT_CTX requests, which allows local users to conduct impersonation attacks by leveraging any SSH login access in conjunction with control of the sshd uid to send a crafted MONITOR_REQ_PWNAM request, related to monitor.c and monitor_wrap.c.
CVE-2015-5600	8.5The kbdint_next_device function in auth2-chall.c in sshd in OpenSSH through 6.9 does not properly restrict the processing of keyboard-interactive devices within a single connection, which makes it easier for remote attackers to conduct brute-force attacks or cause a denial of service (CPU consumption) via a long and duplicative list in the ssh -oKbdInteractiveDevices option, as demonstrated by a modified client that provides a different password for each pam element on this list.
CVE-2015-5352	4.3The x11_open_helper function in channels.c in ssh in OpenSSH before 6.9, when ForwardX11Trusted mode is not used, lacks a check of the refusal deadline for X connections, which makes it easier for remote attackers to bypass intended access restrictions via a connection outside of the permitted time window.
CVE-2014-2653	5.8The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptable HostCertificate.
CVE-2014-2532	5.8sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshd_config, which allows remote attackers to bypass intended environment restrictions by using a substring located before a wildcard character.
CVE-2014-1692	7.5The hash_buffer function in schnorr.c in OpenSSH through 6.4, when Makefile.inc is modified to enable the J-PAKE protocol, does not initialize certain data structures, which might allow remote attackers to cause a denial of service (memory corruption) or have unspecified other impact via vectors that trigger an error condition.
CVE-2012-0814	3.5The auth_parse_options function in auth-options.c in sshd in OpenSSH before 5.7 provides debug messages containing authorized_keys command options, which allows remote authenticated users to obtain potentially sensitive information by reading these messages, as demonstrated by the shared user account required by Gitolite. NOTE: this can cross privilege boundaries because a user account may intentionally have no shell or filesystem access, and therefore may have no supported way to read an authorized_keys file in its own home directory.
CVE-2011-5000	3.5The ssh_gssapi_parse_ename function in gss-serv.c in OpenSSH 5.8 and earlier, when gssapi-with-mic authentication is enabled, allows remote authenticated users to cause a denial of service (memory consumption) via a large value in a certain length field. NOTE: there may be limited scenarios in which this issue is relevant.
CVE-2011-4327	2.1ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information via the ptrace system call.
CVE-2010-5107	5.0The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a TCP connection and completing a login, which makes it easier for remote attackers to cause a denial of service (connection-slot exhaustion) by periodically making many new TCP connections.
CVE-2010-4755	4.0The (1) remote_glob function in sftp-glob.c and the (2) process_put function in sftp.c in OpenSSH 5.8 and earlier, as used in FreeBSD 7.3 and 8.1, NetBSD 5.0.2, OpenBSD 4.7, and other products, allow remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames, as demonstrated by glob expressions in SSH_FXP_STAT requests to an sftp daemon, a different vulnerability than CVE-2010-2632.
CVE-2010-4478	7.5OpenSSH 5.6 and earlier, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, which allows remote attackers to bypass the need for knowledge of the shared secret, and successfully authenticate, by sending crafted values in each round of the protocol, a related issue to CVE-2010-4252.
CVE-2008-3844	9.3Certain Red Hat Enterprise Linux (RHEL) 4 and 5 packages for OpenSSH, as signed in August 2008 using a legitimate Red Hat GPG key, contain an externally introduced modification (Trojan Horse) that allows the package authors to have an unknown impact. NOTE: since the malicious packages were not distributed from any official Red Hat sources, the scope of this issue is restricted to users who may have obtained these packages through unofficial distribution points. As of 20080827, no unofficial distributions of this software are known.
CVE-2007-2768	4.3OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, allows remote attackers to determine the existence of certain user accounts, which displays a different response if the user account exists and is configured to use one-time passwords (OTP), a similar issue to CVE-2007-2243.

OpenPorts

11 13 15 17 19 21 23 25 26 37 43 49 53 79 80 82 83 84 97 99 100 102 104 110 119 122 135 143 175 179 195 221 264 311 389 427 444 465 503 515 541 548 554 593 631 636 666 685 771 789 800 805 806 873 992 993 999 1012 1023 1024 1025 1028 1099 1153 1167 1177 1200 1234 1311 1337 1400 1433 1494 1515 1521 1599 1604 1723 1741 1800 1801 1883 1911 1925 1926 1951 1962 2000 2002 2008 2010 2012 2050 2067 2079 2081 2082 2083 2087 2121 2154 2181 2201 2222 2323 2332 2345 2375 2376 2404 2455 2480 2560 2761 2762 3001 3048 3050 3085 3109 3129 3260 3268 3269 3299 3301 3306 3310 3352 3388 3389 3401 3408 3409 3541 3542 3551 3554 3559 3560 3690 3749 3780 3952 4000 4022 4040 4042 4063 4064 4117 4157 4242 4282 4321 4369 4433 4443 4500 4506 4734 4747 4786 4840 4899 4911 4949 5001 5004 5006 5007 5009 5010 5025 5172 5201 5222 5269 5432 5435 5454 5567 5672 5673 5822 5858 5900 5906 5938 5984 5985 5986 5990 6000 6001 6002 6004 6080 6379 6443 6503 6510 6605 6633 6653 6666 6667 6668 6697 7001 7002 7071 7171 7218 7401 7415 7434 7443 7444 7535 7548 7657 7998 8001 8009 8012 8019 8023 8027 8037 8055 8060 8071 8081 8083 8085 8087 8089 8095 8099 8101 8104 8107 8111 8123 8126 8139 8140 8180 8181 8241 8252 8291 8333 8407 8415 8422 8429 8432 8443 8446 8500 8554 8575 8623 8637 8700 8728 8765 8766 8784 8788 8803 8804 8820 8823 8830 8834 8838 8840 8849 8850 8852 8861 8865 8867 8880 8881 8885 8888 8890 9000 9001 9002 9021 9039 9042 9048 9050 9051 9070 9091 9092 9095 9100 9105 9119 9136 9151 9160 9201 9295 9302 9306 9418 9443 9530 9600 9633 9761 9800 9943 9997 9998 9999 10000 10134 10443 10554 10909 10911 11000 11112 11210 11211 11300 12000 12345 14147 14265 14344 16992 16993 18081 18245 18553 19000 19071 20000 20256 20547 21025 21379 23023 25001 25565 27015 27017 28015 28080 28107 30002 30003 31337 32764 33060 35000 37777 44158 44818 47990 49152 49153 50000 50070 50100 51106 51235 54138 55000 55443 55553 55554 60129 61613

366084633 | 2024-04-22T13:44:29.198619

11 / tcp

<HTML><HEAD><TITLE>Error</TITLE></HEAD><BODY><H1>Error</H1>Bad request or resource not found.</BODY></HTML>

-1036370807 | 2024-03-29T04:40:48.711688

13 / tcp

JDWP-Handshake

1212921144 | 2024-04-23T08:51:52.300868

15 / tcp

0@

268196945 | 2024-04-24T02:35:17.170544

17 / tcp

AB\x01

829384519 | 2024-04-23T16:07:36.862739

19 / tcp

 !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefg
!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUV

2116898107 | 2024-04-19T01:21:50.301439

21 / tcp

220 (vsFTPd 3.0.2)

-2107996212 | 2024-04-20T15:48:21.785646

23 / tcp

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

921225407 | 2024-04-24T06:03:37.978116

25 / tcp

\x00\x00\x00\x04\x00\x00\x00\x00\x00

51259122 | 2024-04-02T16:49:38.204169

26 / tcp

\r\nCP2E Control Console\r\nConnected to Host: gZI\r\n

1472866667 | 2024-04-22T01:35:32.051994

37 / tcp

AB\\x01\t

-971970408 | 2024-04-16T18:30:39.101064

43 / tcp

588096080 | 2024-04-17T16:06:06.673277

49 / tcp

\\x00\\x00\\x01\\x00

-1370420049 | 2024-04-25T10:38:13.243334

53 / tcp

9
\x81\x80\x00\x01\x00\x02\x00\x00\x00\x00\x08clients1\x06google\x03com\x00\x00\x01\x00\x01\xc0\x00\x05\x00\x01\x00\x00\x00\x02\x00\x07clients\x01l\xc0\x15\xc01\x00\x01\x00\x01\x00\x00\x00\x02\x00\x04\xac٣.
\x00\x06\x85\x00\x00\x01\x00\x00\x00\x01\x00

-1770051369 | 2024-04-19T02:48:37.814422

79 / tcp

421 too many connections

-1016177802 | 2024-04-16T15:25:09.616260

80 / tcp

HTTP/1.1 403 Forbidden
Server: AliyunOSS
Date: Tue, 16 Apr 2024 15:25:09 GMT
Content-Type: application/xml
Content-Length: 347
Connection: keep-alive
x-oss-request-id: 661E98552A751938377BB754
x-oss-server-time: 0
x-oss-ec: 0003-00001201

-1344535834 | 2024-04-13T16:06:32.445863

82 / tcp

HTTP/1.0 200 OK
Server: Proxy

1261582754 | 2024-04-12T13:02:25.393679

83 / tcp

unknown command 
unknown command

104385780 | 2024-04-23T03:59:47.848526

84 / tcp

ceph v2

-1428621233 | 2024-04-12T19:40:04.571167

97 / tcp

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

636169965 | 2024-04-11T17:10:36.075136

99 / tcp

HTTP/1.1 400 Bad Request
Server: Jdcloud-FE
Content-Type: application/octet-stream
Connection: keep-alive
Keep-Alive: timeout=20

-1279886438 | 2024-03-31T19:28:35.170802

100 / tcp

GET / HTTP/1.0 : USERID : UNIX : TKUXZmP\r\n : USERID : UNIX : Cr8\r\n

1126993057 | 2024-04-21T19:10:48.542715

102 / tcp

* OK [CAPABILITY a2,M\\] nBwXk2pPP IMAP4rev1 20qx at

-1399940268 | 2024-04-25T12:43:50.325797

104 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-653033013 | 2024-04-25T00:20:36.776818

110 / tcp

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

141730637 | 2024-04-12T01:45:50.931507

119 / tcp

HTTP/1.0 200 OK
Server: Proxy

1723769361 | 2024-04-04T15:43:42.450116

122 / tcp

ELM Enterprise Manager _l\r\nCopyright \xc2\xa9 18668511-928641920 TNT Software, Inc.\r\n

1302177452 | 2024-04-15T08:10:14.984628

135 / tcp

\\x05\\x00\r\\x03\\x10\\x00\\x00\\x00\\x18\\x00\\x00\\x00\\x01\\x00\\x00\\x00\\x04\\x00\\x01\\x05\\x00\\x00\\x00\\x00\n\nServerAlive2: \n IP1: Lou\n IP2: 192.168.5.66\n IP3: 240e:381:1b0a:900:40eb:cce6:2dc1:4045\n IP4: 240e:381:1b0a:900:504f:3a1f:a682:9ab5\n IP5: 240e:381:1b0a:900::2e6\n\nNTLMSSP:\nTarget_Name: LOU\nProduct_Version: 10.0.22621 Ntlm 15\nOS: Windows 11, Version 22H2\nNetBIOS_Domain_Name: LOU\nNetBIOS_Computer_Name: LOU\nDNS_Domain_Name: Lou\nDNS_Computer_Name: Lou\nMsvAvFlags: 01000000\nSystem_Time: 2024-01-22 04:06:53 +0000 UTC\n\nDCE

-382990917 | 2024-04-20T21:10:30.331528

143 / tcp

* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot ready.\r\n

1381121983 | 2024-04-18T05:52:28.870042

175 / tcp

Notify\r\n

-399606100 | 2024-03-28T06:25:26.330524

179 / tcp

BGP Message\nType: 3\nMajor error Code: 6\nMinor error Code: 5\n

819727972 | 2024-04-23T05:12:43.742666

195 / tcp

SSH-2.0-OpenSSH_7.4

1911457608 | 2024-04-09T15:45:01.095653

221 / tcp

\x00[\x00\x00\x00\x00\x00\x00

-1180827859 | 2024-04-09T23:57:47.144867

264 / tcp

CheckPoint\nFirewall Host: SKIET_LIBS1_INT_FW_SG5400_1\nSmartCenter Host: SKIET_LIBS1_MGMT_FW_NGSM10..umxpwy\\x00\n

-1547976805 | 2024-04-25T10:57:47.142441

311 / tcp

HTTP/1.1 403 Forbidden
Server: nginx
Content-Type: text/html
Connection: close

-1639129386 | 2024-04-19T08:39:55.394186

389 / tcp

0%\\x02\\x01\\x01a \n\\x010\\x04\\x00\\x04\\x19anonymous bind disallowed

-349937125 | 2024-04-17T06:05:23.955057

427 / tcp

SAAdvert Response:\nVersion: 2\nFunction: SA Advertisement (11)\nURL: service:service-agent://192.168.118.88\nScopeList: default\nAttrributeList: \n\n\nserviceTypes:\nservice:VMwareInfrastructure\nservice:wbem:https\n\nResponse of service:VMwareInfrastructure SrvReq:\nVersion: 2\nFunction: Service Reply (2)\nErrorCode: SUCCESS (0)\nURL Entries:\n  Lifetime: 65535\n  URL: service:VMwareInfrastructure://192.168.118.88\n\n\nResponse of service:VMwareInfrastructure AttrRqst:\nVersion: 2\nFunction: Attribute Reply (7)\nErrorCode: SUCCE

-971970408 | 2024-04-21T19:18:45.405898

444 / tcp

897328069 | 2024-04-01T13:41:36.116763

465 / tcp

220 mail.scott000.com ESMTP

-1399940268 | 2024-03-26T15:11:38.513551

503 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1850902677 | 2024-04-10T10:05:06.837182

515 / tcp

W!

268285291 | 2024-04-11T15:44:34.343246

541 / tcp

\\x16\\x03\\x01\\x01[\\x01\\x00\\x01W\\x03\\x03\\x86\\x12J\\xac\\xf6e\\xda\\x19A\\xcb\\x18qz\\x90\\xb2\\x89\\xfa\\xa2\\x83\\xf8\\xda\\xfe\xcd\x8d\\x89P\\xe96\\x93@\xcc\xbf E{@\\x8c\\xde\\xbf\\xf84x\x0c\\xb3\x0b\\x91\\x12\\xbc\\xa6\\xe5\\x17\\xe4\\xba\\xe2q\\x92\\xc7\\xdb\\x01\\x129L\\xc6ey\\x002\\x13\\x02\\x13\\x03\\x13\\x01\\x

1801869778 | 2024-04-24T00:53:41.401306

548 / tcp

Fast Copy: Yes\nExtended Sleep: Yes\nUUIDs: Yes\nUTF8 Server Name: Yes\nDirectory Services: Yes\nReconnect: No\nServer Notifications: Yes\nTCP/IP: Yes\nServer Signature: Yes\nServer Message: No\nPassword Saving Prohibited: No\nPassword Changing: No\nCopy File: Yes\nServer Name: DS1019Plus\nMachine Type: \rNetatalk3.1.8\nAFP Versions: AFP2.2, AFPX03, AFP3.1, AFP3.2, AFP3.3, AFP3.4\nUAMs: Cleartxt Passwrd\\x04,DHX2\t,DHCAST128\\x00\nServer Signature: 00000000008002000180030002800280

285770450 | 2024-04-24T05:25:39.804665

554 / tcp

RTSP/1.0 401 Unauthorized
CSeq: 1

1308377066 | 2024-04-24T23:12:39.020270

593 / tcp

ncacn_http/1.0

-1316491703 | 2024-04-03T01:56:39.635123

631 / tcp

200 ArGoSoft News Server for WinNT/2000/XP v 59869648 ready

1732481781 | 2024-04-24T09:04:45.917304

636 / tcp

HTTP/1.1 400 Bad Request
Content-Type: text/html
Cache-Control: no-cache, no-store
Connection: close
X-Iinfo: 8-38284903-0 0NNN RT(1705909933705 166) q(-1 -1 -1 -1) r(0 -1) b1

-1960639992 | 2024-04-11T08:06:57.933587

666 / tcp

HTTP/1.1 401 Unauthorized

-1428621233 | 2024-03-27T15:57:28.648694

685 / tcp

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

-1888448627 | 2024-04-24T02:46:02.563209

771 / tcp

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

-2096652808 | 2024-04-17T23:40:59.494908

789 / tcp

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

-1175496255 | 2024-04-10T07:34:55.428390

800 / tcp

HTTP/1.1 403 Forbidden
Server: sundray
Content-Type: text/html
Connection: keep-alive

819727972 | 2024-04-17T23:20:52.858731

805 / tcp

SSH-2.0-OpenSSH_7.4

-1598265216 | 2024-03-28T01:02:16.453147

806 / tcp

@RSYNCD: 31.0

-1970692834 | 2024-04-24T05:14:23.112797

873 / tcp

@RSYNCD: 31.0\n@RSYNCD: EXIT\n

-1242315829 | 2024-04-24T18:15:45.052726

992 / tcp

HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Location: /app/
Permissions-Policy: autoplay=(), camera=(), microphone=(), usb=()
Referrer-Policy: same-origin
Vary: Origin
X-Content-Type-Options: nosniff
X-Frame-Options: DENY

819727972 | 2024-04-21T23:21:12.278302

993 / tcp

SSH-2.0-OpenSSH_7.4

1877619804 | 2024-04-08T05:11:19.845055

999 / tcp

HTTP/1.1 503 Service Unavailable
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Connection: close

-1327660293 | 2024-04-17T02:05:34.738349

1012 / tcp

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

546151771 | 2024-04-21T02:12:21.876724

1023 / tcp

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC
Clients:
/*.*.*.*:11264[0](queued=0,recved=1,sent=0)

Latency min/avg/max: 0/0.0/0
Received: 8557
Sent: 11410
Connections: 1
Outstanding: 0
Zxid: 0x332907ad3391
Mode: follower
Node count: 104618

1778988322 | 2024-03-30T19:12:01.460041

1024 / tcp

* OK GroupWise IMAP4rev1 Server Ready

-1746074029 | 2024-04-20T16:22:20.284602

1025 / tcp

101 imqbroker =unV\r\n

-2089734047 | 2024-04-11T21:40:16.019583

1028 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

819727972 | 2024-04-12T05:16:42.318810

1099 / tcp

SSH-2.0-OpenSSH_7.4

15018106 | 2024-04-13T02:40:52.880780

1153 / tcp

\x00\x19\x02\x00\x02\x00\x07\x00Protocol version mismatch\x00

-1399940268 | 2024-04-18T14:10:22.307440

1167 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1842524259 | 2024-04-25T02:22:23.760915

1177 / tcp

-2046514463 | 2024-04-19T01:44:29.880142

1200 / tcp

AB\x01\t

677934968 | 2024-04-22T04:22:15.100585

1234 / tcp

lm^)Q

660175493 | 2024-04-05T10:15:01.925340

1311 / tcp

-971970408 | 2024-04-24T18:55:39.543648

1337 / tcp

-1453516345 | 2024-04-09T01:00:22.258149

1400 / tcp

HTTP/1.1 200 OK
Connection: close
Transfer-Encoding: chunked
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN

-182670276 | 2024-04-08T17:30:15.781544

1433 / tcp

MSSQL Server\nVersion: 171050560 (0xa320640)\nSub-Build: 0\nEncryption:Not available\n\nMSSQL NTLM Info:\nTarget_Name: IZJ6FUBS9PLYUOZ\nProduct_Version: 6.3.9600 Ntlm 15\nOS: Windows 8.1/Windows Server 2012 R2\nNetBIOS_Domain_Name: IZJ6FUBS9PLYUOZ\nNetBIOS_Computer_Name: IZJ6FUBS9PLYUOZ\nDNS_Domain_Name: iZj6fubs9plyuoZ\nDNS_Computer_Name: iZj6fubs9plyuoZ\nSystem_Time: 2024-01-22 03:53:09 +0000 UTC\n\n

-1049213899 | 2024-04-23T23:09:09.764532

1494 / tcp

\\x7f\\x7fICA

539065883 | 2024-04-24T18:57:21.824706

1515 / tcp

-541815454 | 2024-04-24T20:42:44.778660

1521 / tcp

Version:11.2.0.1.0\n"\\x00\\x00Y(DESCRIPTION=(TMP=)(VSNNUM=186646784)(ERR=1189)(ERROR_STACK=(ERROR=(CODE=1189)(EMFI=4))))

2087396567 | 2024-04-22T15:28:57.720335

1599 / tcp

kjnkjabhbanc283ubcsbhdc72

550048729 | 2024-04-17T21:02:15.951328

1604 / tcp

ÿÿÿ
0 ...

-1608241410 | 2024-04-20T10:51:09.757981

1723 / tcp

Firmware: 1\nHostname: local\nVendor: linux\n

-2081419599 | 2024-04-13T00:31:12.874066

1741 / tcp

@
03d

921225407 | 2024-04-23T23:20:07.635725

1800 / tcp

\x00\x00\x00\x04\x00\x00\x00\x00\x00

1725077471 | 2024-04-09T20:05:25.339515

1801 / tcp

\\x10Z\x0b\\x00LIOR<\\x02\\x00\\x00\\xff\\xff\\xff\\xff\\x00\\x00\\x12\\x00a36a0e421af47074\\x92\\xb4\\xd9\\x13@w\\xa5F\\xbf\\xbd_\\x00\\xe9(Z\\x1992d3\\x10\\x03\\x00\\x00ZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ

-2080784861 | 2024-04-15T01:02:23.660997

1883 / tcp

GBPK\xc3\xbb\xc3\xb7n\xc2\x93W\xc2\xaf\xc2\x86\xc2\x93x@\xc2\xa9\x0e\xc3\x8a*\xc2\x9bS\x00

-1399940268 | 2024-04-23T12:38:32.548295

1911 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-1760806421 | 2024-04-15T11:18:23.482287

1925 / tcp

protocolErrorInf error=Missing hw string from : null. Check hardware state=disconnected

-2031152423 | 2024-04-23T09:20:12.579523

1926 / tcp

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

1911457608 | 2024-03-28T01:30:03.599002

1951 / tcp

\x00[\x00\x00\x00\x00\x00\x00

1911457608 | 2024-04-11T13:34:54.491212

1962 / tcp

\x00[\x00\x00\x00\x00\x00\x00

819727972 | 2024-04-13T14:34:39.173785

2000 / tcp

SSH-2.0-OpenSSH_7.4

-1681927087 | 2024-04-08T08:32:35.028027

2002 / tcp

kjnkjabhbanc283ubcsbhdc72

585675468 | 2024-04-01T23:00:38.178101

2008 / tcp

@
05@ þ...

-1899074860 | 2024-04-25T12:07:39.726894

2010 / tcp

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00\x00\x00\n03\x00\x00\x00d\x00\x04\x00\x01\x00\x00\x00\x00\x04\x08\x00\x00\x00\n

1763259671 | 2024-04-19T23:10:19.083034

2012 / tcp

{\n"Version": "3.4.18",\n"VersionArray": [\n3,\n4,\n18,\n0\n],\n"GitVersion": "4410706bef6463369ea2f42399e9843903b31923",\n"OpenSSLVersion": "",\n"SysInfo": "",\n"Bits": 64,\n"Debug": false,\n"MaxObjectSize": 16777216\n}\n\n

-345718689 | 2024-04-10T21:35:50.198176

2050 / tcp

Vty password is not set.

2087396567 | 2024-04-01T15:37:30.760070

2067 / tcp

kjnkjabhbanc283ubcsbhdc72

-303199180 | 2024-04-18T05:48:37.312832

2079 / tcp

Content-Type: text/rude-rejection\nContent-Length: 24\n\n\nAccess Denied, go away.\nContent-Type: text/disconnect-notice\nC...\n

1911457608 | 2024-04-17T18:43:47.172661

2081 / tcp

\x00[\x00\x00\x00\x00\x00\x00

1072892569 | 2024-03-31T18:31:11.329537

2082 / tcp

HTTP/1.0 403 Access denied
Server: tinyproxy/1.8.3
0AContent-Type: text/html
Connection: close

-1795027372 | 2024-04-25T02:52:03.721733

2083 / tcp

\xc3\xbf\xc3\xbd"\r\nLinuxNode v06953 (ggfks)\r\n\r\nlogin:

104385780 | 2024-04-19T02:11:11.264502

2087 / tcp

ceph v2

2047379038 | 2024-04-19T00:38:46.005802

2121 / tcp

220 RS820Plus FTP server ready.

-1881409212 | 2024-04-17T03:19:28.763730

2154 / tcp

[ò

546151771 | 2024-04-24T14:05:59.401576

2181 / tcp

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC
Clients:
/*.*.*.*:11264[0](queued=0,recved=1,sent=0)

Latency min/avg/max: 0/0.0/0
Received: 8557
Sent: 11410
Connections: 1
Outstanding: 0
Zxid: 0x332907ad3391
Mode: follower
Node count: 104618

-358801646 | 2024-04-04T13:42:18.741671

2201 / tcp

SSH-2.0-OpenSSH_6.6.1

-1152923582 | 2024-04-21T08:02:44.585468

2222 / tcp

SSH-2.0-dropbear\r\n\\x00\\x00\\x01\\x84\\x07\\x14\\x82q\\xf3\\x1aG*9\\xe9\\xf7O\xc9\xad#\\xbbpG\\x00\\x00\\x00\\x82curve25519-sha256,curve25519-sha256@libssh.org,diffie-hellman-group14-sha256,diffie-hellman-group14-sha1,kexguess2@matt.ucc.asn.au\\x00\\x00\\x00 ssh-ed25519,rsa-sha2-256,ssh-rsa\\x00\\x00\\x003chacha20-poly1305@openssh.com,aes128-ctr,aes256-ctr\\x00\\x00\\x003chacha20-poly1305@openssh.com,aes128-ctr,aes256-ctr\\x00\\x00\\x00\\x17hmac-sha1,hmac-sha2-256\\x00\\x00\\x00\\x17hmac-sha1,hmac-sha2-256\\x00\\x00\\x00\\x04none\\x00\\x00\\x00\\x04non

1662205251 | 2024-04-23T22:09:36.424798

2323 / tcp

HTTP/1.0 404 FAIL
Content-length:5
Connection:Close

819727972 | 2024-04-24T05:25:48.603870

2332 / tcp

SSH-2.0-OpenSSH_7.4

1911457608 | 2024-04-23T04:58:53.965459

2345 / tcp

\x00[\x00\x00\x00\x00\x00\x00

660175493 | 2024-04-20T03:36:03.539171

2375 / tcp

-747911285 | 2024-04-17T09:30:03.741355

2376 / tcp

\xc2\xaa

-1888448627 | 2024-04-11T02:12:01.123622

2404 / tcp

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

1778988322 | 2024-04-18T18:24:39.393072

2455 / tcp

* OK GroupWise IMAP4rev1 Server Ready

842535728 | 2024-04-24T07:21:08.560445

2480 / tcp

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>
A<!DOCTYPE GANGLIA_XML [
   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...

-1399940268 | 2024-03-27T17:47:19.625145

2560 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1975288991 | 2024-04-10T13:25:25.175491

2761 / tcp

OPTI

-2089734047 | 2024-04-10T16:15:12.911057

2762 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

165188539 | 2024-04-16T18:35:00.137070

3001 / tcp

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

-1097188123 | 2024-04-16T09:40:10.081602

3048 / tcp

[g\xc2\x95N\x7f

-2089734047 | 2024-04-15T10:55:49.772676

3050 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

1911457608 | 2024-04-22T13:41:50.157274

3085 / tcp

\x00[\x00\x00\x00\x00\x00\x00

820958131 | 2024-04-10T21:43:48.149032

3109 / tcp

kjnkjabhbanc283ubcsbhdc72\x02

-1026951088 | 2024-04-01T21:19:02.607132

3129 / tcp

erro ip

-1914158197 | 2024-04-22T13:22:37.935211

3260 / tcp

HTTP/1.1 500 Internal Server Error
Server: nginx/1.18.11011 (Ubuntu)
Content-Type: text/plain; charset=utf-8
Connection: close

-879070264 | 2024-04-15T06:37:06.552992

3268 / tcp

\\xab\xca\xa5]\\x00\\x00\\x00\\x18\\xc0\\x00\\x00\\x01\\xff\\xff\\xff\\xff\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00

-980525298 | 2024-04-18T22:56:38.616014

3269 / tcp

\x01\x00\x00\x00\n\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

841014058 | 2024-04-11T18:55:38.318587

3299 / tcp

Hello, this is FRRouting (version 4.0).

Copyright 19
96-2005 Kunihiro Ishiguro, et al.




Use...

-1428621233 | 2024-04-20T18:22:53.889969

3301 / tcp

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

-1036944024 | 2024-04-24T11:07:26.893833

3306 / tcp

F\\x00\\x00\\x00\\xffj\\x04Host \'*.*.*.*\' is not allowed to connect to this MySQL server

321971019 | 2024-04-25T08:00:48.579451

3310 / tcp

-ERR client ip is not in whitelist\r

-1045760528 | 2024-04-11T10:00:52.706465

3352 / tcp

HTTP/1.1 302 Found
Connection: close
Location: http://*.*.*.*/solr/

-1810987450 | 2024-04-20T12:59:51.889728

3388 / tcp

\xc3\xbf

740837454 | 2024-04-25T01:31:34.692646

3389 / tcp

SSH-2.0-OpenSSH_5.3

-1230049476 | 2024-04-20T02:39:21.768530

3401 / tcp

HTTP/1.0 200 OK
Connection: close
X-Powered-By: Undertow/1
Server: JBoss-EAP/7
Content-Type: text/html
Content-Length: 98
Accept-Ranges: bytes

1363464823 | 2024-03-29T15:30:09.178076

3408 / tcp

\x00[|ox\x7f\x00\x00

-1099385124 | 2024-04-18T15:54:32.095512

3409 / tcp

"Magic:ActiveMQ\nVersion:12\n\x00\x00\x01<\x01ActiveMQ\x00\x00\x00\x0c\x01\x00\x00\x01*\x00\x00\x00\x0c\x00\x11TcpNoDelayEnabled\x01\x01\x00\x12SizePrefixDisabled\x01\x00\x00 CacheSize\x05\x00\x00\x04\x00\x00\x0cProviderName \x00\x08ActiveMQ\x00\x11StackTraceEnabled\x01\x01\x00\x0fPlatformDetails \x00\x04Java\x00\x0cCacheEnabled\x01\x01\x00\x14TightEncodingEnabled\x01\x01\x00\x0cMaxFrameSize\x06\x00\x00\x00\x00\x06@\x00\x00\x00\x15MaxInac

770016595 | 2024-04-17T09:09:31.428621

3541 / tcp

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache

550048729 | 2024-04-15T14:15:14.909471

3542 / tcp

ÿÿÿ
0 ...

198844676 | 2024-04-21T20:41:21.755960

3551 / tcp

HTTP/1.1 404 Not Found
Server: Jetty/9.4.31.v20200723
Content-Type: text/plain; charset=utf-8
Connection: close

165188539 | 2024-04-21T20:38:22.122141

3554 / tcp

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

-1399940268 | 2024-03-29T18:18:38.309079

3559 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-1399940268 | 2024-04-19T19:52:58.616901

3560 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-891714208 | 2024-04-05T03:15:46.795720

3690 / tcp

( success ( 2 2 ( ) ( edit-pipeline svndiff1 absent-entries com\nmit-revprops depth log-revprops partial-replay ) ) )

104385780 | 2024-04-12T19:00:02.040057

3749 / tcp

ceph v2

1830187220 | 2024-04-20T14:58:29.706549

3780 / tcp

\xc3\xbf\xc3\xbb\x01\r\n-> GET / HTTP/1.0\r\nGET / HTTP/1.0\r\nundefined symbol: GET\r\n-> \r\n->

-1327660293 | 2024-04-08T17:50:01.254676

3952 / tcp

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

1170207731 | 2024-04-21T05:43:43.249585

4000 / tcp

HTTP/1.1 200 OK
cache-control: max-age=0, private, must-revalidate
content-length: 9446
content-type: text/html; charset=utf-8
cross-origin-window-policy: deny
date: Mon, 22 Jan 2024 08:34:42 GMT
server: Cowboy
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-request-id: F6yeXaHCjyC4elgAAoAh
x-xss-protection: 1; mode=block
set-cookie: _teslamate_key=SFMyNTY.g3QAAAAEbQAAAAtfY3NyZl90b2tlbm0AAAAYaUxzWXpoMm5SdWh1V2piMFd

1911457608 | 2024-04-19T05:31:35.863648

4022 / tcp

\x00[\x00\x00\x00\x00\x00\x00

-1461540015 | 2024-04-04T15:44:54.811765

4040 / tcp

audio 0 RTP/AVP 18 4 3 8 0 101
a

-1230049476 | 2024-04-03T08:39:55.857625

4042 / tcp

HTTP/1.0 200 OK
Connection: close
X-Powered-By: Undertow/1
Server: JBoss-EAP/7
Content-Type: text/html
Content-Length: 98
Accept-Ranges: bytes

2063598737 | 2024-04-24T05:21:57.517900

4063 / tcp

/0 0 L\r\n/0 0 HUH\r\n

819727972 | 2024-04-08T16:49:24.563719

4064 / tcp

SSH-2.0-OpenSSH_7.4

819727972 | 2024-04-01T06:20:10.217867

4117 / tcp

SSH-2.0-OpenSSH_7.4

2087396567 | 2024-04-24T08:02:30.512394

4157 / tcp

kjnkjabhbanc283ubcsbhdc72

-1914158197 | 2024-04-04T06:59:28.346514

4242 / tcp

HTTP/1.1 500 Internal Server Error
Server: nginx/1.18.11011 (Ubuntu)
Content-Type: text/plain; charset=utf-8
Connection: close

957278843 | 2024-04-23T23:55:54.079993

4282 / tcp

[|ox

-1250504565 | 2024-04-24T15:24:47.178753

4321 / tcp

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x80\x00\x04\x00\x01\x00\x00\x00\x05\x00\xff\xff\xff\x00\x00\x04\x08\x00\x00\x00\x00\x00\x7f\xff\x00\x00\x00\x00\x08\x07\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01

-358801646 | 2024-04-15T15:42:14.911404

4369 / tcp

SSH-2.0-OpenSSH_6.6.1

2087396567 | 2024-04-16T19:42:34.076597

4433 / tcp

kjnkjabhbanc283ubcsbhdc72

2140295939 | 2024-04-20T22:48:33.999201

4443 / tcp

HTTP/1.1 200 
Server: nginx
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache

-345718689 | 2024-04-19T04:44:38.374597

4500 / tcp

Vty password is not set.

546151771 | 2024-04-11T16:46:29.120159

4506 / tcp

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC
Clients:
/*.*.*.*:11264[0](queued=0,recved=1,sent=0)

Latency min/avg/max: 0/0.0/0
Received: 8557
Sent: 11410
Connections: 1
Outstanding: 0
Zxid: 0x332907ad3391
Mode: follower
Node count: 104618

-375604792 | 2024-04-23T04:24:34.959625

4734 / tcp

220 Microsoft FTP Service

1911457608 | 2024-04-09T05:51:59.003602

4747 / tcp

\x00[\x00\x00\x00\x00\x00\x00

709622286 | 2024-04-24T10:20:48.360476

4786 / tcp

OK Welcome <299685> on DirectUpdate server 7286\r\n

1911457608 | 2024-04-08T22:54:34.883516

4840 / tcp

\x00[\x00\x00\x00\x00\x00\x00

2087396567 | 2024-04-25T02:51:31.879598

4899 / tcp

kjnkjabhbanc283ubcsbhdc72

-1329831334 | 2024-04-17T19:08:44.213250

4911 / tcp

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00 \x00\x00\n04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00\\...\n

585675468 | 2024-04-01T16:33:53.926416

4949 / tcp

@
05@ þ...

819727972 | 2024-04-10T00:39:34.835640

5001 / tcp

SSH-2.0-OpenSSH_7.4

-2089734047 | 2024-04-15T10:05:32.839842

5004 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

-971970408 | 2024-04-04T08:43:36.354143

5006 / tcp

1726594447 | 2024-04-21T16:46:27.857431

5007 / tcp

\r\n\nLantronix MSS100 Version V118/523(045538937)\n\r\nType HELP at the \'Local_61349> \' prompt for assistance.\n\r\n\r\n\nUsername>

1182822286 | 2024-04-25T12:03:55.746071

5009 / tcp

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae237b_dianxun172_7460-1469

-1730858130 | 2024-04-23T20:12:07.025263

5010 / tcp

RFB 003.008
VNC:
  Protocol Version: 3.8

740837454 | 2024-04-24T21:27:57.102453

5025 / tcp

SSH-2.0-OpenSSH_5.3

1741579575 | 2024-04-15T23:52:27.619755

5172 / tcp

921225407 | 2024-04-18T14:58:48.385327

5201 / tcp

\x00\x00\x00\x04\x00\x00\x00\x00\x00

585675468 | 2024-04-25T04:35:05.788013

5222 / tcp

@
05@ þ...

1462885993 | 2024-04-16T11:09:23.225938

5269 / tcp

HTTP/1.1 400 Bad Request
Server: openresty
Content-Type: text/html
Connection: close

-1148066627 | 2024-04-19T13:50:18.351628

5432 / tcp

\x00[\xc2\x84\xc2\x86\xc3\xb2\x7f\x00\x00

89142341 | 2024-04-11T03:45:09.651776

5435 / tcp

\x05\x00\x00\x00\x0b\x08\x05\x1a\x00

-1105333987 | 2024-04-11T00:23:05.369585

5454 / tcp

\x00[KpU\x7f\x00\x00

-1399940268 | 2024-04-08T21:33:15.707563

5567 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

575925250 | 2024-04-01T21:58:50.227551

5672 / tcp

AMQP:\ncluster_name:rabbit@rabbitmq-0.rabbitmq-headless.rabbitmq.svc.cluster.local\ncopyright:Copyright (c) 2007-2021 VMware, Inc. or its affiliates.\ninformation:Licensed under the MPL 2.0. Website: https://rabbitmq.com\nplatform:Erlang/OTP 24.1\nproduct:RabbitMQ\nversion:3.9.7\nCapabilities:\npublisher_confirms:true\nexchange_exchange_bindings:true\nbasic.nack:true\nconsumer_cancel_notify:true\nconnection.blocked:true\nconsumer_priorities:true\nauthentication_failure_close:true\nper_consumer_qos:true\ndirect_reply_to:tru

321971019 | 2024-04-23T02:51:36.076954

5673 / tcp

-ERR client ip is not in whitelist\r

-1547976805 | 2024-04-21T22:22:41.764467

5822 / tcp

HTTP/1.1 403 Forbidden
Server: nginx
Content-Type: text/html
Connection: close

2087396567 | 2024-04-19T08:14:02.112905

5858 / tcp

kjnkjabhbanc283ubcsbhdc72

497968563 | 2024-04-05T06:25:57.752330

5900 / tcp

RFB 003.008

VNC:
  Protocol Version: 3.8

-1249500036 | 2024-04-20T19:24:48.755874

5906 / tcp

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html
Connection: keep-alive
Accept-Ranges: bytes

-1399940268 | 2024-04-15T21:37:41.136452

5938 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1999272906 | 2024-04-21T21:38:04.248146

5984 / tcp

HTTP/1.0 200 OK
Cache-Control: must-revalidate
Content-Type: application/json
Server: CouchDB/3.2.0 (Erlang OTP/20)
X-Cloudant-Action: cloudantnosqldb.account-meta-info.read
X-Couch-Request-ID: a2da79eef6
X-Content-Type-Options: nosniff
X-Cloudant-Request-Class: unlimited
X-Cloudant-Backend: bm-cc-uk-01
Via: 1.0 lb1.bm-cc-uk-01 (Glum/1.101.1)

-805362002 | 2024-04-21T16:13:09.283772

5985 / tcp

ICAP/1.0 501 Other
Server: Traffic Spicer 7788179225

2087396567 | 2024-04-04T23:01:23.594947

5986 / tcp

kjnkjabhbanc283ubcsbhdc72

103159425 | 2024-04-05T09:01:31.200720

5990 / tcp

SSH-1.99-RGOS_SSH

819727972 | 2024-04-15T04:31:51.438903

6000 / tcp

SSH-2.0-OpenSSH_7.4

-1626979812 | 2024-04-03T12:49:23.792517

6001 / tcp

220 Service ready for new user.

819727972 | 2024-04-22T19:37:10.751596

6002 / tcp

SSH-2.0-OpenSSH_7.4

205347087 | 2024-03-28T02:39:03.026682

6004 / tcp

SSH-25453-Cisco-3524665.35\n

585675468 | 2024-04-04T19:30:44.018519

6080 / tcp

@
05@ þ...

321971019 | 2024-04-17T18:31:22.680394

6379 / tcp

-ERR client ip is not in whitelist\r

2087396567 | 2024-04-22T17:23:51.187823

6443 / tcp

kjnkjabhbanc283ubcsbhdc72

-1399940268 | 2024-04-19T19:49:49.641920

6503 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-1327849035 | 2024-04-12T10:26:06.322976

6510 / tcp

HTTP/1.1 200 OK
Server: Webs
X-Frame-Options: SAMEORIGIN
Content-Type: text/html
Connection: keep-alive
Keep-Alive: timeout=60, max=99

921225407 | 2024-04-09T16:50:58.255940

6605 / tcp

\x00\x00\x00\x04\x00\x00\x00\x00\x00

165188539 | 2024-04-13T17:21:24.508391

6633 / tcp

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

-1899074860 | 2024-04-18T00:29:11.925824

6653 / tcp

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00\x00\x00\n03\x00\x00\x00d\x00\x04\x00\x01\x00\x00\x00\x00\x04\x08\x00\x00\x00\n

4935895 | 2024-04-09T00:04:25.799138

6666 / tcp

HTTP/1.1 400 Bad Request
Server: CloudWAF

1327134490 | 2024-04-20T11:58:59.416240

6667 / tcp

versionbind

1830697416 | 2024-04-08T06:58:59.341470

6668 / tcp

HTTP/1.0 200 OK
Cache-Control: must-revalidate
Content-Length: 243
Content-Type: application/json
Server: CouchDB/3.2.0 (Erlang OTP/20)
X-Cloudant-Action: cloudantnosqldb.account-meta-info.read
X-Couch-Request-ID: a2da79eef6
X-Content-Type-Options: nosniff
X-Cloudant-Request-Class: unlimited
X-Cloudant-Backend: bm-cc-uk-01
Via: 1.0 lb1.bm-cc-uk-01 (Glum/1.101.1)

-358801646 | 2024-04-08T10:01:35.968986

6697 / tcp

SSH-2.0-OpenSSH_6.6.1

1827807483 | 2024-04-08T15:05:22.551782

7001 / tcp

HTTP/1.1 401 Unauthorized
Server: 
Cache-Control: no-cache,no-store
Content-Type: text/html; charset=%s
Connection: close

1212285915 | 2024-04-13T02:42:34.213864

7002 / tcp

\x00K\x00\x00\x02\x00\x00\x00%~)J/\\tHjU(IAGENT = (AGENT_VERSION = 2388790170)(RPC_VERSION = 5..722))

819727972 | 2024-04-12T19:56:21.136211

7071 / tcp

SSH-2.0-OpenSSH_7.4

-1399940268 | 2024-04-16T05:47:18.777052

7171 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-1399940268 | 2024-04-02T10:07:28.753467

7218 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-1399940268 | 2024-03-29T18:02:27.954006

7401 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

819727972 | 2024-04-14T04:35:30.179378

7415 / tcp

SSH-2.0-OpenSSH_7.4

819727972 | 2024-04-21T11:18:14.749857

7434 / tcp

SSH-2.0-OpenSSH_7.4

1320285193 | 2024-04-23T04:03:12.339949

7443 / tcp

HTTP/1.1 404 Not Found
Server: CloudWAF
Content-Type: text/html
Connection: keep-alive

820958131 | 2024-04-14T22:12:08.097059

7444 / tcp

kjnkjabhbanc283ubcsbhdc72\x02

-1399940268 | 2024-03-30T10:05:36.265143

7535 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

2087396567 | 2024-04-10T23:37:14.016608

7548 / tcp

kjnkjabhbanc283ubcsbhdc72

-1900404274 | 2024-03-30T12:53:06.461462

7657 / tcp

Unknown command

-1399940268 | 2024-04-01T21:01:34.502014

7998 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1072892569 | 2024-04-18T17:43:36.755308

8001 / tcp

HTTP/1.0 403 Access denied
Server: tinyproxy/1.8.3
0AContent-Type: text/html
Connection: close

103159425 | 2024-04-13T17:13:12.421412

8009 / tcp

SSH-1.99-RGOS_SSH

-1399940268 | 2024-04-01T04:13:44.113783

8012 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

366084633 | 2024-04-02T22:57:30.135843

8019 / tcp

<HTML><HEAD><TITLE>Error</TITLE></HEAD><BODY><H1>Error</H1>Bad request or resource not found.</BODY></HTML>

-274082663 | 2024-04-18T09:11:15.347058

8023 / tcp

\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01

-2107996212 | 2024-04-23T21:55:55.482394

8027 / tcp

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

-1399940268 | 2024-04-20T13:42:41.612638

8037 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-1189269828 | 2024-04-17T14:51:23.154321

8055 / tcp

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\xc2\x80\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

546151771 | 2024-04-05T08:05:23.505665

8060 / tcp

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC
Clients:
/*.*.*.*:11264[0](queued=0,recved=1,sent=0)

Latency min/avg/max: 0/0.0/0
Received: 8557
Sent: 11410
Connections: 1
Outstanding: 0
Zxid: 0x332907ad3391
Mode: follower
Node count: 104618

-1375131644 | 2024-04-19T02:46:14.665606

8071 / tcp

\x00[v\xc3\xbdC\x7f\x00\x00

1632938300 | 2024-04-25T00:03:49.168911

8081 / tcp

HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate
Content-Type: text/html;charset=UTF-8
Date: Thu, 25 Apr 2024 00:03:49 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Server: Jetty(9.2.z-SNAPSHOT)
Set-Cookie: JSESSIONID.950f90b9=1owdow0ajqcl965wxdcs43d6q;Path=/;HttpOnly
Urlx-Path: https://corp.aliyun.com/checkout-login/hostname-show/grant-checkout/validate
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Hudson: 1.395
X-Hudson-Cli-Port: 46521
X-Hudson-Theme: default
X-Instance-Identity: MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAre/+10emw6MQdsSvgJpOv3JYRIs6/MkSoH2L/uwbMNDsVSDAoSIUS1bO8H5pu9sdrV67T1WPeTF4VmrARIVKm+va8bOGxObBwmtkZyVRTTdYwe2QX0J9wwlStl/W4RFbtF7H1cwAwME0eqfAMzA9P4izyLtzMcdFjCcoNmVqDnpiBJ5AC+43PcjIGwiYbstWl5Xp0/Dymw80tiOiMA+E1Ol2U4OsUtQwxyCE/i+CP2qUpUuRXyIeD1gqyfXUyzIrcmviq5vu2q++BOzSOc0c/3lmbPUz+79AkVDn8/SjBUiFR6+hw4uglhZALOKX6YuO5x/z5N5Skzi1x7Ki2SmaWQIDAQAB
X-Jenkins: 2.46.1
X-Jenkins-Cli-Port: 46521
X-Jenkins-Cli2-Port: 46521
X-Jenkins-Session: b00ea7f9
X-Ssh-Endpoint: 120.77.166.131:36215
Transfer-Encoding: chunked

20b6




  
  <!DOCTYPE html><html><head resURL="/static/b00ea7f9" data-rooturl="" data-resurl="/static/b00ea7f9">
    

    <title>Dashboard [Jenkins]</title><link rel="stylesheet" href="/static/b00ea7f9/css/layout-common.css" type="text/css" /><link rel="stylesheet" href="/static/b00ea7f9/css/style.css" type="text/css" /><link rel="stylesheet" href="/static/b00ea7f9/css/color.css" type="text/css" /><link rel="stylesheet" href="/static/b00ea7f9/css/responsive-grid.css" type="text/css" /><link rel="shortcut icon" href="/static/b00ea7f9/favicon.ico" type="image/vnd.microsoft.icon" /><link color="black" rel="mask-icon" href="/images/mask-icon.svg" /><script>var isRunAsTest=false; var rootURL=""; var resURL="/static/b00ea7f9";</script><script src="/static/b00ea7f9/scripts/prototype.js" type="text/javascript"></script><script src="/static/b00ea7f9/scripts/behavior.js" type="text/javascript"></script><script src='/adjuncts/b00ea7f9/org/kohsuke/stapler/bind.js' type='text/javascript'></script><script src="/static/b00ea7f9/scripts/yui/yahoo/yahoo-min.js"></script><script src="/static/b00ea7f9/scripts/yui/dom/dom-min.js"></script><script src="/static/b00ea7f9/scripts/yui/event/event-min.js"></script><script src="/static/b00ea7f9/scripts/yui/animation/animation-min.js"></script><script src="/static/b00ea7f9/scripts/yui/dragdrop/dragdrop-min.js"></script><script src="/static/b00ea7f9/scripts/yui/container/container-min.js"></script><script src="/static/b00ea7f9/scripts/yui/connection/connection-min.js"></script><script src="/static/b00ea7f9/scripts/yui/datasource/datasource-min.js"></script><script src="/static/b00ea7f9/scripts/yui/autocomplete/autocomplete-min.js"></script><script src="/static/b00ea7f9/scripts/yui/menu/menu-min.js"></script><script src="/static/b00ea7f9/scripts/yui/element/element-min.js"></script><script src="/static/b00ea7f9/scripts/yui/button/button-min.js"></script><script src="/static/b00ea7f9/scripts/yui/storage/storage-min.js"></script><script src="/static/b00ea7f9/scripts/hudson-behavior.js" type="text/javascript"></script><script src="/static/b00ea7f9/scripts/sortable.js" type="text/javascript"></script><script>crumb.init("", "");</script><link rel="stylesheet" href="/static/b00ea7f9/scripts/yui/container/assets/container.css" type="text/css" /><link rel="stylesheet" href="/static/b00ea7f9/scripts/yui/assets/skins/sam/skin.css" type="text/css" /><link rel="stylesheet" href="/static/b00ea7f9/scripts/yui/container/assets/skins/sam/container.css" type="text/css" /><link rel="stylesheet" href="/static/b00ea7f9/scripts/yui/button/assets/skins/sam/button.css" type="text/css" /><link rel="stylesheet" href="/static/b00ea7f9/scripts/yui/menu/assets/skins/sam/menu.css" type="text/css" /><link rel="search" href="/opensearch.xml" type="application/opensearchdescription+xml" title="Jenkins" /><meta name="ROBOTS" content="INDEX,NOFOLLOW" /><meta name="viewport" content="width=device-width, initial-scale=1" /><link rel="alternate" href="/rssAll" title="Jenkins:all (all builds)" type="application/rss+xml" /><link rel="alternate" href="/rssAll?flavor=rss20" title="Jenkins:all (all builds) (RSS 2.0)" type="application/rss+xml" /><link rel="alternate" href="/rssFailed" title="Jenkins:all (failed builds)" type="application/rss+xml" /><link rel="alternate" href="/rssFailed?flavor=rss20" title="Jenkins:all (failed builds) (RSS 2.0)" type="application/rss+xml" /><script src="/static/b00ea7f9/scripts/yui/cookie/cookie-min.js"></script><script>
              YAHOO.util.Cookie.set("screenResolution", screen.width+"x"+screen.height);
            </script><script src="/static/b00ea7f9/jsbundles/page-init.js" type="text/javascript"></script></head><body data-model-type="hudson.model.AllView" id="jenkins" class="yui-skin-sam jenkins-2.46.1 two-column" data-version="2.46.1"><a href="#skip2content" class="skiplink">Skip to content</a><div id="page-head"><div id="header"><div class="logo"><a id="jenkins-home-link" href="/"><img src="/static/b00ea7f9/images/headshot.p

819727972 | 2024-04-05T19:47:08.319522

8083 / tcp

SSH-2.0-OpenSSH_7.4

1282941221 | 2024-04-24T01:25:15.969194

8085 / tcp

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

1996932384 | 2024-04-13T16:05:58.449280

8087 / tcp

"raop" nonce

1830187220 | 2024-04-20T04:28:02.439195

8089 / tcp

\xc3\xbf\xc3\xbb\x01\r\n-> GET / HTTP/1.0\r\nGET / HTTP/1.0\r\nundefined symbol: GET\r\n-> \r\n->

-1399940268 | 2024-04-17T01:29:31.750095

8095 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-749939074 | 2024-04-11T13:37:17.928033

8099 / tcp

HTTP/1.1 200 
Cache-Control: private
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Origin: http://localhost:8009
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 0
Access-Control-Allow-Credentials: true
XDomainRequestAllowed: 1
Access-Control-Allow-Headers: Authorization,Origin, X-Requested-With, Content-Type, Accept,Access-Token
Content-Type: text/html;charset=UTF-8
Content-Language: en-US
Transfer-Encoding: chunked

-1839934832 | 2024-04-11T21:30:11.468431

8101 / tcp

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

-832380282 | 2024-04-22T21:04:43.296929

8104 / tcp

lpd [@Boyk]: Print-services are not available to your host (aF2qXkQ2m).\n

-1265999252 | 2024-04-16T16:18:30.747279

8107 / tcp

220 VMware Authentication Daemon Version 1.0, ServerDaemonProto\ncol:SOAP, MKSDisplayProtocol:VNC , ,

-2031152423 | 2024-04-05T09:30:27.139535

8111 / tcp

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

1544300041 | 2024-04-12T03:32:13.724057

8123 / tcp

SSH-25453-Cisco-3524665.35

-971970408 | 2024-04-21T06:19:23.008341

8126 / tcp

-971970408 | 2024-04-16T19:00:50.102589

8139 / tcp

1948301213 | 2024-04-03T10:53:37.979419

8140 / tcp

RFB 003.003
VNC:
  Protocol Version: 3.3

1234106376 | 2024-04-25T01:31:49.337108

8180 / tcp

HTTP/1.1 200 
Server: nginx
Content-Type: text/html;charset=UTF-8
Accept-Ranges: bytes
Content-Language: en-US

2087396567 | 2024-04-11T21:43:59.392879

8181 / tcp

kjnkjabhbanc283ubcsbhdc72

632542934 | 2024-04-13T11:12:08.056837

8241 / tcp

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

-1399940268 | 2024-04-09T20:22:31.611546

8252 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

722711397 | 2024-04-22T17:51:19.942951

8291 / tcp

\x00[M\xc3\xba\xc3\x9a\x7f\x00\x00

-1713467553 | 2024-04-14T02:05:14.643827

8333 / tcp

HTTP/1.1 400 Bad Request
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Connection: close

819727972 | 2024-04-02T14:36:02.353637

8407 / tcp

SSH-2.0-OpenSSH_7.4

1911457608 | 2024-04-24T09:18:08.780819

8415 / tcp

\x00[\x00\x00\x00\x00\x00\x00

1989907056 | 2024-04-22T20:00:44.277768

8422 / tcp

RTSP/1.0 453 Not Enough Bandwidth\r\nServer: AirTunes/7l_wZ\r\n\r\n

117101543 | 2024-04-11T09:23:33.258884

8429 / tcp

\x18\x01\x00\x00\x14\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\n0\x0c\x00\x04\x00\x00\x00\x08\x00\n\x00\x00\x00d\x04\x00\x00\xc3\xb8\x00...\n

321971019 | 2024-04-17T10:29:15.345832

8432 / tcp

-ERR client ip is not in whitelist\r

814794075 | 2024-04-21T21:20:49.759351

8443 / tcp

HTTP/1.1 404 NOT FOUND
Content-Type: text/html; charset=utf-8
Access-Control-Allow-Origin: https://aitest.omnistorpoc.com

-1032713145 | 2024-04-18T16:15:02.929674

8446 / tcp

\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x08\x00\x00\x00\n0\x00\x00\x00\x0e\xc3\xbf\xc3\xb1

1652191202 | 2024-03-27T13:29:10.804644

8500 / tcp

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae296b_PS-NTG-014eQ157_14943-13699

1978059005 | 2024-04-19T08:53:48.428376

8554 / tcp

Sorry, that nickname format is invalid.

1911457608 | 2024-04-19T10:03:11.815803

8575 / tcp

\x00[\x00\x00\x00\x00\x00\x00

-1013082686 | 2024-03-27T21:06:47.840488

8623 / tcp

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

-454087041 | 2024-04-14T11:08:39.266919

8637 / tcp

\x1e\xc3\x80\x010\x02\x00\xc2\xa8\xc3\xa3\x00\x00\x00\x00

1911457608 | 2024-04-02T00:23:25.119376

8700 / tcp

\x00[\x00\x00\x00\x00\x00\x00

-1399940268 | 2024-04-24T12:39:08.885275

8728 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1911457608 | 2024-04-10T20:59:27.364514

8765 / tcp

\x00[\x00\x00\x00\x00\x00\x00

-1399940268 | 2024-04-13T06:30:19.968454

8766 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

50497985 | 2024-04-05T08:38:32.841962

8784 / tcp

\x00[\xc3\x88\xc3\x9dS\x7f\x00\x00

-1329831334 | 2024-04-01T04:24:26.405087

8788 / tcp

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00 \x00\x00\n04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00\\...\n

-2089734047 | 2024-04-02T20:30:57.879520

8803 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

819727972 | 2024-04-03T09:45:21.026927

8804 / tcp

SSH-2.0-OpenSSH_7.4

-1399940268 | 2024-04-16T03:03:17.025195

8820 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

819727972 | 2024-04-13T03:36:57.624202

8823 / tcp

SSH-2.0-OpenSSH_7.4

-136006866 | 2024-03-30T14:59:42.387353

8830 / tcp

STAT pid 1660\nSTAT uptime 28884\nSTAT time 1641290377\nSTAT version 1.2.1\nSTAT pointer_size 32\nSTAT curr_items 14\nSTAT total_items 3533\nSTAT bytes 30524\nSTAT curr_connections 1\nSTAT total_connections 3542\nSTAT connection_structures 3\nSTAT cmd_get 3533\nSTAT cmd_set 3533\nSTAT get_hits 3519\nSTAT get_misses 14\nSTAT bytes_read 7927780\nSTAT bytes_written 7848552\nSTAT limit_maxbytes 67108864\nEND

819727972 | 2024-04-18T11:09:42.636755

8834 / tcp

SSH-2.0-OpenSSH_7.4

1911457608 | 2024-04-01T18:34:25.795209

8838 / tcp

\x00[\x00\x00\x00\x00\x00\x00

-1476017887 | 2024-04-13T03:12:39.130949

8840 / tcp

N\x00\x00\x00\n5.6.40-log\x00\xc3\x85\x00\x00\x00TUNEgVX2\x00\x0c\n\xc2\xa2!\x02\x00\x08\x00\x15\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00xlB...\n

117101543 | 2024-04-19T04:15:01.369026

8849 / tcp

\x18\x01\x00\x00\x14\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\n0\x0c\x00\x04\x00\x00\x00\x08\x00\n\x00\x00\x00d\x04\x00\x00\xc3\xb8\x00...\n

1911457608 | 2024-04-09T03:07:15.866050

8850 / tcp

\x00[\x00\x00\x00\x00\x00\x00

-1399940268 | 2024-04-22T11:27:00.620765

8852 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-2096652808 | 2024-04-10T22:24:12.513545

8861 / tcp

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

-2046514463 | 2024-04-09T17:26:20.757289

8865 / tcp

AB\x01\t

-1428621233 | 2024-03-28T08:57:51.199982

8867 / tcp

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

2087396567 | 2024-04-22T17:14:30.601153

8880 / tcp

kjnkjabhbanc283ubcsbhdc72

1282941221 | 2024-04-19T07:12:00.034453

8881 / tcp

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

1308377066 | 2024-04-23T21:46:50.590681

8885 / tcp

ncacn_http/1.0

250824264 | 2024-04-05T15:56:51.156402

8888 / tcp

HTTP/1.1 408 Request Timeout

-1487943323 | 2024-04-20T14:14:06.734603

8890 / tcp

431 Unable to negotiate secure command connection.\r\n

-2067028711 | 2024-04-18T05:33:38.370318

9000 / tcp

\x15\x03\x01\x00\x02\x02F

-1026951088 | 2024-04-20T09:47:10.355518

9001 / tcp

erro ip

819727972 | 2024-04-14T18:59:04.945044

9002 / tcp

SSH-2.0-OpenSSH_7.4

1504401647 | 2024-04-16T19:08:48.231759

9021 / tcp

:dircproxy NOTICE AUTH :Looking up your hostname...\r\n:dircproxy NOTICE AUTH :Got your hostname.\r\n

-1626979812 | 2024-04-16T02:59:27.577973

9039 / tcp

220 Service ready for new user.

819727972 | 2024-04-01T04:18:55.643560

9042 / tcp

SSH-2.0-OpenSSH_7.4

2063598737 | 2024-04-21T18:17:05.144680

9048 / tcp

/0 0 L\r\n/0 0 HUH\r\n

-1992735364 | 2024-04-16T18:27:07.437792

9050 / tcp

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae1508_PS-FOC-01B8p211_5839-18979

1220320909 | 2024-04-24T11:23:42.850114

9051 / tcp

[îd

-1399940268 | 2024-04-24T19:33:42.528900

9070 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-2031152423 | 2024-04-25T04:45:21.059656

9091 / tcp

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

819727972 | 2024-04-19T04:24:57.926850

9092 / tcp

SSH-2.0-OpenSSH_7.4

1741579575 | 2024-04-22T16:35:14.347514

9095 / tcp

1911457608 | 2024-04-22T07:47:22.704895

9100 / tcp

\x00[\x00\x00\x00\x00\x00\x00

205347087 | 2024-04-11T00:49:32.704704

9105 / tcp

SSH-25453-Cisco-3524665.35\n

1911457608 | 2024-04-03T02:56:36.932333

9119 / tcp

\x00[\x00\x00\x00\x00\x00\x00

921225407 | 2024-04-11T06:53:50.263530

9136 / tcp

\x00\x00\x00\x04\x00\x00\x00\x00\x00

2087396567 | 2024-04-03T02:06:25.555951

9151 / tcp

kjnkjabhbanc283ubcsbhdc72

1911457608 | 2024-04-05T02:01:26.897115

9160 / tcp

\x00[\x00\x00\x00\x00\x00\x00

1212285915 | 2024-04-12T12:34:01.667995

9201 / tcp

\x00K\x00\x00\x02\x00\x00\x00%~)J/\\tHjU(IAGENT = (AGENT_VERSION = 2388790170)(RPC_VERSION = 5..722))

-1729629024 | 2024-04-04T23:45:38.445924

9295 / tcp

101 imqbroker =unV

-1746074029 | 2024-04-16T07:14:37.790601

9302 / tcp

101 imqbroker =unV\r\n

117101543 | 2024-04-20T21:27:54.523876

9306 / tcp

\x18\x01\x00\x00\x14\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\n0\x0c\x00\x04\x00\x00\x00\x08\x00\n\x00\x00\x00d\x04\x00\x00\xc3\xb8\x00...\n

1529351907 | 2024-04-23T11:09:59.822927

9418 / tcp

HTTP/1.1 407 OK
Content-Type: text/plain; charset=utf-8
Connection: keep-alive

please add white ip *.*.*.*

1261582754 | 2024-04-21T19:00:42.288476

9443 / tcp

unknown command 
unknown command

-1888448627 | 2024-04-15T09:12:43.641069

9530 / tcp

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

-2096652808 | 2024-04-22T20:46:33.759813

9600 / tcp

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

104385780 | 2024-04-24T03:07:35.689709

9633 / tcp

ceph v2

-1013082686 | 2024-04-24T16:41:36.115901

9761 / tcp

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

641705735 | 2024-04-16T23:05:39.611654

9800 / tcp



0
dø...

248249138 | 2024-04-22T01:21:25.682820

9943 / tcp

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae24d3_xyd116_25356-2749

-375604792 | 2024-04-22T13:43:01.008690

9997 / tcp

220 Microsoft FTP Service

-347274959 | 2024-04-15T04:00:54.442510

9998 / tcp

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae2831_PS-000-01PIX79_36197-59880

1161309183 | 2024-04-15T16:21:26.346334

9999 / tcp

ProxyServer is ready

539065883 | 2024-04-11T03:38:14.909269

10000 / tcp

320677201 | 2024-04-22T03:20:25.781172

10134 / tcp

H\x00\x00\x00\xc3\xbfj\x04Host \'101.133.140.114\' is not allowed to \nconnect to this MySQL server

2033888749 | 2024-04-04T23:05:02.612724

10443 / tcp

Content-Type: text/rude-rejection
Content-Length: 24


Access Denied, go away.
Content-Type: text/disconnect-notice
C...

2087396567 | 2024-04-02T02:07:23.000026

10554 / tcp

kjnkjabhbanc283ubcsbhdc72

455076604 | 2024-04-20T18:37:39.084258

10909 / tcp

!\x07version\x04bind7 t{RPowerDNS Recursor 410

-1114821551 | 2024-04-19T00:55:29.140207

10911 / tcp

\xc3\xa3\r\n\r\n\x00\x01\x00K\x00vInvalid protocol verification, illegal ORMI request or request performed with an incompatible version of this protocol

-2089734047 | 2024-04-21T13:47:18.536952

11000 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

-375604792 | 2024-04-10T13:30:06.051365

11112 / tcp

220 Microsoft FTP Service

671605376 | 2024-04-24T07:36:27.903506

11210 / tcp

SSH-2.0-OpenSSH_X.X

-136006866 | 2024-04-23T12:04:07.275047

11211 / tcp

STAT pid 1660\nSTAT uptime 28884\nSTAT time 1641290377\nSTAT version 1.2.1\nSTAT pointer_size 32\nSTAT curr_items 14\nSTAT total_items 3533\nSTAT bytes 30524\nSTAT curr_connections 1\nSTAT total_connections 3542\nSTAT connection_structures 3\nSTAT cmd_get 3533\nSTAT cmd_set 3533\nSTAT get_hits 3519\nSTAT get_misses 14\nSTAT bytes_read 7927780\nSTAT bytes_written 7848552\nSTAT limit_maxbytes 67108864\nEND

632542934 | 2024-04-23T02:35:32.645437

11300 / tcp

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

-1723613895 | 2024-04-09T22:18:11.613138

12000 / tcp

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae2232_PS-HAK-01h6h34_6336-63973

296364507 | 2024-04-20T22:38:24.858767

12345 / tcp

HTTP/1.1 500 Internal Server Error
SERVER: Trend Chip UPnP/1.0 DMS
CONNECTION: close
CONTENT-LENGTH: 60
CONTENT-TYPE: text/html

819727972 | 2024-04-17T19:03:44.712457

14147 / tcp

SSH-2.0-OpenSSH_7.4

1835141311 | 2024-04-17T03:37:42.019981

14265 / tcp

ÿû

165188539 | 2024-04-24T04:47:38.232558

14344 / tcp

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

-1840324437 | 2024-04-22T03:04:00.104350

16992 / tcp

1492413928 | 2024-04-10T17:04:53.581657

16993 / tcp

SSH-2.0-OpenSSH_7.5

-1329831334 | 2024-04-18T14:58:47.652269

18081 / tcp

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00 \x00\x00\n04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00\\...\n

-1139539254 | 2024-04-13T06:33:49.733214

18245 / tcp

\xc3\xbf\xc3\xbb\x01\n\rno data rcvd for version string\n\rrecv version id unsuccessful\n\rSSH Session task 0xY: Version Exchange Failed\n\r

1261582754 | 2024-04-08T18:47:19.303605

18553 / tcp

unknown command 
unknown command

1767345577 | 2024-04-01T03:04:20.335246

19000 / tcp

Hello, this is Quagga (version 0T).
Copyright 1996-200

-1990350878 | 2024-04-20T00:14:51.428170

19071 / tcp

 
04 \...

1900503736 | 2024-04-20T20:01:09.730073

20000 / tcp

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: Microsoft-HTTPAPI/2.0

-1399940268 | 2024-04-23T05:12:57.564300

20256 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-1189269828 | 2024-04-13T16:20:51.250735

20547 / tcp

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\xc2\x80\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

1975288991 | 2024-04-02T15:31:48.373161

21025 / tcp

OPTI

-1399940268 | 2024-04-21T16:38:21.317147

21379 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1082732927 | 2024-04-04T04:20:38.721938

23023 / tcp

STAT pid 1660
STAT uptime 28884
STAT time 1641290377
STAT version 1.2.1
STAT pointer_size 32
STAT curr_items 14
STAT total_items 3533
STAT bytes 30524
STAT curr_connections 1
STAT total_connections 3542
STAT connection_structures 3
STAT cmd_get 3533
STAT cmd_set 3533
STAT get_hits 3519
STAT get_misses 14
STAT bytes_read 7927780
STAT bytes_written 7848552
STAT limit_maxbytes 67108864
END

-1399940268 | 2024-04-14T01:35:35.958360

25001 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

165188539 | 2024-04-24T15:57:20.448555

25565 / tcp

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

-2089734047 | 2024-04-21T18:24:20.459742

27015 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

1763259671 | 2024-04-09T10:12:17.544974

27017 / tcp

{\n"Version": "3.4.18",\n"VersionArray": [\n3,\n4,\n18,\n0\n],\n"GitVersion": "4410706bef6463369ea2f42399e9843903b31923",\n"OpenSSLVersion": "",\n"SysInfo": "",\n"Bits": 64,\n"Debug": false,\n"MaxObjectSize": 16777216\n}\n\n

-1036370807 | 2024-04-24T18:52:36.033996

28015 / tcp

JDWP-Handshake

104385780 | 2024-03-26T14:39:58.354707

28080 / tcp

ceph v2

2009276894 | 2024-04-22T21:21:54.628969

28107 / tcp

N
5.6.40-logÅTUNEgVX2
¢!xlB...

1632932802 | 2024-04-02T00:11:18.715410

30002 / tcp

962700458 | 2024-04-20T22:36:24.691684

30003 / tcp

-147424911 | 2024-04-25T11:14:43.801904

31337 / tcp

HTTP/1.1 404 Not Found
Content Length: 0

2087396567 | 2024-04-18T02:04:04.696441

32764 / tcp

kjnkjabhbanc283ubcsbhdc72

1842524259 | 2024-04-15T08:27:27.829766

33060 / tcp

-2089734047 | 2024-04-24T23:16:06.502426

35000 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

-441419608 | 2024-04-20T03:19:33.811504

37777 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

-433302150 | 2024-04-13T11:15:27.501090

44158 / tcp

/multistream/1.0.0

-2089734047 | 2024-04-21T08:16:49.440268

44818 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

-971970408 | 2024-04-16T00:53:23.140866

47990 / tcp

-2006700298 | 2024-04-12T02:42:17.082679

49152 / tcp

HTTP/1.1 500 Internal Server Error
CONTENT-LENGTH: 411
CONTENT-TYPE: text/xml; charset="utf-8"
DATE: Mon, 03 Jan 2000 05:26:54 GMT
EXT:
SERVER: Linux/2.4.30, UPnP/1.0, Portable SDK for UPnP devices/1.3.1
X-User-Agent: redsonic
<s:Envelope
xmlns:s="http://schemas.xmlsoap.org/soap/envelope/"
s:encodingStyle="http://schemas.xmlsoap.org/soap/encoding/">
<s:Body>
<s:Fault>
<faultcode>s:Client</faultcode>

770016595 | 2024-04-11T12:15:56.383388

49153 / tcp

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache

1741579575 | 2024-04-23T21:48:06.974452

50000 / tcp

290819026 | 2024-04-10T09:49:20.179823

50070 / tcp

welcome to Pandora console!
----------------------------
-------------------------
|     Login Time     |     2021-12-08 1...

1231376952 | 2024-04-25T11:35:23.990581

50100 / tcp

1865391109 | 2024-04-16T08:10:58.149369

51106 / tcp

HTTP/1.1 408 Request Timeout
content-length: 0

819727972 | 2024-04-12T04:36:38.320767

51235 / tcp

SSH-2.0-OpenSSH_7.4

819727972 | 2024-04-12T23:42:47.307642

54138 / tcp

SSH-2.0-OpenSSH_7.4

819727972 | 2024-04-19T18:21:14.696799

55000 / tcp

SSH-2.0-OpenSSH_7.4

474736340 | 2024-04-14T08:02:08.041951

55443 / tcp

431 Unable to negotiate secure command connection.

2087396567 | 2024-04-19T11:41:36.608407

55553 / tcp

kjnkjabhbanc283ubcsbhdc72

819727972 | 2024-04-05T00:38:35.839445

55554 / tcp

SSH-2.0-OpenSSH_7.4

-1730858130 | 2024-04-25T14:13:00.177224

60129 / tcp

RFB 003.008
VNC:
  Protocol Version: 3.8

-1399940268 | 2024-04-25T14:00:41.899844

61613 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

120.77.166.131

Last Seen: 2024-04-25

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

366084633 | 2024-04-22T13:44:29.198619 11 / tcp

-1036370807 | 2024-03-29T04:40:48.711688 13 / tcp

1212921144 | 2024-04-23T08:51:52.300868 15 / tcp

268196945 | 2024-04-24T02:35:17.170544 17 / tcp

829384519 | 2024-04-23T16:07:36.862739 19 / tcp

2116898107 | 2024-04-19T01:21:50.301439 21 / tcp

-2107996212 | 2024-04-20T15:48:21.785646 23 / tcp

921225407 | 2024-04-24T06:03:37.978116 25 / tcp

51259122 | 2024-04-02T16:49:38.204169 26 / tcp

1472866667 | 2024-04-22T01:35:32.051994 37 / tcp

-971970408 | 2024-04-16T18:30:39.101064 43 / tcp

588096080 | 2024-04-17T16:06:06.673277 49 / tcp

-1370420049 | 2024-04-25T10:38:13.243334 53 / tcp

-1770051369 | 2024-04-19T02:48:37.814422 79 / tcp

-1016177802 | 2024-04-16T15:25:09.616260 80 / tcp

-1344535834 | 2024-04-13T16:06:32.445863 82 / tcp

1261582754 | 2024-04-12T13:02:25.393679 83 / tcp

104385780 | 2024-04-23T03:59:47.848526 84 / tcp

-1428621233 | 2024-04-12T19:40:04.571167 97 / tcp

636169965 | 2024-04-11T17:10:36.075136 99 / tcp

-1279886438 | 2024-03-31T19:28:35.170802 100 / tcp

1126993057 | 2024-04-21T19:10:48.542715 102 / tcp

-1399940268 | 2024-04-25T12:43:50.325797 104 / tcp

-653033013 | 2024-04-25T00:20:36.776818 110 / tcp

141730637 | 2024-04-12T01:45:50.931507 119 / tcp

1723769361 | 2024-04-04T15:43:42.450116 122 / tcp

1302177452 | 2024-04-15T08:10:14.984628 135 / tcp

-382990917 | 2024-04-20T21:10:30.331528 143 / tcp

1381121983 | 2024-04-18T05:52:28.870042 175 / tcp

-399606100 | 2024-03-28T06:25:26.330524 179 / tcp

819727972 | 2024-04-23T05:12:43.742666 195 / tcp

1911457608 | 2024-04-09T15:45:01.095653 221 / tcp

-1180827859 | 2024-04-09T23:57:47.144867 264 / tcp

-1547976805 | 2024-04-25T10:57:47.142441 311 / tcp

-1639129386 | 2024-04-19T08:39:55.394186 389 / tcp

-349937125 | 2024-04-17T06:05:23.955057 427 / tcp

-971970408 | 2024-04-21T19:18:45.405898 444 / tcp

897328069 | 2024-04-01T13:41:36.116763 465 / tcp

-1399940268 | 2024-03-26T15:11:38.513551 503 / tcp

1850902677 | 2024-04-10T10:05:06.837182 515 / tcp

268285291 | 2024-04-11T15:44:34.343246 541 / tcp

1801869778 | 2024-04-24T00:53:41.401306 548 / tcp

285770450 | 2024-04-24T05:25:39.804665 554 / tcp

1308377066 | 2024-04-24T23:12:39.020270 593 / tcp

-1316491703 | 2024-04-03T01:56:39.635123 631 / tcp

1732481781 | 2024-04-24T09:04:45.917304 636 / tcp

-1960639992 | 2024-04-11T08:06:57.933587 666 / tcp

-1428621233 | 2024-03-27T15:57:28.648694 685 / tcp

-1888448627 | 2024-04-24T02:46:02.563209 771 / tcp

-2096652808 | 2024-04-17T23:40:59.494908 789 / tcp

-1175496255 | 2024-04-10T07:34:55.428390 800 / tcp

819727972 | 2024-04-17T23:20:52.858731 805 / tcp

-1598265216 | 2024-03-28T01:02:16.453147 806 / tcp

-1970692834 | 2024-04-24T05:14:23.112797 873 / tcp

-1242315829 | 2024-04-24T18:15:45.052726 992 / tcp

819727972 | 2024-04-21T23:21:12.278302 993 / tcp

1877619804 | 2024-04-08T05:11:19.845055 999 / tcp

-1327660293 | 2024-04-17T02:05:34.738349 1012 / tcp

546151771 | 2024-04-21T02:12:21.876724 1023 / tcp

1778988322 | 2024-03-30T19:12:01.460041 1024 / tcp

-1746074029 | 2024-04-20T16:22:20.284602 1025 / tcp

-2089734047 | 2024-04-11T21:40:16.019583 1028 / tcp

819727972 | 2024-04-12T05:16:42.318810 1099 / tcp

15018106 | 2024-04-13T02:40:52.880780 1153 / tcp

-1399940268 | 2024-04-18T14:10:22.307440 1167 / tcp

1842524259 | 2024-04-25T02:22:23.760915 1177 / tcp

-2046514463 | 2024-04-19T01:44:29.880142 1200 / tcp

677934968 | 2024-04-22T04:22:15.100585 1234 / tcp

660175493 | 2024-04-05T10:15:01.925340 1311 / tcp

-971970408 | 2024-04-24T18:55:39.543648 1337 / tcp

-1453516345 | 2024-04-09T01:00:22.258149 1400 / tcp

-182670276 | 2024-04-08T17:30:15.781544 1433 / tcp

-1049213899 | 2024-04-23T23:09:09.764532 1494 / tcp

366084633 | 2024-04-22T13:44:29.198619
11 / tcp

-1036370807 | 2024-03-29T04:40:48.711688
13 / tcp

1212921144 | 2024-04-23T08:51:52.300868
15 / tcp

268196945 | 2024-04-24T02:35:17.170544
17 / tcp

829384519 | 2024-04-23T16:07:36.862739
19 / tcp

2116898107 | 2024-04-19T01:21:50.301439
21 / tcp

-2107996212 | 2024-04-20T15:48:21.785646
23 / tcp

921225407 | 2024-04-24T06:03:37.978116
25 / tcp

51259122 | 2024-04-02T16:49:38.204169
26 / tcp

1472866667 | 2024-04-22T01:35:32.051994
37 / tcp

-971970408 | 2024-04-16T18:30:39.101064
43 / tcp

588096080 | 2024-04-17T16:06:06.673277
49 / tcp

-1370420049 | 2024-04-25T10:38:13.243334
53 / tcp

-1770051369 | 2024-04-19T02:48:37.814422
79 / tcp

-1016177802 | 2024-04-16T15:25:09.616260
80 / tcp

-1344535834 | 2024-04-13T16:06:32.445863
82 / tcp

1261582754 | 2024-04-12T13:02:25.393679
83 / tcp

104385780 | 2024-04-23T03:59:47.848526
84 / tcp

-1428621233 | 2024-04-12T19:40:04.571167
97 / tcp

636169965 | 2024-04-11T17:10:36.075136
99 / tcp

-1279886438 | 2024-03-31T19:28:35.170802
100 / tcp

1126993057 | 2024-04-21T19:10:48.542715
102 / tcp

-1399940268 | 2024-04-25T12:43:50.325797
104 / tcp

-653033013 | 2024-04-25T00:20:36.776818
110 / tcp

141730637 | 2024-04-12T01:45:50.931507
119 / tcp

1723769361 | 2024-04-04T15:43:42.450116
122 / tcp

1302177452 | 2024-04-15T08:10:14.984628
135 / tcp

-382990917 | 2024-04-20T21:10:30.331528
143 / tcp

1381121983 | 2024-04-18T05:52:28.870042
175 / tcp

-399606100 | 2024-03-28T06:25:26.330524
179 / tcp

819727972 | 2024-04-23T05:12:43.742666
195 / tcp

1911457608 | 2024-04-09T15:45:01.095653
221 / tcp

-1180827859 | 2024-04-09T23:57:47.144867
264 / tcp

-1547976805 | 2024-04-25T10:57:47.142441
311 / tcp

-1639129386 | 2024-04-19T08:39:55.394186
389 / tcp

-349937125 | 2024-04-17T06:05:23.955057
427 / tcp

-971970408 | 2024-04-21T19:18:45.405898
444 / tcp

897328069 | 2024-04-01T13:41:36.116763
465 / tcp

-1399940268 | 2024-03-26T15:11:38.513551
503 / tcp

1850902677 | 2024-04-10T10:05:06.837182
515 / tcp

268285291 | 2024-04-11T15:44:34.343246
541 / tcp

1801869778 | 2024-04-24T00:53:41.401306
548 / tcp

285770450 | 2024-04-24T05:25:39.804665
554 / tcp

1308377066 | 2024-04-24T23:12:39.020270
593 / tcp

-1316491703 | 2024-04-03T01:56:39.635123
631 / tcp

1732481781 | 2024-04-24T09:04:45.917304
636 / tcp

-1960639992 | 2024-04-11T08:06:57.933587
666 / tcp

-1428621233 | 2024-03-27T15:57:28.648694
685 / tcp

-1888448627 | 2024-04-24T02:46:02.563209
771 / tcp

-2096652808 | 2024-04-17T23:40:59.494908
789 / tcp

-1175496255 | 2024-04-10T07:34:55.428390
800 / tcp

819727972 | 2024-04-17T23:20:52.858731
805 / tcp

-1598265216 | 2024-03-28T01:02:16.453147
806 / tcp

-1970692834 | 2024-04-24T05:14:23.112797
873 / tcp

-1242315829 | 2024-04-24T18:15:45.052726
992 / tcp

819727972 | 2024-04-21T23:21:12.278302
993 / tcp

1877619804 | 2024-04-08T05:11:19.845055
999 / tcp

-1327660293 | 2024-04-17T02:05:34.738349
1012 / tcp

546151771 | 2024-04-21T02:12:21.876724
1023 / tcp

1778988322 | 2024-03-30T19:12:01.460041
1024 / tcp

-1746074029 | 2024-04-20T16:22:20.284602
1025 / tcp

-2089734047 | 2024-04-11T21:40:16.019583
1028 / tcp

819727972 | 2024-04-12T05:16:42.318810
1099 / tcp

15018106 | 2024-04-13T02:40:52.880780
1153 / tcp

-1399940268 | 2024-04-18T14:10:22.307440
1167 / tcp

1842524259 | 2024-04-25T02:22:23.760915
1177 / tcp

-2046514463 | 2024-04-19T01:44:29.880142
1200 / tcp

677934968 | 2024-04-22T04:22:15.100585
1234 / tcp

660175493 | 2024-04-05T10:15:01.925340
1311 / tcp

-971970408 | 2024-04-24T18:55:39.543648
1337 / tcp

-1453516345 | 2024-04-09T01:00:22.258149
1400 / tcp

-182670276 | 2024-04-08T17:30:15.781544
1433 / tcp

-1049213899 | 2024-04-23T23:09:09.764532
1494 / tcp

539065883 | 2024-04-24T18:57:21.824706
1515 / tcp

-541815454 | 2024-04-24T20:42:44.778660
1521 / tcp

2087396567 | 2024-04-22T15:28:57.720335
1599 / tcp

550048729 | 2024-04-17T21:02:15.951328
1604 / tcp

-1608241410 | 2024-04-20T10:51:09.757981
1723 / tcp

-2081419599 | 2024-04-13T00:31:12.874066
1741 / tcp

921225407 | 2024-04-23T23:20:07.635725
1800 / tcp