GeneralInformation

Hostnames	oss.aliyun-inc.com cn-zhangjiakou.oss.aliyuncs.com
Domains	aliyun-inc.com aliyuncs.com
Country	China
City	Zhangjiakou
Organization	Aliyun Computing Co., LTD
ISP	Hangzhou Alibaba Advertising Co.,Ltd.
ASN	AS37963

WebTechnologies

IaaS

Alibaba Cloud Object Storage Service

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

13 15 17 19 21 23 37 43 53 80 93 102 104 110 111 113 119 179 195 221 264 385 400 427 443 444 465 554 587 593 666 771 782 789 873 953 992 993 995 1002 1023 1027 1099 1177 1198 1234 1337 1387 1414 1433 1494 1515 1521 1554 1588 1599 1605 1723 1800 1830 1883 1911 1926 1957 1971 1979 1983 1986 2000 2003 2008 2021 2030 2066 2072 2080 2081 2083 2087 2108 2121 2134 2154 2156 2181 2222 2259 2266 2345 2362 2363 2382 2404 2444 2455 2554 2555 2561 2562 2602 2628 2761 2762 3001 3007 3011 3019 3020 3050 3056 3059 3084 3085 3087 3097 3098 3099 3117 3130 3132 3133 3144 3152 3156 3168 3174 3179 3180 3193 3194 3260 3268 3269 3301 3306 3310 3337 3341 3388 3389 3402 3404 3551 3558 3562 3790 3950 3951 4000 4022 4063 4072 4080 4100 4157 4282 4344 4369 4433 4434 4443 4444 4463 4482 4500 4506 4524 4786 4808 4899 4911 4949 5001 5003 5007 5009 5010 5025 5080 5083 5123 5140 5172 5201 5222 5225 5230 5243 5247 5249 5264 5265 5269 5271 5432 5444 5543 5595 5602 5672 5858 5910 5938 5992 6000 6001 6002 6264 6379 6380 6633 6666 6667 6668 6755 6775 6887 7001 7006 7011 7013 7050 7102 7218 7302 7415 7433 7434 7654 7799 7989 8001 8002 8009 8026 8027 8028 8033 8048 8050 8052 8079 8081 8085 8087 8101 8106 8116 8118 8126 8131 8139 8140 8144 8145 8146 8179 8181 8185 8189 8236 8249 8250 8333 8381 8384 8413 8432 8473 8475 8488 8500 8513 8532 8554 8567 8590 8602 8606 8686 8706 8784 8804 8825 8829 8841 8857 8861 8871 8879 8889 8890 8891 8943 9000 9022 9036 9042 9043 9046 9051 9053 9065 9070 9075 9088 9091 9092 9100 9119 9151 9155 9162 9169 9170 9187 9202 9216 9219 9241 9333 9376 9398 9418 9458 9500 9600 9696 9710 9758 9803 9876 9898 9900 9943 9997 9998 9999 10000 10001 10032 10034 10041 10043 10081 10084 10089 10090 10101 10240 10255 10302 10398 10443 10445 10480 10533 10909 11000 11007 11110 11111 11112 11210 11288 12000 12115 12129 12130 12133 12142 12175 12212 12236 12260 12277 12279 12288 12294 12295 12302 12322 12327 12341 12345 12350 12361 12371 12377 12381 12386 12397 12420 12426 12446 12447 12457 12463 12490 12494 12506 12513 12514 12528 12529 12530 12541 12560 12564 13333 14147 14265 14344 14402 14875 14903 15040 15082 15084 15443 16006 16027 16050 16065 16070 16084 16316 16402 17779 17780 18008 18009 18011 18021 18023 18029 18042 18043 18045 18046 18049 18053 18054 18078 18079 18081 18084 18095 18098 18109 18368 18443 18553 19000 20050 20090 20256 20547 21002 21025 21246 21259 21262 21264 21275 21289 21293 21313 21319 21328 21379 22609 23182 24084 25001 25002 25003 25009 25565 27015 27017 28015 28818 29799 29842 30002 30003 30022 30083 30101 30106 30122 30444 30522 30822 30892 31322 31443 31522 31822 31922 32122 32322 32522 32622 32764 32922 33060 33222 33322 33522 33722 34422 35000 35002 35022 35322 35422 35522 35722 36022 36122 36505 36722 37022 37122 37222 37322 37522 37622 37722 37777 38022 38122 38222 38333 38522 38622 38722 38822 38922 39022 39222 39422 39722 39922 40001 40322 40522 41443 41522 42122 42901 43221 43222 43322 43422 43522 43622 43722 43922 44158 44322 44350 44422 44522 44722 44818 45001 45022 45122 45422 45622 45677 45788 45822 45922 46022 46122 46222 46622 47222 47522 47534 47990 48522 48622 48822 48889 48922 49200 49501 49684 49822 49922 50050 50122 50805 50822 50922 51007 51235 51322 51622 51822 52230 52522 52822 52931 53322 53484 53622 54022 54138 54322 54422 55000 55422 55443 55553 55554 55722 55822 57422 57522 57822 58122 58222 58322 58822 58922 59322 61613 61616 62865 63210 63256 63257 63260 64683 64738

13 / tcp

-1835577706 | 2025-03-13T17:39:40.332550

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset="UTF-8"
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Vary: Accept-Encoding
Cache-control: no-store
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"

15 / tcp

-2089734047 | 2025-02-23T14:42:21.877452

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

17 / tcp

5698739 | 2025-03-16T21:20:42.374258

"We have no more right to consume happiness without producing it than to
 consume wealth without producing it." George Bernard Shaw (1856-1950)
\x00

19 / tcp

620044682 | 2025-03-17T17:17:14.949355

 !"#$%&\'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefg\r\n!"#$%&\'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefgh\r\n"#$%&\'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghi\r\n#$%&\'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghij\r\n$%&\'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghijk\r\n%&\'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghijkl\r\n&\'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghi

21 / tcp

-702037155 | 2025-03-11T21:55:04.795213

220 Ftp firmware update utility

23 / tcp

-1816600103 | 2025-03-09T16:32:05.799726

tc login:

37 / tcp

1110767461 | 2025-03-08T16:20:29.259659

HTTP/1.1 200 OK
Server: nginx/1

43 / tcp

-2081419599 | 2025-03-05T15:05:59.748287

@
03d

53 / tcp

-1370420049 | 2025-03-04T22:16:25.833101

9
\x81\x80\x00\x01\x00\x02\x00\x00\x00\x00\x08clients1\x06google\x03com\x00\x00\x01\x00\x01\xc0\x00\x05\x00\x01\x00\x00\x00\x02\x00\x07clients\x01l\xc0\x15\xc01\x00\x01\x00\x01\x00\x00\x00\x02\x00\x04\xac٣.
\x00\x06\x85\x00\x00\x01\x00\x00\x00\x01\x00

80 / tcp

2027850948 | 2025-03-06T08:57:33.398634

Hashes

hash

-1915767795

http.dom_hash

1799269922

http.html_hash

2027850948

http.server_hash

-498774968

HTTP/1.1 403 Forbidden
Server: AliyunOSS
Date: Thu, 06 Mar 2025 08:57:33 GMT
Content-Type: application/xml
Content-Length: 344
Connection: keep-alive
x-oss-request-id: 67C9637D824325353749A08F
x-oss-server-time: 0
x-oss-ec: 0003-00001201

93 / tcp

1308377066 | 2025-02-23T12:16:41.083138

ncacn_http/1.0

102 / tcp

-1399940268 | 2025-03-13T08:19:41.220464

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

104 / tcp

-1399940268 | 2025-03-04T03:13:59.714361

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

110 / tcp

599074451 | 2025-03-14T15:50:55.799614

msg

111 / tcp

-1428621233 | 2025-02-25T23:39:34.421792

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

113 / tcp

-414819019 | 2025-02-25T01:26:44.808960

HTTP/1.1 200 OK
Content-type: text/html
Connection: close

119 / tcp

141730637 | 2025-02-28T19:31:47.124532

HTTP/1.0 200 OK
Server: Proxy

179 / tcp

-399606100 | 2025-03-13T15:09:07.875013

BGP Message\nType: 3\nMajor error Code: 6\nMinor error Code: 5\n

195 / tcp

-1839934832 | 2025-03-14T22:09:39.723271

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

221 / tcp

-1399940268 | 2025-03-10T17:31:56.028856

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

264 / tcp

-1718229072 | 2025-03-06T13:02:14.140717

CheckPoint\nFirewall Host: gw2\nSmartCenter Host: SMS..6sxmht\\x00\n

385 / tcp

971933601 | 2025-02-27T02:48:47.796556

HTTP/1.0 404 Not Found
Content-Length: 0
Server: HTTPD
Connection: close
Content-Type: text/html

400 / tcp

504717326 | 2025-02-26T07:10:40.783207

SSH-2.0-OpenSSH_8.6

Vulnerabilities

2 3 5 1

427 / tcp

-349937125 | 2025-03-04T13:23:32.630451

SAAdvert Response:\nVersion: 2\nFunction: SA Advertisement (11)\nURL: service:service-agent://192.168.118.88\nScopeList: default\nAttrributeList: \n\n\nserviceTypes:\nservice:VMwareInfrastructure\nservice:wbem:https\n\nResponse of service:VMwareInfrastructure SrvReq:\nVersion: 2\nFunction: Service Reply (2)\nErrorCode: SUCCESS (0)\nURL Entries:\n  Lifetime: 65535\n  URL: service:VMwareInfrastructure://192.168.118.88\n\n\nResponse of service:VMwareInfrastructure AttrRqst:\nVersion: 2\nFunction: Attribute Reply (7)\nErrorCode: SUCCE

443 / tcp

444807596 | 2025-03-16T20:04:19.695366

Hashes

hash

-1018870081

http.dom_hash

1799269922

http.html_hash

444807596

http.server_hash

-498774968

HTTP/1.1 403 Forbidden
Server: AliyunOSS
Date: Sun, 16 Mar 2025 20:04:19 GMT
Content-Type: application/xml
Content-Length: 344
Connection: keep-alive
x-oss-request-id: 67D72EC38243253532FAE147
x-oss-server-time: 0
x-oss-ec: 0003-00001201

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            44:c0:ac:25:19:6d:f5:48:33:c4:56:7e
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign GCC R3 OV TLS CA 2024
        Validity
            Not Before: Feb  8 03:27:41 2025 GMT
            Not After : Sep  4 00:00:00 2025 GMT
        Subject: C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=cn-zhangjiakou.oss.aliyuncs.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:bf:0b:93:77:48:01:39:ca:7f:73:0d:98:e8:db:
                    c0:00:19:6e:d0:8d:00:c0:5f:06:88:b0:f9:53:cc:
                    c4:d9:04:b7:7e:58:89:e9:6e:fc:8d:cd:c3:e8:78:
                    fa:2b:c8:5f:4e:57:5e:6c:82:fa:ef:11:83:e8:fb:
                    66:95:74:b6:65:98:79:09:25:88:a7:0d:e2:f2:69:
                    15:8c:91:c5:95:3e:83:3a:d2:a6:27:74:67:df:4f:
                    2c:21:04:20:58:05:94:fc:b3:92:9f:db:04:aa:c7:
                    ac:18:1e:64:50:86:18:7b:ea:b1:3a:3a:39:d1:7d:
                    fa:a0:02:25:8b:40:5e:69:0a:bd:a3:f7:cf:4b:9f:
                    04:0a:5c:10:cc:fd:6c:33:e0:e5:b8:f2:ac:58:b9:
                    ea:18:90:f0:2f:7a:b7:31:f0:d4:0d:6d:f8:2a:1c:
                    8d:d7:a1:05:6d:b3:86:88:28:e0:3f:86:f5:cc:4d:
                    9c:40:50:cb:eb:56:37:8b:dc:27:28:cf:fb:c2:71:
                    d4:9d:41:6b:89:84:97:9a:82:4f:13:89:17:38:ba:
                    cd:55:8d:69:37:94:25:c8:26:fe:20:0e:46:ed:8f:
                    94:a8:33:3c:82:bf:a4:0b:85:ec:69:a9:02:cb:c9:
                    dc:db:83:f9:da:56:84:5e:a3:01:49:ce:91:56:ed:
                    b9:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            Authority Information Access: 
                CA Issuers - URI:http://secure.globalsign.com/cacert/gsgccr3ovtlsca2024.crt
                OCSP - URI:http://ocsp.globalsign.com/gsgccr3ovtlsca2024
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.2
                Policy: 1.3.6.1.4.1.4146.10.1.2
                  CPS: https://www.globalsign.com/repository/
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.globalsign.com/gsgccr3ovtlsca2024.crl
            X509v3 Subject Alternative Name: 
                DNS:cn-zhangjiakou.oss.aliyuncs.com, DNS:*.aliyuncs.com, DNS:*.cn-hangzhou.oss-cdn.aliyun-inc.com, DNS:*.cn-hangzhou.oss-internal-cross.aliyun-inc.com, DNS:*.cn-hangzhou.oss-internal.aliyun-inc.com, DNS:*.cn-hangzhou.oss-pub.aliyun-inc.com, DNS:*.cn-hangzhou.oss-share.aliyun-inc.com, DNS:*.cn-hangzhou.oss.aliyun-inc.com, DNS:*.cn-shanghai.oss-internal.aliyun-inc.com, DNS:*.cn-shanghai.oss-share.aliyun-inc.com, DNS:*.cn-shanghai.oss.aliyun-inc.com, DNS:*.cn-zhangjaikou-dualstack.oss.aliyuncs.com, DNS:*.cn-zhangjiakou-cross.mgw.aliyuncs.com, DNS:*.cn-zhangjiakou-d.oss.aliyun-inc.com, DNS:*.cn-zhangjiakou-dualstack.oss.aliyuncs.com, DNS:*.cn-zhangjiakou-g.oss-internal.aliyun-inc.com, DNS:*.cn-zhangjiakou-g.oss.aliyun-inc.com, DNS:*.cn-zhangjiakou.mgw.aliyuncs.com, DNS:*.cn-zhangjiakou.oss-cdn.aliyun-inc.com, DNS:*.cn-zhangjiakou.oss-console.aliyuncs.com, DNS:*.cn-zhangjiakou.oss.aliyuncs.com, DNS:*.oss-accelerate-overseas.aliyuncs.com, DNS:*.oss-accelerate.aliyuncs.com, DNS:*.oss-accesspoint.aliyuncs.com, DNS:*.oss-cdn.aliyun-inc.com, DNS:*.oss-cn-zhangjiakou-cross.aliyuncs.com, DNS:*.oss-cn-zhangjiakou-gd-internal.aliyuncs.com, DNS:*.oss-cn-zhangjiakou-gd.aliyuncs.com, DNS:*.oss-cn-zhangjiakou-internal.aliyuncs.com, DNS:*.oss-cn-zhangjiakou-internal.oss-accesspoint.aliyuncs.com, DNS:*.oss-cn-zhangjiakou-internal.oss-object-process.aliyuncs.com, DNS:*.oss-cn-zhangjiakou-spe-cross.aliyuncs.com, DNS:*.oss-cn-zhangjiakou-spe-internal.aliyuncs.com, DNS:*.oss-cn-zhangjiakou-spe.aliyuncs.com, DNS:*.oss-cn-zhangjiakou.aliyuncs.com, DNS:*.oss-cn-zhangjiakou.oss-accesspoint.aliyuncs.com, DNS:*.oss-cn-zhangjiakou.oss-object-process.aliyuncs.com, DNS:*.oss-enet.aliyuncs.com, DNS:*.oss-internal-cross.aliyun-inc.com, DNS:*.oss-internal.aliyun-inc.com, DNS:*.oss-pub.aliyun-inc.com, DNS:*.oss-share.aliyun-inc.com, DNS:*.oss.aliyun-inc.com, DNS:*.oss.aliyuncs.com, DNS:*.oss.cn-zhangjiakou.privatelink.aliyuncs.com, DNS:*.s3.oss-accelerate-overseas.aliyuncs.com, DNS:*.s3.oss-accelerate.aliyuncs.com, DNS:*.s3.oss-cn-zhangjiakou-internal.aliyuncs.com, DNS:*.s3.oss-cn-zhangjiakou.aliyuncs.com, DNS:oss.aliyun-inc.com
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Authority Key Identifier: 
                DA:D3:A8:08:48:0C:34:37:58:EE:E5:A7:75:2E:59:FC:D6:DC:3C:38
            X509v3 Subject Key Identifier: 
                02:16:1E:48:E5:68:1C:DC:1B:E7:F7:EF:68:8D:04:3D:76:53:D3:B0
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 12:F1:4E:34:BD:53:72:4C:84:06:19:C3:8F:3F:7A:13:
                                F8:E7:B5:62:87:88:9C:6D:30:05:84:EB:E5:86:26:3A
                    Timestamp : Feb  8 03:27:43.852 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:E0:29:11:6F:3E:5D:22:8A:50:EC:B5:
                                9A:3A:E1:78:31:3C:2F:2C:C7:A7:CA:7C:F4:A1:9D:66:
                                87:04:CC:EC:1B:02:21:00:8C:04:80:0B:04:87:1C:3E:
                                30:77:2B:CC:42:8D:B6:31:F9:4B:3D:69:3A:06:DD:E7:
                                DF:6C:4C:A7:F7:8C:8A:F0
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 0D:E1:F2:30:2B:D3:0D:C1:40:62:12:09:EA:55:2E:FC:
                                47:74:7C:B1:D7:E9:30:EF:0E:42:1E:B4:7E:4E:AA:34
                    Timestamp : Feb  8 03:27:43.893 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:F6:5D:45:F1:5D:68:5B:5C:B5:00:7B:
                                66:DD:5A:E1:0B:14:D1:72:14:55:D6:05:40:13:23:D5:
                                6D:20:4F:16:B9:02:21:00:EA:29:5A:78:B8:5B:A6:C2:
                                4D:7B:06:65:D5:BE:C2:FC:7A:0E:EC:5E:03:19:60:50:
                                95:87:4A:02:99:C0:AC:1B
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Feb  8 03:27:43.895 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:51:2C:5E:A3:38:DD:0C:B8:A2:2E:7F:14:
                                FC:7F:19:64:88:8F:2E:16:F6:86:5F:DB:73:C3:29:D3:
                                BE:48:FE:A6:02:21:00:EE:F8:17:DE:BE:E5:86:59:80:
                                02:0C:C6:39:21:25:B0:52:2B:23:13:10:D2:3E:B7:26:
                                D8:F8:E7:69:AD:D3:34
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        a0:ed:0e:2e:99:db:a8:9c:08:6b:23:01:51:3c:6c:24:bc:c5:
        cf:ed:c6:5e:0f:6d:b5:29:ab:fc:a6:7f:cd:5e:ae:43:a9:1e:
        93:fd:89:ba:f2:05:19:01:ba:46:de:78:41:d9:d3:c8:0e:a7:
        43:fa:79:58:94:47:17:6d:97:ed:96:b9:a8:95:d3:91:c7:a0:
        d3:7d:3f:18:ba:bf:e2:a6:24:2f:3b:31:cc:3f:85:8c:82:f9:
        6d:2b:fb:3f:04:86:08:96:e0:15:ac:91:6b:3c:9a:59:24:74:
        de:f1:87:b3:79:4b:d3:ea:20:50:6e:66:7b:2d:eb:20:1a:f1:
        45:34:c1:49:7c:fe:05:bf:05:df:ac:bb:fe:34:8d:58:6b:76:
        17:c5:a0:e9:1b:2c:b8:6b:59:24:2a:a1:33:7c:fe:fd:a0:6f:
        ed:e5:9a:24:cb:3f:be:23:59:94:8e:b5:13:d0:94:01:c5:73:
        6f:d7:cc:38:0f:66:da:ee:d5:3e:3a:ec:75:18:c2:80:fe:67:
        21:e3:02:35:b2:57:7f:a6:ea:cb:bd:3f:13:3f:08:90:09:f0:
        59:1d:ee:db:7f:4f:e3:22:f4:be:f7:8a:73:c1:6f:38:cf:b3:
        2f:5f:6f:3a:4b:92:d1:ed:7f:36:8c:92:59:b5:40:dd:a8:72:
        10:f1:b8:10

444 / tcp

-114163264 | 2025-03-12T10:19:28.222002

HTTP/1.1 302 Moved Temporarily
Server: nginx/1.22.1
Date: Wed, 12 Mar 2025 10:19:28 GMT
Content-Type: text/html
Content-Length: 145
Connection: close
Location: https://39.98.12.19:443/

<html>
<head><title>302 Found</title></head>
<body>
<center><h1>302 Found</h1></center>
<hr><center>nginx/1.22.1</center>
</body>
</html>

465 / tcp

897328069 | 2025-02-28T12:44:19.979138

220 mail.scott000.com ESMTP

554 / tcp

-1142488525 | 2025-03-12T14:41:03.036721

RTSP/1.0 401 Unauthorized
CSeq: 0

587 / tcp

745343730 | 2025-02-28T17:10:32.679730

220 smtp.qq.com Esmtp QQ Mail Server

593 / tcp

1308377066 | 2025-03-13T21:56:03.911586

ncacn_http/1.0

666 / tcp

2098053533 | 2025-03-17T18:16:23.008534

HTTP/1.1 401 Unauthorized
Server: nginx/1.17.7
Content-Type: text/html
Connection: keep-alive

771 / tcp

45131230 | 2025-03-17T23:10:29.257074

inv2W\x04\x0f\x00\x00\x00\x01\x00\t\x00\x00\x00

782 / tcp

45131230 | 2025-03-14T07:44:16.263830

inv2W\x04\x0f\x00\x00\x00\x01\x00\t\x00\x00\x00

789 / tcp

-122096153 | 2025-03-16T08:07:01.919970

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC\nClients:\n/*.*.*.*:11264[0](queued=0,recved=1,sent=0)\n\nLatency min/avg/max: 0/0.0/0\nReceived: 8557\nSent: 11410\nConnections: 1\nOutstanding: 0\nZxid: 0x332907ad3391\nMode: follower\nNode count: 104618

873 / tcp

-1970692834 | 2025-03-06T17:36:05.205033

@RSYNCD: 31.0\n@RSYNCD: EXIT\n

953 / tcp

-1428621233 | 2025-03-12T05:35:35.592313

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

992 / tcp

1814656027 | 2025-03-04T05:54:33.350050

HTTP/1.1 403 Forbidden
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
Keep-Alive: timeout=15; max=19

993 / tcp

-146605374 | 2025-02-27T11:36:17.425558

\x00[\xc2\x81\xc2\x8b\xc3\xa7\x7f\x00\x00

995 / tcp

689999346 | 2025-03-13T20:26:13.652030

+OK The Microsoft Exchange POP3 service is ready. [SgBIADAAUABSADAAMQBDAEEAMAAwADUAMgAuAGEAcABjAHAAcgBkADAAMQAuAHAAcgBvAGQALgBlAHgAYwBoAGEAbgBnAGUAbABhAGIAcwAuAGMAbwBtAA==]\r\n

1002 / tcp

-1730858130 | 2025-02-22T04:59:43.604465

RFB 003.008
VNC:
  Protocol Version: 3.8

1023 / tcp

-1681927087 | 2025-03-17T10:06:32.645872

kjnkjabhbanc283ubcsbhdc72

1027 / tcp

-1428621233 | 2025-02-26T07:24:21.625308

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

1099 / tcp

-1626979812 | 2025-03-17T09:57:35.927493

220 Service ready for new user.

1177 / tcp

-1136600457 | 2025-03-17T08:00:47.781432

HELO:10.3.6.0.false
AS:2048
HL:19

1198 / tcp

1618598266 | 2025-03-12T01:30:58.157476

HTTP/1.1 503 Service Unavailable
Content-Type: text/html
Cache-Control: no-cache, no-store
Connection: close
X-Iinfo: 13-201807867-0 0NNN RT(1704062972329 0) q(0 -1 -1 -1) r(0 -1)

1234 / tcp

1911457608 | 2025-03-13T08:56:15.296592

\x00[\x00\x00\x00\x00\x00\x00

1337 / tcp

-1453516345 | 2025-03-16T12:00:59.884479

HTTP/1.1 200 OK
Connection: close
Transfer-Encoding: chunked
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN

1387 / tcp

-445721795 | 2025-03-05T00:37:52.489797

\x00[\xc3\xaed\x1a\x7f\x00\x00

1414 / tcp

366084633 | 2025-03-17T17:25:18.148363

<HTML><HEAD><TITLE>Error</TITLE></HEAD><BODY><H1>Error</H1>Bad request or resource not found.</BODY></HTML>

1433 / tcp

-182670276 | 2025-03-17T03:52:57.769726

MSSQL Server\nVersion: 171050560 (0xa320640)\nSub-Build: 0\nEncryption:Not available\n\nMSSQL NTLM Info:\nTarget_Name: IZJ6FUBS9PLYUOZ\nProduct_Version: 6.3.9600 Ntlm 15\nOS: Windows 8.1/Windows Server 2012 R2\nNetBIOS_Domain_Name: IZJ6FUBS9PLYUOZ\nNetBIOS_Computer_Name: IZJ6FUBS9PLYUOZ\nDNS_Domain_Name: iZj6fubs9plyuoZ\nDNS_Computer_Name: iZj6fubs9plyuoZ\nSystem_Time: 2024-01-22 03:53:09 +0000 UTC\n\n

1494 / tcp

-1835577706 | 2025-03-06T13:27:37.638593

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset="UTF-8"
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Vary: Accept-Encoding
Cache-control: no-store
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"

1515 / tcp

539065883 | 2025-03-05T03:21:11.056176

1521 / tcp

1869192275 | 2025-02-28T21:08:27.015146

\n

1554 / tcp

1632932802 | 2025-02-18T19:40:17.225302

1588 / tcp

1332894250 | 2025-02-25T19:40:09.366246

\xc3\xbf\xc3\xbb\x01SOYO_SIP VBNQyQSKc settings\r\nPassword:

1599 / tcp

1778988322 | 2025-03-14T03:50:51.150301

* OK GroupWise IMAP4rev1 Server Ready

1605 / tcp

51259122 | 2025-02-20T20:35:00.908069

\r\nCP2E Control Console\r\nConnected to Host: gZI\r\n

1723 / tcp

-1608241410 | 2025-03-13T09:05:52.831461

Firmware: 1\nHostname: local\nVendor: linux\n

1800 / tcp

-249504111 | 2025-03-17T18:35:38.392756

\x00[xU-\x7f\x00\x00

1830 / tcp

-1730858130 | 2025-03-15T21:51:14.087354

RFB 003.008
VNC:
  Protocol Version: 3.8

1883 / tcp

-1428621233 | 2025-02-18T22:30:02.817782

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

1911 / tcp

1911457608 | 2025-03-13T00:45:21.970946

\x00[\x00\x00\x00\x00\x00\x00

1926 / tcp

2087396567 | 2025-03-15T11:29:21.066193

kjnkjabhbanc283ubcsbhdc72

1957 / tcp

-1399940268 | 2025-03-05T16:07:16.776731

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1971 / tcp

-42767839 | 2025-02-20T03:22:07.827580

RFB 005.000

VNC:
  Protocol Version: 5.0

1979 / tcp

-1399940268 | 2025-02-23T01:31:05.861308

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1983 / tcp

321971019 | 2025-03-16T20:25:31.531701

-ERR client ip is not in whitelist\r

1986 / tcp

819727972 | 2025-02-19T17:48:28.595356

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

2000 / tcp

-1746074029 | 2025-03-12T06:03:58.422181

101 imqbroker =unV\r\n

2003 / tcp

-375604792 | 2025-03-15T04:13:37.710343

220 Microsoft FTP Service

2008 / tcp

660175493 | 2025-03-12T09:15:21.890100

2021 / tcp

921225407 | 2025-03-03T20:02:06.960643

\x00\x00\x00\x04\x00\x00\x00\x00\x00

2030 / tcp

1233062890 | 2025-03-13T22:49:18.607432

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae212e_gwt27_22331-28963

2066 / tcp

-1648456501 | 2025-03-05T16:06:31.701442

\n\r\xc3\xbf\xc3\xbbUDo you want ANSI color? (Y/n)

2072 / tcp

2143387245 | 2025-02-18T22:09:55.535515

HTTP/1.1 408 Request Timeout
content-length: 0
co
nnection: close
date: Fri, 26 Nov 2021 07:46:40 GMT

2080 / tcp

1911457608 | 2025-03-17T17:30:02.304524

\x00[\x00\x00\x00\x00\x00\x00

2081 / tcp

-1399940268 | 2025-03-04T16:10:05.356427

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

2083 / tcp

-527005584 | 2025-02-24T09:58:03.892552

/0 0 L
/0 0 HUH

2087 / tcp

819727972 | 2025-03-11T22:04:31.522029

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

2108 / tcp

599074451 | 2025-03-11T04:39:54.258376

msg

2121 / tcp

2047379038 | 2025-03-15T17:20:54.189293

220 RS820Plus FTP server ready.

2134 / tcp

-1399940268 | 2025-02-20T19:20:57.252004

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

2154 / tcp

1830697416 | 2025-03-16T12:48:33.486197

HTTP/1.0 200 OK
Cache-Control: must-revalidate
Content-Length: 243
Content-Type: application/json
Server: CouchDB/3.2.0 (Erlang OTP/20)
X-Cloudant-Action: cloudantnosqldb.account-meta-info.read
X-Couch-Request-ID: a2da79eef6
X-Content-Type-Options: nosniff
X-Cloudant-Request-Class: unlimited
X-Cloudant-Backend: bm-cc-uk-01
Via: 1.0 lb1.bm-cc-uk-01 (Glum/1.101.1)

2156 / tcp

1911457608 | 2025-02-19T09:36:37.405373

\x00[\x00\x00\x00\x00\x00\x00

2181 / tcp

546151771 | 2025-03-08T11:48:05.770585

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC
Clients:
/*.*.*.*:11264[0](queued=0,recved=1,sent=0)

Latency min/avg/max: 0/0.0/0
Received: 8557
Sent: 11410
Connections: 1
Outstanding: 0
Zxid: 0x332907ad3391
Mode: follower
Node count: 104618

2222 / tcp

-18551454 | 2025-03-16T08:31:58.233439

SSH-2.0-OpenSSH_6.2_hpn13v11 FreeBSD-20130515\r\n\n

2259 / tcp

1911457608 | 2025-02-20T01:53:21.464074

\x00[\x00\x00\x00\x00\x00\x00

2266 / tcp

1308377066 | 2025-03-13T15:17:10.516282

ncacn_http/1.0

2345 / tcp

-1114821551 | 2025-02-20T17:55:40.496421

\xc3\xa3\r\n\r\n\x00\x01\x00K\x00vInvalid protocol verification, illegal ORMI request or request performed with an incompatible version of this protocol

2362 / tcp

1210754493 | 2025-02-22T13:51:40.655527

0\x0c\x02\x01\x01a\x07\n\x01\x00\x04\x00\x04\x00

2363 / tcp

-1399940268 | 2025-03-09T15:33:27.692370

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

2382 / tcp

-1036370807 | 2025-03-12T17:29:47.077220

JDWP-Handshake

2404 / tcp

-1013082686 | 2025-03-10T15:20:34.074124

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

2444 / tcp

-1996280214 | 2025-03-15T00:03:26.942719

\x06\x04\x05@

2455 / tcp

2087396567 | 2025-02-24T01:18:59.480622

kjnkjabhbanc283ubcsbhdc72

2554 / tcp

1011407350 | 2025-03-17T22:29:55.103162

* OK GroupWise IMAP4rev1 Server Ready\r\n

2555 / tcp

-1399940268 | 2025-03-07T17:24:32.235263

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

2561 / tcp

-784071826 | 2025-03-04T06:33:02.143883

SSH-2.0-OpenSSH_8.0

Vulnerabilities

2 4 5 1

2562 / tcp

-1888448627 | 2025-02-28T22:31:10.463709

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

2602 / tcp

1911457608 | 2025-03-17T11:29:03.738521

\x00[\x00\x00\x00\x00\x00\x00

2628 / tcp

-971970408 | 2025-02-23T17:53:03.711390

2761 / tcp

707919486 | 2025-02-24T01:30:16.887833

\x00\x06\xc2\x81\xc2\x81\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

2762 / tcp

819727972 | 2025-03-10T19:51:46.382246

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

3001 / tcp

-971970408 | 2025-03-15T02:17:13.785543

3007 / tcp

165188539 | 2025-02-28T12:43:13.605242

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

3011 / tcp

-1227409554 | 2025-03-06T23:40:25.433848

HTTP/1.1 500 Internal Server Error
Server: Zope/(2.13.23, python 1.7.18, linux2) ZServer/1.1
Content-Type: text/plain; charset=utf-8
Connection: close

3019 / tcp

1911457608 | 2025-03-17T20:33:12.641868

\x00[\x00\x00\x00\x00\x00\x00

3020 / tcp

-1327660293 | 2025-03-16T18:14:04.648944

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

3050 / tcp

-1399940268 | 2025-03-14T23:53:23.589450

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3056 / tcp

321971019 | 2025-03-11T06:47:05.822403

-ERR client ip is not in whitelist\r

3059 / tcp

1911457608 | 2025-02-26T08:13:39.006421

\x00[\x00\x00\x00\x00\x00\x00

3084 / tcp

-1248408558 | 2025-03-17T02:04:26.958275

220 MikroTik FTP server (MikroTik 6.44.3) ready

3085 / tcp

-1399940268 | 2025-02-22T18:43:52.514033

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3087 / tcp

165188539 | 2025-03-03T20:30:57.909377

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

3097 / tcp

-1045760528 | 2025-03-05T16:16:47.245145

HTTP/1.1 302 Found
Connection: close
Location: http://*.*.*.*/solr/

3098 / tcp

-1327660293 | 2025-03-15T10:25:34.025154

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

3099 / tcp

1911457608 | 2025-02-28T11:22:24.033447

\x00[\x00\x00\x00\x00\x00\x00

3117 / tcp

1308377066 | 2025-03-09T13:35:41.058256

ncacn_http/1.0

3130 / tcp

1767345577 | 2025-03-12T22:09:40.754315

Hello, this is Quagga (version 0T).
Copyright 1996-200

3132 / tcp

819727972 | 2025-03-12T05:17:44.452891

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

3133 / tcp

-136006866 | 2025-03-05T18:06:36.631589

STAT pid 1660\nSTAT uptime 28884\nSTAT time 1641290377\nSTAT version 1.2.1\nSTAT pointer_size 32\nSTAT curr_items 14\nSTAT total_items 3533\nSTAT bytes 30524\nSTAT curr_connections 1\nSTAT total_connections 3542\nSTAT connection_structures 3\nSTAT cmd_get 3533\nSTAT cmd_set 3533\nSTAT get_hits 3519\nSTAT get_misses 14\nSTAT bytes_read 7927780\nSTAT bytes_written 7848552\nSTAT limit_maxbytes 67108864\nEND

3144 / tcp

819727972 | 2025-03-05T21:49:36.025147

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

3152 / tcp

-1839934832 | 2025-03-17T00:28:27.631210

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

3156 / tcp

504717326 | 2025-02-27T01:04:29.380042

SSH-2.0-OpenSSH_8.6

Vulnerabilities

2 3 5 1

3168 / tcp

-1227409554 | 2025-03-09T21:51:25.675388

HTTP/1.1 500 Internal Server Error
Server: Zope/(2.13.23, python 1.7.18, linux2) ZServer/1.1
Content-Type: text/plain; charset=utf-8
Connection: close

3174 / tcp

1911457608 | 2025-02-24T22:58:22.149664

\x00[\x00\x00\x00\x00\x00\x00

3179 / tcp

-1399940268 | 2025-02-27T17:09:30.793324

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3180 / tcp

1134517380 | 2025-03-11T19:47:53.466361

welcome to Pandora console!\r\n----------------------------\n-------------------------\n|     Login Time     |     2021-12-08 1...\n

3193 / tcp

-1746074029 | 2025-03-15T18:54:45.980048

101 imqbroker =unV\r\n

3194 / tcp

1632932802 | 2025-02-22T01:44:09.662111

3260 / tcp

-862070606 | 2025-03-16T15:01:37.433664

Login Response Success(0x0000)\nKey/Value Pairs\nAuthMethod=None\nTargetAlias=LIO Target\nTargetPortalGroupTag=1\n\n

3268 / tcp

198844676 | 2025-03-14T08:32:20.116709

HTTP/1.1 404 Not Found
Server: Jetty/9.4.31.v20200723
Content-Type: text/plain; charset=utf-8
Connection: close

3269 / tcp

-1399940268 | 2025-03-16T20:58:45.304455

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3301 / tcp

-1737707071 | 2025-03-12T13:38:35.976512

\x00b\x00\x01\x00\x00\x00\x00x\x0b\x00\x00\x00\x00z\x00437

3306 / tcp

292351399 | 2025-03-14T12:14:48.910247

Mysql Version: 5.5.24-log \r\nN\\x00\\x00\\x00\n5.5.24-log\\x00\\x87\\x00\\x00\\x00uF>E}hpx\\x00\\xff\\xf7!\\x02\\x00\\x0f\\x80\\x15\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00-rx$GyO\\aT]Z\\x00mysql_native_password\\x00

3310 / tcp

1574088840 | 2025-02-24T18:41:51.835267

">Application and Content Networking Software 3.9</a>)\n</BODY><

3337 / tcp

2098371729 | 2025-03-17T11:00:54.470007

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>\nA<!DOCTYPE GANGLIA_XML [\n   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...\n

3341 / tcp

-2089734047 | 2025-03-15T22:42:42.457184

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

3388 / tcp

165188539 | 2025-02-19T20:56:10.691311

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

3389 / tcp

1131713579 | 2025-03-07T06:14:55.193110

Remote Desktop Protocol\n\\x03\\x00\\x00\\x13\\x0e\\xd0\\x00\\x00\\x124\\x00\\x02\\x0f\\x08\\x00\\x08\\x00\\x00\\x00\n\nFlag: PROTOCOL_HYBRID_EX\nTarget_Name: WL1BHKUZNIYOEK1\nProduct_Version: 6.3.9600 Ntlm 15\nOS: Windows 8.1/Windows Server 2012 R2\nNetBIOS_Domain_Name: WL1BHKUZNIYOEK1\nNetBIOS_Computer_Name: WL1BHKUZNIYOEK1\nDNS_Domain_Name: wl1bhkuzniyoek1q\nDNS_Computer_Name: wl1bhkuzniyoek1q\nSystem_Time: 2024-01-22 08:40:53 +0000 UTC\n\n

3402 / tcp

819727972 | 2025-02-28T17:36:38.830079

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

3404 / tcp

-1227409554 | 2025-02-20T18:24:31.338010

HTTP/1.1 500 Internal Server Error
Server: Zope/(2.13.23, python 1.7.18, linux2) ZServer/1.1
Content-Type: text/plain; charset=utf-8
Connection: close

3551 / tcp

198844676 | 2025-03-17T00:49:28.807270

HTTP/1.1 404 Not Found
Server: Jetty/9.4.31.v20200723
Content-Type: text/plain; charset=utf-8
Connection: close

3558 / tcp

-1399940268 | 2025-02-18T20:57:06.619653

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3562 / tcp

-2089734047 | 2025-03-05T04:56:45.922053

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

3790 / tcp

957278843 | 2025-02-27T15:46:31.258295

[|ox

3950 / tcp

-1839934832 | 2025-03-13T06:13:30.025908

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

3951 / tcp

-146605374 | 2025-02-20T20:37:05.415658

\x00[\xc2\x81\xc2\x8b\xc3\xa7\x7f\x00\x00

4000 / tcp

-801484042 | 2025-02-23T01:51:11.573678

ERR 27

4022 / tcp

-1730858130 | 2025-03-17T22:35:35.096699

RFB 003.008
VNC:
  Protocol Version: 3.8

4063 / tcp

1267517148 | 2025-03-17T23:14:50.412878

=Àÿÿ?"<ZDECWINDOWS Digital Equipment Corporation Digital UNIX V2eT03T7w_Q6

4072 / tcp

165188539 | 2025-03-10T16:01:07.916786

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

4080 / tcp

-1399940268 | 2025-03-13T07:54:31.506458

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

4100 / tcp

1282941221 | 2025-03-16T10:27:16.614143

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

4157 / tcp

119860953 | 2025-03-16T23:05:52.028178

* OK ArGoSoft Mail Server IMAP Module v.YW at

4282 / tcp

398077695 | 2025-02-23T18:47:07.153859

4344 / tcp

1911457608 | 2025-03-06T18:51:27.880079

\x00[\x00\x00\x00\x00\x00\x00

4369 / tcp

-2031152423 | 2025-02-20T23:33:04.002568

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

4433 / tcp

2087396567 | 2025-03-10T11:26:23.144449

kjnkjabhbanc283ubcsbhdc72

4434 / tcp

2087396567 | 2025-03-15T09:46:26.714103

kjnkjabhbanc283ubcsbhdc72

4443 / tcp

594761768 | 2025-02-25T18:10:17.293122

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae2a00_PS-NKG-01Aqo82_2843-52437

4444 / tcp

1911457608 | 2025-03-14T14:59:55.678348

\x00[\x00\x00\x00\x00\x00\x00

4463 / tcp

819727972 | 2025-03-13T16:49:25.818134

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

4482 / tcp

165188539 | 2025-03-17T06:15:45.408983

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

4500 / tcp

-1399940268 | 2025-02-23T15:40:20.724314

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

4506 / tcp

2087396567 | 2025-03-12T19:28:28.052768

kjnkjabhbanc283ubcsbhdc72

4524 / tcp

-2096652808 | 2025-03-08T11:45:48.150055

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

4786 / tcp

-2089734047 | 2025-03-09T21:44:13.851916

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

4808 / tcp

-358801646 | 2025-03-14T14:07:18.479178

SSH-2.0-OpenSSH_6.6.1

4899 / tcp

2087396567 | 2025-02-28T15:03:41.977570

kjnkjabhbanc283ubcsbhdc72

4911 / tcp

-457235091 | 2025-03-04T16:10:00.029103

audio 0 RTP/AVP 18 4 3 8 0 101\r\na

4949 / tcp

422524323 | 2025-03-12T18:06:27.328791

{
"Version": "3.4.18",
"VersionArray": [
3,
4,
18,
0
],
"GitVersion": "4410706bef6463369ea2f42399e9843903b31923",
"OpenSSLVersion": "",
"SysInfo": "",
"Bits": 64,
"Debug": false,
"MaxObjectSize": 16777216
}

5001 / tcp

1278527606 | 2025-03-14T21:04:34.609915

SSH-2.0-Teleport

5003 / tcp

-1327660293 | 2025-03-12T19:09:15.494308

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

5007 / tcp

-445721795 | 2025-03-17T21:39:51.032826

\x00[\xc3\xaed\x1a\x7f\x00\x00

5009 / tcp

-1122307493 | 2025-02-25T08:14:12.184326

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae1ed0_xz202_38367-12424

5010 / tcp

819727972 | 2025-03-17T23:12:07.731133

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

5025 / tcp

-2031152423 | 2025-03-15T23:24:33.788813

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

5080 / tcp

2142053271 | 2025-02-28T11:10:06.048267

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae1f56_PS-CKG-01SsH29_32268-8138

5083 / tcp

165188539 | 2025-03-14T15:51:04.305403

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

5123 / tcp

-2089734047 | 2025-02-25T10:40:05.255712

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

5140 / tcp

-1230049476 | 2025-03-13T11:49:19.150813

HTTP/1.0 200 OK
Connection: close
X-Powered-By: Undertow/1
Server: JBoss-EAP/7
Content-Type: text/html
Content-Length: 98
Accept-Ranges: bytes

5172 / tcp

1996932384 | 2025-02-18T20:56:18.419315

"raop" nonce

5201 / tcp

-2046514463 | 2025-03-03T22:05:37.934793

AB\x01\t

5222 / tcp

819727972 | 2025-02-26T09:01:15.400114

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

5225 / tcp

-1249500036 | 2025-03-13T00:42:07.110737

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html
Connection: keep-alive
Accept-Ranges: bytes

5230 / tcp

-1428621233 | 2025-02-28T20:18:44.921287

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

5243 / tcp

1911457608 | 2025-03-14T18:59:59.098067

\x00[\x00\x00\x00\x00\x00\x00

5247 / tcp

-180163620 | 2025-02-18T20:31:26.384397

NPC Telnet permit one connection.\r\n But One connection() already keep alive.\r\nGood Bye !! \r\n

5249 / tcp

-2031152423 | 2025-03-15T21:17:04.037230

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

5264 / tcp

-1265999252 | 2025-03-06T19:44:53.944619

220 VMware Authentication Daemon Version 1.0, ServerDaemonProto\ncol:SOAP, MKSDisplayProtocol:VNC , ,

5265 / tcp

-1839934832 | 2025-02-22T08:42:01.384555

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

5269 / tcp

1743272246 | 2025-02-25T15:47:42.398826

HTTP/1.1 400 Bad Request
Server: CWAP-waf
Content-Type: text/html
Connection: close
WZWS-RAY: 1249-1705940324.547-w-waf01nbzt

5271 / tcp

-1399940268 | 2025-03-17T20:16:22.331676

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5432 / tcp

-1730858130 | 2025-03-17T19:24:12.366357

RFB 003.008
VNC:
  Protocol Version: 3.8

5444 / tcp

165188539 | 2025-03-10T19:09:55.107838

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

5543 / tcp

-1730858130 | 2025-03-08T21:36:47.571098

RFB 003.008
VNC:
  Protocol Version: 3.8

5595 / tcp

-2096652808 | 2025-03-09T15:01:42.891909

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

5602 / tcp

1989907056 | 2025-02-19T13:47:02.133286

RTSP/1.0 453 Not Enough Bandwidth\r\nServer: AirTunes/7l_wZ\r\n\r\n

5672 / tcp

575925250 | 2025-02-18T23:08:24.072252

AMQP:\ncluster_name:rabbit@rabbitmq-0.rabbitmq-headless.rabbitmq.svc.cluster.local\ncopyright:Copyright (c) 2007-2021 VMware, Inc. or its affiliates.\ninformation:Licensed under the MPL 2.0. Website: https://rabbitmq.com\nplatform:Erlang/OTP 24.1\nproduct:RabbitMQ\nversion:3.9.7\nCapabilities:\npublisher_confirms:true\nexchange_exchange_bindings:true\nbasic.nack:true\nconsumer_cancel_notify:true\nconnection.blocked:true\nconsumer_priorities:true\nauthentication_failure_close:true\nper_consumer_qos:true\ndirect_reply_to:tru

5858 / tcp

819727972 | 2025-03-06T02:39:21.924729

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

5910 / tcp

175144872 | 2025-02-28T16:59:15.186979

HTTP/1.1 302 Moved Temporarily
Server: nginx
Content-Type: text/html
Connection: keep-alive
Location: https://222.174.85.210:5910/webclient

5938 / tcp

1574088840 | 2025-02-20T16:59:20.392668

">Application and Content Networking Software 3.9</a>)\n</BODY><

5992 / tcp

1948301213 | 2025-02-23T18:54:09.793955

RFB 003.003
VNC:
  Protocol Version: 3.3

6000 / tcp

-1097188123 | 2025-03-05T03:14:50.796420

[g\xc2\x95N\x7f

6001 / tcp

-1399940268 | 2025-03-14T05:05:33.819102

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

6002 / tcp

-1609150592 | 2025-03-15T23:01:43.543765

ÿÿÿ
0 ...

6264 / tcp

-274082663 | 2025-03-09T21:10:46.621644

\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01

6379 / tcp

321971019 | 2025-02-19T12:34:08.647713

-ERR client ip is not in whitelist\r

6380 / tcp

321971019 | 2025-03-13T01:28:51.187699

-ERR client ip is not in whitelist\r

6633 / tcp

-1733645023 | 2025-02-28T20:37:52.468708

SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.10

6666 / tcp

4935895 | 2025-03-04T17:19:39.128920

HTTP/1.1 400 Bad Request
Server: CloudWAF

6667 / tcp

-358801646 | 2025-03-16T12:53:55.539032

SSH-2.0-OpenSSH_6.6.1

6668 / tcp

819727972 | 2025-03-05T00:37:13.742514

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

6755 / tcp

819727972 | 2025-03-06T15:31:45.199781

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

6775 / tcp

-2089734047 | 2025-03-07T06:27:47.233979

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

6887 / tcp

-1730858130 | 2025-02-23T09:14:24.210003

RFB 003.008
VNC:
  Protocol Version: 3.8

7001 / tcp

1265582946 | 2025-03-13T10:02:05.579750

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae2838_PS-JJN-01GM465_27752-26327

7006 / tcp

-2017887953 | 2025-03-17T23:58:18.080794

SSH-2.0-OpenSSH_7.9

Vulnerabilities

2 4 10 1

7011 / tcp

-1399940268 | 2025-03-13T21:44:08.332178

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

7013 / tcp

1161309183 | 2025-03-16T09:22:28.068705

ProxyServer is ready

7050 / tcp

1308377066 | 2025-03-04T03:42:49.763267

ncacn_http/1.0

7102 / tcp

1911457608 | 2025-03-10T22:25:15.353309

\x00[\x00\x00\x00\x00\x00\x00

7218 / tcp

962700458 | 2025-03-16T03:32:46.008705

7302 / tcp

-441419608 | 2025-03-08T17:33:11.179461

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

7415 / tcp

-358801646 | 2025-02-27T21:23:17.227977

SSH-2.0-OpenSSH_6.6.1

7433 / tcp

-653033013 | 2025-02-26T21:26:47.032445

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

7434 / tcp

104385780 | 2025-03-14T10:03:55.119190

ceph v2

7654 / tcp

-2089734047 | 2025-03-09T09:19:53.427312

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

7799 / tcp

-2031152423 | 2025-03-13T21:18:30.152571

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

7989 / tcp

0 | 2025-02-24T03:29:33.415476

Hashes

hash

-119996482

http.dom_hash

http.html_hash

HTTP/1.1 408 Request Timeout
Content-Length: 0

8001 / tcp

2103111368 | 2025-03-16T18:04:28.187221

HTTP/1.0 403 Access denied
Server: tinyproxy/1.8.3
0AContent-Type: text/html
Connection: close

<?...

8002 / tcp

1492413928 | 2025-03-16T12:31:36.994958

SSH-2.0-OpenSSH_7.5

Vulnerabilities

2 3 13 1

8009 / tcp

819727972 | 2025-02-22T21:25:33.284831

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

8026 / tcp

1011407350 | 2025-03-04T01:13:04.422408

* OK GroupWise IMAP4rev1 Server Ready\r\n

8027 / tcp

-1399940268 | 2025-02-28T05:56:32.004430

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8028 / tcp

1492413928 | 2025-03-09T20:01:50.191678

SSH-2.0-OpenSSH_7.5

Vulnerabilities

2 3 12 1

8033 / tcp

165188539 | 2025-02-24T08:27:26.831603

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

8048 / tcp

632542934 | 2025-02-25T12:20:38.031463

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

8050 / tcp

-1375131644 | 2025-02-26T18:53:27.383947

\x00[v\xc3\xbdC\x7f\x00\x00

8052 / tcp

1911457608 | 2025-03-06T22:14:10.703185

\x00[\x00\x00\x00\x00\x00\x00

8079 / tcp

-1839934832 | 2025-02-21T21:10:16.421784

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

8081 / tcp

-1839934832 | 2025-03-11T08:52:52.130836

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

8085 / tcp

339872247 | 2025-02-26T17:55:09.762689


0 ...

8087 / tcp

-1013082686 | 2025-02-24T23:26:55.494571

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

8101 / tcp

819727972 | 2025-02-28T06:44:36.590817

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

8106 / tcp

-358801646 | 2025-02-23T08:51:11.201333

SSH-2.0-OpenSSH_6.6.1

8116 / tcp

1911457608 | 2025-02-20T11:14:55.212700

\x00[\x00\x00\x00\x00\x00\x00

8118 / tcp

-1399940268 | 2025-02-25T12:21:56.781472

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8126 / tcp

2087396567 | 2025-02-21T17:53:04.786037

kjnkjabhbanc283ubcsbhdc72

8131 / tcp

-1399940268 | 2025-02-25T17:58:52.713280

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8139 / tcp

2087396567 | 2025-03-14T06:26:32.234533

kjnkjabhbanc283ubcsbhdc72

8140 / tcp

2087396567 | 2025-03-14T14:45:08.551387

kjnkjabhbanc283ubcsbhdc72

8144 / tcp

165188539 | 2025-03-16T16:04:37.470022

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

8145 / tcp

-1996280214 | 2025-03-06T03:02:55.272346

\x06\x04\x05@

8146 / tcp

-1059554316 | 2025-03-16T01:49:02.619244

\xc2\xa5A\x00\x01\x00\x00\x00,\x00\x00\x00\x02\x00\x00\x00L\x00\x00\x00\x08Connect\x00\x00\x00\x00x\x00\x00\x00\x0857222\x00\x00\x00

8179 / tcp

820958131 | 2025-03-09T04:37:53.982698

kjnkjabhbanc283ubcsbhdc72\x02

8181 / tcp

1308377066 | 2025-03-11T19:58:57.324564

ncacn_http/1.0

8185 / tcp

820958131 | 2025-02-26T18:54:39.083876

kjnkjabhbanc283ubcsbhdc72\x02

8189 / tcp

1189133115 | 2025-02-27T08:21:36.399596

SSH-2.0-OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.8

8236 / tcp

1615193817 | 2025-03-17T00:08:28.438705

Hello, this is FRRouting (version 4.0).\r\r\nCopyright 19\n96-2005 Kunihiro Ishiguro, et al.\r\r\n\r\r\n\r\nUse...\n

8249 / tcp

51259122 | 2025-02-23T17:07:46.427491

\r\nCP2E Control Console\r\nConnected to Host: gZI\r\n

8250 / tcp

632542934 | 2025-03-17T20:39:34.728831

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

8333 / tcp

1944032451 | 2025-03-06T21:22:12.711987

K\\x02%~)J/\\tHjU(IAGENT = (AGENT_VERSION = 2388790170)(RPC_VERSION = 5..722))

8381 / tcp

1642597142 | 2025-03-05T15:42:17.021705

\x00y\xc3\x90\x02\xc3\xbf\xc3\xbf\x00s\x12L\x00\x06\x11I\x00\x08\x00N\x11S\x00\xc3\x93

8384 / tcp

-136006866 | 2025-03-06T23:34:51.020033

STAT pid 1660\nSTAT uptime 28884\nSTAT time 1641290377\nSTAT version 1.2.1\nSTAT pointer_size 32\nSTAT curr_items 14\nSTAT total_items 3533\nSTAT bytes 30524\nSTAT curr_connections 1\nSTAT total_connections 3542\nSTAT connection_structures 3\nSTAT cmd_get 3533\nSTAT cmd_set 3533\nSTAT get_hits 3519\nSTAT get_misses 14\nSTAT bytes_read 7927780\nSTAT bytes_written 7848552\nSTAT limit_maxbytes 67108864\nEND

8413 / tcp

2098371729 | 2025-02-27T04:32:34.453042

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>\nA<!DOCTYPE GANGLIA_XML [\n   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...\n

8432 / tcp

366084633 | 2025-02-20T23:22:19.734389

<HTML><HEAD><TITLE>Error</TITLE></HEAD><BODY><H1>Error</H1>Bad request or resource not found.</BODY></HTML>

8473 / tcp

-1019343788 | 2025-03-06T19:24:30.742247

W!\x00\x00\x00\x00

8475 / tcp

-303199180 | 2025-03-15T22:45:27.833608

Content-Type: text/rude-rejection\nContent-Length: 24\n\n\nAccess Denied, go away.\nContent-Type: text/disconnect-notice\nC...\n

8488 / tcp

-2089734047 | 2025-03-12T10:45:17.594491

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

8500 / tcp

410249975 | 2025-02-25T15:10:53.231442

LNS READY<>

8513 / tcp

921225407 | 2025-03-15T01:37:33.182275

\x00\x00\x00\x04\x00\x00\x00\x00\x00

8532 / tcp

921225407 | 2025-02-18T17:50:06.739604

\x00\x00\x00\x04\x00\x00\x00\x00\x00

8554 / tcp

-288825733 | 2025-03-15T08:39:41.831381

HTTP/1.1 200 OK
Connection: close
Content-Length: 2619
Accept-Ranges: bytes
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: authorization,Content-Type
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, HEAD, DELETE
Content-Type: text/html
Server: Jetty(9.4.14.v20181114)
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1

8567 / tcp

-1399940268 | 2025-03-12T20:45:15.692537

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8590 / tcp

575925250 | 2025-02-21T18:59:39.015229

AMQP:\ncluster_name:rabbit@rabbitmq-0.rabbitmq-headless.rabbitmq.svc.cluster.local\ncopyright:Copyright (c) 2007-2021 VMware, Inc. or its affiliates.\ninformation:Licensed under the MPL 2.0. Website: https://rabbitmq.com\nplatform:Erlang/OTP 24.1\nproduct:RabbitMQ\nversion:3.9.7\nCapabilities:\npublisher_confirms:true\nexchange_exchange_bindings:true\nbasic.nack:true\nconsumer_cancel_notify:true\nconnection.blocked:true\nconsumer_priorities:true\nauthentication_failure_close:true\nper_consumer_qos:true\ndirect_reply_to:tru

8602 / tcp

-2031152423 | 2025-02-20T20:17:33.669104

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

8606 / tcp

410249975 | 2025-03-09T20:28:04.160418

LNS READY<>

8686 / tcp

632542934 | 2025-02-22T13:05:53.678139

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

8706 / tcp

-1099385124 | 2025-02-19T05:30:39.568238

"Magic:ActiveMQ\nVersion:12\n\x00\x00\x01<\x01ActiveMQ\x00\x00\x00\x0c\x01\x00\x00\x01*\x00\x00\x00\x0c\x00\x11TcpNoDelayEnabled\x01\x01\x00\x12SizePrefixDisabled\x01\x00\x00 CacheSize\x05\x00\x00\x04\x00\x00\x0cProviderName \x00\x08ActiveMQ\x00\x11StackTraceEnabled\x01\x01\x00\x0fPlatformDetails \x00\x04Java\x00\x0cCacheEnabled\x01\x01\x00\x14TightEncodingEnabled\x01\x01\x00\x0cMaxFrameSize\x06\x00\x00\x00\x00\x06@\x00\x00\x00\x15MaxInac

8784 / tcp

50497985 | 2025-03-09T10:13:37.439169

\x00[\xc3\x88\xc3\x9dS\x7f\x00\x00

8804 / tcp

819727972 | 2025-02-25T21:45:35.642055

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

8825 / tcp

-653033013 | 2025-03-05T10:10:25.863059

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

8829 / tcp

-1810987450 | 2025-03-12T14:56:25.246079

\xc3\xbf

8841 / tcp

-1045760528 | 2025-03-10T07:05:51.640397

HTTP/1.1 302 Found
Connection: close
Location: http://*.*.*.*/solr/

8857 / tcp

-1611764932 | 2025-03-16T00:42:59.062289

\x03\x00\x00\x10\x08\x02\xc2\x80\x00}\x08\x02\xc2\x80\xc3\xa2\x14\x01\x00

8861 / tcp

-1399940268 | 2025-03-15T05:08:47.798542

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8871 / tcp

-1730858130 | 2025-02-19T20:34:44.857901

RFB 003.008
VNC:
  Protocol Version: 3.8

8879 / tcp

2121220663 | 2025-02-23T21:41:42.038782

SSH-58-Ingrian_SSH\r\n

8889 / tcp

-616720387 | 2025-03-17T06:10:34.127771

SSH-2.0-SSHD_0.7.6

8890 / tcp

-1399940268 | 2025-03-15T17:38:07.740580

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8891 / tcp

1911457608 | 2025-02-26T20:14:45.634284

\x00[\x00\x00\x00\x00\x00\x00

8943 / tcp

-1099385124 | 2025-02-24T23:02:35.256373

"Magic:ActiveMQ\nVersion:12\n\x00\x00\x01<\x01ActiveMQ\x00\x00\x00\x0c\x01\x00\x00\x01*\x00\x00\x00\x0c\x00\x11TcpNoDelayEnabled\x01\x01\x00\x12SizePrefixDisabled\x01\x00\x00 CacheSize\x05\x00\x00\x04\x00\x00\x0cProviderName \x00\x08ActiveMQ\x00\x11StackTraceEnabled\x01\x01\x00\x0fPlatformDetails \x00\x04Java\x00\x0cCacheEnabled\x01\x01\x00\x14TightEncodingEnabled\x01\x01\x00\x0cMaxFrameSize\x06\x00\x00\x00\x00\x06@\x00\x00\x00\x15MaxInac

9000 / tcp

-1795676121 | 2025-02-26T07:15:59.076318

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65aded01_PS-000-01XB730_6341-708

9022 / tcp

-1470145161 | 2025-03-17T21:59:57.434503

SSH-2.0-ROSSSH\r\n

9036 / tcp

-2096652808 | 2025-02-25T15:29:57.312228

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

9042 / tcp

671605376 | 2025-03-15T08:32:24.747789

SSH-2.0-OpenSSH_X.X

9043 / tcp

1996932384 | 2025-03-17T08:15:52.759444

"raop" nonce

9046 / tcp

51259122 | 2025-02-25T20:33:52.114390

\r\nCP2E Control Console\r\nConnected to Host: gZI\r\n

9051 / tcp

-971970408 | 2025-03-11T14:55:36.880397

9053 / tcp

921225407 | 2025-03-16T07:08:05.165289

\x00\x00\x00\x04\x00\x00\x00\x00\x00

9065 / tcp

-1888448627 | 2025-03-05T22:01:41.571666

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

9070 / tcp

-1399940268 | 2025-03-16T02:27:52.849845

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9075 / tcp

1911457608 | 2025-03-14T00:05:51.242906

\x00[\x00\x00\x00\x00\x00\x00

9088 / tcp

1308377066 | 2025-03-09T18:37:57.868114

ncacn_http/1.0

9091 / tcp

2087396567 | 2025-03-09T22:07:59.578651

kjnkjabhbanc283ubcsbhdc72

9092 / tcp

1353260875 | 2025-03-09T20:25:24.935542

\x00[g\xc2\x95N\x7f\x00\x00

9100 / tcp

410249975 | 2025-02-20T01:47:51.169134

LNS READY<>

9119 / tcp

-2089734047 | 2025-03-12T20:59:28.042718

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

9151 / tcp

873425297 | 2025-02-27T15:40:22.927412

200 NOD32SS 99 (3318497116)

9155 / tcp

321971019 | 2025-03-04T08:05:33.736953

-ERR client ip is not in whitelist\r

9162 / tcp

205347087 | 2025-02-20T12:25:46.477914

SSH-25453-Cisco-3524665.35\n

9169 / tcp

819727972 | 2025-03-04T22:12:30.949300

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

9170 / tcp

1642597142 | 2025-03-09T21:11:16.322663

\x00y\xc3\x90\x02\xc3\xbf\xc3\xbf\x00s\x12L\x00\x06\x11I\x00\x08\x00N\x11S\x00\xc3\x93

9187 / tcp

1991883981 | 2025-02-24T23:39:13.930466

B\x00\x00\x00\xc3\xbfn\x04Too many connections

9202 / tcp

669849225 | 2025-03-14T19:30:34.504523

SSH-98.60-SysaxSSH_81885..42\r\n

9216 / tcp

1161309183 | 2025-03-11T10:53:27.250803

ProxyServer is ready

9219 / tcp

-1399940268 | 2025-02-20T23:20:13.856703

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9241 / tcp

-2089734047 | 2025-02-19T00:21:20.595683

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

9333 / tcp

-1399940268 | 2025-03-03T23:14:49.253333

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9376 / tcp

1615193817 | 2025-02-22T05:11:13.081394

Hello, this is FRRouting (version 4.0).\r\r\nCopyright 19\n96-2005 Kunihiro Ishiguro, et al.\r\r\n\r\r\n\r\nUse...\n

9398 / tcp

-1839934832 | 2025-03-17T15:36:38.477561

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

9418 / tcp

1529351907 | 2025-03-16T06:54:52.090838

HTTP/1.1 407 OK
Content-Type: text/plain; charset=utf-8
Connection: keep-alive

please add white ip *.*.*.*

9458 / tcp

-2096652808 | 2025-02-26T09:12:27.688465

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

9500 / tcp

-1991224470 | 2025-02-20T11:06:17.342273

\\x00\\x00\\x00\\x01\\x00\\x00\\x00\\x14TP/1.1\r\n\\x00\\x00\\x00\\x00&

9600 / tcp

1308377066 | 2025-03-13T20:34:57.319844

ncacn_http/1.0

9696 / tcp

165188539 | 2025-03-07T18:27:17.552855

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

9710 / tcp

-2096652808 | 2025-03-10T08:59:55.293229

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

9758 / tcp

740837454 | 2025-02-20T09:54:34.836206

SSH-2.0-OpenSSH_5.3

Vulnerabilities

3 9 19 5

9803 / tcp

-1399940268 | 2025-03-15T19:01:49.368433

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9876 / tcp

1977569953 | 2025-02-21T18:19:23.441550

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae2987_PS-SHA-01Jtm19_12756-43634

9898 / tcp

1320285193 | 2025-02-25T22:27:04.492464

HTTP/1.1 404 Not Found
Server: CloudWAF
Content-Type: text/html
Connection: keep-alive

9900 / tcp

492642197 | 2025-03-06T01:51:07.020752

HTTP/1.1 404 Not Found
Content-Type: text/plain; charset=utf-8
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Non-Compliaence: CK6u06Vu4

9943 / tcp

1833368189 | 2025-03-17T14:47:36.945175

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae18b9_dong118_31397-16667

9997 / tcp

1911457608 | 2025-03-06T08:00:07.326704

\x00[\x00\x00\x00\x00\x00\x00

9998 / tcp

372433470 | 2025-03-06T02:48:34.841551

HTTP/1.1 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm=""

9999 / tcp

1161309183 | 2025-03-08T19:39:50.972193

ProxyServer is ready

10000 / tcp

-1139539254 | 2025-03-14T15:23:29.693783

\xc3\xbf\xc3\xbb\x01\n\rno data rcvd for version string\n\rrecv version id unsuccessful\n\rSSH Session task 0xY: Version Exchange Failed\n\r

10001 / tcp

1492413928 | 2025-03-17T08:43:27.218476

SSH-2.0-OpenSSH_7.5

Vulnerabilities

2 3 13 1

10032 / tcp

-1329831334 | 2025-03-16T17:42:14.122520

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00 \x00\x00\n04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00\\...\n

10034 / tcp

-2089734047 | 2025-02-28T19:30:06.235660

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

10041 / tcp

-2107996212 | 2025-03-12T19:52:35.934774

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

10043 / tcp

-1399940268 | 2025-03-07T18:34:57.106336

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

10081 / tcp

1504401647 | 2025-02-22T23:17:56.693963

:dircproxy NOTICE AUTH :Looking up your hostname...\r\n:dircproxy NOTICE AUTH :Got your hostname.\r\n

10084 / tcp

819727972 | 2025-02-25T20:48:52.705682

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

10089 / tcp

1911457608 | 2025-03-16T22:01:03.585060

\x00[\x00\x00\x00\x00\x00\x00

10090 / tcp

-1428621233 | 2025-03-04T00:57:43.620190

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

10101 / tcp

-2033111675 | 2025-03-05T21:33:27.796114

~djb

10240 / tcp

575925250 | 2025-03-16T11:52:42.430085

AMQP:\ncluster_name:rabbit@rabbitmq-0.rabbitmq-headless.rabbitmq.svc.cluster.local\ncopyright:Copyright (c) 2007-2021 VMware, Inc. or its affiliates.\ninformation:Licensed under the MPL 2.0. Website: https://rabbitmq.com\nplatform:Erlang/OTP 24.1\nproduct:RabbitMQ\nversion:3.9.7\nCapabilities:\npublisher_confirms:true\nexchange_exchange_bindings:true\nbasic.nack:true\nconsumer_cancel_notify:true\nconnection.blocked:true\nconsumer_priorities:true\nauthentication_failure_close:true\nper_consumer_qos:true\ndirect_reply_to:tru

10255 / tcp

321971019 | 2025-02-27T03:51:54.581983

-ERR client ip is not in whitelist\r

10302 / tcp

-1839934832 | 2025-02-26T19:55:19.448611

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

10398 / tcp

-1888448627 | 2025-03-07T13:25:30.138742

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

10443 / tcp

-937907287 | 2025-02-26T12:38:21.399738

HTTP/1.1 302 Moved Temporarily
Server: nginx/1.22.1
Date: Wed, 26 Feb 2025 12:38:21 GMT
Content-Type: text/html
Content-Length: 145
Connection: close
Location: https://39.98.12.19:443/

<html>
<head><title>302 Found</title></head>
<body>
<center><h1>302 Found</h1></center>
<hr><center>nginx/1.22.1</center>
</body>
</html>

10445 / tcp

-616720387 | 2025-03-10T09:43:46.304123

SSH-2.0-SSHD_0.7.6

10480 / tcp

1911457608 | 2025-03-08T19:45:55.312639

\x00[\x00\x00\x00\x00\x00\x00

10533 / tcp

1189133115 | 2025-02-27T20:51:40.729422

SSH-2.0-OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.8

10909 / tcp

-1327660293 | 2025-03-06T20:13:12.148006

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

11000 / tcp

819727972 | 2025-02-19T21:35:24.980146

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

11007 / tcp

2098371729 | 2025-02-26T20:27:45.302996

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>\nA<!DOCTYPE GANGLIA_XML [\n   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...\n

11110 / tcp

-1426182427 | 2025-03-03T21:03:23.073242

\\x00[\\x00\\x00\\x00\\x00\\x00\\x00

11111 / tcp

-1598265216 | 2025-02-19T07:14:23.665148

@RSYNCD: 31.0

11112 / tcp

1911457608 | 2025-03-04T05:30:41.369189

\x00[\x00\x00\x00\x00\x00\x00

11210 / tcp

1767345577 | 2025-03-04T08:12:05.886277

Hello, this is Quagga (version 0T).
Copyright 1996-200

11288 / tcp

-1729629024 | 2025-03-14T07:30:11.017442

101 imqbroker =unV

12000 / tcp

1734465113 | 2025-02-18T21:40:32.926653

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
WZWS-RAY: 1249-1705938548.385-w-waf05cqt

12115 / tcp

1623746877 | 2025-02-23T21:44:31.986305

500 Permission denied - closing connection.\r\n

12129 / tcp

-2089734047 | 2025-03-04T21:53:03.761870

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

12130 / tcp

-1795027372 | 2025-02-22T18:07:22.447837

\xc3\xbf\xc3\xbd"\r\nLinuxNode v06953 (ggfks)\r\n\r\nlogin:

12133 / tcp

-2031152423 | 2025-02-21T17:52:49.513282

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

12142 / tcp

1011407350 | 2025-02-20T16:51:04.990993

* OK GroupWise IMAP4rev1 Server Ready\r\n

12175 / tcp

1726594447 | 2025-03-03T19:21:15.613777

\r\n\nLantronix MSS100 Version V118/523(045538937)\n\r\nType HELP at the \'Local_61349> \' prompt for assistance.\n\r\n\r\n\nUsername>

12212 / tcp

-1399940268 | 2025-03-14T20:28:36.185415

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12236 / tcp

-1947777893 | 2025-02-26T08:56:23.768833

"Broadband Router"\r\n\r\n<HTML><HEAD><TITLE>401 Unauthorized</TITLE></HEAD><BODY onLoad

12260 / tcp

1911457608 | 2025-02-23T13:49:38.338946

\x00[\x00\x00\x00\x00\x00\x00

12277 / tcp

-980525298 | 2025-03-05T18:50:59.647483

\x01\x00\x00\x00\n\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

12279 / tcp

-1399940268 | 2025-03-04T19:09:48.601225

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12288 / tcp

819727972 | 2025-02-26T17:11:29.956330

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

12294 / tcp

1665283070 | 2025-02-24T01:31:49.566315

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x01\x00\x00\x10\x00\x00\n0\x03\x00\x00\x00\x01\x00\x05\x00\x00@\x00\x00\x06\x00\x00\x1f@

12295 / tcp

-1839934832 | 2025-03-11T12:40:11.498279

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

12302 / tcp

-1045760528 | 2025-03-10T18:06:43.294349

HTTP/1.1 302 Found
Connection: close
Location: http://*.*.*.*/solr/

12322 / tcp

-1399940268 | 2025-03-12T19:05:59.954713

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12327 / tcp

-2089734047 | 2025-02-19T06:23:55.480958

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

12341 / tcp

1632932802 | 2025-03-04T20:21:01.485646

12345 / tcp

1748152518 | 2025-03-14T04:17:01.305762

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae26f8_hwt112_4105-46187

12350 / tcp

45131230 | 2025-03-08T17:23:00.796656

inv2W\x04\x0f\x00\x00\x00\x01\x00\t\x00\x00\x00

12361 / tcp

819727972 | 2025-03-09T19:40:57.441792

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

12371 / tcp

-1626979812 | 2025-02-22T08:55:57.286163

220 Service ready for new user.

12377 / tcp

-1399940268 | 2025-03-13T00:14:56.386986

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12381 / tcp

1519486042 | 2025-03-13T04:45:11.158520

<KU_goodbye>Protocol Error: XML data is not well-formed.</KU_goodbye>

12386 / tcp

921225407 | 2025-02-18T20:50:52.939625

\x00\x00\x00\x04\x00\x00\x00\x00\x00

12397 / tcp

320677201 | 2025-02-19T17:26:12.273002

H\x00\x00\x00\xc3\xbfj\x04Host \'101.133.140.114\' is not allowed to \nconnect to this MySQL server

12420 / tcp

-1399940268 | 2025-03-15T22:25:10.658123

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12426 / tcp

165188539 | 2025-02-26T04:08:56.014887

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

12446 / tcp

921225407 | 2025-02-24T20:00:57.921579

\x00\x00\x00\x04\x00\x00\x00\x00\x00

12447 / tcp

-2096652808 | 2025-03-12T10:39:25.413108

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

12457 / tcp

819727972 | 2025-03-15T05:47:15.145096

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

12463 / tcp

-1888448627 | 2025-02-28T10:26:35.812480

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

12490 / tcp

1991883981 | 2025-03-07T18:43:54.629271

B\x00\x00\x00\xc3\xbfn\x04Too many connections

12494 / tcp

1911457608 | 2025-03-14T05:49:18.791371

\x00[\x00\x00\x00\x00\x00\x00

12506 / tcp

-1399940268 | 2025-03-12T08:58:35.070632

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12513 / tcp

-1399940268 | 2025-02-21T20:24:49.577648

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12514 / tcp

639175818 | 2025-03-12T18:18:51.598444

\r\nSurnom.\r\nSorry, that nickname format is invalid.\r\n

12528 / tcp

408230060 | 2025-03-13T11:30:32.944927

\r\nSorry, that nickname format is invalid.\r\n

12529 / tcp

1911457608 | 2025-03-13T04:01:53.057647

\x00[\x00\x00\x00\x00\x00\x00

12530 / tcp

2098371729 | 2025-03-09T19:19:33.652345

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>\nA<!DOCTYPE GANGLIA_XML [\n   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...\n

12541 / tcp

-2089734047 | 2025-02-25T21:22:49.315958

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

12560 / tcp

-136006866 | 2025-02-25T15:18:55.148659

STAT pid 1660\nSTAT uptime 28884\nSTAT time 1641290377\nSTAT version 1.2.1\nSTAT pointer_size 32\nSTAT curr_items 14\nSTAT total_items 3533\nSTAT bytes 30524\nSTAT curr_connections 1\nSTAT total_connections 3542\nSTAT connection_structures 3\nSTAT cmd_get 3533\nSTAT cmd_set 3533\nSTAT get_hits 3519\nSTAT get_misses 14\nSTAT bytes_read 7927780\nSTAT bytes_written 7848552\nSTAT limit_maxbytes 67108864\nEND

12564 / tcp

1543809371 | 2025-03-08T21:56:14.370357

220 corpease.net Anti-spam GT for Coremail System (icmhosting[2\n0181212])

13333 / tcp

-1399940268 | 2025-02-20T13:45:15.625965

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

14147 / tcp

-1399940268 | 2025-03-04T00:31:20.402093

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

14265 / tcp

321971019 | 2025-03-06T15:55:09.236085

-ERR client ip is not in whitelist\r

14344 / tcp

1308377066 | 2025-03-17T07:58:47.956032

ncacn_http/1.0

14402 / tcp

-1327660293 | 2025-03-14T11:56:09.381361

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

14875 / tcp

165188539 | 2025-03-17T22:48:06.180263

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

14903 / tcp

493955023 | 2025-03-14T12:53:46.664055

\x00\x00\x0c\x04\x00\x00\x00\x00\x00\x00\x04\x00\x10\x00\x00\x00\n0\x05\x00\x00@\x00

15040 / tcp

1996932384 | 2025-02-28T19:47:13.615483

"raop" nonce

15082 / tcp

51259122 | 2025-03-05T21:52:41.120336

\r\nCP2E Control Console\r\nConnected to Host: gZI\r\n

15084 / tcp

50497985 | 2025-03-17T15:33:02.948697

\x00[\xc3\x88\xc3\x9dS\x7f\x00\x00

15443 / tcp

-653033013 | 2025-03-14T05:44:44.254257

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

16006 / tcp

117101543 | 2025-03-08T20:25:30.819064

\x18\x01\x00\x00\x14\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\n0\x0c\x00\x04\x00\x00\x00\x08\x00\n\x00\x00\x00d\x04\x00\x00\xc3\xb8\x00...\n

16027 / tcp

117101543 | 2025-03-04T14:05:54.274123

\x18\x01\x00\x00\x14\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\n0\x0c\x00\x04\x00\x00\x00\x08\x00\n\x00\x00\x00d\x04\x00\x00\xc3\xb8\x00...\n

16050 / tcp

-1476017887 | 2025-02-23T00:57:51.620002

N\x00\x00\x00\n5.6.40-log\x00\xc3\x85\x00\x00\x00TUNEgVX2\x00\x0c\n\xc2\xa2!\x02\x00\x08\x00\x15\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00xlB...\n

16065 / tcp

1011407350 | 2025-02-23T03:01:10.913347

* OK GroupWise IMAP4rev1 Server Ready\r\n

16070 / tcp

-1032713145 | 2025-03-10T07:08:31.438726

\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x08\x00\x00\x00\n0\x00\x00\x00\x0e\xc3\xbf\xc3\xb1

16084 / tcp

819727972 | 2025-02-21T00:11:55.971350

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

16316 / tcp

819727972 | 2025-02-23T06:01:57.755796

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

16402 / tcp

165188539 | 2025-03-04T20:54:19.864039

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

17779 / tcp

-653033013 | 2025-02-21T19:26:20.179656

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

17780 / tcp

632542934 | 2025-03-15T02:02:22.929663

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

18008 / tcp

-358801646 | 2025-02-20T15:22:15.310005

SSH-2.0-OpenSSH_6.6.1

18009 / tcp

-1730858130 | 2025-03-06T04:02:47.657887

RFB 003.008
VNC:
  Protocol Version: 3.8

18011 / tcp

165188539 | 2025-03-14T12:45:32.770890

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

18021 / tcp

-1810987450 | 2025-03-04T19:21:32.653239

\xc3\xbf

18023 / tcp

-358801646 | 2025-02-24T16:28:19.299385

SSH-2.0-OpenSSH_6.6.1

18029 / tcp

707919486 | 2025-03-06T20:47:17.723475

\x00\x06\xc2\x81\xc2\x81\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

18042 / tcp

-1888448627 | 2025-03-10T10:16:59.453261

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

18043 / tcp

-1888448627 | 2025-02-26T02:34:54.029427

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

18045 / tcp

-1453516345 | 2025-03-10T19:38:44.915195

HTTP/1.1 200 OK
Connection: close
Transfer-Encoding: chunked
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN

18046 / tcp

820958131 | 2025-03-04T16:09:59.930812

kjnkjabhbanc283ubcsbhdc72\x02

18049 / tcp

1911457608 | 2025-02-24T19:24:06.397123

\x00[\x00\x00\x00\x00\x00\x00

18053 / tcp

-1019343788 | 2025-03-04T22:31:11.668628

W!\x00\x00\x00\x00

18054 / tcp

1911457608 | 2025-03-04T17:01:31.102696

\x00[\x00\x00\x00\x00\x00\x00

18078 / tcp

1504401647 | 2025-02-25T02:31:26.795347

:dircproxy NOTICE AUTH :Looking up your hostname...\r\n:dircproxy NOTICE AUTH :Got your hostname.\r\n

18079 / tcp

671605376 | 2025-03-12T00:39:03.231975

SSH-2.0-OpenSSH_X.X

18081 / tcp

2087396567 | 2025-03-17T07:24:59.505440

kjnkjabhbanc283ubcsbhdc72

18084 / tcp

921225407 | 2025-03-05T17:31:51.283878

\x00\x00\x00\x04\x00\x00\x00\x00\x00

18095 / tcp

-1399940268 | 2025-03-15T16:23:28.090869

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

18098 / tcp

819727972 | 2025-02-21T19:05:49.584991

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

18109 / tcp

-146605374 | 2025-02-22T10:39:54.284695

\x00[\xc2\x81\xc2\x8b\xc3\xa7\x7f\x00\x00

18368 / tcp

632542934 | 2025-02-25T08:32:35.559062

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

18443 / tcp

808560482 | 2025-03-15T10:48:42.668978

GET / HTTP/1.0 : USERID : UNIX : TKUXZmP
 : USERID : UNIX : Cr8

18553 / tcp

660175493 | 2025-03-14T13:25:09.491112

19000 / tcp

575925250 | 2025-03-17T06:52:39.853657

AMQP:\ncluster_name:rabbit@rabbitmq-0.rabbitmq-headless.rabbitmq.svc.cluster.local\ncopyright:Copyright (c) 2007-2021 VMware, Inc. or its affiliates.\ninformation:Licensed under the MPL 2.0. Website: https://rabbitmq.com\nplatform:Erlang/OTP 24.1\nproduct:RabbitMQ\nversion:3.9.7\nCapabilities:\npublisher_confirms:true\nexchange_exchange_bindings:true\nbasic.nack:true\nconsumer_cancel_notify:true\nconnection.blocked:true\nconsumer_priorities:true\nauthentication_failure_close:true\nper_consumer_qos:true\ndirect_reply_to:tru

20050 / tcp

-1428621233 | 2025-02-19T09:35:10.481091

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

20090 / tcp

740837454 | 2025-02-26T18:48:25.551284

SSH-2.0-OpenSSH_5.3

Vulnerabilities

3 9 19 5

20256 / tcp

2098371729 | 2025-02-25T12:25:11.486505

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>\nA<!DOCTYPE GANGLIA_XML [\n   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...\n

20547 / tcp

-1888448627 | 2025-02-28T13:47:32.089499

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

21002 / tcp

-1261090339 | 2025-02-22T02:31:04.155251

\x00[l\xc2\xb6\xc3\x90\x7f\x00\x00

21025 / tcp

1690634669 | 2025-03-07T01:34:00.118235

21246 / tcp

-1399940268 | 2025-03-13T20:35:31.449314

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

21259 / tcp

-1399940268 | 2025-02-28T22:54:52.840293

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

21262 / tcp

632542934 | 2025-03-06T01:25:18.689414

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

21264 / tcp

103159425 | 2025-03-13T15:44:34.301691

SSH-1.99-RGOS_SSH

21275 / tcp

677934968 | 2025-03-12T22:28:18.124651

lm^)Q

21289 / tcp

-358801646 | 2025-03-16T05:13:48.580445

SSH-2.0-OpenSSH_6.6.1

21293 / tcp

1911457608 | 2025-03-12T12:23:25.560089

\x00[\x00\x00\x00\x00\x00\x00

21313 / tcp

580340387 | 2025-02-21T06:45:04.818362

220 Microsoft FTP Service\n530 User cannot log in.\n214-The following commands are recognized (* ==>\'s unimplemented).\n    ABOR \n    ACCT \n    ADAT *\n    ALLO \n    APPE \n    AUTH \n    CCC \n    CDUP \n    CWD \n    DELE \n    ENC *\n    EPRT \n    EPSV \n    FEAT \n    HELP \n    HOST \n    LANG \n    LIST ...

21319 / tcp

-1399940268 | 2025-03-04T14:28:13.342465

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

21328 / tcp

410249975 | 2025-03-14T06:50:42.053309

LNS READY<>

21379 / tcp

51259122 | 2025-03-16T23:54:46.557459

\r\nCP2E Control Console\r\nConnected to Host: gZI\r\n

22609 / tcp

1911457608 | 2025-03-10T20:02:47.344702

\x00[\x00\x00\x00\x00\x00\x00

23182 / tcp

1623746877 | 2025-03-06T03:53:10.292061

500 Permission denied - closing connection.\r\n

24084 / tcp

-1297953727 | 2025-03-08T11:54:06.938152

\x02\x00\x00\x00\x00\x00\x06\x04\x00\x00\x00\x00\x00\x0c\x00\x00\n0\x00\x1c

25001 / tcp

-358801646 | 2025-03-16T13:35:04.447416

SSH-2.0-OpenSSH_6.6.1

25002 / tcp

-2089734047 | 2025-02-24T17:57:52.024521

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

25003 / tcp

-358801646 | 2025-03-14T16:25:50.471879

SSH-2.0-OpenSSH_6.6.1

25009 / tcp

921225407 | 2025-02-27T19:54:26.230344

\x00\x00\x00\x04\x00\x00\x00\x00\x00

25565 / tcp

103159425 | 2025-02-27T16:15:31.698390

SSH-1.99-RGOS_SSH

27015 / tcp

1911457608 | 2025-03-06T22:05:30.073357

\x00[\x00\x00\x00\x00\x00\x00

27017 / tcp

1763259671 | 2025-03-07T04:37:33.033274

{\n"Version": "3.4.18",\n"VersionArray": [\n3,\n4,\n18,\n0\n],\n"GitVersion": "4410706bef6463369ea2f42399e9843903b31923",\n"OpenSSLVersion": "",\n"SysInfo": "",\n"Bits": 64,\n"Debug": false,\n"MaxObjectSize": 16777216\n}\n\n

28015 / tcp

1911457608 | 2025-03-15T12:10:06.175173

\x00[\x00\x00\x00\x00\x00\x00

28818 / tcp

1830187220 | 2025-03-17T22:20:27.471003

\xc3\xbf\xc3\xbb\x01\r\n-> GET / HTTP/1.0\r\nGET / HTTP/1.0\r\nundefined symbol: GET\r\n-> \r\n->

29799 / tcp

-1399940268 | 2025-02-27T17:42:21.257709

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

29842 / tcp

819727972 | 2025-02-26T00:59:16.629784

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

30002 / tcp

-1013082686 | 2025-03-05T10:11:22.249826

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

30003 / tcp

-441419608 | 2025-03-15T18:28:31.015507

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

30022 / tcp

2087396567 | 2025-03-14T21:48:20.224792

kjnkjabhbanc283ubcsbhdc72

30083 / tcp

709622286 | 2025-02-28T15:50:22.635035

OK Welcome <299685> on DirectUpdate server 7286\r\n

30101 / tcp

-1888448627 | 2025-02-26T00:57:53.409631

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

30106 / tcp

1911457608 | 2025-02-21T23:06:35.414571

\x00[\x00\x00\x00\x00\x00\x00

30122 / tcp

-971970408 | 2025-03-11T04:39:18.361065

30444 / tcp

-1399940268 | 2025-02-28T16:37:40.489840

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

30522 / tcp

819727972 | 2025-03-12T14:55:46.252299

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

30822 / tcp

-1839934832 | 2025-03-12T21:31:21.554558

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

30892 / tcp

401555314 | 2025-02-23T03:16:15.855337

NB[GFXjA^R

31322 / tcp

1778988322 | 2025-03-09T16:42:10.251295

* OK GroupWise IMAP4rev1 Server Ready

31443 / tcp

-1839934832 | 2025-03-12T18:25:58.211451

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

31522 / tcp

1830187220 | 2025-03-13T01:20:49.506788

\xc3\xbf\xc3\xbb\x01\r\n-> GET / HTTP/1.0\r\nGET / HTTP/1.0\r\nundefined symbol: GET\r\n-> \r\n->

31822 / tcp

1741579575 | 2025-03-12T08:00:18.541819

31922 / tcp

-1311598826 | 2025-03-11T06:22:52.706036

AMQP:
cluster_name:rabbit@rabbitmq-0.rabbitmq-headless.rabbitmq.svc.cluster.local
copyright:Copyright (c) 2007-2021 VMware, Inc. or its affiliates.
information:Licensed under the MPL 2.0. Website: https://rabbitmq.com
platform:Erlang/OTP 24.1
product:RabbitMQ
version:3.9.7
Capabilities:
publisher_confirms:true
exchange_exchange_bindings:true
basic.nack:true
consumer_cancel_notify:true
connection.blocked:true
consumer_priorities:true
authentication_failure_close:true
per_consumer_qos:true
direct_reply_to:tru

32122 / tcp

1887224352 | 2025-03-09T21:46:01.567258

32322 / tcp

-1598265216 | 2025-03-16T15:34:29.614700

@RSYNCD: 31.0

32522 / tcp

-2096652808 | 2025-03-08T16:37:51.691211

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

32622 / tcp

1996932384 | 2025-03-11T21:23:53.232533

"raop" nonce

32764 / tcp

-971970408 | 2025-02-21T04:07:28.997205

32922 / tcp

2087396567 | 2025-03-11T03:19:06.141411

kjnkjabhbanc283ubcsbhdc72

33060 / tcp

114471724 | 2025-02-23T01:52:08.052268

HTTP/1.1 302
X-Frame-Options: SAMEORIGIN
Server: NSX

33222 / tcp

1690634669 | 2025-03-09T19:50:16.978078

33322 / tcp

-1477838366 | 2025-02-23T18:55:51.732142

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4

33522 / tcp

707919486 | 2025-02-26T16:04:13.755813

\x00\x06\xc2\x81\xc2\x81\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

33722 / tcp

1741579575 | 2025-03-08T18:20:56.159241

34422 / tcp

1741579575 | 2025-03-15T01:36:00.478524

35000 / tcp

-1399940268 | 2025-02-22T18:09:49.643587

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

35002 / tcp

-1399940268 | 2025-03-13T07:28:31.522928

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

35022 / tcp

103159425 | 2025-03-04T02:13:59.499094

SSH-1.99-RGOS_SSH

35322 / tcp

-971970408 | 2025-03-04T05:54:20.967492

35422 / tcp

819727972 | 2025-02-28T09:06:10.385291

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

35522 / tcp

-971970408 | 2025-03-04T04:15:50.467388

35722 / tcp

-358801646 | 2025-02-28T06:58:23.865618

SSH-2.0-OpenSSH_6.6.1

36022 / tcp

-1428621233 | 2025-03-17T21:40:26.673025

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

36122 / tcp

539065883 | 2025-03-13T10:29:35.242658

36505 / tcp

-345718689 | 2025-02-27T23:21:50.883084

Vty password is not set.

36722 / tcp

-1760806421 | 2025-03-17T05:33:00.455609

protocolErrorInf error=Missing hw string from : null. Check hardware state=disconnected

37022 / tcp

-1461540015 | 2025-03-16T20:05:14.703154

audio 0 RTP/AVP 18 4 3 8 0 101
a

37122 / tcp

-653033013 | 2025-03-16T23:42:02.392706

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

37222 / tcp

1948301213 | 2025-03-14T20:09:34.728488

RFB 003.003
VNC:
  Protocol Version: 3.3

37322 / tcp

1690634669 | 2025-02-28T22:52:42.880050

37522 / tcp

819727972 | 2025-02-28T17:36:34.259305

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

37622 / tcp

819727972 | 2025-02-28T16:19:12.787226

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

37722 / tcp

-314039103 | 2025-03-16T00:55:16.691303

Surnom.
Sorry, that nickname format is invalid.

37777 / tcp

669849225 | 2025-02-27T15:23:10.596658

SSH-98.60-SysaxSSH_81885..42\r\n

38022 / tcp

2087396567 | 2025-03-17T23:35:42.423804

kjnkjabhbanc283ubcsbhdc72

38122 / tcp

2087396567 | 2025-03-15T17:58:20.345847

kjnkjabhbanc283ubcsbhdc72

38222 / tcp

-992671574 | 2025-03-10T21:47:18.725671

@RSYNCD: 26

38333 / tcp

-653033013 | 2025-03-15T21:21:31.854754

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

38522 / tcp

-971970408 | 2025-02-21T16:03:20.022700

38622 / tcp

104385780 | 2025-02-25T23:08:32.338525

ceph v2

38722 / tcp

660175493 | 2025-03-13T22:40:37.956740

38822 / tcp

2087396567 | 2025-03-03T21:18:14.146889

kjnkjabhbanc283ubcsbhdc72

38922 / tcp

2087396567 | 2025-02-22T17:57:17.848350

kjnkjabhbanc283ubcsbhdc72

39022 / tcp

171352214 | 2025-03-13T20:53:59.165772

-ERR client ip is not in whitelist

39222 / tcp

1208318993 | 2025-03-13T17:59:22.650282

\x01\x00\x0b\x00\x00\x00=\x00\x01\x00\x00\x00\x00\x00\xc3\x80\x06\xc3\xbf\xc3\xbf?"<Z\x00DECWINDOWS Digital Equipment Corporation Digital UNIX V2eT03T7w_Q6\x00\x00\x01\x01

39422 / tcp

2143387245 | 2025-02-20T20:07:45.609082

HTTP/1.1 408 Request Timeout
content-length: 0
co
nnection: close
date: Fri, 26 Nov 2021 07:46:40 GMT

39722 / tcp

-2096652808 | 2025-03-05T05:15:31.673951

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

39922 / tcp

819727972 | 2025-02-26T17:46:49.266179

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

40001 / tcp

-1399940268 | 2025-02-20T17:33:26.207020

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

40322 / tcp

-321444299 | 2025-03-08T21:47:08.969440

:dircproxy NOTICE AUTH :Looking up your hostname...
:dircproxy NOTICE AUTH :Got your hostname.

40522 / tcp

119860953 | 2025-03-04T07:41:54.715670

* OK ArGoSoft Mail Server IMAP Module v.YW at

41443 / tcp

-1611764932 | 2025-03-14T03:52:50.703651

\x03\x00\x00\x10\x08\x02\xc2\x80\x00}\x08\x02\xc2\x80\xc3\xa2\x14\x01\x00

41522 / tcp

2087396567 | 2025-03-04T21:48:07.870899

kjnkjabhbanc283ubcsbhdc72

42122 / tcp

1975288991 | 2025-03-05T03:05:45.363288

OPTI

42901 / tcp

819727972 | 2025-02-24T19:37:22.092182

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

43221 / tcp

321971019 | 2025-02-24T20:06:44.744463

-ERR client ip is not in whitelist\r

43222 / tcp

60948681 | 2025-02-28T00:01:11.698151

lpd [@Boyk]: Print-services are not available to your host (aF2qXkQ2m).

43322 / tcp

-905685638 | 2025-02-23T07:34:54.766776

bxz437

43422 / tcp

1741579575 | 2025-02-27T20:33:50.335036

43522 / tcp

2087396567 | 2025-02-25T22:25:06.989357

kjnkjabhbanc283ubcsbhdc72

43622 / tcp

1690634669 | 2025-02-27T00:37:51.448846

43722 / tcp

171352214 | 2025-02-27T04:04:40.350818

-ERR client ip is not in whitelist

43922 / tcp

819727972 | 2025-02-27T10:25:02.938400

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

44158 / tcp

-433302150 | 2025-03-14T14:56:37.708858

/multistream/1.0.0

44322 / tcp

539065883 | 2025-02-26T10:58:18.157314

44350 / tcp

-1399940268 | 2025-03-08T22:01:45.492941

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

44422 / tcp

119860953 | 2025-02-26T01:09:58.533993

* OK ArGoSoft Mail Server IMAP Module v.YW at

44522 / tcp

-1114821551 | 2025-02-26T07:28:50.549732

\xc3\xa3\r\n\r\n\x00\x01\x00K\x00vInvalid protocol verification, illegal ORMI request or request performed with an incompatible version of this protocol

44722 / tcp

-1900404274 | 2025-02-26T06:56:47.547076

Unknown command

44818 / tcp

1308377066 | 2025-02-19T01:29:36.674709

ncacn_http/1.0

45001 / tcp

-1327660293 | 2025-02-19T12:47:41.249413

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

45022 / tcp

-1681927087 | 2025-03-10T17:20:06.971442

kjnkjabhbanc283ubcsbhdc72

45122 / tcp

2087396567 | 2025-02-24T07:51:49.009678

kjnkjabhbanc283ubcsbhdc72

45422 / tcp

-1839934832 | 2025-02-19T11:34:26.668923

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

45622 / tcp

1308377066 | 2025-02-25T14:59:05.372664

ncacn_http/1.0

45677 / tcp

-1810987450 | 2025-03-17T01:12:09.160205

\xc3\xbf

45788 / tcp

-122096153 | 2025-03-10T18:21:16.505421

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC\nClients:\n/*.*.*.*:11264[0](queued=0,recved=1,sent=0)\n\nLatency min/avg/max: 0/0.0/0\nReceived: 8557\nSent: 11410\nConnections: 1\nOutstanding: 0\nZxid: 0x332907ad3391\nMode: follower\nNode count: 104618

45822 / tcp

-971970408 | 2025-03-10T13:01:25.264780

45922 / tcp

339872247 | 2025-03-10T14:46:08.379062


0 ...

46022 / tcp

-1059554316 | 2025-02-25T08:07:52.151613

\xc2\xa5A\x00\x01\x00\x00\x00,\x00\x00\x00\x02\x00\x00\x00L\x00\x00\x00\x08Connect\x00\x00\x00\x00x\x00\x00\x00\x0857222\x00\x00\x00

46122 / tcp

-1681927087 | 2025-02-25T06:22:56.287204

kjnkjabhbanc283ubcsbhdc72

46222 / tcp

-358801646 | 2025-02-25T00:06:16.039132

SSH-2.0-OpenSSH_6.6.1

46622 / tcp

819727972 | 2025-02-24T04:26:47.170943

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

47222 / tcp

1842524259 | 2025-02-23T21:26:56.272257

47522 / tcp

2087396567 | 2025-02-25T09:51:25.126630

kjnkjabhbanc283ubcsbhdc72

47534 / tcp

-2089734047 | 2025-03-14T13:02:22.308883

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

47990 / tcp

539065883 | 2025-03-16T19:55:35.469946

48522 / tcp

-1114821551 | 2025-03-10T01:03:30.306409

\xc3\xa3\r\n\r\n\x00\x01\x00K\x00vInvalid protocol verification, illegal ORMI request or request performed with an incompatible version of this protocol

48622 / tcp

-1839934832 | 2025-02-24T19:55:47.237504

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

48822 / tcp

1541211644 | 2025-02-24T18:11:15.513032

[\xc2\xba\x7fs\x7f

48889 / tcp

819727972 | 2025-02-21T15:11:39.014602

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

48922 / tcp

104385780 | 2025-02-24T14:42:15.599890

ceph v2

49200 / tcp

-358801646 | 2025-03-07T12:37:40.197937

SSH-2.0-OpenSSH_6.6.1

49501 / tcp

-1399940268 | 2025-03-04T20:02:16.199463

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

49684 / tcp

1911457608 | 2025-02-23T16:36:18.683311

\x00[\x00\x00\x00\x00\x00\x00

49822 / tcp

2087396567 | 2025-02-22T21:33:49.592704

kjnkjabhbanc283ubcsbhdc72

49922 / tcp

-1461540015 | 2025-02-22T19:16:49.726242

audio 0 RTP/AVP 18 4 3 8 0 101
a

50050 / tcp

103159425 | 2025-03-16T13:38:58.239033

SSH-1.99-RGOS_SSH

50122 / tcp

-1036370807 | 2025-03-06T04:08:29.298315

JDWP-Handshake

50805 / tcp

1911457608 | 2025-03-10T12:15:34.665786

\x00[\x00\x00\x00\x00\x00\x00

50822 / tcp

-2096652808 | 2025-02-20T20:32:10.548119

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

50922 / tcp

-971970408 | 2025-02-21T16:52:20.605846

51007 / tcp

-1888448627 | 2025-02-27T18:30:04.697762

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

51235 / tcp

-407828767 | 2025-02-19T07:23:19.189609

\x00[\xc2\xbc/\xc2\x9f\x7f\x00\x00

51322 / tcp

819727972 | 2025-02-21T11:43:12.020031

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

51622 / tcp

-971970408 | 2025-02-21T03:22:25.362705

51822 / tcp

-971970408 | 2025-02-20T16:55:41.485214

52230 / tcp

-1399940268 | 2025-03-16T20:59:15.790562

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

52522 / tcp

-1032713145 | 2025-02-19T09:29:59.498100

\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x08\x00\x00\x00\n0\x00\x00\x00\x0e\xc3\xbf\xc3\xb1

52822 / tcp

-879070264 | 2025-02-19T21:37:34.803443

\\xab\xca\xa5]\\x00\\x00\\x00\\x18\\xc0\\x00\\x00\\x01\\xff\\xff\\xff\\xff\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00

52931 / tcp

1911457608 | 2025-03-13T18:26:23.555755

\x00[\x00\x00\x00\x00\x00\x00

53322 / tcp

1741579575 | 2025-02-19T16:20:00.646563

53484 / tcp

819727972 | 2025-03-04T21:39:32.063705

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

53622 / tcp

539065883 | 2025-02-19T12:47:54.482248

54022 / tcp

-1730858130 | 2025-02-19T06:24:25.144681

RFB 003.008
VNC:
  Protocol Version: 3.8

54138 / tcp

1911457608 | 2025-02-23T04:43:35.359858

\x00[\x00\x00\x00\x00\x00\x00

54322 / tcp

320677201 | 2025-02-19T00:16:24.725891

H\x00\x00\x00\xc3\xbfj\x04Host \'101.133.140.114\' is not allowed to \nconnect to this MySQL server

54422 / tcp

290819026 | 2025-02-18T23:03:53.795480

welcome to Pandora console!
----------------------------
-------------------------
|     Login Time     |     2021-12-08 1...

55000 / tcp

51259122 | 2025-03-14T22:27:29.482501

\r\nCP2E Control Console\r\nConnected to Host: gZI\r\n

55422 / tcp

-784071826 | 2025-03-06T18:18:40.092445

SSH-2.0-OpenSSH_8.0

Vulnerabilities

2 4 5 1

55443 / tcp

-805362002 | 2025-03-16T07:37:11.452050

ICAP/1.0 501 Other
Server: Traffic Spicer 7788179225

55553 / tcp

171352214 | 2025-02-23T19:45:54.047402

-ERR client ip is not in whitelist

55554 / tcp

1504401647 | 2025-03-08T14:23:59.309060

:dircproxy NOTICE AUTH :Looking up your hostname...\r\n:dircproxy NOTICE AUTH :Got your hostname.\r\n

55722 / tcp

-358801646 | 2025-03-06T20:21:45.257496

SSH-2.0-OpenSSH_6.6.1

55822 / tcp

-971970408 | 2025-03-06T22:12:07.455216

57422 / tcp

1282941221 | 2025-03-03T17:55:50.949805

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

57522 / tcp

-971970408 | 2025-03-06T13:16:04.280065

57822 / tcp

957278843 | 2025-03-06T06:45:06.108647

[|ox

58122 / tcp

2033888749 | 2025-03-06T03:30:03.953655

Content-Type: text/rude-rejection
Content-Length: 24


Access Denied, go away.
Content-Type: text/disconnect-notice
C...

58222 / tcp

1741579575 | 2025-03-06T01:34:21.487352

58322 / tcp

2087396567 | 2025-03-05T23:47:35.861642

kjnkjabhbanc283ubcsbhdc72

58822 / tcp

472902042 | 2025-03-05T16:55:39.299133

"Magic:ActiveMQ
Version:12
<ActiveMQ*TcpNoDelayEnabledSizePrefixDisabled CacheSizeProviderName ActiveMQStackTraceEnabledPlatformDetails JavaCacheEnabledTightEncodingEnabledMaxFrameSize@MaxInac

58922 / tcp

-1045760528 | 2025-03-05T15:44:43.345403

HTTP/1.1 302 Found
Connection: close
Location: http://*.*.*.*/solr/

59322 / tcp

-616720387 | 2025-03-05T08:25:10.047724

SSH-2.0-SSHD_0.7.6

61613 / tcp

165188539 | 2025-03-09T10:05:01.474790

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

61616 / tcp

1778988322 | 2025-03-09T17:33:38.173243

* OK GroupWise IMAP4rev1 Server Ready

62865 / tcp

-1399940268 | 2025-02-28T18:58:31.323529

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

63210 / tcp

841014058 | 2025-03-09T15:17:51.994625

Hello, this is FRRouting (version 4.0).

Copyright 19
96-2005 Kunihiro Ishiguro, et al.




Use...

63256 / tcp

128380719 | 2025-03-07T08:27:03.891618

63257 / tcp

-971970408 | 2025-03-11T15:06:11.785964

63260 / tcp

-805362002 | 2025-03-12T00:12:34.293010

ICAP/1.0 501 Other
Server: Traffic Spicer 7788179225

64683 / tcp

1353260875 | 2025-02-27T22:08:18.520941

\x00[g\xc2\x95N\x7f\x00\x00

64738 / tcp

2087396567 | 2025-03-15T06:01:56.440578

kjnkjabhbanc283ubcsbhdc72

39.98.12.19

Last Seen: 2025-03-17

Tags:

GeneralInformation

WebTechnologies

OpenPorts

13 / tcp -1835577706 | 2025-03-13T17:39:40.332550

15 / tcp -2089734047 | 2025-02-23T14:42:21.877452

17 / tcp 5698739 | 2025-03-16T21:20:42.374258

19 / tcp 620044682 | 2025-03-17T17:17:14.949355

21 / tcp -702037155 | 2025-03-11T21:55:04.795213

23 / tcp -1816600103 | 2025-03-09T16:32:05.799726

37 / tcp 1110767461 | 2025-03-08T16:20:29.259659

43 / tcp -2081419599 | 2025-03-05T15:05:59.748287

53 / tcp -1370420049 | 2025-03-04T22:16:25.833101

80 / tcp 2027850948 | 2025-03-06T08:57:33.398634

Hashes

93 / tcp 1308377066 | 2025-02-23T12:16:41.083138

102 / tcp -1399940268 | 2025-03-13T08:19:41.220464

104 / tcp -1399940268 | 2025-03-04T03:13:59.714361

110 / tcp 599074451 | 2025-03-14T15:50:55.799614

111 / tcp -1428621233 | 2025-02-25T23:39:34.421792

113 / tcp -414819019 | 2025-02-25T01:26:44.808960

119 / tcp 141730637 | 2025-02-28T19:31:47.124532

179 / tcp -399606100 | 2025-03-13T15:09:07.875013

195 / tcp -1839934832 | 2025-03-14T22:09:39.723271

221 / tcp -1399940268 | 2025-03-10T17:31:56.028856

264 / tcp -1718229072 | 2025-03-06T13:02:14.140717

385 / tcp 971933601 | 2025-02-27T02:48:47.796556

400 / tcp 504717326 | 2025-02-26T07:10:40.783207

427 / tcp -349937125 | 2025-03-04T13:23:32.630451

443 / tcp 444807596 | 2025-03-16T20:04:19.695366

Hashes

444 / tcp -114163264 | 2025-03-12T10:19:28.222002

465 / tcp 897328069 | 2025-02-28T12:44:19.979138

554 / tcp -1142488525 | 2025-03-12T14:41:03.036721

587 / tcp 745343730 | 2025-02-28T17:10:32.679730

593 / tcp 1308377066 | 2025-03-13T21:56:03.911586

666 / tcp 2098053533 | 2025-03-17T18:16:23.008534

771 / tcp 45131230 | 2025-03-17T23:10:29.257074

782 / tcp 45131230 | 2025-03-14T07:44:16.263830

789 / tcp -122096153 | 2025-03-16T08:07:01.919970

873 / tcp -1970692834 | 2025-03-06T17:36:05.205033

953 / tcp -1428621233 | 2025-03-12T05:35:35.592313

992 / tcp 1814656027 | 2025-03-04T05:54:33.350050

993 / tcp -146605374 | 2025-02-27T11:36:17.425558

995 / tcp 689999346 | 2025-03-13T20:26:13.652030

1002 / tcp -1730858130 | 2025-02-22T04:59:43.604465

1023 / tcp -1681927087 | 2025-03-17T10:06:32.645872

1027 / tcp -1428621233 | 2025-02-26T07:24:21.625308

1099 / tcp -1626979812 | 2025-03-17T09:57:35.927493

1177 / tcp -1136600457 | 2025-03-17T08:00:47.781432

1198 / tcp 1618598266 | 2025-03-12T01:30:58.157476

1234 / tcp 1911457608 | 2025-03-13T08:56:15.296592

1337 / tcp -1453516345 | 2025-03-16T12:00:59.884479

1387 / tcp -445721795 | 2025-03-05T00:37:52.489797

1414 / tcp 366084633 | 2025-03-17T17:25:18.148363

1433 / tcp -182670276 | 2025-03-17T03:52:57.769726

1494 / tcp -1835577706 | 2025-03-06T13:27:37.638593

1515 / tcp 539065883 | 2025-03-05T03:21:11.056176

1521 / tcp 1869192275 | 2025-02-28T21:08:27.015146

1554 / tcp 1632932802 | 2025-02-18T19:40:17.225302

1588 / tcp 1332894250 | 2025-02-25T19:40:09.366246

1599 / tcp 1778988322 | 2025-03-14T03:50:51.150301

1605 / tcp 51259122 | 2025-02-20T20:35:00.908069

1723 / tcp -1608241410 | 2025-03-13T09:05:52.831461

1800 / tcp -249504111 | 2025-03-17T18:35:38.392756

1830 / tcp -1730858130 | 2025-03-15T21:51:14.087354

1883 / tcp -1428621233 | 2025-02-18T22:30:02.817782

1911 / tcp 1911457608 | 2025-03-13T00:45:21.970946

1926 / tcp 2087396567 | 2025-03-15T11:29:21.066193

1957 / tcp -1399940268 | 2025-03-05T16:07:16.776731

1971 / tcp -42767839 | 2025-02-20T03:22:07.827580

1979 / tcp -1399940268 | 2025-02-23T01:31:05.861308

1983 / tcp 321971019 | 2025-03-16T20:25:31.531701

1986 / tcp 819727972 | 2025-02-19T17:48:28.595356

2000 / tcp -1746074029 | 2025-03-12T06:03:58.422181

2003 / tcp -375604792 | 2025-03-15T04:13:37.710343

2008 / tcp 660175493 | 2025-03-12T09:15:21.890100

2021 / tcp 921225407 | 2025-03-03T20:02:06.960643

13 / tcp

-1835577706 | 2025-03-13T17:39:40.332550

15 / tcp

-2089734047 | 2025-02-23T14:42:21.877452

17 / tcp

5698739 | 2025-03-16T21:20:42.374258

19 / tcp

620044682 | 2025-03-17T17:17:14.949355

21 / tcp

-702037155 | 2025-03-11T21:55:04.795213

23 / tcp

-1816600103 | 2025-03-09T16:32:05.799726

37 / tcp

1110767461 | 2025-03-08T16:20:29.259659

43 / tcp

-2081419599 | 2025-03-05T15:05:59.748287

53 / tcp

-1370420049 | 2025-03-04T22:16:25.833101

80 / tcp

2027850948 | 2025-03-06T08:57:33.398634

93 / tcp

1308377066 | 2025-02-23T12:16:41.083138

102 / tcp

-1399940268 | 2025-03-13T08:19:41.220464

104 / tcp

-1399940268 | 2025-03-04T03:13:59.714361

110 / tcp

599074451 | 2025-03-14T15:50:55.799614

111 / tcp

-1428621233 | 2025-02-25T23:39:34.421792

113 / tcp

-414819019 | 2025-02-25T01:26:44.808960

119 / tcp

141730637 | 2025-02-28T19:31:47.124532

179 / tcp

-399606100 | 2025-03-13T15:09:07.875013

195 / tcp

-1839934832 | 2025-03-14T22:09:39.723271

221 / tcp

-1399940268 | 2025-03-10T17:31:56.028856

264 / tcp

-1718229072 | 2025-03-06T13:02:14.140717

385 / tcp

971933601 | 2025-02-27T02:48:47.796556

400 / tcp

504717326 | 2025-02-26T07:10:40.783207

427 / tcp

-349937125 | 2025-03-04T13:23:32.630451

443 / tcp

444807596 | 2025-03-16T20:04:19.695366

444 / tcp

-114163264 | 2025-03-12T10:19:28.222002

465 / tcp

897328069 | 2025-02-28T12:44:19.979138

554 / tcp

-1142488525 | 2025-03-12T14:41:03.036721

587 / tcp

745343730 | 2025-02-28T17:10:32.679730

593 / tcp

1308377066 | 2025-03-13T21:56:03.911586

666 / tcp

2098053533 | 2025-03-17T18:16:23.008534

771 / tcp

45131230 | 2025-03-17T23:10:29.257074

782 / tcp

45131230 | 2025-03-14T07:44:16.263830

789 / tcp

-122096153 | 2025-03-16T08:07:01.919970

873 / tcp

-1970692834 | 2025-03-06T17:36:05.205033

953 / tcp

-1428621233 | 2025-03-12T05:35:35.592313

992 / tcp

1814656027 | 2025-03-04T05:54:33.350050

993 / tcp

-146605374 | 2025-02-27T11:36:17.425558

995 / tcp

689999346 | 2025-03-13T20:26:13.652030

1002 / tcp

-1730858130 | 2025-02-22T04:59:43.604465

1023 / tcp

-1681927087 | 2025-03-17T10:06:32.645872

1027 / tcp

-1428621233 | 2025-02-26T07:24:21.625308

1099 / tcp

-1626979812 | 2025-03-17T09:57:35.927493

1177 / tcp

-1136600457 | 2025-03-17T08:00:47.781432

1198 / tcp

1618598266 | 2025-03-12T01:30:58.157476

1234 / tcp

1911457608 | 2025-03-13T08:56:15.296592

1337 / tcp

-1453516345 | 2025-03-16T12:00:59.884479

1387 / tcp

-445721795 | 2025-03-05T00:37:52.489797

1414 / tcp

366084633 | 2025-03-17T17:25:18.148363

1433 / tcp

-182670276 | 2025-03-17T03:52:57.769726

1494 / tcp

-1835577706 | 2025-03-06T13:27:37.638593

1515 / tcp

539065883 | 2025-03-05T03:21:11.056176

1521 / tcp

1869192275 | 2025-02-28T21:08:27.015146

1554 / tcp

1632932802 | 2025-02-18T19:40:17.225302

1588 / tcp

1332894250 | 2025-02-25T19:40:09.366246

1599 / tcp

1778988322 | 2025-03-14T03:50:51.150301

1605 / tcp

51259122 | 2025-02-20T20:35:00.908069

1723 / tcp

-1608241410 | 2025-03-13T09:05:52.831461

1800 / tcp

-249504111 | 2025-03-17T18:35:38.392756

1830 / tcp

-1730858130 | 2025-03-15T21:51:14.087354

1883 / tcp

-1428621233 | 2025-02-18T22:30:02.817782

1911 / tcp

1911457608 | 2025-03-13T00:45:21.970946

1926 / tcp

2087396567 | 2025-03-15T11:29:21.066193

1957 / tcp

-1399940268 | 2025-03-05T16:07:16.776731

1971 / tcp

-42767839 | 2025-02-20T03:22:07.827580

1979 / tcp

-1399940268 | 2025-02-23T01:31:05.861308

1983 / tcp

321971019 | 2025-03-16T20:25:31.531701

1986 / tcp

819727972 | 2025-02-19T17:48:28.595356

2000 / tcp

-1746074029 | 2025-03-12T06:03:58.422181

2003 / tcp

-375604792 | 2025-03-15T04:13:37.710343

2008 / tcp

660175493 | 2025-03-12T09:15:21.890100

2021 / tcp

921225407 | 2025-03-03T20:02:06.960643

2030 / tcp

1233062890 | 2025-03-13T22:49:18.607432

2066 / tcp

-1648456501 | 2025-03-05T16:06:31.701442

2072 / tcp

2143387245 | 2025-02-18T22:09:55.535515

2080 / tcp

1911457608 | 2025-03-17T17:30:02.304524

2081 / tcp

-1399940268 | 2025-03-04T16:10:05.356427

2083 / tcp

-527005584 | 2025-02-24T09:58:03.892552

2087 / tcp

819727972 | 2025-03-11T22:04:31.522029

2108 / tcp

599074451 | 2025-03-11T04:39:54.258376