GeneralInformation

Hostnames	anqi9988.1688.com axjanja.1688.com fvzebogs.1688.com oggs.1688.com shog1301373o611i7.1688.com shog1442508391642.1688.com shog3078o27060063.1688.com shop6239730h56062.1688.com szdyyyxs.1688.com vidigod.1688.com yhnkwj.1688.com zsdxad.1688.com attg.ojibobo-ina.aon.alibaba-inc.com oogi.o2.ojibobo-ina.aon.alibaba-inc.com ide-jog-ogent.oone.ojibobo-ina.aon.alibaba-inc.com sjender.ojibobo-ina.aon.alibaba-inc.com heno.stors.ojibobo-ina.aon.alibaba-inc.com svnort.stors.ojibobo-ina.aon.alibaba-inc.com xbootogs.ojibobo-ina.aon.alibaba-inc.com buc-test-qier.alibaba-inc.com dlc-gateway.pai-damo.alibaba-inc.com hhpai-dsw-dsw56392-80.pcs-svr.alibaba-inc.com qt-changeplatform.alibaba.net ens-network-sqos-hybrid.alicdn.com 119152.aliexpress.com connect.aliexpress.com www22.aliexpress.com 1111.alimama.com sec.alimama.com www22.aliwork.com ob-gre.ojiyvn-ina.aon.aliyun-inc.com yvndvn-idi-server.ojiyvn-ina.aon.aliyun-inc.com 090826.aliyun.com adsprobe.aliyun.com alimama2.aliyun.com aloc-offline.aliyun.com sjs4serviae.aonsoje.aliyun.com iot.ap-southeast-1.aliyun.com api.aliyun.com bi.aliyun.com biaoju.aliyun.com cbu-xiaoer.aliyun.com code-ssr.fc.aliyun.com hcwms.aliyun.com shop1429527762715.aliyun.com shop2b0883416a7i9.aliyun.com shop36322980.aliyun.com das.base.shuju.aliyun.com ticket.aliyun.com auth.wms.aliyun.com yiwuzy.aliyun.com eai-vga.an-ahengdv.aliyuncs.com edsoggavstoner-vga.an-ahengdv.aliyuncs.com ajovdovth-intj.an-shonghoi.aliyuncs.com eci-vpc.ap-southeast-1.aliyuncs.com mse-vpc.ap-southeast-5.aliyuncs.com netriahvb-ans-an-beijing.aliyuncs.com cn-hangzhou.oss.aliyuncs.com qtnetria-shore.aliyuncs.com og-sovtheost-1.ron-internoj.aliyuncs.com m5-zb.amap.com nextci.amap.com xmap-alg-deploy-prepub.amap.com services-iss-sh.cainiao-inc.com b-manage.gfn.cainiao.com manage-cmscn.gfn.cainiao.com print.gfn.cainiao.com link.wt.cainiao.com cicef.org.cn hm1.cnzz.com api-xspace.daraz.com api.dingtalk.com oa.dingtalk.com app73960.eapps.dingtalkcloud.com www.yx.fusion.design api.ascp-fresh-produce.hemayx.cn acs-m-sg.lazada.co.id admin.lazada.co.id new-university.lazada.co.id lighthouse.lazada.co.th fbi.lazada.com pre-ids-gpcb.lazada.com web.lazada.com sellercenter.lazada.com.my u.lazada.com.my m.sellercenter.lazada.com.ph admin-p.lazada.vn university.lazada.vn www.lex.co.id 10yuankaihutiyanjin-okta-network-drookings-mirror.accept.lex.vn nrcm.lydaas.com www2s.mashort.cn unpm-upaas.quark.cn console-fc.alpha.redmart.com stars.shuqireader.com dod-tiger.taobao.com gigsijk.taobao.com gvonghe.taobao.com hovonojogin.taobao.com ojiaert.taobao.com shog36236233.taobao.com shog36315220.taobao.com shog36346889.taobao.com shog36415005.taobao.com shog36600642.taobao.com shog36621603.taobao.com shog36977584.taobao.com shog413558627.taobao.com shop36579394.taobao.com shop36674442.taobao.com shop497241465.taobao.com yqza.taobao.com ocache.taobao.net opsx.vip.tbsite.net detoij.tmall.com hvoyijiojv.tmall.com insvronae.tmall.com jielitushu.tmall.com mail.wondfo.com.cn www9.buntleben.xixikf.cn security-nash-web.zhangjiakou.zone
Domains	1688.com alibaba-inc.com alibaba.net alicdn.com aliexpress.com alimama.com aliwork.com aliyun-inc.com aliyun.com aliyuncs.com amap.com cainiao-inc.com cainiao.com cicef.org.cn cnzz.com daraz.com dingtalk.com dingtalkcloud.com fusion.design hemayx.cn lazada.co.id lazada.co.th lazada.com lazada.com.my lazada.com.ph lazada.vn lex.co.id lex.vn lydaas.com mashort.cn quark.cn redmart.com shuqireader.com taobao.com taobao.net tbsite.net tmall.com wondfo.com.cn xixikf.cn zhangjiakou.zone
Country	China
City	Hangzhou
Organization	Aliyun Computing Co., LTD
ISP	Hangzhou Alibaba Advertising Co.,Ltd.
ASN	AS37963

WebTechnologies

IaaS

Alibaba Cloud Object Storage Service

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-51767	OpenSSH through 9.6, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the integer value of authenticated in mm_answer_authpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim co-location in which the attacker has user privileges.
CVE-2023-51385	In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name.
CVE-2023-51384	In ssh-agent in OpenSSH before 9.6, certain destination constraints can be incompletely applied. When destination constraints are specified during addition of PKCS#11-hosted private keys, these constraints are only applied to the first key, even if a PKCS#11 token returns multiple keys.
CVE-2023-48795	The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.
CVE-2023-38408	The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forwarded to an attacker-controlled system. (Code in /usr/lib is not necessarily safe for loading into ssh-agent.) NOTE: this issue exists because of an incomplete fix for CVE-2016-10009.
CVE-2021-41617	4.4sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with group memberships of the sshd process, if the configuration specifies running the command as a different user.
CVE-2021-36368	2.6An issue was discovered in OpenSSH before 8.9. If a client is using public-key authentication with agent forwarding but without -oLogLevel=verbose, and an attacker has silently modified the server to support the None authentication option, then the user cannot determine whether FIDO authentication is going to confirm that the user wishes to connect to that server, or that the user wishes to allow that server to connect to a different server on the user's behalf. NOTE: the vendor's position is "this is not an authentication bypass, since nothing is being bypassed.
CVE-2020-15778	6.8scp in OpenSSH through 8.3p1 allows command injection in the scp.c toremote function, as demonstrated by backtick characters in the destination argument. NOTE: the vendor reportedly has stated that they intentionally omit validation of "anomalous argument transfers" because that could "stand a great chance of breaking existing workflows."
CVE-2020-14145	4.3The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts (where no host key for the server has been cached by the client). NOTE: some reports state that 8.5 and 8.6 are also affected.
CVE-2019-6111	5.8An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned (only directory traversal attacks are prevented). A malicious scp server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the scp client target directory. If recursive operation (-r) is performed, the server can manipulate subdirectories as well (for example, to overwrite the .ssh/authorized_keys file).
CVE-2019-6110	4.0In OpenSSH 7.9, due to accepting and displaying arbitrary stderr output from the server, a malicious server (or Man-in-The-Middle attacker) can manipulate the client output, for example to use ANSI control codes to hide additional files being transferred.
CVE-2019-6109	4.0An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-The-Middle attacker) can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This affects refresh_progress_meter() in progressmeter.c.
CVE-2019-16905	4.4OpenSSH 7.7 through 7.9 and 8.x before 8.1, when compiled with an experimental key type, has a pre-authentication integer overflow if a client or server is configured to use a crafted XMSS key. This leads to memory corruption and local code execution because of an error in the XMSS key parsing algorithm. NOTE: the XMSS implementation is considered experimental in all released OpenSSH versions, and there is no supported way to enable it when building portable OpenSSH.
CVE-2018-20685	2.6In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the target directory on the client side.
CVE-2018-15919	5.0Remotely observable behaviour in auth-gss2.c in OpenSSH through 7.8 could be used by remote attackers to detect existence of users on a target system when GSS2 is in use. NOTE: the discoverer states 'We understand that the OpenSSH developers do not want to treat such a username enumeration (or "oracle") as a vulnerability.'
CVE-2018-15473	5.0OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout for an invalid authenticating user until after the packet containing the request has been fully parsed, related to auth2-gss.c, auth2-hostbased.c, and auth2-pubkey.c.
CVE-2017-15906	5.0The process_open function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write operations in readonly mode, which allows attackers to create zero-length files.
CVE-2016-3115	5.5Multiple CRLF injection vulnerabilities in session.c in sshd in OpenSSH before 7.2p2 allow remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data, related to the (1) do_authenticated1 and (2) session_x11_req functions.
CVE-2016-20012	4.3OpenSSH through 8.7 allows remote attackers, who have a suspicion that a certain combination of username and public key is known to an SSH server, to test whether this suspicion is correct. This occurs because a challenge is sent only when that combination could be valid for a login session. NOTE: the vendor does not recognize user enumeration as a vulnerability for this product
CVE-2016-1908	7.5The client in OpenSSH before 7.2 mishandles failed cookie generation for untrusted X11 forwarding and relies on the local X11 server for access-control decisions, which allows remote X11 clients to trigger a fallback and obtain trusted X11 forwarding privileges by leveraging configuration issues on this X11 server, as demonstrated by lack of the SECURITY extension on this X11 server.
CVE-2016-10708	5.0sshd in OpenSSH before 7.4 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an out-of-sequence NEWKEYS message, as demonstrated by Honggfuzz, related to kex.c and packet.c.
CVE-2016-10012	7.2The shared memory manager (associated with pre-authentication compression) in sshd in OpenSSH before 7.4 does not ensure that a bounds check is enforced by all compilers, which might allows local users to gain privileges by leveraging access to a sandboxed privilege-separation process, related to the m_zback and m_zlib data structures.
CVE-2016-10011	2.1authfile.c in sshd in OpenSSH before 7.4 does not properly consider the effects of realloc on buffer contents, which might allow local users to obtain sensitive private-key information by leveraging access to a privilege-separated child process.
CVE-2016-10010	6.9sshd in OpenSSH before 7.4, when privilege separation is not used, creates forwarded Unix-domain sockets as root, which might allow local users to gain privileges via unspecified vectors, related to serverloop.c.
CVE-2016-10009	7.5Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH before 7.4 allows remote attackers to execute arbitrary local PKCS#11 modules by leveraging control over a forwarded agent-socket.
CVE-2016-0777	4.0The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffer, as demonstrated by reading a private key.
CVE-2015-6564	6.9Use-after-free vulnerability in the mm_answer_pam_free_ctx function in monitor.c in sshd in OpenSSH before 7.0 on non-OpenBSD platforms might allow local users to gain privileges by leveraging control of the sshd uid to send an unexpectedly early MONITOR_REQ_PAM_FREE_CTX request.
CVE-2015-6563	1.9The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous username data in MONITOR_REQ_PAM_INIT_CTX requests, which allows local users to conduct impersonation attacks by leveraging any SSH login access in conjunction with control of the sshd uid to send a crafted MONITOR_REQ_PWNAM request, related to monitor.c and monitor_wrap.c.
CVE-2015-5600	8.5The kbdint_next_device function in auth2-chall.c in sshd in OpenSSH through 6.9 does not properly restrict the processing of keyboard-interactive devices within a single connection, which makes it easier for remote attackers to conduct brute-force attacks or cause a denial of service (CPU consumption) via a long and duplicative list in the ssh -oKbdInteractiveDevices option, as demonstrated by a modified client that provides a different password for each pam element on this list.
CVE-2015-5352	4.3The x11_open_helper function in channels.c in ssh in OpenSSH before 6.9, when ForwardX11Trusted mode is not used, lacks a check of the refusal deadline for X connections, which makes it easier for remote attackers to bypass intended access restrictions via a connection outside of the permitted time window.
CVE-2014-2653	5.8The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptable HostCertificate.
CVE-2014-2532	5.8sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshd_config, which allows remote attackers to bypass intended environment restrictions by using a substring located before a wildcard character.
CVE-2014-1692	7.5The hash_buffer function in schnorr.c in OpenSSH through 6.4, when Makefile.inc is modified to enable the J-PAKE protocol, does not initialize certain data structures, which might allow remote attackers to cause a denial of service (memory corruption) or have unspecified other impact via vectors that trigger an error condition.
CVE-2012-0814	3.5The auth_parse_options function in auth-options.c in sshd in OpenSSH before 5.7 provides debug messages containing authorized_keys command options, which allows remote authenticated users to obtain potentially sensitive information by reading these messages, as demonstrated by the shared user account required by Gitolite. NOTE: this can cross privilege boundaries because a user account may intentionally have no shell or filesystem access, and therefore may have no supported way to read an authorized_keys file in its own home directory.
CVE-2011-5000	3.5The ssh_gssapi_parse_ename function in gss-serv.c in OpenSSH 5.8 and earlier, when gssapi-with-mic authentication is enabled, allows remote authenticated users to cause a denial of service (memory consumption) via a large value in a certain length field. NOTE: there may be limited scenarios in which this issue is relevant.
CVE-2011-4327	2.1ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information via the ptrace system call.
CVE-2010-5107	5.0The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a TCP connection and completing a login, which makes it easier for remote attackers to cause a denial of service (connection-slot exhaustion) by periodically making many new TCP connections.
CVE-2010-4755	4.0The (1) remote_glob function in sftp-glob.c and the (2) process_put function in sftp.c in OpenSSH 5.8 and earlier, as used in FreeBSD 7.3 and 8.1, NetBSD 5.0.2, OpenBSD 4.7, and other products, allow remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames, as demonstrated by glob expressions in SSH_FXP_STAT requests to an sftp daemon, a different vulnerability than CVE-2010-2632.
CVE-2010-4478	7.5OpenSSH 5.6 and earlier, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, which allows remote attackers to bypass the need for knowledge of the shared secret, and successfully authenticate, by sending crafted values in each round of the protocol, a related issue to CVE-2010-4252.
CVE-2008-3844	9.3Certain Red Hat Enterprise Linux (RHEL) 4 and 5 packages for OpenSSH, as signed in August 2008 using a legitimate Red Hat GPG key, contain an externally introduced modification (Trojan Horse) that allows the package authors to have an unknown impact. NOTE: since the malicious packages were not distributed from any official Red Hat sources, the scope of this issue is restricted to users who may have obtained these packages through unofficial distribution points. As of 20080827, no unofficial distributions of this software are known.
CVE-2007-2768	4.3OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, allows remote attackers to determine the existence of certain user accounts, which displays a different response if the user account exists and is configured to use one-time passwords (OTP), a similar issue to CVE-2007-2243.

OpenPorts

11 13 20 21 23 25 37 38 43 49 53 70 79 80 84 90 100 102 104 111 113 119 143 154 179 195 264 311 389 427 443 444 465 502 515 548 554 555 593 636 666 771 789 873 902 992 993 995 1022 1023 1025 1080 1099 1153 1177 1200 1234 1337 1355 1400 1433 1471 1500 1515 1521 1554 1599 1604 1650 1723 1800 1801 1883 1911 1925 1926 1947 1962 2000 2002 2008 2051 2055 2060 2067 2080 2081 2083 2087 2121 2154 2181 2222 2323 2332 2376 2404 2455 2480 2601 2628 2701 2761 2762 3001 3050 3085 3088 3101 3105 3106 3108 3128 3260 3268 3269 3299 3301 3306 3310 3311 3333 3388 3389 3498 3542 3551 3780 3790 3792 3950 4000 4002 4022 4063 4064 4157 4242 4243 4282 4321 4369 4433 4443 4500 4506 4782 4786 4840 4899 4911 4949 5001 5005 5006 5007 5009 5010 5025 5070 5080 5090 5172 5201 5222 5269 5500 5590 5595 5597 5606 5607 5672 5906 5938 5986 6000 6001 6002 6004 6008 6102 6379 6443 6503 6550 6581 6601 6633 6653 6666 6667 6668 7001 7071 7171 7415 7474 7547 7548 7676 7700 7989 8001 8002 8005 8009 8010 8024 8044 8058 8081 8083 8085 8086 8087 8089 8096 8098 8104 8108 8112 8123 8126 8140 8181 8200 8291 8333 8409 8418 8443 8513 8545 8554 8590 8649 8728 8790 8814 8833 8834 8837 8852 8855 8860 8880 8885 8889 9000 9001 9002 9016 9017 9024 9041 9042 9044 9051 9091 9092 9095 9100 9108 9151 9160 9191 9214 9221 9222 9301 9302 9306 9418 9530 9600 9633 9761 9943 9981 9998 9999 10000 10001 10134 10443 10554 10909 11112 11210 11300 11434 12000 12345 13579 14147 14265 14344 16010 16030 16993 17000 18245 19000 20000 20256 20547 21025 21379 23023 25001 25105 25565 27015 27017 28015 30002 30003 31337 32400 32764 33060 35000 37215 37777 44158 44818 47990 49152 50000 50070 54138 55000 55442 55443 55553 55554 60010 60129 61613 61616 62078 65522

2087396567 | 2024-05-30T22:40:19.937360

11 / tcp

kjnkjabhbanc283ubcsbhdc72

1215890103 | 2024-05-30T18:00:37.311057

13 / tcp

12:58:25 2024-1-22

-2089734047 | 2024-05-18T02:06:08.571391

20 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

1564456597 | 2024-05-30T00:22:43.557745

21 / tcp

220 Firewall Authentication required before proceeding with service

-23362551 | 2024-06-01T07:39:17.014881

23 / tcp

\xff\xfb\x01\xff\xfb\x03\xff\xfd\x18

-1399940268 | 2024-05-23T16:45:57.001443

25 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-1336879475 | 2024-05-31T19:25:05.286493

37 / tcp

HTTP/1.1 302 Found
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
X-Frame-Options: SAMEORIGIN
Server: httpd
Location: /login/login.cgi
Content-Type: text/html; charset=%s
Cache-Control: max-age=1
Expires: Mon, 22 Jan 2024 01:15:19 GMT
Connection: close

-2089734047 | 2024-05-03T02:03:25.938627

38 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

-1399940268 | 2024-05-06T03:01:05.283248

43 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1685693176 | 2024-05-16T22:42:03.968598

49 / tcp

HTTP/1.1 200 OK
X-Powered-By: PHP/5.5.9-1ubuntu4.21
Server: cisco-CPA

-1370420049 | 2024-05-25T02:22:13.423735

53 / tcp

9
\x81\x80\x00\x01\x00\x02\x00\x00\x00\x00\x08clients1\x06google\x03com\x00\x00\x01\x00\x01\xc0\x00\x05\x00\x01\x00\x00\x00\x02\x00\x07clients\x01l\xc0\x15\xc01\x00\x01\x00\x01\x00\x00\x00\x02\x00\x04\xac٣.
\x00\x06\x85\x00\x00\x01\x00\x00\x00\x01\x00

-1056270173 | 2024-05-30T08:16:38.196422

70 / tcp

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close

-1264324149 | 2024-05-30T22:19:23.931747

79 / tcp

Siemens 2766190798 T1E1 [COMBO] Router (7-382-) v13708 Ready
ÿû\x01ÿû\x03ÿý\x01ÿþ\x01Username:

1347280881 | 2024-05-27T08:09:25.394162

80 / tcp

HTTP/1.1 403 Forbidden
Server: AliyunOSS
Date: Mon, 27 May 2024 08:09:24 GMT
Content-Type: application/xml
Content-Length: 346
Connection: keep-alive
x-oss-request-id: 66543FB4D5C069313775BAC6
x-oss-server-time: 0
x-oss-ec: 0003-00001201

1865391109 | 2024-05-07T18:58:16.791660

84 / tcp

HTTP/1.1 408 Request Timeout
content-length: 0

-375604792 | 2024-05-23T08:15:30.664531

90 / tcp

220 Microsoft FTP Service

2103111368 | 2024-05-25T17:09:30.456545

100 / tcp

HTTP/1.0 403 Access denied
Server: tinyproxy/1.8.3
0AContent-Type: text/html
Connection: close

<?...

321971019 | 2024-05-29T19:26:52.274619

102 / tcp

-ERR client ip is not in whitelist\r

-358801646 | 2024-05-29T21:28:05.176614

104 / tcp

SSH-2.0-OpenSSH_6.6.1

323676348 | 2024-05-16T18:43:31.127284

111 / tcp

}â

455076604 | 2024-05-19T10:03:14.933614

113 / tcp

!\x07version\x04bind7 t{RPowerDNS Recursor 410

141730637 | 2024-05-28T05:20:53.043086

119 / tcp

HTTP/1.0 200 OK
Server: Proxy

1771091364 | 2024-05-09T08:01:12.452866

143 / tcp

* OK WIN-C1N84A1UUO4.elite-sz.cn Winmail Mail Server IMAP4 ready\r\n

-1428621233 | 2024-05-20T23:10:06.846553

154 / tcp

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

-399606100 | 2024-05-29T09:33:53.059227

179 / tcp

BGP Message\nType: 3\nMajor error Code: 6\nMinor error Code: 5\n

-971970408 | 2024-05-15T11:14:04.000398

195 / tcp

-1709030885 | 2024-05-20T11:41:06.567413

264 / tcp

SSH-

-1547976805 | 2024-05-26T06:02:48.722037

311 / tcp

HTTP/1.1 403 Forbidden
Server: nginx
Content-Type: text/html
Connection: close

-1713467553 | 2024-05-29T11:54:49.367644

389 / tcp

HTTP/1.1 400 Bad Request
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Connection: close

1388449297 | 2024-05-23T13:37:38.681334

427 / tcp

SAAdvert Response:\nVersion: 2\nFunction: SA Advertisement (11)\nURL: service:service-agent://*.*.*.*\nScopeList: default\nAttrributeList: \n\n\nserviceTypes:\nservice:ipmi\nservice:uartmirrorlog\nservice:lighttpd\nservice:redfish\nservice:management-hardware.ThinkBMC\nservice:cdserver\nservice:hdserver\nservice:adviser\nservice:MCTPMain\nB://l:87/x\n\nResponse of service:ipmi SrvReq:\nVersion: 2\nFunction: Service Reply (2)\nErrorCode: SUCCESS (0)\nURL Entries:\n  Lifetime: 65535\n  URL: service:ipmi://LNV-7D53-J6001R60:623\n\n\nRespo

1209363082 | 2024-05-26T16:28:31.579074

443 / tcp

HTTP/1.1 403 Forbidden
Server: AliyunOSS
Date: Sun, 26 May 2024 16:28:31 GMT
Content-Type: application/xml
Content-Length: 346
Connection: keep-alive
x-oss-request-id: 6653632FAF96A13638FB7BE1
x-oss-server-time: 0
x-oss-ec: 0003-00001201

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            57:21:e4:e5:73:fc:7f:09:2a:04:98:d5
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G3
        Validity
            Not Before: Feb 19 05:01:07 2024 GMT
            Not After : Mar 22 05:01:06 2025 GMT
        Subject: C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=cn-hangzhou.oss.aliyuncs.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:e4:33:85:33:df:c3:af:64:36:c4:2f:07:75:c9:
                    3a:b3:26:75:db:43:da:5c:3a:52:cd:1a:22:6e:91:
                    63:82:4a:49:60:30:02:b2:57:00:98:0e:8d:7c:8a:
                    70:cf:bf:d6:9b:82:41:ea:ba:94:fb:3a:bb:e8:7c:
                    2f:79:90:84:d7:a7:24:a3:ef:ee:6a:a7:8e:cf:2a:
                    e0:d1:9a:ac:9c:b6:8c:0c:a4:2f:62:20:54:e0:14:
                    86:b1:3c:7a:30:f2:19:7e:d1:39:17:e9:d6:18:6e:
                    c3:33:ed:1a:4c:e1:9c:89:36:0f:3c:4c:c7:85:60:
                    6e:18:95:3c:c7:a5:3e:77:2e:3a:bb:a8:ff:56:38:
                    37:86:64:c1:7f:36:de:ac:0f:53:7e:b2:09:3e:e0:
                    7a:12:10:10:fb:73:5d:d8:44:08:54:86:67:b0:f9:
                    7d:c4:5a:e4:bf:09:89:1e:c4:8c:fe:0f:de:e3:00:
                    7b:3c:95:53:77:3c:78:dc:c6:13:a1:d2:89:33:66:
                    f1:ef:82:ea:9d:48:1e:5e:ee:cc:26:6c:4e:22:5c:
                    70:e5:4f:6e:9f:29:f2:96:e2:32:8f:1f:f5:ce:7c:
                    59:a7:ce:66:16:c6:1d:8a:e4:f2:3b:ae:7d:4c:23:
                    40:3b:65:06:b9:02:54:82:88:ed:c5:5f:25:7b:db:
                    53:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            Authority Information Access: 
                CA Issuers - URI:http://secure.globalsign.com/cacert/gsorganizationvalsha2g3.crt
                OCSP - URI:http://ocsp2.globalsign.com/gsorganizationvalsha2g3
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.4146.1.20
                  CPS: https://www.globalsign.com/repository/
                Policy: 2.23.140.1.2.2
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.globalsign.com/gsorganizationvalsha2g3.crl
            X509v3 Subject Alternative Name: 
                DNS:cn-hangzhou.oss.aliyuncs.com, DNS:*.oss-cn-hangzhou.aliyuncs.com, DNS:*.img-cn-hangzhou-internal.aliyuncs.com, DNS:*.oss-cn-hzjbp-a-internal.aliyuncs.com, DNS:*.oss-cn-hangzhou-internal.aliyuncs.com, DNS:*.oss-cn-hangzhou-diku-internal.aliyuncs.com, DNS:*.cn-hangzhou.oss.aliyuncs.com, DNS:*.oss-enet-cm.aliyuncs.com, DNS:*.cn-hangzhou.oss-internal-cross.aliyun-inc.com, DNS:*.oss-cn-hangzhou-am101.aliyuncs.com, DNS:*.oss-internal.aliyuncs.com, DNS:*.oss-accelerate.aliyuncs.com, DNS:*.oss-cn-hzjbp-b-internal.aliyuncs.com, DNS:*.img-cn-hangzhou.aliyuncs.com, DNS:*.oss-accelerate-overseas.aliyuncs.com, DNS:*.oss-cn-hangzhou-zmf.aliyuncs.com, DNS:*.oss-cn-hangzhou-hsa.aliyuncs.com, DNS:*.aliyuncs.com, DNS:*.oss.aliyuncs.com, DNS:*.oss-cn-hangzhou-cross.aliyuncs.com, DNS:*.vpc100-oss-cn-hangzhou.aliyuncs.com, DNS:*.oss-cn-hzfinance.aliyuncs.com, DNS:*.oss-enet.aliyuncs.com, DNS:*.cn-hangzhou.oss-internal.aliyuncs.com, DNS:*.oss-enet-cu.aliyuncs.com, DNS:*.oss-enet-ct.aliyuncs.com, DNS:*.oss-cn-hangzhou-zmf-internal.aliyuncs.com, DNS:*.oss-cn-hzfinance-internal.aliyuncs.com, DNS:*.cn-hangzhou-finance.oss.aliyuncs.com, DNS:*.oss-cn-hzjbp-b-console.aliyuncs.com, DNS:*.oss-cache-cn-hangzhou-j.aliyuncs.com, DNS:*.oss-cache-cn-hangzhou-j-cross.aliyuncs.com, DNS:*.oss-enet-cn-east.aliyuncs.com, DNS:*.cn-hangzhou-vpc.oss.aliyuncs.com, DNS:*.oss-accesspoint.aliyuncs.com, DNS:*.oss-cn-hangzhou.oss-accesspoint.aliyuncs.com, DNS:*.oss-cn-hangzhou-internal.oss-accesspoint.aliyuncs.com, DNS:*.cn-hangzhou.oss-console.aliyuncs.com, DNS:*.s3.oss-cn-hangzhou.aliyuncs.com, DNS:*.s3.oss-cn-hangzhou-internal.aliyuncs.com, DNS:*.cn-hangzhou.mgw.aliyuncs.com, DNS:*.oss.cn-hangzhou.privatelink.aliyuncs.com, DNS:*.oss-cn-hangzhou.oss-object-process.aliyuncs.com, DNS:*.oss-cn-hangzhou-internal.oss-object-process.aliyuncs.com, DNS:*.s3.oss-accelerate.aliyuncs.com, DNS:*.s3.oss-accelerate-overseas.aliyuncs.com, DNS:*.cn-hangzhou-cross.mgw.aliyuncs.com
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Authority Key Identifier: 
                68:86:B8:7D:7A:D9:6D:49:6B:87:2F:18:8B:15:34:6C:D7:B4:7A:0E
            X509v3 Subject Key Identifier: 
                A9:B4:08:AD:74:76:24:F8:94:02:09:AF:A1:CD:4B:1D:51:33:C1:61
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Feb 19 05:01:09.851 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:4C:A8:93:C6:9D:10:B5:44:EA:22:C4:6E:
                                92:C3:E2:B2:9B:DE:7D:ED:7C:E4:13:66:7C:BC:00:C6:
                                55:E5:30:FD:02:20:52:7C:85:F1:3E:EA:BE:9A:8E:4B:
                                99:EE:3E:1B:E9:01:06:7D:47:E3:D8:82:C0:E4:29:46:
                                11:A5:F1:30:AB:51
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Feb 19 05:01:09.861 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:FA:47:21:1A:96:CD:EC:11:AE:C7:7C:
                                D9:67:C2:68:9E:BC:61:58:CE:23:BD:45:DD:5F:E5:49:
                                7B:EB:33:BC:CA:02:20:70:0A:31:A8:28:9A:BD:14:21:
                                5C:0A:E9:AA:DD:72:24:80:CE:39:27:5F:A0:48:0E:9C:
                                52:D1:13:61:E3:53:47
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Feb 19 05:01:09.819 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:32:A3:F7:00:A4:8C:A6:78:04:A5:44:F7:
                                70:3D:F8:E4:8D:71:DA:26:14:63:0D:D1:34:8A:C4:5A:
                                C4:ED:62:FC:02:20:39:FD:AC:A3:E6:79:99:18:43:7D:
                                71:8D:1B:B5:39:98:E2:04:70:DD:FD:D2:4F:CD:22:0D:
                                D6:85:2E:46:B7:D5
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        27:c4:7d:9b:75:a3:41:86:a4:06:5f:b8:66:d0:3e:cd:73:9c:
        b2:ba:f0:f3:5b:b9:5c:61:75:10:f9:ec:00:3f:f1:35:1b:64:
        02:ef:a2:0b:64:fe:3a:5f:bd:59:fa:34:17:50:9f:ec:97:0d:
        e8:d9:2c:f4:30:27:5a:51:83:cf:7d:e5:ae:0f:68:b9:ec:a1:
        05:52:98:ff:1d:0b:8a:94:8a:f7:0b:32:e8:2b:91:f2:52:a8:
        ac:44:a7:ab:e0:ae:4f:7e:aa:59:d5:e0:92:e6:ea:6f:a1:3b:
        97:93:68:06:84:a1:8c:eb:76:62:39:00:ff:90:29:b2:90:4c:
        cf:36:f1:82:48:7b:d9:64:f4:6f:fc:1e:e3:90:9d:ea:e0:98:
        f3:99:cd:ca:19:6e:fd:7e:72:12:0e:b6:78:7e:a1:27:7c:a3:
        1f:e5:bc:16:ac:2c:73:fc:1d:db:37:21:6e:7d:30:1d:67:41:
        3e:8d:78:f0:08:76:83:43:df:1d:29:5b:74:9e:20:e0:10:b8:
        69:43:d2:39:ea:65:aa:8b:3f:09:23:82:a5:3a:b8:ad:7f:71:
        9d:22:d8:eb:85:ca:77:97:b1:38:29:02:5d:d1:de:04:ff:cf:
        6d:7c:ee:91:c4:34:33:dc:92:52:f9:48:0c:5f:10:40:dc:5d:
        7d:16:5c:a2

382917006 | 2024-05-27T17:50:53.863845

444 / tcp

HTTP/1.1 400 Bad Request
Server: nginx/1.22.1
Date: Mon, 27 May 2024 17:50:53 GMT
Content-Type: text/html
Content-Length: 157
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx/1.22.1</center>
</body>
</html>

897328069 | 2024-05-30T08:07:46.901029

465 / tcp

220 mail.scott000.com ESMTP

-1399940268 | 2024-05-29T14:13:55.903283

502 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

2087396567 | 2024-05-19T20:02:56.134793

515 / tcp

kjnkjabhbanc283ubcsbhdc72

-2035415184 | 2024-05-27T04:03:34.921790

548 / tcp

Fast Copy: Yes\nExtended Sleep: Yes\nUUIDs: Yes\nUTF8 Server Name: Yes\nDirectory Services: Yes\nReconnect: No\nServer Notifications: Yes\nTCP/IP: Yes\nServer Signature: Yes\nServer Message: No\nPassword Saving Prohibited: No\nPassword Changing: No\nCopy File: Yes\nServer Name: Landisk2\nMachine Type: \rNetatalk3.1.8\nAFP Versions: AFP2.2, AFPX03, AFP3.1, AFP3.2, AFP3.3, AFP3.4\nUAMs: Cleartxt Passwrd\\x04,DHX2\t,DHCAST128\\x00\nServer Signature: 00000000008002000180030002800280

1060450357 | 2024-05-23T21:50:10.975930

554 / tcp

RTSP/1.0 200 OK
CSeq: 1
Keep-Alive: timeout=10, max=1000
Public: DESCRIBE, SETUP, TEARDOWN, PLAY, PAUSE, SET_PARAMETER, GET_PARAMETER
Connection: Keep-Alive

1632932802 | 2024-05-07T20:49:47.817547

555 / tcp

1308377066 | 2024-05-15T14:08:58.686962

593 / tcp

ncacn_http/1.0

1732481781 | 2024-05-03T01:03:31.959839

636 / tcp

HTTP/1.1 400 Bad Request
Content-Type: text/html
Cache-Control: no-cache, no-store
Connection: close
X-Iinfo: 8-38284903-0 0NNN RT(1705909933705 166) q(-1 -1 -1 -1) r(0 -1) b1

-1420968138 | 2024-05-25T20:47:50.201654

666 / tcp

HTTP/1.0 200 OK
Server: SonicWALL
Expires: -1
Cache-Control: no-cache
Content-type: text/html; charset=UTF-8;
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains

321971019 | 2024-05-26T19:37:19.879836

771 / tcp

-ERR client ip is not in whitelist\r

632542934 | 2024-05-30T12:54:44.614760

789 / tcp

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

-1598265216 | 2024-05-12T05:32:37.441117

873 / tcp

@RSYNCD: 31.0

1956828827 | 2024-05-25T20:18:17.151423

902 / tcp

220 VMware Authentication Daemon Version 1.10: SSL Required, Se
rverDaemonProtocol:SOAP, MKSDisplayProtocol:VNC , , NFCSSL supported/t

-936692830 | 2024-05-22T13:13:16.709265

992 / tcp

HTTP/1.1 202 OK
Connection: Keep-Alive
Content-Type: text/html
Keep-Alive: timeout=15; max=19

408230060 | 2024-05-23T05:45:17.046380

993 / tcp

\r\nSorry, that nickname format is invalid.\r\n

-1199842642 | 2024-05-22T06:25:46.023944

995 / tcp

+OK Welcome to RaidenMAILD POP3 SSL service v4902, Mon, 22 Jan 2024 14:24:46 +0800, (C)2001-2023 <1044592421@raidenmaild>\r\n

819727972 | 2024-05-28T00:32:05.728835

1022 / tcp

SSH-2.0-OpenSSH_7.4

1957945115 | 2024-05-21T22:01:21.785381

1023 / tcp

ôInternal Server ErrorAB

-653033013 | 2024-06-01T04:20:05.917684

1025 / tcp

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

1362344524 | 2024-05-20T22:50:09.489889

1080 / tcp

SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.7

820958131 | 2024-05-31T08:39:16.002254

1099 / tcp

kjnkjabhbanc283ubcsbhdc72\x02

1911457608 | 2024-05-09T02:07:19.106736

1153 / tcp

\x00[\x00\x00\x00\x00\x00\x00

1093576587 | 2024-05-25T15:44:48.562842

1177 / tcp

¥A,LConnectx57222

546151771 | 2024-05-15T18:54:49.365646

1200 / tcp

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC
Clients:
/*.*.*.*:11264[0](queued=0,recved=1,sent=0)

Latency min/avg/max: 0/0.0/0
Received: 8557
Sent: 11410
Connections: 1
Outstanding: 0
Zxid: 0x332907ad3391
Mode: follower
Node count: 104618

1911457608 | 2024-05-30T17:21:10.033904

1234 / tcp

\x00[\x00\x00\x00\x00\x00\x00

2087396567 | 2024-05-28T06:18:58.717642

1337 / tcp

kjnkjabhbanc283ubcsbhdc72

-1947777893 | 2024-05-23T21:21:13.404194

1355 / tcp

"Broadband Router"\r\n\r\n<HTML><HEAD><TITLE>401 Unauthorized</TITLE></HEAD><BODY onLoad

1321679546 | 2024-05-30T13:16:05.881492

1400 / tcp

ÿÿÿ
0 ...

-271790512 | 2024-05-22T23:33:00.994535

1433 / tcp

MSSQL Server\nVersion: 251660240 (0xf0007d0)\nSub-Build: 0\nEncryption:Not available

-2118655245 | 2024-05-02T20:38:42.150529

1471 / tcp

HTTP/1.0 500 Internal Server Error
Content-Length: 20

-271515508 | 2024-05-29T23:32:24.483057

1500 / tcp

HTTP/1.1 302 Moved Temporarily
Server: DrcomServer1.0
Location: http://192.168.254.3
Cache-Control: no-cache
Connection: close

2087396567 | 2024-05-29T17:17:09.183233

1515 / tcp

kjnkjabhbanc283ubcsbhdc72

-1184558916 | 2024-05-23T04:01:56.305306

1521 / tcp

Version:11.2.0.4.0\n"\\x00\\x00Y(DESCRIPTION=(TMP=)(VSNNUM=186647552)(ERR=1189)(ERROR_STACK=(ERROR=(CODE=1189)(EMFI=4))))

-1026951088 | 2024-05-15T01:22:05.050826

1554 / tcp

erro ip

2087396567 | 2024-05-19T20:42:54.711161

1599 / tcp

kjnkjabhbanc283ubcsbhdc72

550048729 | 2024-05-30T20:59:26.310399

1604 / tcp

ÿÿÿ
0 ...

-1297953727 | 2024-05-22T14:53:00.157493

1650 / tcp

\x02\x00\x00\x00\x00\x00\x06\x04\x00\x00\x00\x00\x00\x0c\x00\x00\n0\x00\x1c

1103582599 | 2024-05-09T00:05:54.280040

1723 / tcp

Firmware: 1\nHostname: Vigor\nVendor: DrayTek\n

921225407 | 2024-05-09T23:37:34.881537

1800 / tcp

\x00\x00\x00\x04\x00\x00\x00\x00\x00

1745717579 | 2024-05-26T13:39:36.604563

1801 / tcp

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae224e_PS-CSX-01CvJ183_33983-2857

1282941221 | 2024-05-14T08:24:43.839685

1883 / tcp

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

819727972 | 2024-05-26T05:37:26.184414

1911 / tcp

SSH-2.0-OpenSSH_7.4

-119996482 | 2024-05-14T20:18:40.378854

1925 / tcp

HTTP/1.1 408 Request Timeout
Content-Length: 0

1842524259 | 2024-05-24T19:37:34.494620

1926 / tcp

1332639794 | 2024-05-23T21:06:51.848834

1947 / tcp

HTTP/1.1 403 Forbidden
Server: HASP LM/16.00
Content-Type: text/html

921225407 | 2024-05-15T11:21:58.172012

1962 / tcp

\x00\x00\x00\x04\x00\x00\x00\x00\x00

580340387 | 2024-05-16T01:36:18.479451

2000 / tcp

220 Microsoft FTP Service\n530 User cannot log in.\n214-The following commands are recognized (* ==>\'s unimplemented).\n    ABOR \n    ACCT \n    ADAT *\n    ALLO \n    APPE \n    AUTH \n    CCC \n    CDUP \n    CWD \n    DELE \n    ENC *\n    EPRT \n    EPSV \n    FEAT \n    HELP \n    HOST \n    LANG \n    LIST ...

1632932802 | 2024-05-21T04:00:31.205150

2002 / tcp

-1136600457 | 2024-05-26T23:15:43.154745

2008 / tcp

HELO:10.3.6.0.false
AS:2048
HL:19

1911457608 | 2024-05-04T18:19:26.121374

2051 / tcp

\x00[\x00\x00\x00\x00\x00\x00

819727972 | 2024-05-09T19:35:16.561501

2055 / tcp

SSH-2.0-OpenSSH_7.4

1282941221 | 2024-05-12T19:53:09.696791

2060 / tcp

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

366084633 | 2024-06-01T17:15:03.287227

2067 / tcp

<HTML><HEAD><TITLE>Error</TITLE></HEAD><BODY><H1>Error</H1>Bad request or resource not found.</BODY></HTML>

-1139539254 | 2024-05-04T08:58:00.432495

2080 / tcp

\xc3\xbf\xc3\xbb\x01\n\rno data rcvd for version string\n\rrecv version id unsuccessful\n\rSSH Session task 0xY: Version Exchange Failed\n\r

-2089734047 | 2024-05-14T15:36:11.718608

2081 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

2087396567 | 2024-05-23T06:23:00.801067

2083 / tcp

kjnkjabhbanc283ubcsbhdc72

-1900404274 | 2024-05-26T01:52:52.450913

2087 / tcp

Unknown command

141730637 | 2024-05-13T02:12:34.957992

2121 / tcp

HTTP/1.0 200 OK
Server: Proxy

-1839934832 | 2024-05-30T05:21:38.885761

2154 / tcp

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

546151771 | 2024-05-25T13:35:20.280935

2181 / tcp

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC
Clients:
/*.*.*.*:11264[0](queued=0,recved=1,sent=0)

Latency min/avg/max: 0/0.0/0
Received: 8557
Sent: 11410
Connections: 1
Outstanding: 0
Zxid: 0x332907ad3391
Mode: follower
Node count: 104618

-1659353189 | 2024-06-01T10:52:22.717829

2222 / tcp

SSH-2.0-ssh-server\r\n\\x00\\x00\\x02\\x14\x0b\\x14\x0b\\xed\\x16\\xae\\x96\t\\xc5En\\xbd\\x1cgn\\xff\\xad\\xd7\\x00\\x00\\x00\\xbbcurve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp521,ecdh-sha2-nistp384,ecdh-sha2-nistp256,diffie-hellman-group14-sha256,diffie-hellman-gr

1662205251 | 2024-05-17T13:06:07.261418

2323 / tcp

HTTP/1.0 404 FAIL
Content-length:5
Connection:Close

-1681927087 | 2024-05-13T01:41:53.519876

2332 / tcp

kjnkjabhbanc283ubcsbhdc72

-971970408 | 2024-05-03T03:14:01.046790

2376 / tcp

165188539 | 2024-05-30T01:16:15.041105

2404 / tcp

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

-992671574 | 2024-05-25T15:10:17.810085

2455 / tcp

@RSYNCD: 26

-2081419599 | 2024-05-14T19:38:47.895588

2480 / tcp

@
03d

-1804005872 | 2024-05-26T23:08:09.472536

2601 / tcp

\n\nWelcome to visit GOCLOUD S2A series router!\n\n\r\nUser Access Verification\r\n\r\n\\xff\\xfb\\x01\\xff\\xfb\\x03\\xff\\xfe"\\xff\\xfd\\x1fPassword:

-1399940268 | 2024-05-31T11:28:13.659131

2628 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1869192275 | 2024-05-16T07:40:41.747325

2701 / tcp

\n

-1399940268 | 2024-05-28T03:09:38.267971

2761 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-2033111675 | 2024-06-01T05:00:19.838669

2762 / tcp

~djb

472902042 | 2024-05-21T17:56:05.048906

3001 / tcp

"Magic:ActiveMQ
Version:12
<ActiveMQ*TcpNoDelayEnabledSizePrefixDisabled CacheSizeProviderName ActiveMQStackTraceEnabledPlatformDetails JavaCacheEnabledTightEncodingEnabledMaxFrameSize@MaxInac

-2089734047 | 2024-05-30T10:36:33.585760

3050 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

575925250 | 2024-05-10T18:05:54.771705

3085 / tcp

AMQP:\ncluster_name:rabbit@rabbitmq-0.rabbitmq-headless.rabbitmq.svc.cluster.local\ncopyright:Copyright (c) 2007-2021 VMware, Inc. or its affiliates.\ninformation:Licensed under the MPL 2.0. Website: https://rabbitmq.com\nplatform:Erlang/OTP 24.1\nproduct:RabbitMQ\nversion:3.9.7\nCapabilities:\npublisher_confirms:true\nexchange_exchange_bindings:true\nbasic.nack:true\nconsumer_cancel_notify:true\nconnection.blocked:true\nconsumer_priorities:true\nauthentication_failure_close:true\nper_consumer_qos:true\ndirect_reply_to:tru

819727972 | 2024-05-06T09:42:42.694578

3088 / tcp

SSH-2.0-OpenSSH_7.4

89142341 | 2024-06-01T11:28:00.144707

3101 / tcp

\x05\x00\x00\x00\x0b\x08\x05\x1a\x00

-1114821551 | 2024-05-10T11:32:34.360257

3105 / tcp

\xc3\xa3\r\n\r\n\x00\x01\x00K\x00vInvalid protocol verification, illegal ORMI request or request performed with an incompatible version of this protocol

921225407 | 2024-05-03T18:27:23.298559

3106 / tcp

\x00\x00\x00\x04\x00\x00\x00\x00\x00

165188539 | 2024-05-28T11:35:49.483232

3108 / tcp

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

1320285193 | 2024-05-30T22:14:49.488509

3128 / tcp

HTTP/1.1 404 Not Found
Server: CloudWAF
Content-Type: text/html
Connection: keep-alive

-862070606 | 2024-05-26T16:28:12.159873

3260 / tcp

Login Response Success(0x0000)\nKey/Value Pairs\nAuthMethod=None\nTargetAlias=LIO Target\nTargetPortalGroupTag=1\n\n

-2031078612 | 2024-05-26T14:42:03.168622

3268 / tcp

HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Location: http://proxy.ces.org.tw:3000/login?url=http%3A%2F%2Floginbyurl.wanfangdata.com.cn%2F

-1399940268 | 2024-05-11T17:32:47.726382

3269 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

2087396567 | 2024-05-14T15:53:15.656132

3299 / tcp

kjnkjabhbanc283ubcsbhdc72

819727972 | 2024-05-14T19:44:29.088544

3301 / tcp

SSH-2.0-OpenSSH_7.4

1047846045 | 2024-05-28T18:13:52.077799

3306 / tcp

H\\x00\\x00\\x01\\xffj\\x04Host \'*.*.*.*\' is not allowed to connect to this MariaDB server

165188539 | 2024-05-10T12:46:40.248160

3310 / tcp

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

1911457608 | 2024-05-18T02:27:34.174823

3311 / tcp

\x00[\x00\x00\x00\x00\x00\x00

372433470 | 2024-05-31T20:00:22.111994

3333 / tcp

HTTP/1.1 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm=""

575925250 | 2024-05-21T06:20:52.305821

3388 / tcp

AMQP:\ncluster_name:rabbit@rabbitmq-0.rabbitmq-headless.rabbitmq.svc.cluster.local\ncopyright:Copyright (c) 2007-2021 VMware, Inc. or its affiliates.\ninformation:Licensed under the MPL 2.0. Website: https://rabbitmq.com\nplatform:Erlang/OTP 24.1\nproduct:RabbitMQ\nversion:3.9.7\nCapabilities:\npublisher_confirms:true\nexchange_exchange_bindings:true\nbasic.nack:true\nconsumer_cancel_notify:true\nconnection.blocked:true\nconsumer_priorities:true\nauthentication_failure_close:true\nper_consumer_qos:true\ndirect_reply_to:tru

521595461 | 2024-05-09T20:12:54.409932

3389 / tcp

Remote Desktop Protocol\n\\x03\\x00\\x00\\x13\\x0e\\xd0\\x00\\x00\\x124\\x00\\x03\\x00\\x08\\x00\\x02\\x00\\x00\\x00\n\nGuess_OS:Windows Server 2003 or 2008\nFlag: PROTOCOL_HYBRID\n

-1399940268 | 2024-05-16T15:41:25.980697

3498 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

2033888749 | 2024-05-25T01:26:06.901908

3542 / tcp

Content-Type: text/rude-rejection
Content-Length: 24


Access Denied, go away.
Content-Type: text/disconnect-notice
C...

198844676 | 2024-05-21T04:50:15.898795

3551 / tcp

HTTP/1.1 404 Not Found
Server: Jetty/9.4.31.v20200723
Content-Type: text/plain; charset=utf-8
Connection: close

1996932384 | 2024-05-30T23:26:28.954244

3780 / tcp

"raop" nonce

474736340 | 2024-05-28T03:30:23.697410

3790 / tcp

431 Unable to negotiate secure command connection.

1911457608 | 2024-05-21T15:20:06.760228

3792 / tcp

\x00[\x00\x00\x00\x00\x00\x00

-2089734047 | 2024-05-16T10:57:52.916424

3950 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

1300162323 | 2024-05-27T11:47:06.106239

4000 / tcp

HTTP/1.1 404 Not Found
Content-Type: text/plain; charset=utf-8
X-Content-Type-Options: nosniff

-805362002 | 2024-05-05T21:36:04.359228

4002 / tcp

ICAP/1.0 501 Other
Server: Traffic Spicer 7788179225

921225407 | 2024-05-31T09:11:10.909407

4022 / tcp

\x00\x00\x00\x04\x00\x00\x00\x00\x00

-358801646 | 2024-05-28T13:53:29.925612

4063 / tcp

SSH-2.0-OpenSSH_6.6.1

-1399940268 | 2024-05-26T01:26:16.522553

4064 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

472902042 | 2024-05-31T15:17:01.989788

4157 / tcp

"Magic:ActiveMQ
Version:12
<ActiveMQ*TcpNoDelayEnabledSizePrefixDisabled CacheSizeProviderName ActiveMQStackTraceEnabledPlatformDetails JavaCacheEnabledTightEncodingEnabledMaxFrameSize@MaxInac

-1914158197 | 2024-05-28T16:59:06.962785

4242 / tcp

HTTP/1.1 500 Internal Server Error
Server: nginx/1.18.11011 (Ubuntu)
Content-Type: text/plain; charset=utf-8
Connection: close

819727972 | 2024-05-04T12:20:13.297010

4243 / tcp

SSH-2.0-OpenSSH_7.4

1880683805 | 2024-06-01T16:44:13.131860

4282 / tcp

ÿ

-1250504565 | 2024-05-18T17:43:59.820619

4321 / tcp

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x80\x00\x04\x00\x01\x00\x00\x00\x05\x00\xff\xff\xff\x00\x00\x04\x08\x00\x00\x00\x00\x00\x7f\xff\x00\x00\x00\x00\x08\x07\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01

-1888448627 | 2024-05-29T11:50:44.199696

4369 / tcp

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

-321444299 | 2024-05-17T00:12:02.427290

4433 / tcp

:dircproxy NOTICE AUTH :Looking up your hostname...
:dircproxy NOTICE AUTH :Got your hostname.

1140068775 | 2024-05-12T06:49:24.317033

4443 / tcp

HTTP/1.1 200 OK
Connection: Keep-Alive
Content-Type: text/html
X-Frame-Options: DENY

Name: VMware ESXi
FullName: VMware ESXi 6.7.0 build-8169922
Vendor: VMware, Inc.
Version: 6.7.0
Build: 8169922
LocaleVersion: INTL
LocaleBuild: 000
OsType: vmnix-x86
ProductLineId: embeddedEsx
ApiType: HostAgent
ApiVersion: 6.7

819727972 | 2024-05-30T19:53:27.456679

4500 / tcp

SSH-2.0-OpenSSH_7.4

1059192566 | 2024-05-27T15:48:49.569105

4506 / tcp

HTTP/1.1 200
Accept-Ranges: bytes
Content-Type: text/html;charset=UTF-8
Content-Length: 670
S-Host: https://sukz-mc-u.aliyuncs.com/checkout/share/admit-import/unblend-deactivate/nacos/

<!DOCTYPE html>
<html lang="en">
<head>
	<meta charset="UTF-8">
	<title>Nacos</title>
	<link rel="shortcut icon" href="/nacos/console-ui/public/img/nacos-logo.png" type="image/x-icon">

<link href="./css/main.css" rel="stylesheet"></head>
<body>
	<div id="root" style="overflow:hidden"></div>
	<div id="app"></div>
	<div

1824169301 | 2024-05-19T23:18:49.340562

4782 / tcp

HÿjHost '101.133.140.114' is not allowed to 
connect to this MySQL server

-1399940268 | 2024-05-04T16:03:39.956201

4786 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-1327660293 | 2024-05-31T09:52:17.863460

4840 / tcp

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

751496153 | 2024-05-19T18:20:35.470228

4899 / tcp

* OK TeamXchange IMAP4rev1 server (otyUg) ready.

1911457608 | 2024-05-09T22:26:44.351170

4911 / tcp

\x00[\x00\x00\x00\x00\x00\x00

599074451 | 2024-05-09T18:33:54.852735

4949 / tcp

msg

2087396567 | 2024-05-18T08:49:01.376460

5001 / tcp

kjnkjabhbanc283ubcsbhdc72

-119996482 | 2024-05-25T01:53:35.879658

5005 / tcp

HTTP/1.1 408 Request Timeout
Content-Length: 0

1690634669 | 2024-05-09T18:35:19.278921

5006 / tcp

-1399940268 | 2024-05-24T20:01:19.762820

5007 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1182822286 | 2024-05-29T11:21:30.380384

5009 / tcp

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae237b_dianxun172_7460-1469

1308377066 | 2024-05-19T17:08:19.700738

5010 / tcp

ncacn_http/1.0

971933601 | 2024-05-30T06:00:45.958520

5025 / tcp

HTTP/1.0 404 Not Found
Content-Length: 0
Server: HTTPD
Connection: close
Content-Type: text/html

-1733645023 | 2024-05-17T19:11:45.393666

5070 / tcp

SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.10

758842125 | 2024-05-04T15:42:52.360150

5080 / tcp

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae285c_PSgdsztwgdln156_32096-62539

1911457608 | 2024-05-15T06:40:03.937726

5090 / tcp

\x00[\x00\x00\x00\x00\x00\x00

819727972 | 2024-05-17T10:19:39.413500

5172 / tcp

SSH-2.0-OpenSSH_7.4

-1611764932 | 2024-05-31T00:06:44.321598

5201 / tcp

\x03\x00\x00\x10\x08\x02\xc2\x80\x00}\x08\x02\xc2\x80\xc3\xa2\x14\x01\x00

-2031152423 | 2024-05-23T20:46:12.788201

5222 / tcp

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

1359734371 | 2024-05-17T22:38:04.568437

5269 / tcp

HTTP/1.1 400 Bad Request
Server: CWAP-waf
Content-Type: text/html
Connection: close
WZWS-RAY: 1249-1705938451.076-w-waf01tjgt

1023953321 | 2024-05-22T13:52:54.579275

5500 / tcp

HTTP/1.0 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm="proxy"
Connection: close
Content-type: text/html; charset=utf-8

-2089734047 | 2024-05-20T04:39:18.049254

5590 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

103159425 | 2024-05-20T21:58:48.418000

5595 / tcp

SSH-1.99-RGOS_SSH

-1114821551 | 2024-05-15T21:04:02.463786

5597 / tcp

\xc3\xa3\r\n\r\n\x00\x01\x00K\x00vInvalid protocol verification, illegal ORMI request or request performed with an incompatible version of this protocol

671605376 | 2024-05-30T18:56:29.346505

5606 / tcp

SSH-2.0-OpenSSH_X.X

-1399940268 | 2024-05-26T01:10:57.114662

5607 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

575925250 | 2024-05-26T16:27:20.689405

5672 / tcp

AMQP:\ncluster_name:rabbit@rabbitmq-0.rabbitmq-headless.rabbitmq.svc.cluster.local\ncopyright:Copyright (c) 2007-2021 VMware, Inc. or its affiliates.\ninformation:Licensed under the MPL 2.0. Website: https://rabbitmq.com\nplatform:Erlang/OTP 24.1\nproduct:RabbitMQ\nversion:3.9.7\nCapabilities:\npublisher_confirms:true\nexchange_exchange_bindings:true\nbasic.nack:true\nconsumer_cancel_notify:true\nconnection.blocked:true\nconsumer_priorities:true\nauthentication_failure_close:true\nper_consumer_qos:true\ndirect_reply_to:tru

-1249500036 | 2024-05-08T10:06:14.059835

5906 / tcp

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html
Connection: keep-alive
Accept-Ranges: bytes

-1839934832 | 2024-05-24T01:03:04.089342

5938 / tcp

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

-1990350878 | 2024-05-24T17:33:29.688998

5986 / tcp

 
04 \...

-2046514463 | 2024-05-06T13:27:07.431660

6000 / tcp

AB\x01\t

-1839934832 | 2024-06-01T11:13:27.935381

6001 / tcp

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

171352214 | 2024-05-20T18:38:14.245536

6002 / tcp

-ERR client ip is not in whitelist

819727972 | 2024-05-17T16:34:43.640359

6004 / tcp

SSH-2.0-OpenSSH_7.4

-891714208 | 2024-05-29T23:21:53.377970

6008 / tcp

( success ( 2 2 ( ) ( edit-pipeline svndiff1 absent-entries com\nmit-revprops depth log-revprops partial-replay ) ) )

-358801646 | 2024-05-15T21:06:47.914993

6102 / tcp

SSH-2.0-OpenSSH_6.6.1

321971019 | 2024-05-13T18:03:11.738407

6379 / tcp

-ERR client ip is not in whitelist\r

214750749 | 2024-05-26T20:01:48.161813

6443 / tcp

HTTP/1.1 301 Moved Permanently
Date: Sun, 26 May 2024 20:01:47 GMT
Content-Type: text/html
Content-Length: 236
Connection: keep-alive
Eagleeye-Traceid: 06c757e929f8a413085b9750cf02c4
Location: https://alibabawood.aliyun.com
Server: Tengine/Aserver
Timing-Allow-Origin: *

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            70:a7:27:29:07:10:52:7c:ae:c7:4a:96
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2
        Validity
            Not Before: Sep 12 07:56:08 2023 GMT
            Not After : Feb 20 10:00:00 2024 GMT
        Subject: CN=*.aliyuncs.com, O=Alibaba (China) Technology Co., Ltd., L=Hangzhou, ST=Zhejiang, C=CN
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:dd:4b:74:ed:c6:5a:af:d8:ec:b8:00:f8:be:09:
                    34:31:59:b1:d9:1b:77:36:69:8b:27:30:12:a2:ff:
                    69:4e:58:2b:8d:98:ed:55:24:6a:9b:b3:5a:6b:54:
                    68:b8:b7:af:ee:8b:2d:5b:86:f0:92:f6:ef:ba:25:
                    40:b6:ac:30:eb:0c:b4:35:17:25:82:6f:84:57:5b:
                    d7:d9:0c:eb:9d:09:dc:bd:17:bf:92:98:db:b9:3b:
                    d3:70:74:bc:b4:ad:55:c7:e2:85:17:3e:f7:03:ce:
                    a3:7a:d4:61:4b:27:99:3c:8a:b8:7f:bd:f0:02:67:
                    55:75:cc:b7:cd:2b:91:3f:d9:11:a0:74:0c:9d:8a:
                    4a:b9:b8:5a:bc:1e:97:a1:b3:79:5b:5d:30:ea:a5:
                    8b:a2:23:05:02:22:9b:d4:f8:25:e6:99:c0:6d:4b:
                    d6:e0:ad:f0:01:a3:c9:e2:db:c2:bc:66:5e:3f:1b:
                    cd:c9:01:ad:68:50:77:ca:41:b9:a2:cf:58:9b:d9:
                    5c:1d:f2:b4:9c:9e:f9:c7:84:fe:65:8f:68:b5:e3:
                    2c:43:31:a0:a6:5c:65:eb:67:63:da:9b:0a:91:f8:
                    c1:f2:ba:0f:4e:48:53:f7:12:ca:6c:35:4e:4b:96:
                    02:d7:bc:3b:77:ad:80:17:9b:7a:4d:37:a1:e3:8c:
                    85:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                BD:22:FF:00:93:D9:9B:FA:87:FC:C5:14:21:44:0A:DD:BF:4A:AA:A6
            X509v3 Authority Key Identifier: 
                96:DE:61:F1:BD:1C:16:29:53:1C:C0:CC:7D:3B:83:00:40:E6:1A:7C
            Authority Information Access: 
                OCSP - URI:http://ocsp2.globalsign.com/gsorganizationvalsha2g2
                CA Issuers - URI:http://secure.globalsign.com/cacert/gsorganizationvalsha2g2r1.crt
            X509v3 Subject Alternative Name: 
                DNS:*.aliyuncs.com, DNS:*.cn-hangzhou-mybk.aliyuncs.com, DNS:*.cn-nantong.aliyuncs.com, DNS:*.cn-shenzhen-finance-1.aliyuncs.com, DNS:*.cn-sichuan.aliyuncs.com, DNS:*.jp-fudao.aliyuncs.com, DNS:*.ap-south-1.aliyuncs.com, DNS:*.cn-wulanchabu.aliyuncs.com, DNS:*.cn-huhehaote.aliyuncs.com, DNS:*.cn-chengdu.aliyuncs.com, DNS:*.rus-west-1.aliyuncs.com, DNS:*.ap-southeast-1.aliyuncs.com, DNS:*.in-mumbai.aliyuncs.com, DNS:*.cn-guangzhou.aliyuncs.com, DNS:*.cn-hangzhou.aliyuncs.com, DNS:dod-tiger.taobao.com, DNS:yqza.taobao.com, DNS:sec.alimama.com, DNS:buc-test-qier.alibaba-inc.com, DNS:heno.stors.ojibobo-ina.aon.alibaba-inc.com, DNS:stars.shuqireader.com, DNS:www2s.mashort.cn, DNS:opsx.vip.tbsite.net, DNS:shog36977584.taobao.com, DNS:szdyyyxs.1688.com, DNS:hovonojogin.taobao.com, DNS:shop36674442.taobao.com, DNS:svnort.stors.ojibobo-ina.aon.alibaba-inc.com, DNS:xbootogs.ojibobo-ina.aon.alibaba-inc.com, DNS:university.lazada.vn, DNS:shog36621603.taobao.com, DNS:api.dingtalk.com, DNS:shog36600642.taobao.com, DNS:admin-p.lazada.vn, DNS:ocache.taobao.net, DNS:10yuankaihutiyanjin-okta-network-drookings-mirror.accept.lex.vn, DNS:lighthouse.lazada.co.th, DNS:api.aliyun.com, DNS:admin.lazada.co.id, DNS:ajovdovth-intj.an-shonghoi.aliyuncs.com, DNS:ob-gre.ojiyvn-ina.aon.aliyun-inc.com, DNS:shop2b0883416a7i9.aliyun.com, DNS:acs-m-sg.lazada.co.id, DNS:auth.wms.aliyun.com, DNS:qtnetria-shore.aliyuncs.com, DNS:m5-zb.amap.com, DNS:mail.wondfo.com.cn, DNS:m.sellercenter.lazada.com.ph, DNS:yvndvn-idi-server.ojiyvn-ina.aon.aliyun-inc.com, DNS:xmap-alg-deploy-prepub.amap.com, DNS:qt-changeplatform.alibaba.net, DNS:yhnkwj.1688.com, DNS:www22.aliwork.com, DNS:eci-vpc.ap-southeast-1.aliyuncs.com, DNS:b-manage.gfn.cainiao.com, DNS:sellercenter.lazada.com.my, DNS:aloc-offline.aliyun.com, DNS:hhpai-dsw-dsw56392-80.pcs-svr.alibaba-inc.com, DNS:attg.ojibobo-ina.aon.alibaba-inc.com, DNS:shop6239730h56062.1688.com, DNS:api.ascp-fresh-produce.hemayx.cn, DNS:console-fc.alpha.redmart.com, DNS:shog1442508391642.1688.com, DNS:fvzebogs.1688.com, DNS:das.base.shuju.aliyun.com, DNS:ojiaert.taobao.com, DNS:og-sovtheost-1.ron-internoj.aliyuncs.com, DNS:119152.aliexpress.com, DNS:shog36315220.taobao.com, DNS:nextci.amap.com, DNS:shop36579394.taobao.com, DNS:ens-network-sqos-hybrid.alicdn.com, DNS:manage-cmscn.gfn.cainiao.com, DNS:detoij.tmall.com, DNS:jielitushu.tmall.com, DNS:new-university.lazada.co.id, DNS:bi.aliyun.com, DNS:shog3078o27060063.1688.com, DNS:www.yx.fusion.design, DNS:hm1.cnzz.com, DNS:u.lazada.com.my, DNS:pre-ids-gpcb.lazada.com, DNS:adsprobe.aliyun.com, DNS:services-iss-sh.cainiao-inc.com, DNS:gigsijk.taobao.com, DNS:nrcm.lydaas.com, DNS:connect.aliexpress.com, DNS:vidigod.1688.com, DNS:axjanja.1688.com, DNS:alimama2.aliyun.com, DNS:shog36236233.taobao.com, DNS:anqi9988.1688.com, DNS:www.lex.co.id, DNS:shog36346889.taobao.com, DNS:gvonghe.taobao.com, DNS:iot.ap-southeast-1.aliyun.com, DNS:1111.alimama.com, DNS:netriahvb-ans-an-beijing.aliyuncs.com, DNS:link.wt.cainiao.com
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.4146.1.20
                Policy: 2.23.140.1.2.2
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.globalsign.com/gs/gsorganizationvalsha2g2.crl
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        55:c0:12:7a:04:5a:dd:93:46:07:dd:96:3f:75:3b:dd:07:3b:
        c0:4a:2e:56:65:f3:86:e1:0a:0a:4b:a4:e1:ca:e2:19:2c:ee:
        e3:f8:4f:06:c4:bb:bc:c8:20:28:67:7e:a2:69:d1:b5:7e:d7:
        bc:34:4f:11:9c:4f:74:37:b8:57:b4:05:45:cf:c8:87:24:ed:
        0c:ee:f6:7d:05:6c:98:f1:72:b7:e4:f3:2a:1a:64:4d:13:be:
        4e:e6:ff:c6:84:3b:4a:2d:3f:5a:1b:4d:77:21:38:e3:68:fd:
        a8:93:fb:2a:f4:ea:c7:89:f0:28:68:ea:3d:f2:ae:0e:31:f7:
        77:fa:01:a4:af:1e:6a:75:8e:6b:17:8d:ba:7b:35:70:3a:6e:
        c8:1c:dd:7a:4e:60:0f:f9:3f:3e:38:7c:39:2a:57:3c:83:ca:
        c5:5c:f8:d8:f3:8d:79:d2:4d:d6:37:63:d8:05:6d:86:91:ce:
        8b:bb:75:ee:92:af:e0:96:94:0f:d6:70:f6:55:62:91:21:10:
        e9:19:0e:23:75:04:d8:13:d9:5a:94:19:24:ac:52:10:b7:5a:
        cc:b2:9e:28:9c:70:21:65:c8:a8:c4:1d:e9:07:57:19:ee:75:
        91:2d:7a:28:52:db:b8:1f:28:78:16:13:f6:4d:ea:ff:79:3d:
        ab:a5:ec:59

819727972 | 2024-06-01T03:02:11.077287

6503 / tcp

SSH-2.0-OpenSSH_7.4

-2017887953 | 2024-05-26T13:43:07.368465

6550 / tcp

SSH-2.0-OpenSSH_7.9

1911457608 | 2024-05-05T15:21:41.266651

6581 / tcp

\x00[\x00\x00\x00\x00\x00\x00

-2089734047 | 2024-05-29T18:29:48.592882

6601 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

-1888448627 | 2024-05-26T09:11:14.374689

6633 / tcp

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

493955023 | 2024-05-18T02:53:47.400026

6653 / tcp

\x00\x00\x0c\x04\x00\x00\x00\x00\x00\x00\x04\x00\x10\x00\x00\x00\n0\x05\x00\x00@\x00

4935895 | 2024-05-29T13:06:11.731810

6666 / tcp

HTTP/1.1 400 Bad Request
Server: CloudWAF

1690634669 | 2024-05-03T15:40:27.290764

6667 / tcp

-2096652808 | 2024-05-23T07:51:21.685111

6668 / tcp

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

-829704895 | 2024-05-25T23:52:04.499373

7001 / tcp

+OK-1035|

-1999117212 | 2024-05-15T23:32:00.851186

7071 / tcp

-1399940268 | 2024-05-30T03:04:37.660780

7171 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-2096652808 | 2024-05-29T22:34:44.518292

7415 / tcp

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

1852418385 | 2024-05-07T17:46:19.973953

7474 / tcp

RTSP/1.0 453 Not Enough Bandwidth
Server: AirTunes/7l_wZ

-1990350878 | 2024-05-25T18:06:14.400076

7547 / tcp

 
04 \...

1830697416 | 2024-05-22T10:48:57.368822

7548 / tcp

HTTP/1.0 200 OK
Cache-Control: must-revalidate
Content-Length: 243
Content-Type: application/json
Server: CouchDB/3.2.0 (Erlang OTP/20)
X-Cloudant-Action: cloudantnosqldb.account-meta-info.read
X-Couch-Request-ID: a2da79eef6
X-Content-Type-Options: nosniff
X-Cloudant-Request-Class: unlimited
X-Cloudant-Backend: bm-cc-uk-01
Via: 1.0 lb1.bm-cc-uk-01 (Glum/1.101.1)

1869192275 | 2024-05-17T04:55:40.402207

7676 / tcp

\n

1308377066 | 2024-05-26T13:12:31.204236

7700 / tcp

ncacn_http/1.0

-2118655245 | 2024-05-28T17:21:49.243971

7989 / tcp

HTTP/1.0 500 Internal Server Error
Content-Length: 20

1072892569 | 2024-05-31T10:07:47.168357

8001 / tcp

HTTP/1.0 403 Access denied
Server: tinyproxy/1.8.3
0AContent-Type: text/html
Connection: close

-1428621233 | 2024-06-01T01:30:24.875982

8002 / tcp

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

-303199180 | 2024-05-23T08:44:31.863210

8005 / tcp

Content-Type: text/rude-rejection\nContent-Length: 24\n\n\nAccess Denied, go away.\nContent-Type: text/disconnect-notice\nC...\n

1911457608 | 2024-05-29T21:53:47.937899

8009 / tcp

\x00[\x00\x00\x00\x00\x00\x00

-21576419 | 2024-05-12T17:42:23.814134

8010 / tcp


ÿûUDo you want ANSI color? (Y/n)

671605376 | 2024-05-17T04:30:33.855479

8024 / tcp

SSH-2.0-OpenSSH_X.X

-1399940268 | 2024-05-27T10:34:17.532797

8044 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-345718689 | 2024-05-05T07:03:38.996865

8058 / tcp

Vty password is not set.

366084633 | 2024-05-30T18:45:23.415546

8081 / tcp

<HTML><HEAD><TITLE>Error</TITLE></HEAD><BODY><H1>Error</H1>Bad request or resource not found.</BODY></HTML>

-1453516345 | 2024-05-29T06:35:51.052322

8083 / tcp

HTTP/1.1 200 OK
Connection: close
Transfer-Encoding: chunked
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN

2087396567 | 2024-05-21T04:13:13.890388

8085 / tcp

kjnkjabhbanc283ubcsbhdc72

660175493 | 2024-05-13T03:34:54.225567

8086 / tcp

-1261090339 | 2024-05-20T13:05:49.991677

8087 / tcp

\x00[l\xc2\xb6\xc3\x90\x7f\x00\x00

1741579575 | 2024-05-30T03:37:24.091190

8089 / tcp

-1626979812 | 2024-05-17T23:11:49.717299

8096 / tcp

220 Service ready for new user.

-1469211519 | 2024-05-14T10:53:34.250170

8098 / tcp

Mysql Version: 5.6.50-log
N
5.6.50-log(
G5se"tGEÿ÷-cB^3$Zwh$wM[mysql_native_password

-1261090339 | 2024-05-13T01:28:43.363959

8104 / tcp

\x00[l\xc2\xb6\xc3\x90\x7f\x00\x00

-1839934832 | 2024-05-21T21:52:50.405656

8108 / tcp

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

-527005584 | 2024-05-24T03:13:44.345877

8112 / tcp

/0 0 L
/0 0 HUH

-1344535834 | 2024-05-16T02:58:36.216794

8123 / tcp

HTTP/1.0 200 OK
Server: Proxy

2087396567 | 2024-05-21T17:23:27.971671

8126 / tcp

kjnkjabhbanc283ubcsbhdc72

-1730858130 | 2024-05-04T04:37:06.572258

8140 / tcp

RFB 003.008
VNC:
  Protocol Version: 3.8

1082732927 | 2024-05-06T07:54:15.854249

8181 / tcp

STAT pid 1660
STAT uptime 28884
STAT time 1641290377
STAT version 1.2.1
STAT pointer_size 32
STAT curr_items 14
STAT total_items 3533
STAT bytes 30524
STAT curr_connections 1
STAT total_connections 3542
STAT connection_structures 3
STAT cmd_get 3533
STAT cmd_set 3533
STAT get_hits 3519
STAT get_misses 14
STAT bytes_read 7927780
STAT bytes_written 7848552
STAT limit_maxbytes 67108864
END

-877598700 | 2024-05-20T15:43:07.545750

8200 / tcp

\r\nSiemens 2766190798 T1E1 [COMBO] Router (7-382-) v13708 Ready\r\n\xc3\xbf\xc3\xbb\\x01\xc3\xbf\xc3\xbb\\x03\xc3\xbf\xc3\xbd\\x01\xc3\xbf\xc3\xbe\\x01Username:

2063598737 | 2024-05-28T19:33:13.167015

8291 / tcp

/0 0 L\r\n/0 0 HUH\r\n

-1713467553 | 2024-05-13T01:03:26.454581

8333 / tcp

HTTP/1.1 400 Bad Request
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Connection: close

-1399940268 | 2024-05-20T12:00:02.931147

8409 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-2046514463 | 2024-05-03T21:42:39.987293

8418 / tcp

AB\x01\t

1828575819 | 2024-05-29T16:00:18.400919

8443 / tcp

HTTP/1.1 403 Forbidden
Date: Wed, 29 May 2024 16:00:18 GMT
Content-Type: text/html
Content-Length: 238
Connection: keep-alive
Server: Tengine
Location: https://dtboost-dataq.aliyun.com
Via: cache26.cn6992[,0]

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            40:35:2e:4a:35:dc:34:ed:3b:e8:9c:38
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G3
        Validity
            Not Before: Apr 12 23:17:04 2023 GMT
            Not After : May 13 23:11:02 2024 GMT
        Subject: C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.alibabacorp.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:ce:df:cc:8f:47:6d:5a:12:18:79:11:07:b2:3a:
                    7f:d1:f4:cb:e6:51:3c:15:3b:2c:9d:68:96:80:ba:
                    53:a5:9a:69:0e:9e:64:7b:bb:5c:9a:ad:24:36:58:
                    0f:5f:36:4a:8e:28:7e:25:7c:9f:36:43:a8:da:32:
                    95:8c:ad:ca:32
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                EB:3E:07:A3:E1:1B:8B:BD:B5:1C:00:D6:2C:14:E5:3E:32:B8:48:18
            X509v3 Authority Key Identifier: 
                68:86:B8:7D:7A:D9:6D:49:6B:87:2F:18:8B:15:34:6C:D7:B4:7A:0E
            Authority Information Access: 
                OCSP - URI:http://ocsp2.globalsign.com/gsorganizationvalsha2g3
                CA Issuers - URI:http://secure.globalsign.com/cacert/gsorganizationvalsha2g3.crt
            X509v3 Subject Alternative Name: 
                DNS:*.alibabacorp.com, DNS:*.56.cainiao-inc.com, DNS:*.56.cainiao.com, DNS:*.9game.cn, DNS:*.a.alibaba-inc.com, DNS:*.abs.alibaba-inc.com, DNS:*.acc.alibaba-inc.com, DNS:*.acds.taobao.org, DNS:*.acp.alibaba-inc.com, DNS:*.acs.alibabaplanet.com, DNS:*.addr.cainiao-inc.com, DNS:*.admin.alibaba-inc.com, DNS:*.admin.alitrip.com, DNS:*.admin.cainiao-inc.com, DNS:*.admin.fliggy.com, DNS:shog1301373o611i7.1688.com, DNS:oggs.1688.com, DNS:print.gfn.cainiao.com, DNS:web.lazada.com, DNS:shop497241465.taobao.com, DNS:security-nash-web.zhangjiakou.zone, DNS:cbu-xiaoer.aliyun.com, DNS:ide-jog-ogent.oone.ojibobo-ina.aon.alibaba-inc.com, DNS:shog36415005.taobao.com, DNS:edsoggavstoner-vga.an-ahengdv.aliyuncs.com, DNS:eai-vga.an-ahengdv.aliyuncs.com, DNS:shop36322980.aliyun.com, DNS:sjs4serviae.aonsoje.aliyun.com, DNS:app73960.eapps.dingtalkcloud.com, DNS:mse-vpc.ap-southeast-5.aliyuncs.com, DNS:zsdxad.1688.com, DNS:www22.aliexpress.com, DNS:cicef.org.cn, DNS:unpm-upaas.quark.cn, DNS:hvoyijiojv.tmall.com, DNS:dlc-gateway.pai-damo.alibaba-inc.com, DNS:ticket.aliyun.com, DNS:shop1429527762715.aliyun.com, DNS:code-ssr.fc.aliyun.com, DNS:fbi.lazada.com, DNS:sjender.ojibobo-ina.aon.alibaba-inc.com, DNS:api-xspace.daraz.com, DNS:090826.aliyun.com, DNS:insvronae.tmall.com, DNS:oogi.o2.ojibobo-ina.aon.alibaba-inc.com, DNS:shog413558627.taobao.com, DNS:www9.buntleben.xixikf.cn, DNS:api.aliyun.com, DNS:yiwuzy.aliyun.com, DNS:biaoju.aliyun.com, DNS:hcwms.aliyun.com, DNS:oa.dingtalk.com
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.4146.1.20
                Policy: 2.23.140.1.2.2
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.globalsign.com/gsorganizationvalsha2g3.crl
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        7f:1f:f4:27:6c:22:9a:a6:28:b4:d1:81:46:90:db:1c:01:ae:
        70:8a:96:ac:de:90:b5:d3:9c:0f:fe:08:1a:6f:67:38:fd:c6:
        8a:7b:da:6c:76:54:d9:cf:57:e8:8f:fb:34:82:89:64:b2:66:
        d3:ce:e9:59:c0:58:ba:b2:e1:45:6f:b8:56:9d:f2:0e:a9:5b:
        30:a0:ca:c5:7b:05:7d:3e:ae:de:76:42:08:05:77:60:95:44:
        a5:ed:27:e6:54:11:0b:b2:e6:63:62:f1:49:1e:70:2b:73:23:
        8b:af:f6:03:3f:33:5e:a1:55:4b:d6:87:c2:21:ae:c0:53:75:
        c1:58:27:68:4b:6c:59:a3:10:85:d8:4d:c3:14:af:df:dc:dd:
        1c:b9:d0:40:56:4b:9b:7a:c6:d0:c9:b2:3d:6f:c0:a1:54:56:
        2a:6f:1f:a5:9a:4d:f9:8b:04:6b:5c:87:02:5c:18:d7:bb:06:
        75:03:6e:4b:7a:b8:b8:d7:24:a4:3c:98:9e:cf:fe:3b:82:12:
        35:07:42:fe:33:0b:2b:dd:6b:bd:fe:29:e0:93:87:b3:1a:35:
        0a:47:7f:46:5e:77:38:f2:25:06:cf:96:c5:9d:81:e8:a8:33:
        ba:18:a7:51:67:9c:10:8a:5a:b7:c0:ed:12:be:2c:7c:00:fe:
        d5:fe:af:c2

-1327660293 | 2024-05-06T10:13:49.962338

8513 / tcp

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

740837454 | 2024-05-31T19:38:06.768282

8545 / tcp

SSH-2.0-OpenSSH_5.3

-971970408 | 2024-05-26T11:11:23.509730

8554 / tcp

-2089734047 | 2024-05-22T12:58:58.347805

8590 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

1489954473 | 2024-05-27T07:27:46.546833

8649 / tcp

HTTP/1.1 410 Gone
Server: openresty
Transfer-Encoding: chunked
Connection: keep-alive
Via: 1.1 google

-2089734047 | 2024-05-19T14:35:29.687034

8728 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

1911457608 | 2024-06-01T07:39:05.902568

8790 / tcp

\x00[\x00\x00\x00\x00\x00\x00

1989907056 | 2024-05-30T06:27:37.817769

8814 / tcp

RTSP/1.0 453 Not Enough Bandwidth\r\nServer: AirTunes/7l_wZ\r\n\r\n

-2089734047 | 2024-05-15T01:44:41.778785

8833 / tcp

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

2033888749 | 2024-05-24T11:30:57.027691

8834 / tcp

Content-Type: text/rude-rejection
Content-Length: 24


Access Denied, go away.
Content-Type: text/disconnect-notice
C...

-801484042 | 2024-05-11T21:28:53.250991

8837 / tcp

ERR 27

1911457608 | 2024-05-07T02:46:19.104096

8852 / tcp

\x00[\x00\x00\x00\x00\x00\x00

819727972 | 2024-05-06T01:23:22.882582

8855 / tcp

SSH-2.0-OpenSSH_7.4

-1399940268 | 2024-05-16T08:00:42.201205

8860 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

819727972 | 2024-05-20T23:07:34.130985

8880 / tcp

SSH-2.0-OpenSSH_7.4

1911457608 | 2024-05-21T12:16:54.801706

8885 / tcp

\x00[\x00\x00\x00\x00\x00\x00

-971970408 | 2024-05-13T21:35:48.816010

8889 / tcp

-1167054895 | 2024-05-27T23:07:43.062595

9000 / tcp

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae24a9_VM-TPE-019Bk119_8663-62725

-1026951088 | 2024-05-24T21:30:12.338207

9001 / tcp

erro ip

-2107996212 | 2024-05-23T15:24:10.590657

9002 / tcp

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

-1810987450 | 2024-05-25T17:58:10.586772

9016 / tcp

\xc3\xbf

-1399940268 | 2024-05-10T21:37:49.384925

9017 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

819727972 | 2024-06-01T16:38:42.385546

9024 / tcp

SSH-2.0-OpenSSH_7.4

-2140303521 | 2024-05-22T02:55:54.721323

9041 / tcp

protocolErrorInf error=Missing hw string from : null. Check hardware state=disconnected\n

401555314 | 2024-05-27T05:44:56.260895

9042 / tcp

NB[GFXjA^R

-1399940268 | 2024-05-23T08:19:19.233006

9044 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

819727972 | 2024-05-29T01:09:51.491432

9051 / tcp

SSH-2.0-OpenSSH_7.4

660175493 | 2024-05-20T20:19:54.282644

9091 / tcp

1975288991 | 2024-05-13T20:10:34.027579

9092 / tcp

OPTI

-653033013 | 2024-05-20T16:22:09.062442

9095 / tcp

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

819727972 | 2024-05-23T17:16:03.381008

9100 / tcp

SSH-2.0-OpenSSH_7.4

401555314 | 2024-05-03T17:46:49.777586

9108 / tcp

NB[GFXjA^R

-971970408 | 2024-05-28T22:07:30.651893

9151 / tcp

-1327660293 | 2024-05-14T21:46:17.469757

9160 / tcp

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

1978059005 | 2024-05-09T08:35:11.063617

9191 / tcp

Sorry, that nickname format is invalid.

1911457608 | 2024-05-26T08:48:36.164441

9214 / tcp

\x00[\x00\x00\x00\x00\x00\x00

632542934 | 2024-05-12T04:34:05.754195

9221 / tcp

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

-2046514463 | 2024-05-24T02:13:18.004891

9222 / tcp

AB\x01\t

-1230049476 | 2024-05-17T08:06:11.805939

9301 / tcp

HTTP/1.0 200 OK
Connection: close
X-Powered-By: Undertow/1
Server: JBoss-EAP/7
Content-Type: text/html
Content-Length: 98
Accept-Ranges: bytes

-1399940268 | 2024-05-12T11:39:40.315214

9302 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

380146262 | 2024-05-08T11:06:06.421415

9306 / tcp

@RSYNCD: 30.0

-833168972 | 2024-05-29T16:43:42.787519

9418 / tcp

HTTP/1.1 200 
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked

-1105333987 | 2024-05-13T15:26:11.702673

9530 / tcp

\x00[KpU\x7f\x00\x00

-146605374 | 2024-05-21T17:16:32.084124

9600 / tcp

\x00[\xc2\x81\xc2\x8b\xc3\xa7\x7f\x00\x00

550048729 | 2024-05-29T22:49:11.516504

9633 / tcp

ÿÿÿ
0 ...

-1538260461 | 2024-05-19T07:24:20.940272

9761 / tcp

\x01\x00\x00\x00

-659335736 | 2024-05-20T02:19:13.801923

9943 / tcp

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae2864_xyd119_11675-57009

104385780 | 2024-05-18T05:53:31.938628

9981 / tcp

ceph v2

1637038794 | 2024-05-17T13:04:21.028234

9998 / tcp

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae2521_PS-PEK-015Wj25_25111-50596

1161309183 | 2024-05-12T23:16:47.110499

9999 / tcp

ProxyServer is ready

-893477759 | 2024-05-31T14:04:20.324033

10000 / tcp

!versionbind7 t{RPowerDNS Recursor 410

1492413928 | 2024-05-12T22:45:37.006385

10001 / tcp

SSH-2.0-OpenSSH_7.5

945910976 | 2024-05-18T14:44:53.372469

10134 / tcp

* OK TeamXchange IMAP4rev1 server (otyUg) ready.\r\n

-1026951088 | 2024-05-31T19:51:55.783188

10443 / tcp

erro ip

957278843 | 2024-05-20T15:04:30.705363

10554 / tcp

[|ox

-653033013 | 2024-05-28T23:14:18.004294

10909 / tcp

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

165188539 | 2024-05-18T16:32:21.919071

11112 / tcp

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

-1810987450 | 2024-06-01T14:37:56.742925

11210 / tcp

\xc3\xbf

1381121983 | 2024-05-29T12:49:06.815528

11300 / tcp

Notify\r\n

-1344535834 | 2024-05-03T22:22:21.448638

11434 / tcp

HTTP/1.0 200 OK
Server: Proxy

1734465113 | 2024-05-17T23:48:02.143179

12000 / tcp

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
WZWS-RAY: 1249-1705938548.385-w-waf05cqt

878900329 | 2024-05-25T19:58:40.465034

12345 / tcp

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae24ba_PStjkgwtss75_22411-43255

770016595 | 2024-05-14T08:44:40.564729

13579 / tcp

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache

-1399940268 | 2024-05-26T18:19:35.072138

14147 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

-2107996212 | 2024-05-21T04:18:57.925518

14265 / tcp

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

819727972 | 2024-05-29T01:26:50.495500

14344 / tcp

SSH-2.0-OpenSSH_7.4

-119996482 | 2024-05-02T21:40:41.754700

16010 / tcp

HTTP/1.1 408 Request Timeout
Content-Length: 0

-1872120160 | 2024-05-25T05:32:04.177124

16030 / tcp

">Application and Content Networking Software 3.9</a>)
</BODY><

707919486 | 2024-05-14T18:16:57.199220

16993 / tcp

\x00\x06\xc2\x81\xc2\x81\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

-1810987450 | 2024-05-12T23:06:19.093138

17000 / tcp

\xc3\xbf

921225407 | 2024-05-11T14:20:18.924880

18245 / tcp

\x00\x00\x00\x04\x00\x00\x00\x00\x00

-1428621233 | 2024-05-28T19:38:43.233401

19000 / tcp

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

1900503736 | 2024-05-31T05:37:31.215406

20000 / tcp

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: Microsoft-HTTPAPI/2.0

-2031152423 | 2024-05-23T14:17:56.428282

20256 / tcp

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

-136006866 | 2024-05-06T02:39:01.945616

20547 / tcp

STAT pid 1660\nSTAT uptime 28884\nSTAT time 1641290377\nSTAT version 1.2.1\nSTAT pointer_size 32\nSTAT curr_items 14\nSTAT total_items 3533\nSTAT bytes 30524\nSTAT curr_connections 1\nSTAT total_connections 3542\nSTAT connection_structures 3\nSTAT cmd_get 3533\nSTAT cmd_set 3533\nSTAT get_hits 3519\nSTAT get_misses 14\nSTAT bytes_read 7927780\nSTAT bytes_written 7848552\nSTAT limit_maxbytes 67108864\nEND

1991883981 | 2024-05-16T08:19:26.111169

21025 / tcp

B\x00\x00\x00\xc3\xbfn\x04Too many connections

-358801646 | 2024-05-14T01:17:33.435846

21379 / tcp

SSH-2.0-OpenSSH_6.6.1

-1681927087 | 2024-05-24T12:52:40.594934

23023 / tcp

kjnkjabhbanc283ubcsbhdc72

1726594447 | 2024-05-27T22:20:21.818540

25001 / tcp

\r\n\nLantronix MSS100 Version V118/523(045538937)\n\r\nType HELP at the \'Local_61349> \' prompt for assistance.\n\r\n\r\n\nUsername>

550048729 | 2024-05-28T01:24:00.057461

25105 / tcp

ÿÿÿ
0 ...

945910976 | 2024-05-30T15:43:02.441744

25565 / tcp

* OK TeamXchange IMAP4rev1 server (otyUg) ready.\r\n

-232716176 | 2024-05-31T10:52:44.364479

27015 / tcp

Command: None
Size: 759714643
ID: 758132274
Type: 1852141647

1763259671 | 2024-05-29T12:39:39.722612

27017 / tcp

{\n"Version": "3.4.18",\n"VersionArray": [\n3,\n4,\n18,\n0\n],\n"GitVersion": "4410706bef6463369ea2f42399e9843903b31923",\n"OpenSSLVersion": "",\n"SysInfo": "",\n"Bits": 64,\n"Debug": false,\n"MaxObjectSize": 16777216\n}\n\n

671605376 | 2024-05-26T06:14:11.499802

28015 / tcp

SSH-2.0-OpenSSH_X.X

-1681927087 | 2024-05-26T22:56:20.328984

30002 / tcp

kjnkjabhbanc283ubcsbhdc72

-1681927087 | 2024-05-31T22:42:24.801350

30003 / tcp

kjnkjabhbanc283ubcsbhdc72

-1835577706 | 2024-05-06T16:37:35.595246

31337 / tcp

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset="UTF-8"
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Vary: Accept-Encoding
Cache-control: no-store
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"

1865391109 | 2024-05-31T10:59:34.989059

32400 / tcp

HTTP/1.1 408 Request Timeout
content-length: 0

-1013082686 | 2024-05-28T15:34:22.810989

32764 / tcp

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

-2033111675 | 2024-05-20T20:28:58.202678

33060 / tcp

~djb

366084633 | 2024-05-18T23:25:18.939885

35000 / tcp

<HTML><HEAD><TITLE>Error</TITLE></HEAD><BODY><H1>Error</H1>Bad request or resource not found.</BODY></HTML>

-314039103 | 2024-06-01T12:43:30.498799

37215 / tcp

Surnom.
Sorry, that nickname format is invalid.

-1114821551 | 2024-05-15T13:29:23.337659

37777 / tcp

\xc3\xa3\r\n\r\n\x00\x01\x00K\x00vInvalid protocol verification, illegal ORMI request or request performed with an incompatible version of this protocol

-433302150 | 2024-05-15T02:32:05.464066

44158 / tcp

/multistream/1.0.0

1830697416 | 2024-05-29T07:24:16.511368

44818 / tcp

HTTP/1.0 200 OK
Cache-Control: must-revalidate
Content-Length: 243
Content-Type: application/json
Server: CouchDB/3.2.0 (Erlang OTP/20)
X-Cloudant-Action: cloudantnosqldb.account-meta-info.read
X-Couch-Request-ID: a2da79eef6
X-Content-Type-Options: nosniff
X-Cloudant-Request-Class: unlimited
X-Cloudant-Backend: bm-cc-uk-01
Via: 1.0 lb1.bm-cc-uk-01 (Glum/1.101.1)

1231376952 | 2024-06-01T09:53:36.439564

47990 / tcp

2041641476 | 2024-05-11T12:52:20.256638

49152 / tcp

HTTP/1.1 500 Internal Server Error
CONTENT-LENGTH: 411
CONTENT-TYPE: text/xml; charset="utf-8"
DATE: Mon, 22 Jan 2024 16:46:55 GMT
EXT:
SERVER: Linux/3.18.20, UPnP/1.0, Portable SDK for UPnP devices/1.6.18
X-User-Agent: redsonic

1282941221 | 2024-05-20T20:37:55.122235

50000 / tcp

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

178736976 | 2024-05-05T14:15:13.645486

50070 / tcp

SSH-58-Ingrian_SSH

580340387 | 2024-05-16T11:58:45.383017

54138 / tcp

220 Microsoft FTP Service\n530 User cannot log in.\n214-The following commands are recognized (* ==>\'s unimplemented).\n    ABOR \n    ACCT \n    ADAT *\n    ALLO \n    APPE \n    AUTH \n    CCC \n    CDUP \n    CWD \n    DELE \n    ENC *\n    EPRT \n    EPSV \n    FEAT \n    HELP \n    HOST \n    LANG \n    LIST ...

1332894250 | 2024-05-23T05:20:58.941012

55000 / tcp

\xc3\xbf\xc3\xbb\x01SOYO_SIP VBNQyQSKc settings\r\nPassword:

550048729 | 2024-05-27T20:03:48.001259

55442 / tcp

ÿÿÿ
0 ...

1282941221 | 2024-05-23T22:18:11.104275

55443 / tcp

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

-358801646 | 2024-05-19T05:09:51.676768

55553 / tcp

SSH-2.0-OpenSSH_6.6.1

1543809371 | 2024-06-01T14:24:55.570097

55554 / tcp

220 corpease.net Anti-spam GT for Coremail System (icmhosting[2\n0181212])

-1559123399 | 2024-05-31T22:01:11.335956

60010 / tcp

500 Permission denied - closing connection.

1842524259 | 2024-05-06T12:07:29.264951

60129 / tcp

1911457608 | 2024-05-22T19:33:38.101390

61613 / tcp

\x00[\x00\x00\x00\x00\x00\x00

-1681927087 | 2024-06-01T14:12:30.133865

61616 / tcp

kjnkjabhbanc283ubcsbhdc72

-147424911 | 2024-05-22T00:23:19.017210

62078 / tcp

HTTP/1.1 404 Not Found
Content Length: 0

-1399940268 | 2024-05-03T07:43:30.971903

65522 / tcp

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

47.110.178.94

Last Seen: 2024-06-01

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

2087396567 | 2024-05-30T22:40:19.937360 11 / tcp

1215890103 | 2024-05-30T18:00:37.311057 13 / tcp

-2089734047 | 2024-05-18T02:06:08.571391 20 / tcp

1564456597 | 2024-05-30T00:22:43.557745 21 / tcp

-23362551 | 2024-06-01T07:39:17.014881 23 / tcp

-1399940268 | 2024-05-23T16:45:57.001443 25 / tcp

-1336879475 | 2024-05-31T19:25:05.286493 37 / tcp

-2089734047 | 2024-05-03T02:03:25.938627 38 / tcp

-1399940268 | 2024-05-06T03:01:05.283248 43 / tcp

1685693176 | 2024-05-16T22:42:03.968598 49 / tcp

-1370420049 | 2024-05-25T02:22:13.423735 53 / tcp

-1056270173 | 2024-05-30T08:16:38.196422 70 / tcp

-1264324149 | 2024-05-30T22:19:23.931747 79 / tcp

1347280881 | 2024-05-27T08:09:25.394162 80 / tcp

1865391109 | 2024-05-07T18:58:16.791660 84 / tcp

-375604792 | 2024-05-23T08:15:30.664531 90 / tcp

2103111368 | 2024-05-25T17:09:30.456545 100 / tcp

321971019 | 2024-05-29T19:26:52.274619 102 / tcp

-358801646 | 2024-05-29T21:28:05.176614 104 / tcp

323676348 | 2024-05-16T18:43:31.127284 111 / tcp

455076604 | 2024-05-19T10:03:14.933614 113 / tcp

141730637 | 2024-05-28T05:20:53.043086 119 / tcp

1771091364 | 2024-05-09T08:01:12.452866 143 / tcp

-1428621233 | 2024-05-20T23:10:06.846553 154 / tcp

-399606100 | 2024-05-29T09:33:53.059227 179 / tcp

-971970408 | 2024-05-15T11:14:04.000398 195 / tcp

-1709030885 | 2024-05-20T11:41:06.567413 264 / tcp

-1547976805 | 2024-05-26T06:02:48.722037 311 / tcp

-1713467553 | 2024-05-29T11:54:49.367644 389 / tcp

1388449297 | 2024-05-23T13:37:38.681334 427 / tcp

1209363082 | 2024-05-26T16:28:31.579074 443 / tcp

382917006 | 2024-05-27T17:50:53.863845 444 / tcp

897328069 | 2024-05-30T08:07:46.901029 465 / tcp

-1399940268 | 2024-05-29T14:13:55.903283 502 / tcp

2087396567 | 2024-05-19T20:02:56.134793 515 / tcp

-2035415184 | 2024-05-27T04:03:34.921790 548 / tcp

1060450357 | 2024-05-23T21:50:10.975930 554 / tcp

1632932802 | 2024-05-07T20:49:47.817547 555 / tcp

1308377066 | 2024-05-15T14:08:58.686962 593 / tcp

1732481781 | 2024-05-03T01:03:31.959839 636 / tcp

-1420968138 | 2024-05-25T20:47:50.201654 666 / tcp

321971019 | 2024-05-26T19:37:19.879836 771 / tcp

632542934 | 2024-05-30T12:54:44.614760 789 / tcp

-1598265216 | 2024-05-12T05:32:37.441117 873 / tcp

1956828827 | 2024-05-25T20:18:17.151423 902 / tcp

-936692830 | 2024-05-22T13:13:16.709265 992 / tcp

408230060 | 2024-05-23T05:45:17.046380 993 / tcp

-1199842642 | 2024-05-22T06:25:46.023944 995 / tcp

819727972 | 2024-05-28T00:32:05.728835 1022 / tcp

1957945115 | 2024-05-21T22:01:21.785381 1023 / tcp

-653033013 | 2024-06-01T04:20:05.917684 1025 / tcp

1362344524 | 2024-05-20T22:50:09.489889 1080 / tcp

820958131 | 2024-05-31T08:39:16.002254 1099 / tcp

1911457608 | 2024-05-09T02:07:19.106736 1153 / tcp

1093576587 | 2024-05-25T15:44:48.562842 1177 / tcp

546151771 | 2024-05-15T18:54:49.365646 1200 / tcp

1911457608 | 2024-05-30T17:21:10.033904 1234 / tcp

2087396567 | 2024-05-28T06:18:58.717642 1337 / tcp

-1947777893 | 2024-05-23T21:21:13.404194 1355 / tcp

1321679546 | 2024-05-30T13:16:05.881492 1400 / tcp

-271790512 | 2024-05-22T23:33:00.994535 1433 / tcp

-2118655245 | 2024-05-02T20:38:42.150529 1471 / tcp

-271515508 | 2024-05-29T23:32:24.483057 1500 / tcp

2087396567 | 2024-05-29T17:17:09.183233 1515 / tcp

-1184558916 | 2024-05-23T04:01:56.305306 1521 / tcp

-1026951088 | 2024-05-15T01:22:05.050826 1554 / tcp

2087396567 | 2024-05-19T20:42:54.711161 1599 / tcp

550048729 | 2024-05-30T20:59:26.310399 1604 / tcp

-1297953727 | 2024-05-22T14:53:00.157493 1650 / tcp

1103582599 | 2024-05-09T00:05:54.280040 1723 / tcp

921225407 | 2024-05-09T23:37:34.881537 1800 / tcp

1745717579 | 2024-05-26T13:39:36.604563 1801 / tcp

1282941221 | 2024-05-14T08:24:43.839685 1883 / tcp

2087396567 | 2024-05-30T22:40:19.937360
11 / tcp

1215890103 | 2024-05-30T18:00:37.311057
13 / tcp

-2089734047 | 2024-05-18T02:06:08.571391
20 / tcp

1564456597 | 2024-05-30T00:22:43.557745
21 / tcp

-23362551 | 2024-06-01T07:39:17.014881
23 / tcp

-1399940268 | 2024-05-23T16:45:57.001443
25 / tcp

-1336879475 | 2024-05-31T19:25:05.286493
37 / tcp

-2089734047 | 2024-05-03T02:03:25.938627
38 / tcp

-1399940268 | 2024-05-06T03:01:05.283248
43 / tcp

1685693176 | 2024-05-16T22:42:03.968598
49 / tcp

-1370420049 | 2024-05-25T02:22:13.423735
53 / tcp

-1056270173 | 2024-05-30T08:16:38.196422
70 / tcp

-1264324149 | 2024-05-30T22:19:23.931747
79 / tcp

1347280881 | 2024-05-27T08:09:25.394162
80 / tcp

1865391109 | 2024-05-07T18:58:16.791660
84 / tcp

-375604792 | 2024-05-23T08:15:30.664531
90 / tcp

2103111368 | 2024-05-25T17:09:30.456545
100 / tcp

321971019 | 2024-05-29T19:26:52.274619
102 / tcp

-358801646 | 2024-05-29T21:28:05.176614
104 / tcp

323676348 | 2024-05-16T18:43:31.127284
111 / tcp

455076604 | 2024-05-19T10:03:14.933614
113 / tcp

141730637 | 2024-05-28T05:20:53.043086
119 / tcp

1771091364 | 2024-05-09T08:01:12.452866
143 / tcp

-1428621233 | 2024-05-20T23:10:06.846553
154 / tcp

-399606100 | 2024-05-29T09:33:53.059227
179 / tcp

-971970408 | 2024-05-15T11:14:04.000398
195 / tcp

-1709030885 | 2024-05-20T11:41:06.567413
264 / tcp

-1547976805 | 2024-05-26T06:02:48.722037
311 / tcp

-1713467553 | 2024-05-29T11:54:49.367644
389 / tcp

1388449297 | 2024-05-23T13:37:38.681334
427 / tcp

1209363082 | 2024-05-26T16:28:31.579074
443 / tcp

382917006 | 2024-05-27T17:50:53.863845
444 / tcp

897328069 | 2024-05-30T08:07:46.901029
465 / tcp

-1399940268 | 2024-05-29T14:13:55.903283
502 / tcp

2087396567 | 2024-05-19T20:02:56.134793
515 / tcp

-2035415184 | 2024-05-27T04:03:34.921790
548 / tcp

1060450357 | 2024-05-23T21:50:10.975930
554 / tcp

1632932802 | 2024-05-07T20:49:47.817547
555 / tcp

1308377066 | 2024-05-15T14:08:58.686962
593 / tcp

1732481781 | 2024-05-03T01:03:31.959839
636 / tcp

-1420968138 | 2024-05-25T20:47:50.201654
666 / tcp

321971019 | 2024-05-26T19:37:19.879836
771 / tcp

632542934 | 2024-05-30T12:54:44.614760
789 / tcp

-1598265216 | 2024-05-12T05:32:37.441117
873 / tcp

1956828827 | 2024-05-25T20:18:17.151423
902 / tcp

-936692830 | 2024-05-22T13:13:16.709265
992 / tcp

408230060 | 2024-05-23T05:45:17.046380
993 / tcp

-1199842642 | 2024-05-22T06:25:46.023944
995 / tcp

819727972 | 2024-05-28T00:32:05.728835
1022 / tcp

1957945115 | 2024-05-21T22:01:21.785381
1023 / tcp

-653033013 | 2024-06-01T04:20:05.917684
1025 / tcp

1362344524 | 2024-05-20T22:50:09.489889
1080 / tcp

820958131 | 2024-05-31T08:39:16.002254
1099 / tcp

1911457608 | 2024-05-09T02:07:19.106736
1153 / tcp

1093576587 | 2024-05-25T15:44:48.562842
1177 / tcp

546151771 | 2024-05-15T18:54:49.365646
1200 / tcp

1911457608 | 2024-05-30T17:21:10.033904
1234 / tcp

2087396567 | 2024-05-28T06:18:58.717642
1337 / tcp

-1947777893 | 2024-05-23T21:21:13.404194
1355 / tcp

1321679546 | 2024-05-30T13:16:05.881492
1400 / tcp

-271790512 | 2024-05-22T23:33:00.994535
1433 / tcp

-2118655245 | 2024-05-02T20:38:42.150529
1471 / tcp

-271515508 | 2024-05-29T23:32:24.483057
1500 / tcp

2087396567 | 2024-05-29T17:17:09.183233
1515 / tcp

-1184558916 | 2024-05-23T04:01:56.305306
1521 / tcp

-1026951088 | 2024-05-15T01:22:05.050826
1554 / tcp

2087396567 | 2024-05-19T20:42:54.711161
1599 / tcp

550048729 | 2024-05-30T20:59:26.310399
1604 / tcp

-1297953727 | 2024-05-22T14:53:00.157493
1650 / tcp

1103582599 | 2024-05-09T00:05:54.280040
1723 / tcp

921225407 | 2024-05-09T23:37:34.881537
1800 / tcp

1745717579 | 2024-05-26T13:39:36.604563
1801 / tcp

1282941221 | 2024-05-14T08:24:43.839685
1883 / tcp

819727972 | 2024-05-26T05:37:26.184414
1911 / tcp

-119996482 | 2024-05-14T20:18:40.378854
1925 / tcp

1842524259 | 2024-05-24T19:37:34.494620
1926 / tcp

1332639794 | 2024-05-23T21:06:51.848834
1947 / tcp

921225407 | 2024-05-15T11:21:58.172012
1962 / tcp

580340387 | 2024-05-16T01:36:18.479451
2000 / tcp

1632932802 | 2024-05-21T04:00:31.205150
2002 / tcp