GeneralInformation

Hostnames	ec2-3-27-247-135.ap-southeast-2.compute.amazonaws.com example.com
Domains	amazonaws.com example.com
Cloud Provider	Amazon
Cloud Region	ap-southeast-2
Cloud Service	EC2
Country	Australia
City	Sydney
Organization	Amazon Corporate Services Pty Ltd
ISP	Amazon.com, Inc.
ASN	AS16509

WebTechnologies

Blogs

Ghost1.25

CMS

Ghost1.25

JavaScript libraries

jQuery3.2.1

Programming languages

Node.js

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

MS17-010	8.1This security update resolves vulnerabilities in Microsoft Windows. The most severe of the vulnerabilities could allow remote code execution if an attacker sends specially crafted messages to a Microsoft Server Message Block 1.0 (SMBv1) server. This security update is rated Critical for all supported releases of Microsoft Windows.
CVE-2023-51766	Exim before 4.97.1 allows SMTP smuggling in certain PIPELINING/CHUNKING configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because Exim supports <LF>.<CR><LF> but some other popular e-mail servers do not.
CVE-2022-37452	Exim before 4.95 has a heap-based buffer overflow for the alias list in host_name_lookup in host.c when sender_host_name is set.
CVE-2022-37451	Exim before 4.96 has an invalid free in pam_converse in auths/call_pam.c because store_free is not used after store_malloc.
CVE-2021-38371	5.0The STARTTLS feature in Exim through 4.94.2 allows response injection (buffering) during MTA SMTP sending.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-27216	6.3Exim 4 before 4.94.2 has Execution with Unnecessary Privileges. By leveraging a delete_pid_file race condition, a local user can delete arbitrary files as root. This involves the -oP and -oPX options.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2020-8015	7.2A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of exim in openSUSE Factory allows local attackers to escalate from user mail to root. This issue affects: openSUSE Factory exim versions prior to 4.93.0.4-3.1.
CVE-2020-28026	9.3Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters, relevant in non-default configurations that enable Delivery Status Notification (DSN). Certain uses of ORCPT= can place a newline into a spool header file, and indirectly allow unauthenticated remote attackers to execute arbitrary commands as root.
CVE-2020-28025	5.0Exim 4 before 4.94.2 allows Out-of-bounds Read because pdkim_finish_bodyhash does not validate the relationship between sig->bodyhash.len and b->bh.len; thus, a crafted DKIM-Signature header might lead to a leak of sensitive information from process memory.
CVE-2020-28024	7.5Exim 4 before 4.94.2 allows Buffer Underwrite that may result in unauthenticated remote attackers executing arbitrary commands, because smtp_ungetc was only intended to push back characters, but can actually push back non-character error codes such as EOF.
CVE-2020-28023	5.0Exim 4 before 4.94.2 allows Out-of-bounds Read. smtp_setup_msg may disclose sensitive information from process memory to an unauthenticated SMTP client.
CVE-2020-28022	7.5Exim 4 before 4.94.2 has Improper Restriction of Write Operations within the Bounds of a Memory Buffer. This occurs when processing name=value pairs within MAIL FROM and RCPT TO commands.
CVE-2020-28021	9.0Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters. An authenticated remote SMTP client can insert newline characters into a spool file (which indirectly leads to remote code execution as root) via AUTH= in a MAIL FROM command.
CVE-2020-28020	7.5Exim 4 before 4.92 allows Integer Overflow to Buffer Overflow, in which an unauthenticated remote attacker can execute arbitrary code by leveraging the mishandling of continuation lines during header-length restriction.
CVE-2020-28017	7.5Exim 4 before 4.94.2 allows Integer Overflow to Buffer Overflow in receive_add_recipient via an e-mail message with fifty million recipients. NOTE: remote exploitation may be difficult because of resource consumption.
CVE-2020-28016	7.2Exim 4 before 4.94.2 allows an off-by-two Out-of-bounds Write because "-F ''" is mishandled by parse_fix_phrase.
CVE-2020-28015	7.2Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters. Local users can alter the behavior of root processes because a recipient address can have a newline character.
CVE-2020-28014	5.6Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. The -oP option is available to the exim user, and allows a denial of service because root-owned files can be overwritten.
CVE-2020-28013	7.2Exim 4 before 4.94.2 allows Heap-based Buffer Overflow because it mishandles "-F '.('" on the command line, and thus may allow privilege escalation from any user to root. This occurs because of the interpretation of negative sizes in strncpy.
CVE-2020-28012	7.2Exim 4 before 4.94.2 allows Exposure of File Descriptor to Unintended Control Sphere because rda_interpret uses a privileged pipe that lacks a close-on-exec flag.
CVE-2020-28011	7.2Exim 4 before 4.94.2 allows Heap-based Buffer Overflow in queue_run via two sender options: -R and -S. This may cause privilege escalation from exim to root.
CVE-2020-28010	7.2Exim 4 before 4.94.2 allows Out-of-bounds Write because the main function, while setuid root, copies the current working directory pathname into a buffer that is too small (on some common platforms).
CVE-2020-28009	7.2Exim 4 before 4.94.2 allows Integer Overflow to Buffer Overflow because get_stdinput allows unbounded reads that are accompanied by unbounded increases in a certain size variable. NOTE: exploitation may be impractical because of the execution time needed to overflow (multiple days).
CVE-2020-28008	7.2Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the spool directory (owned by a non-root user), an attacker can write to a /var/spool/exim4/input spool header file, in which a crafted recipient address can indirectly lead to command execution.
CVE-2020-28007	7.2Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the log directory (owned by a non-root user), a symlink or hard link attack allows overwriting critical root-owned files anywhere on the filesystem.
CVE-2020-23064	Cross Site Scripting vulnerability in jQuery 2.2.0 through 3.x before 3.5.0 allows a remote attacker to execute arbitrary code via the <options> element.
CVE-2020-12783	5.0Exim through 4.93 has an out-of-bounds read in the SPA authenticator that could result in SPA/NTLM authentication bypass in auths/spa.c and auths/auth-spa.c.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-20372	4.3NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.
CVE-2019-15846	10.0Exim before 4.92.2 allows remote attackers to execute arbitrary code as root via a trailing backslash.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2018-6789	7.5An issue was discovered in the base64d function in the SMTP listener in Exim before 4.90.1. By sending a handcrafted message, a buffer overflow may happen. This can be used to execute code remotely.
CVE-2018-16845	5.8nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module.
CVE-2017-7529	5.0Nginx versions since 0.5.6 up to and including 1.13.2 are vulnerable to integer overflow vulnerability in nginx range filter module resulting into leak of potentially sensitive information triggered by specially crafted request.
CVE-2017-20005	7.5NGINX before 1.13.6 has a buffer overflow for years that exceed four digits, as demonstrated by a file with a modification date in 1969 that causes an integer overflow (or a false modification date far in the future), when encountered by the autoindex module.
CVE-2017-1000369	2.1Exim supports the use of multiple "-p" command line arguments which are malloc()'ed and never free()'ed, used in conjunction with other issues allows attackers to cause arbitrary code execution. This affects exim version 4.89 and earlier. Please note that at this time upstream has released a patch (commit 65e061b76867a9ea7aeeb535341b790b90ae6c21), but it is not known if a new point release is available that addresses this issue at this time.
CVE-2016-9963	2.6Exim before 4.87.1 might allow remote attackers to obtain the private DKIM signing key via vectors related to log files and bounce messages.
CVE-2016-1531	6.9Exim before 4.86.2, when installed setuid root, allows local users to gain privileges via the perl_startup argument.
CVE-2016-1247	7.2The nginx package before 1.6.2-5+deb8u3 on Debian jessie, the nginx packages before 1.4.6-1ubuntu3.6 on Ubuntu 14.04 LTS, before 1.10.0-0ubuntu0.16.04.3 on Ubuntu 16.04 LTS, and before 1.10.1-0ubuntu1.1 on Ubuntu 16.10, and the nginx ebuild before 1.10.2-r3 on Gentoo allow local users with access to the web server user account to gain root privileges via a symlink attack on the error log.
CVE-2016-0747	5.0The resolver in nginx before 1.8.1 and 1.9.x before 1.9.10 does not properly limit CNAME resolution, which allows remote attackers to cause a denial of service (worker process resource consumption) via vectors related to arbitrary name resolution.
CVE-2016-0746	7.5Use-after-free vulnerability in the resolver in nginx 0.6.18 through 1.8.0 and 1.9.x before 1.9.10 allows remote attackers to cause a denial of service (worker process crash) or possibly have unspecified other impact via a crafted DNS response related to CNAME response processing.
CVE-2016-0742	5.0The resolver in nginx before 1.8.1 and 1.9.x before 1.9.10 allows remote attackers to cause a denial of service (invalid pointer dereference and worker process crash) via a crafted UDP DNS response.
CVE-2014-3616	4.3nginx 0.5.6 through 1.7.4, when using the same shared ssl_session_cache or ssl_session_ticket_key for multiple servers, can reuse a cached SSL session for an unrelated context, which allows remote attackers with certain privileges to conduct "virtual host confusion" attacks.
CVE-2014-2972	4.6expand.c in Exim before 4.83 expands mathematical comparisons twice, which allows local users to gain privileges and execute arbitrary commands via a crafted lookup value.
CVE-2014-2957	6.8The dmarc_process function in dmarc.c in Exim before 4.82.1, when EXPERIMENTAL_DMARC is enabled, allows remote attackers to execute arbitrary code via the From header in an email, which is passed to the expand_string function.
CVE-2013-4547	7.5nginx 0.8.41 through 1.4.3 and 1.5.x before 1.5.7 allows remote attackers to bypass intended restrictions via an unescaped space character in a URI.
CVE-2013-0337	7.5The default configuration of nginx, possibly 1.3.13 and earlier, uses world-readable permissions for the (1) access.log and (2) error.log files, which allows local users to obtain sensitive information by reading the files.
CVE-2011-1764	7.5Format string vulnerability in the dkim_exim_verify_finish function in src/dkim.c in Exim before 4.76 might allow remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via format string specifiers in data used in DKIM logging, as demonstrated by an identity field containing a % (percent) character.
CVE-2011-0017	6.9The open_log function in log.c in Exim 4.72 and earlier does not check the return value from (1) setuid or (2) setgid system calls, which allows local users to append log data to arbitrary files via a symlink attack.
CVE-2010-4345	6.9Exim 4.72 and earlier allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate configuration file with a directive that contains arbitrary commands, as demonstrated by the spool_directory directive.
CVE-2010-4344	9.3Heap-based buffer overflow in the string_vformat function in string.c in Exim before 4.70 allows remote attackers to execute arbitrary code via an SMTP session that includes two MAIL commands in conjunction with a large message containing crafted headers, leading to improper rejection logging.
CVE-2010-2024	4.4transports/appendfile.c in Exim before 4.72, when MBX locking is enabled, allows local users to change permissions of arbitrary files or create arbitrary files, and cause a denial of service or possibly gain privileges, via a symlink attack on a lockfile in /tmp/.
CVE-2010-2023	4.4transports/appendfile.c in Exim before 4.72, when a world-writable sticky-bit mail directory is used, does not verify the st_nlink field of mailbox files, which allows local users to cause a denial of service or possibly gain privileges by creating a hard link to another user's file.

OpenPorts

11 13 15 17 19 21 22 23 25 26 37 43 49 70 79 80 81 82 83 84 88 102 104 110 111 113 119 122 123 135 143 175 179 195 221 264 389 427 443 444 445 465 502 503 515 548 554 587 593 631 646 666 771 789 801 808 873 902 993 995 1023 1024 1099 1153 1200 1234 1311 1344 1388 1400 1433 1471 1515 1521 1599 1604 1723 1741 1801 1883 1911 1925 1935 1962 2000 2002 2008 2067 2081 2082 2086 2087 2121 2154 2181 2222 2225 2323 2332 2345 2375 2379 2382 2404 2455 2480 2562 2761 2762 3000 3001 3050 3051 3128 3200 3260 3268 3269 3299 3301 3306 3310 3333 3388 3389 3403 3460 3541 3542 3551 3558 3560 3689 3749 3794 3950 3951 4000 4022 4040 4063 4064 4157 4242 4282 4321 4369 4430 4500 4506 4567 4664 4782 4786 4840 4848 4899 4911 4949 5000 5005 5007 5009 5010 5025 5060 5172 5201 5222 5269 5357 5432 5435 5560 5601 5603 5672 5800 5801 5858 5900 5901 5938 5984 5985 6000 6001 6002 6036 6080 6379 6543 6633 6653 6664 6666 6667 6668 6697 7170 7171 7218 7415 7474 7510 7535 7547 7657 7777 7779 7989 7998 8000 8001 8008 8009 8010 8012 8014 8023 8025 8039 8060 8069 8080 8086 8087 8090 8098 8099 8112 8123 8126 8181 8184 8200 8291 8333 8334 8407 8419 8443 8500 8545 8554 8575 8623 8649 8688 8728 8733 8779 8800 8815 8824 8858 8872 8888 9000 9009 9042 9051 9080 9090 9092 9095 9100 9109 9151 9160 9191 9200 9295 9306 9418 9530 9595 9600 9633 9761 9800 9869 9944 9981 9998 9999 10001 10134 10243 10554 11000 11112 11210 11211 11300 11371 12000 13579 14147 14344 16010 16992 17000 18081 18245 19000 19071 20000 20256 20547 21025 21379 23023 23424 25001 25105 25565 27015 28015 28017 30002 30003 32400 32764 33060 35000 37215 37777 41800 44158 44818 49152 49153 50000 50050 50070 50100 51106 51235 52869 54138 55000 55442 55554 60001 60010 60030 60129 61613 61616 62078

-957557754 | 2024-04-30T21:01:52.323289

11 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T16:33:36.094478

13 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T14:40:51.292938

15 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T22:04:38.259294

17 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T19:24:39.239716

19 / tcp

HTTP/1.1 200 OK

-840324041 | 2024-04-30T21:42:36.409447

21 / tcp

220 FTP server ready.
230 Anonymous login ok, access restrictions apply.
502 Command 'HELP' not implemented
211-Features:
 PASV
 PORT
211 End

1219034322 | 2024-04-30T18:00:25.483845

22 / tcp

SSH-2.0-OpenSSH_7.9p1
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQC5Kg+MKPPm9Qk+fmc0mgeTTi+Kca0mdHOb8ZRXnei5sBBb
mAbE7iNa2BBGmSM3g+sJMjYbl7j+A2Pb6CS/2Z7Ry2CgI+mn7UUqDT9wi9yI0v2F2KZX5uPOGGxv
babrnh8jX+//h4ROAutAwLttZNJMV16lNwPSz9kCXiOuZciruKpOwsie/sX9i4J4XAIP4Oo2y0RG
/lckPArP6R/4kjQNcsWH8KTThQsTJrlvakKAffKpkHIHOIYRZdWPGs1fsuvg56BX+zH5eUf2V4+f
hZNm3V5c5WgFAEb3KCddDrzLKH5Z/TX8r5wiUdooYnFNRrV2y5hyeUbOVp6V7EsQ2bwx
Fingerprint: e8:2f:98:0d:cf:51:ab:86:d0:e0:9c:0b:bb:9f:ba:e3

Kex Algorithms:
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group14-sha1

Server Host Key Algorithms:
	ssh-rsa
	ssh-dss

Encryption Algorithms:
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes256-cbc
	aes192-cbc
	aes128-cbc
	3des-cbc
	blowfish-cbc
	cast128-cbc

MAC Algorithms:
	hmac-sha2-512
	hmac-sha2-384
	hmac-sha2-56
	hmac-sha1
	hmac-md5

Compression Algorithms:
	zlib@openssh.com
	zlib
	none

-931697787 | 2024-04-30T18:07:49.085750

23 / tcp

login:

1121378291 | 2024-04-30T19:39:07.518756

25 / tcp

220 mailrelay.local ESMTP Exim 4.69 #1 Thu, 29 Jul 2010 05:13:48 -0700
250-mailrelay.local Hello s2472t9tuxtka8.com [224.236.234.160]
250-SIZE 52428800
250 AUTH LOGIN PLAIN

-957557754 | 2024-04-30T11:08:50.603211

26 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T19:34:15.827105

37 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-28T19:50:57.030302

49 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-29T17:58:21.440331

70 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T13:34:47.074503

79 / tcp

HTTP/1.1 200 OK

313443745 | 2024-04-30T11:15:25.664714

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.3.8
Set-Cookie: sess_uuid=a7337738-0230-4f93-a5d0-7fc7712b8383
Content-Type: text/html
Content-Length: 16240
Date: Tue, 30 Apr 2024 11:15:25 GMT

-1451451174 | 2024-04-30T07:19:02.178164

81 / tcp

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=ascii
Content-Length: 204
Connection: close

-957557754 | 2024-04-30T13:01:50.025344

82 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T19:34:28.829312

83 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T23:42:37.878871

84 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T19:41:39.351874

88 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T19:00:25.803796

102 / tcp

HTTP/1.1 200 OK

-317762099 | 2024-04-30T14:29:51.916630

110 / tcp

+OK POP3 server ready
-ERR Unknown command

-957557754 | 2024-04-30T22:56:10.135559

119 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-23T23:52:36.965970

122 / tcp

HTTP/1.1 200 OK

-996304248 | 2024-04-30T12:24:14.062411

123 / udp

NTP
protocolversion: 3
stratum: 2
leap: 0
precision: -21
rootdelay: 0.00381469726562
rootdisp: 0.0406188964844
refid: 2680433821
reftime: 3923467431.21
poll: 3

2030592451 | 2024-04-30T13:33:05.848207

135 / tcp

\x05\x00\x0c\x03\x10\x00\x00\x00D\x00\x00\x00\x01\x00\x00\x00\xb8\x10\xb8\x10\xf7N\x00\x00\x0e\x00\\PIPE\\browser\x00\x01\x00\x00\x00\x00\x00\x00\x00\x04]\x88\x8a\xeb\x1c\xc9\x11\x9f\xe8\x08\x00+\x10H`\x02\x00\x00\x00

-1429299781 | 2024-04-30T13:26:35.532692

143 / tcp

* OK IMAP4rev1 Server Ready
* CAPABILITY IMAP4rev1 AUTH=PLAIN
A001 OK CAPABILITY completed
A002 BAD invalid command
A003 BAD invalid command
* BYE IMAP4rev1 Server logging out
A004 OK LOGOUT completed

-957557754 | 2024-04-30T05:12:16.195239

179 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T15:50:16.560619

221 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T20:17:18.816728

389 / tcp

HTTP/1.1 200 OK

-1451451174 | 2024-04-30T23:06:13.201242

443 / tcp

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=ascii
Content-Length: 204
Connection: close

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1714507268 (0x66314e04)
        Signature Algorithm: md5WithRSAEncryption
        Issuer: C=AU, CN=Some-State, O=Internet Widgits Pty Ltd
        Validity
            Not Before: Apr 30 20:01:09 2024 GMT
            Not After : Apr 30 20:01:09 2025 GMT
        Subject: C=AU, CN=Some-State, O=Internet Widgits Pty Ltd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:de:aa:8f:e3:56:62:09:9a:cb:db:5e:a9:55:0c:
                    0b:67:26:32:7f:3d:d1:a1:a5:72:1b:d5:24:b5:8b:
                    d1:85:79:5c:0f:a7:63:5f:ca:48:be:75:b3:7c:dd:
                    dd:68:06:2e:ad:15:d7:d9:4a:a5:ce:3c:74:e6:2c:
                    96:b5:77:0d:b9:0a:c2:2e:84:90:ba:f9:ed:c5:ad:
                    f0:6c:1c:e8:93:90:0d:6f:08:20:98:fb:e3:23:25:
                    a4:ff:fa:a9:e3:71:1d:66:f0:01:cf:b6:a9:1d:7d:
                    cb:97:9b:40:54:ed:37:16:25:1e:82:ae:66:19:eb:
                    fc:95:21:c9:8b:00:72:89:f1:59:81:10:e0:5b:22:
                    da:38:0e:ca:db:a2:8e:88:93:69:54:4d:7f:b1:7b:
                    f2:e9:fd:4c:c2:4e:8b:23:1f:e5:ef:6a:32:dd:5a:
                    54:d7:a0:cd:c7:2a:cd:77:09:96:f0:ad:a8:c7:8a:
                    16:96:9e:8e:ec:f9:7e:fb:b0:7c:e1:f9:80:7c:30:
                    ef:39:2b:b3:d0:f4:46:bc:53:e2:cf:bb:0f:b5:55:
                    99:0a:1b:7f:b7:fc:3c:93:b5:90:b0:32:36:46:28:
                    52:e8:4d:f1:9e:3b:85:b9:dc:73:98:d9:d8:10:37:
                    43:57:46:e0:17:0f:1e:85:9c:c7:3e:6f:02:09:2f:
                    a3:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            Netscape Cert Type: 
                SSL Server
            Netscape SSL Server Name: 
                localhost
    Signature Algorithm: md5WithRSAEncryption
    Signature Value:
        a9:6b:e5:5a:0b:65:f0:c8:4c:e3:34:95:e9:20:bc:30:d7:4b:
        79:dc:0e:ea:95:29:5c:38:b3:90:a2:75:c5:3f:2c:7c:bc:e7:
        b6:b7:ef:b5:cd:b8:d9:35:71:c3:6c:1a:05:a8:79:09:2d:30:
        4a:0f:ae:32:f6:63:2b:4d:8c:42:dc:94:a8:a2:57:9d:55:4f:
        d6:b6:10:11:d4:41:33:2b:5c:81:5b:6c:63:33:ab:49:2a:35:
        a8:2c:1e:b9:cc:f0:4b:c2:65:23:df:12:ea:5a:8f:a3:fb:bb:
        ae:4d:79:29:75:64:86:c4:31:27:53:2a:54:6a:ab:d4:5f:e3:
        07:4a:92:c8:b1:16:19:58:c3:25:e2:33:0f:3d:21:b9:49:09:
        44:9c:b4:53:b3:ef:93:5d:88:db:06:30:e6:b5:71:5f:cb:89:
        8e:a2:5d:bb:3f:8a:59:8e:4a:0d:57:7b:3f:1d:27:e2:b6:5e:
        ad:c3:2d:db:2a:87:34:31:eb:4f:36:fc:7f:a6:2b:94:a4:ce:
        4f:30:5e:27:08:64:98:2a:e6:68:00:e8:58:50:d9:f5:60:82:
        e5:96:bf:6b:69:cd:37:cd:9a:29:fc:9d:5b:2b:77:d2:aa:39:
        e6:b3:3f:d0:13:99:a5:0b:e1:49:3a:0c:7b:9e:b3:85:36:7a:
        d7:57:dd:52

606215887 | 2024-04-30T22:21:10.514440

445 / tcp

SMB Status:
  Authentication: disabled
  SMB Version: 1
  OS: Windows 7 Professional 7600
  Software: Windows 7 Professional 6.1
  Capabilities: extended-security, infolevel-passthru, large-files, large-readx, large-writex, level2-oplocks, lock-and-read, nt-find, nt-smb, nt-status, raw-mode, rpc-remote-api, unicode

Shares
Name                 Type       Comments
------------------------------------------------------------------------
ADMIN$               Disk       Remote Admin
IPC$                 IPC        Remote IPC
C$                   Disk
Printer              Printer    Microsoft XPS Document Writer

-957557754 | 2024-04-30T21:08:10.367827

465 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T19:59:15.958279

503 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T16:40:51.161786

515 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T23:55:13.774272

548 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T19:33:08.108358

587 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T14:50:42.866760

593 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T14:18:09.796264

631 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-20T21:40:48.588861

646 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T19:41:03.739711

666 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T14:56:46.705642

771 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-28T08:37:27.090568

801 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-29T23:56:00.644482

808 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T11:56:02.009238

873 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T20:16:42.875188

902 / tcp

HTTP/1.1 200 OK

-1429299781 | 2024-04-30T23:19:46.350188

993 / tcp

* OK IMAP4rev1 Server Ready
* CAPABILITY IMAP4rev1 AUTH=PLAIN
A001 OK CAPABILITY completed
A002 BAD invalid command
A003 BAD invalid command
* BYE IMAP4rev1 Server logging out
A004 OK LOGOUT completed

SSL Certificate

Certificate:
    Data:
        Version: 1 (0x0)
        Serial Number: 0 (0x0)
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: CN=*, C=US, ST=None, L=None, O=None, OU=None
        Validity
            Not Before: Apr 30 20:01:23 2024 GMT
            Not After : Apr 30 20:01:23 2025 GMT
        Subject: CN=*, C=US, ST=None, L=None, O=None, OU=None
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:cc:ba:87:c3:46:ed:22:28:d7:51:93:bb:98:bb:
                    cf:3f:8b:d7:c5:1b:74:0a:f6:f7:25:e4:fe:e0:9c:
                    ad:0c:9a:53:d2:fa:b5:19:bc:28:76:d4:40:e9:00:
                    77:a4:ff:20:db:40:b2:a4:a9:e9:fd:76:98:83:0e:
                    96:b7:6e:7c:fe:57:36:6b:be:18:18:64:b5:c3:ed:
                    0f:a8:73:e6:f6:3c:05:ee:f8:f7:b8:54:46:6d:fb:
                    24:03:23:68:5f:28:08:5a:8a:40:00:6d:91:89:7a:
                    cc:08:ba:ba:ff:40:21:59:5d:13:cb:12:44:50:55:
                    e4:7c:78:b2:04:b1:85:d8:bc:b5:38:8d:bc:3c:68:
                    08:95:ac:d4:cb:03:8d:52:4d:e0:17:e9:25:96:e1:
                    5f:be:9e:fa:cc:e1:fc:b8:99:1a:59:cc:b2:0d:ca:
                    b3:0b:71:9e:9b:19:8d:c4:eb:7a:0d:f2:6a:51:de:
                    58:76:03:00:e7:cc:36:20:37:13:f0:22:9c:70:0a:
                    72:f6:d8:74:f6:92:82:b4:72:58:4d:c6:e9:88:ee:
                    41:84:d5:b9:b9:b8:74:70:c4:2f:8a:1e:9a:c7:aa:
                    25:0e:8a:5d:ef:df:de:48:62:de:b8:fe:a6:28:bd:
                    5b:20:5b:36:d5:48:ad:d6:e5:b0:fa:b5:8d:91:3f:
                    60:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        8a:dc:a1:dc:bb:99:7d:90:82:35:ab:48:a9:eb:8f:36:76:dd:
        29:c1:52:e7:8f:fd:fc:79:0f:0e:92:0a:8d:70:6b:8d:16:4f:
        22:1d:75:53:12:ac:14:6b:cf:73:2c:b5:85:27:38:56:69:34:
        a2:b1:3f:1a:48:04:f6:4e:04:86:de:e7:ed:1e:4d:b5:80:14:
        4a:05:16:82:00:c9:11:ef:52:d5:40:93:f6:13:92:d2:be:d3:
        37:e6:3c:a7:fa:ed:8a:47:a4:fb:17:09:3a:46:b3:5a:a1:e9:
        91:c7:af:c9:77:d7:f8:09:08:20:75:91:30:f4:9a:a9:61:6f:
        09:35:fa:01:61:da:d4:15:18:3d:03:ab:4c:01:b9:89:56:32:
        2a:ab:c5:76:e9:de:5f:fe:ba:d2:2a:9c:67:b2:ae:2a:e9:9d:
        7d:c3:d2:d0:a4:30:9b:4c:df:ae:84:cb:52:b3:fb:cc:24:56:
        95:ca:36:e0:c6:38:a1:16:c7:ba:66:33:f0:62:7e:87:54:7f:
        75:44:ca:fd:5a:ad:68:ff:46:2a:16:ff:e3:61:5f:19:65:c0:
        6e:07:df:60:88:79:ef:65:5b:01:ec:90:c1:cf:a8:db:09:47:
        46:5a:ed:8c:a3:08:a9:5a:78:4e:67:3b:06:b1:22:ef:00:3e:
        71:24:b7:da

-317762099 | 2024-04-30T18:49:09.043354

995 / tcp

+OK POP3 server ready
-ERR Unknown command

SSL Certificate

Certificate:
    Data:
        Version: 1 (0x0)
        Serial Number: 0 (0x0)
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: CN=*, C=US, ST=None, L=None, O=None, OU=None
        Validity
            Not Before: Apr 30 16:01:25 2024 GMT
            Not After : Apr 30 16:01:25 2025 GMT
        Subject: CN=*, C=US, ST=None, L=None, O=None, OU=None
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:bc:bb:04:ab:9b:d4:9e:c6:9b:4d:91:e1:40:41:
                    b1:a8:7b:22:88:e6:10:43:cf:4d:3b:40:ba:b9:f1:
                    2d:e0:bc:5b:42:10:02:0d:30:7f:61:71:d8:31:1f:
                    e4:cf:1c:16:99:0a:4e:e6:30:de:f7:55:f6:7b:89:
                    ce:5a:77:48:84:88:69:6e:74:7b:c8:65:eb:77:ab:
                    d0:65:72:c2:70:98:0c:d4:5b:e2:ce:51:76:fb:06:
                    9a:9a:39:4a:a5:0c:a2:fb:8e:f0:1f:88:e5:63:e7:
                    3e:16:1a:55:83:21:ce:14:bd:94:50:c1:dc:ff:81:
                    7d:55:24:2e:eb:f7:7a:76:a6:5e:5a:3a:a2:6c:73:
                    7f:a6:85:9f:f0:20:40:88:e1:bc:a1:a8:62:18:9a:
                    e5:bc:73:65:15:a4:f5:f6:c8:08:e1:26:6b:77:be:
                    d0:a7:52:7c:98:4e:24:fc:91:58:2c:8e:e7:76:09:
                    dc:78:b0:7f:d6:54:98:9b:92:a3:1d:ea:e1:da:ca:
                    6e:67:b4:14:c4:90:1f:a0:03:34:2a:37:cb:1e:9c:
                    ca:ba:7d:45:93:8e:d9:73:ac:9b:c4:e3:03:aa:75:
                    75:4c:af:d8:c0:de:23:f6:e1:ca:6a:df:18:1b:4e:
                    23:05:db:93:d7:15:e1:8b:cc:0f:03:9e:49:a6:cf:
                    3a:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        3f:0a:43:aa:d2:f4:9e:58:86:1f:69:bd:2c:31:78:50:1f:7a:
        2f:18:c2:48:cd:5e:7d:a8:53:59:a8:16:b0:23:6a:2f:0b:90:
        c2:2c:6d:e2:40:fc:8c:f5:e7:7e:1b:4f:25:59:7a:e9:7f:75:
        98:ad:bc:53:99:b9:a8:5a:f8:b6:81:ca:ac:7b:d5:84:6e:0a:
        e6:32:c9:11:45:3b:62:9f:76:95:65:b5:50:cf:cb:be:e7:9c:
        d7:73:3a:e8:d2:6f:75:6a:6f:ef:e7:4b:49:be:08:d2:b6:b0:
        17:c5:a3:ca:f7:85:7a:19:02:95:7d:b2:3b:69:a6:57:6e:e7:
        04:fa:5d:07:f0:bb:8a:4e:7c:ac:39:de:15:7c:33:c5:00:43:
        e1:0f:02:b3:ed:71:57:05:f6:4f:39:5c:9f:75:b1:55:62:fa:
        24:ba:4a:b9:15:78:1c:14:ca:87:b2:cc:39:15:f4:fd:98:ca:
        c0:77:e4:bc:87:2e:ac:bc:77:1d:f8:7f:b8:ec:12:64:08:e0:
        ce:2f:9b:92:69:09:28:53:31:16:36:0a:03:39:9c:41:09:52:
        5f:db:3b:1f:05:c9:57:02:a1:45:50:d2:89:2d:2d:f0:c1:bd:
        2b:1a:a9:8c:aa:63:a9:ab:8c:a0:84:e1:9f:79:0e:b4:b3:c4:
        e6:89:d9:0f

-957557754 | 2024-04-30T20:18:10.888196

1023 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T21:39:15.312657

1024 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T10:16:20.214615

1153 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T09:50:30.304733

1200 / tcp

HTTP/1.1 200 OK

-1212692304 | 2024-04-30T11:20:26.950954

1234 / tcp

HTTP/1.0 200 OK

-957557754 | 2024-04-30T04:00:32.038668

1311 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-29T00:19:31.718447

1344 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-21T19:58:39.718138

1388 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T16:02:42.896095

1400 / tcp

HTTP/1.1 200 OK

1866007652 | 2024-04-30T13:38:16.382411

1433 / tcp

\x04\x01\x00J\x00\x00\x01\x00\xad6\x00\x01\x04\x02\x00\x00\x16M\x00i\x00c\x00r\x00o\x00s\x00o\x00f\x00t\x00 \x00S\x00Q\x00L\x00 \x00S\x00e\x00r\x00v\x00e\x00r\x00\x00\x00\x00\x00\t\x00\x05w\xfd\x00\x00\x00\x00\x00\x00\x00\x00

-957557754 | 2024-04-30T21:24:40.955661

1471 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T11:15:15.682012

1604 / tcp

HTTP/1.1 200 OK

261189147 | 2024-04-29T20:34:08.507178

1723 / tcp

PPTP:
  Firmware: 1
  Hostname: local
  Vendor: linux

-957557754 | 2024-04-30T22:22:57.040096

1741 / tcp

HTTP/1.1 200 OK

-1351362334 | 2024-04-30T04:54:50.653588

1883 / tcp

MQTT Connection Code: 0

Topics:

-957557754 | 2024-04-30T22:06:06.776155

1925 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T19:41:53.095339

1935 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T18:03:00.349313

2002 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-14T14:48:53.109022

2008 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T18:28:56.600444

2067 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T14:15:39.720194

2081 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T17:39:13.199790

2082 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T22:27:58.157167

2086 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T16:06:37.662225

2087 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T19:43:22.246914

2121 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T09:38:39.449222

2154 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-29T21:39:38.384377

2181 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T21:55:27.600171

2222 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T18:25:50.688545

2225 / tcp

HTTP/1.1 200 OK

-480514891 | 2024-04-30T04:46:27.286274

2323 / tcp

Debian GNU/Linux 7
Login:

-957557754 | 2024-04-30T17:51:21.800916

2332 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T20:21:24.593312

2375 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T14:20:31.703827

2379 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-16T20:43:15.602012

2382 / tcp

HTTP/1.1 200 OK

-701268963 | 2024-04-30T20:09:18.878605

2404 / tcp

Data Received: 680e0000020064010700281e00000000680e0200020064010a00281e00000000
ASDU Address: -1

-957557754 | 2024-04-30T10:02:31.177602

2455 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T18:49:13.213880

2480 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-15T16:39:10.732370

2562 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T20:15:16.942067

3000 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-29T15:44:03.174393

3050 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-29T21:18:34.810846

3051 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T15:43:41.098383

3128 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-28T15:41:06.101274

3200 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-28T17:47:43.598220

3268 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T15:05:57.720421

3269 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T02:56:52.163665

3301 / tcp

HTTP/1.1 200 OK

-1344782857 | 2024-04-30T13:59:32.401321

3306 / tcp

4\x00\x00\x00\n5.7.16\x00\x00\x00\x12gaaaaaaaa\x00,\xa2!\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00            \x00

-957557754 | 2024-04-28T16:35:58.266483

3333 / tcp

HTTP/1.1 200 OK

1200727342 | 2024-04-30T02:48:17.531485

3389 / tcp

Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x00\x00\x00\x02\x00\x08\x00\x00\x00\x00\x00

-957557754 | 2024-04-20T13:02:37.136406

3403 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T12:01:19.688321

3541 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T22:54:02.815196

3542 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T08:49:35.871753

3551 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-12T18:54:49.343689

3558 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-22T21:35:14.524674

3560 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T22:18:31.718852

3689 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T22:55:55.977099

3749 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-18T06:04:34.304523

3794 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-13T04:52:06.726372

3950 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-19T10:54:36.955414

3951 / tcp

HTTP/1.1 200 OK

-1212692304 | 2024-04-30T09:52:36.773773

4022 / tcp

HTTP/1.0 200 OK

-957557754 | 2024-04-30T22:47:04.251369

4040 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T19:27:03.225638

4063 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T14:51:10.444434

4064 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-28T08:59:59.772456

4282 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T19:00:47.924029

4321 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T13:54:48.853218

4369 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-23T21:16:54.985079

4430 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T23:30:28.671974

4500 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T22:09:16.005998

4506 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T13:04:23.515175

4567 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T01:47:35.425664

4664 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T22:10:04.577690

4782 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T10:01:17.529689

4840 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T09:51:39.598911

4848 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T21:22:30.891045

4899 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T20:22:22.745076

4911 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T13:52:29.106799

4949 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T21:54:12.165830

5005 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T06:44:54.685643

5007 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T12:09:36.476815

5010 / tcp

HTTP/1.1 200 OK

1666765332 | 2024-04-30T14:51:30.707145

5060 / udp

SIP/2.0 200 OK
To: sip:nm2@nm2
Content-Length: 0
CSeq: 42 OPTIONS
Accept: application/sdp
Accept-Language: en
Allow: REGISTER, OPTIONS, INVITE, CANCEL, BYE, ACK
From: sip:nm@nm;tag=root
Call-ID: 50000
Contact: sip:nm2@nm2
Via: SIP/2.0/UDP nm;branch=foo;rport

-957557754 | 2024-04-30T22:10:07.309651

5172 / tcp

HTTP/1.1 200 OK

-1877034605 | 2024-04-30T21:03:07.104221

5222 / tcp

  <servers version="1">
      <server>
          <serverName>Test_VPN</serverName>
          <serverIP>127.0.0.1</serverIP>
      </server>
  </servers>

-957557754 | 2024-04-30T02:05:21.702980

5357 / tcp

HTTP/1.1 200 OK

-726790289 | 2024-04-30T12:47:00.273349

5432 / tcp

PostgreSQL
fe_sendauth: no password supplied

-957557754 | 2024-04-30T19:30:42.425145

5560 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T18:56:53.034147

5601 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-13T10:48:05.448344

5603 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T22:00:16.618845

5800 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T11:11:10.975147

5801 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T14:54:53.488018

5858 / tcp

HTTP/1.1 200 OK

-361037982 | 2024-04-30T11:49:08.902548

5900 / tcp

RFB 003.007

VNC:
  Protocol Version: 3.7
  Security Types:
    2: VNC Authentication

-957557754 | 2024-04-30T22:59:57.449260

5901 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T21:08:17.832694

5984 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T13:00:35.186120

5985 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T09:24:12.586603

6002 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-19T02:46:40.821282

6036 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T13:13:47.331115

6080 / tcp

HTTP/1.1 200 OK

-6656507 | 2024-04-30T14:39:30.008097

6379 / tcp

-Connection closed by server.

-957557754 | 2024-04-12T11:42:18.212604

6543 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T15:21:35.737895

6633 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-29T06:28:25.652367

6653 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T23:51:18.447840

6664 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T17:59:59.788758

6666 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T11:36:25.919374

6667 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T18:40:56.410707

6697 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-28T18:36:29.834276

7170 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T14:26:28.162237

7218 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T11:58:14.572187

7474 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T00:21:05.572875

7510 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-19T23:26:45.407776

7535 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T18:46:24.318589

7547 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T23:44:17.352749

7657 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T16:01:51.864110

7777 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T11:40:36.093752

7779 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T22:39:41.633482

7989 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-13T23:49:39.123785

7998 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T12:27:13.074137

8000 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T10:48:39.896427

8001 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T12:16:46.407102

8008 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T22:31:41.703043

8009 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T23:22:20.066529

8010 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-26T23:09:38.211488

8012 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-28T02:33:22.035367

8014 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-28T15:52:27.738177

8023 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T21:45:40.722075

8025 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-18T09:37:12.718398

8039 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T19:35:42.708895

8060 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T20:02:19.963799

8069 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T19:34:44.751072

8080 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T23:04:06.261512

8086 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T14:34:46.172708

8090 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T09:25:52.287842

8098 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T18:25:56.587271

8099 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T22:38:27.027279

8112 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T20:10:03.124611

8123 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-17T21:28:18.645799

8181 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-29T21:14:33.211388

8184 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T21:41:40.482137

8200 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T18:45:00.109998

8333 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T17:48:39.312481

8334 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-14T07:52:48.121115

8407 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-26T08:56:37.057816

8419 / tcp

HTTP/1.1 200 OK

-1446290380 | 2024-04-30T17:34:35.784253

8443 / tcp

HTTP/1.1 200 OK
Date: Tue, 30 Apr 2024 17:34:32 GMT
Content-Type: text/html
Cache-Control: no-cache
Pragma: no-cache
Set-Cookie: tg=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
Set-Cookie: webvpn=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
Set-Cookie: webvpnc=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
Set-Cookie: webvpn_portal=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
Set-Cookie: webvpnSharePoint=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
Set-Cookie: webvpnlogin=1; path=/; secure
Set-Cookie: sdesktop=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            71:ed:14:b9:08:f5:0e:1a:62:06:be:d7:8b:db:16:44:d9:32:c0:58
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=CA, L=San Francisco, O=My Company, CN=example.com
        Validity
            Not Before: Apr 30 16:00:55 2024 GMT
            Not After : Apr 30 16:00:55 2025 GMT
        Subject: C=US, ST=CA, L=San Francisco, O=My Company, CN=example.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ba:b3:23:fe:da:0f:08:3a:9b:2d:52:89:a4:a6:
                    22:95:58:4c:80:d4:fd:c1:71:60:8c:91:ba:70:52:
                    b6:96:2e:6f:22:c3:cd:ec:e0:a6:f1:48:d6:ce:cb:
                    d8:b8:4a:c2:de:a5:3a:ce:8e:33:8f:4a:a9:d9:02:
                    94:42:5b:74:ad:a3:25:55:be:06:7d:68:bf:b1:ff:
                    80:93:1f:87:da:c7:b2:53:19:bf:49:f5:14:18:e1:
                    5f:54:58:c2:2a:fc:39:18:3a:d4:2a:8e:3a:24:de:
                    90:86:c4:d9:a4:ae:d9:7f:d4:71:a6:15:26:df:db:
                    ec:8e:d9:c9:de:7d:9e:ac:1f:62:19:49:d9:f0:e8:
                    d7:fa:ec:34:28:70:74:5d:a4:62:6a:a8:3f:52:34:
                    0a:dd:b0:45:09:71:ad:e2:3a:42:96:9b:f1:fd:ae:
                    d0:31:dc:80:99:0d:3e:bf:88:7c:22:d8:00:67:19:
                    72:5c:74:1e:3f:16:12:9f:72:bd:11:a9:a4:10:d9:
                    8b:16:8e:5b:32:1f:72:d7:80:c2:cf:48:82:d2:39:
                    51:e5:de:94:cd:52:3b:59:b3:66:93:19:0e:b3:f1:
                    d5:82:a4:f1:b7:98:30:af:14:77:9b:64:8a:4f:25:
                    7a:2d:5f:4f:6d:97:30:44:f7:b2:60:56:98:83:49:
                    bc:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Alternative Name: 
                DNS:localhost
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        4a:9d:be:bc:bf:ad:b7:2c:33:a3:bf:d0:c5:e4:ca:4d:0e:c6:
        8d:59:a8:dc:5e:d1:17:e5:06:7d:a4:f5:18:ca:04:51:70:d6:
        be:41:9b:24:8f:e6:54:03:63:69:43:45:cf:e6:55:9d:a0:23:
        c1:b8:f5:f7:03:82:8c:48:52:bd:a7:be:66:de:aa:10:c8:34:
        bd:6c:e0:f8:32:36:ad:a1:70:1e:12:5e:ea:da:dc:47:94:9a:
        40:1e:ef:2c:c2:68:09:3a:22:09:11:53:d5:80:35:20:f2:26:
        3d:15:78:25:19:46:08:b2:ce:42:17:62:dc:ea:1b:03:cb:40:
        b9:f3:fb:0a:74:1e:06:02:82:0a:24:6e:69:40:9f:4c:b0:bb:
        a5:46:a7:9d:a6:69:fa:d8:a5:12:3c:c9:bf:91:31:1f:ac:7a:
        07:9e:3d:75:c1:26:5c:cb:50:79:94:18:90:c2:22:84:46:0a:
        c4:63:c6:93:55:ef:f1:af:d5:a3:13:df:e0:04:d0:1b:47:c1:
        8f:07:bc:ad:34:73:ed:14:55:18:25:9e:07:d0:0a:31:80:64:
        bc:c7:c2:80:40:e6:ad:8a:b9:31:45:f8:0f:d2:77:5b:6b:7f:
        ee:3b:1f:71:5c:a0:b7:59:27:a8:0e:a6:ca:77:94:cf:27:40:
        54:ea:53:93

-957557754 | 2024-04-30T14:29:58.568928

8500 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T15:18:26.574150

8545 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T21:33:32.112535

8575 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T09:32:28.039538

8623 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T20:21:14.786355

8649 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-29T23:52:55.420060

8688 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-17T16:07:36.860251

8733 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-27T08:47:51.048398

8779 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T19:31:51.030225

8800 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-12T11:36:46.920870

8815 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-28T10:09:15.426989

8824 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-12T15:17:27.092076

8858 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-26T23:13:01.837948

8872 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T15:40:13.616845

8888 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T16:39:35.357484

9000 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T14:52:47.952803

9009 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T08:24:42.100644

9042 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T20:35:51.539362

9051 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T09:45:40.202904

9080 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T19:42:17.366257

9090 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T20:55:36.267803

9092 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-11T19:48:02.489737

9095 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-29T14:19:40.943914

9109 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T23:46:18.513052

9151 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T05:08:06.322100

9160 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T21:46:53.363921

9191 / tcp

HTTP/1.1 200 OK

-2043297692 | 2024-04-30T21:06:51.985716

9200 / tcp

{ "status" : 200, "name" : "Flake", "cluster_name" : "elasticsearch", "version" : {"number" : "1.4.1","                        "build_hash" : "61ccbdf1fab017166ec4b96a88e82e8ab88f43fc",                        "build_timestamp" : "2016-04-11T03:14:12Z",                        "build_snapshot" : false, "lucene_version" : "4.10.4"},                        "tagline" : "You Know, for Search"}

-957557754 | 2024-04-30T22:43:39.662412

9295 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T10:57:02.060617

9306 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T14:16:34.482107

9595 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T14:03:02.515799

9761 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T22:36:47.551253

9800 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T19:51:01.954596

9869 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T21:55:03.405857

9944 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T12:25:57.443234

9981 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T23:18:10.009154

9998 / tcp

HTTP/1.1 200 OK

1286105887 | 2024-04-30T20:31:43.629630

10001 / tcp

I20100
04/30/2024 20:31

AVIA



IN-TANK INVENTORY

TANK PRODUCT             VOLUME TC VOLUME   ULLAGE   HEIGHT    WATER     TEMP
  1  SUPER                 8155      8195     3154    41.95     5.86    57.15
  2  UNLEAD                4055      4195     3222    67.94     6.74    57.20
  3  DIESEL                2737      2834     4978    36.91     5.85    52.34
  4  ADBLUE                2150      2227     4978    29.02     0.00    54.19

-957557754 | 2024-04-30T22:43:52.501207

10243 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T20:04:11.261897

11000 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-29T20:19:05.362701

11210 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-29T00:19:08.361016

11211 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T19:13:02.138339

11300 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T17:24:47.198706

11371 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T17:57:11.632362

12000 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T08:21:10.055473

13579 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T20:40:05.034994

14147 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-21T02:40:23.335234

16010 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T13:23:54.308369

16992 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T19:17:27.430636

17000 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T16:42:08.331373

18081 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T21:39:56.636024

19000 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T10:42:13.264551

19071 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T20:26:41.217492

20000 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T20:41:27.281398

21025 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T14:47:54.467104

23023 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T17:44:08.892363

23424 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T18:33:12.554789

25105 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T08:10:16.894237

25565 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T20:04:24.734689

28015 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T09:20:17.088818

28017 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T15:09:44.738508

30002 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T10:35:22.652462

30003 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T22:29:03.096518

32400 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T15:46:03.177411

32764 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T22:42:51.809489

33060 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T15:31:54.667465

37215 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T20:34:46.944718

41800 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T10:03:35.594907

44158 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T13:31:25.993048

49152 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T02:10:12.414059

49153 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T22:17:38.584197

50050 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T23:15:32.834264

50070 / tcp

HTTP/1.1 200 OK

-1344792340 | 2024-04-29T04:32:47.804164

50100 / tcp

Welcome...
Connected to [00:13:EA:00:00:00]

-957557754 | 2024-04-29T19:19:29.651023

51106 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T10:15:59.397333

51235 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T18:59:13.381230

52869 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T20:07:34.571569

54138 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T12:29:45.933518

55000 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T01:21:47.906553

55442 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T21:35:01.304458

55554 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T12:01:45.262183

60001 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-28T22:30:37.536890

60010 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-29T04:12:30.810573

60030 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T22:45:54.716983

61613 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T16:04:25.612656

61616 / tcp

HTTP/1.1 200 OK

-957557754 | 2024-04-30T17:41:43.132700

62078 / tcp

HTTP/1.1 200 OK

3.27.247.135

Last Seen: 2024-04-30

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-957557754 | 2024-04-30T21:01:52.323289 11 / tcp

-957557754 | 2024-04-30T16:33:36.094478 13 / tcp

-957557754 | 2024-04-30T14:40:51.292938 15 / tcp

-957557754 | 2024-04-30T22:04:38.259294 17 / tcp

-957557754 | 2024-04-30T19:24:39.239716 19 / tcp

-840324041 | 2024-04-30T21:42:36.409447 21 / tcp

1219034322 | 2024-04-30T18:00:25.483845 22 / tcp

-931697787 | 2024-04-30T18:07:49.085750 23 / tcp

1121378291 | 2024-04-30T19:39:07.518756 25 / tcp

-957557754 | 2024-04-30T11:08:50.603211 26 / tcp

-957557754 | 2024-04-30T19:34:15.827105 37 / tcp

-957557754 | 2024-04-28T19:50:57.030302 49 / tcp

-957557754 | 2024-04-29T17:58:21.440331 70 / tcp

-957557754 | 2024-04-30T13:34:47.074503 79 / tcp

313443745 | 2024-04-30T11:15:25.664714 80 / tcp

-1451451174 | 2024-04-30T07:19:02.178164 81 / tcp

-957557754 | 2024-04-30T13:01:50.025344 82 / tcp

-957557754 | 2024-04-30T19:34:28.829312 83 / tcp

-957557754 | 2024-04-30T23:42:37.878871 84 / tcp

-957557754 | 2024-04-30T19:41:39.351874 88 / tcp

-957557754 | 2024-04-30T19:00:25.803796 102 / tcp

-317762099 | 2024-04-30T14:29:51.916630 110 / tcp

-957557754 | 2024-04-30T22:56:10.135559 119 / tcp

-957557754 | 2024-04-23T23:52:36.965970 122 / tcp

-996304248 | 2024-04-30T12:24:14.062411 123 / udp

2030592451 | 2024-04-30T13:33:05.848207 135 / tcp

-1429299781 | 2024-04-30T13:26:35.532692 143 / tcp

-957557754 | 2024-04-30T05:12:16.195239 179 / tcp

-957557754 | 2024-04-30T15:50:16.560619 221 / tcp

-957557754 | 2024-04-30T20:17:18.816728 389 / tcp

-1451451174 | 2024-04-30T23:06:13.201242 443 / tcp

606215887 | 2024-04-30T22:21:10.514440 445 / tcp

-957557754 | 2024-04-30T21:08:10.367827 465 / tcp

-957557754 | 2024-04-30T19:59:15.958279 503 / tcp

-957557754 | 2024-04-30T16:40:51.161786 515 / tcp

-957557754 | 2024-04-30T23:55:13.774272 548 / tcp

-957557754 | 2024-04-30T19:33:08.108358 587 / tcp

-957557754 | 2024-04-30T14:50:42.866760 593 / tcp

-957557754 | 2024-04-30T14:18:09.796264 631 / tcp

-957557754 | 2024-04-20T21:40:48.588861 646 / tcp

-957557754 | 2024-04-30T19:41:03.739711 666 / tcp

-957557754 | 2024-04-30T14:56:46.705642 771 / tcp

-957557754 | 2024-04-28T08:37:27.090568 801 / tcp

-957557754 | 2024-04-29T23:56:00.644482 808 / tcp

-957557754 | 2024-04-30T11:56:02.009238 873 / tcp

-957557754 | 2024-04-30T20:16:42.875188 902 / tcp

-1429299781 | 2024-04-30T23:19:46.350188 993 / tcp

-317762099 | 2024-04-30T18:49:09.043354 995 / tcp

-957557754 | 2024-04-30T20:18:10.888196 1023 / tcp

-957557754 | 2024-04-30T21:39:15.312657 1024 / tcp

-957557754 | 2024-04-30T10:16:20.214615 1153 / tcp

-957557754 | 2024-04-30T09:50:30.304733 1200 / tcp

-1212692304 | 2024-04-30T11:20:26.950954 1234 / tcp

-957557754 | 2024-04-30T04:00:32.038668 1311 / tcp

-957557754 | 2024-04-29T00:19:31.718447 1344 / tcp

-957557754 | 2024-04-21T19:58:39.718138 1388 / tcp

-957557754 | 2024-04-30T16:02:42.896095 1400 / tcp

1866007652 | 2024-04-30T13:38:16.382411 1433 / tcp

-957557754 | 2024-04-30T21:24:40.955661 1471 / tcp

-957557754 | 2024-04-30T11:15:15.682012 1604 / tcp

261189147 | 2024-04-29T20:34:08.507178 1723 / tcp

-957557754 | 2024-04-30T22:22:57.040096 1741 / tcp

-1351362334 | 2024-04-30T04:54:50.653588 1883 / tcp

-957557754 | 2024-04-30T22:06:06.776155 1925 / tcp

-957557754 | 2024-04-30T19:41:53.095339 1935 / tcp

-957557754 | 2024-04-30T18:03:00.349313 2002 / tcp

-957557754 | 2024-04-14T14:48:53.109022 2008 / tcp

-957557754 | 2024-04-30T18:28:56.600444 2067 / tcp

-957557754 | 2024-04-30T14:15:39.720194 2081 / tcp

-957557754 | 2024-04-30T17:39:13.199790 2082 / tcp

-957557754 | 2024-04-30T22:27:58.157167 2086 / tcp

-957557754 | 2024-04-30T16:06:37.662225 2087 / tcp

-957557754 | 2024-04-30T19:43:22.246914 2121 / tcp

-957557754 | 2024-04-30T21:01:52.323289
11 / tcp

-957557754 | 2024-04-30T16:33:36.094478
13 / tcp

-957557754 | 2024-04-30T14:40:51.292938
15 / tcp

-957557754 | 2024-04-30T22:04:38.259294
17 / tcp

-957557754 | 2024-04-30T19:24:39.239716
19 / tcp

-840324041 | 2024-04-30T21:42:36.409447
21 / tcp

1219034322 | 2024-04-30T18:00:25.483845
22 / tcp

-931697787 | 2024-04-30T18:07:49.085750
23 / tcp

1121378291 | 2024-04-30T19:39:07.518756
25 / tcp

-957557754 | 2024-04-30T11:08:50.603211
26 / tcp

-957557754 | 2024-04-30T19:34:15.827105
37 / tcp

-957557754 | 2024-04-28T19:50:57.030302
49 / tcp

-957557754 | 2024-04-29T17:58:21.440331
70 / tcp

-957557754 | 2024-04-30T13:34:47.074503
79 / tcp

313443745 | 2024-04-30T11:15:25.664714
80 / tcp

-1451451174 | 2024-04-30T07:19:02.178164
81 / tcp

-957557754 | 2024-04-30T13:01:50.025344
82 / tcp

-957557754 | 2024-04-30T19:34:28.829312
83 / tcp

-957557754 | 2024-04-30T23:42:37.878871
84 / tcp

-957557754 | 2024-04-30T19:41:39.351874
88 / tcp

-957557754 | 2024-04-30T19:00:25.803796
102 / tcp

-317762099 | 2024-04-30T14:29:51.916630
110 / tcp

-957557754 | 2024-04-30T22:56:10.135559
119 / tcp

-957557754 | 2024-04-23T23:52:36.965970
122 / tcp

-996304248 | 2024-04-30T12:24:14.062411
123 / udp

2030592451 | 2024-04-30T13:33:05.848207
135 / tcp

-1429299781 | 2024-04-30T13:26:35.532692
143 / tcp

-957557754 | 2024-04-30T05:12:16.195239
179 / tcp

-957557754 | 2024-04-30T15:50:16.560619
221 / tcp

-957557754 | 2024-04-30T20:17:18.816728
389 / tcp

-1451451174 | 2024-04-30T23:06:13.201242
443 / tcp

606215887 | 2024-04-30T22:21:10.514440
445 / tcp

-957557754 | 2024-04-30T21:08:10.367827
465 / tcp

-957557754 | 2024-04-30T19:59:15.958279
503 / tcp

-957557754 | 2024-04-30T16:40:51.161786
515 / tcp

-957557754 | 2024-04-30T23:55:13.774272
548 / tcp

-957557754 | 2024-04-30T19:33:08.108358
587 / tcp

-957557754 | 2024-04-30T14:50:42.866760
593 / tcp

-957557754 | 2024-04-30T14:18:09.796264
631 / tcp

-957557754 | 2024-04-20T21:40:48.588861
646 / tcp

-957557754 | 2024-04-30T19:41:03.739711
666 / tcp

-957557754 | 2024-04-30T14:56:46.705642
771 / tcp

-957557754 | 2024-04-28T08:37:27.090568
801 / tcp

-957557754 | 2024-04-29T23:56:00.644482
808 / tcp

-957557754 | 2024-04-30T11:56:02.009238
873 / tcp

-957557754 | 2024-04-30T20:16:42.875188
902 / tcp

-1429299781 | 2024-04-30T23:19:46.350188
993 / tcp

-317762099 | 2024-04-30T18:49:09.043354
995 / tcp

-957557754 | 2024-04-30T20:18:10.888196
1023 / tcp

-957557754 | 2024-04-30T21:39:15.312657
1024 / tcp

-957557754 | 2024-04-30T10:16:20.214615
1153 / tcp

-957557754 | 2024-04-30T09:50:30.304733
1200 / tcp

-1212692304 | 2024-04-30T11:20:26.950954
1234 / tcp

-957557754 | 2024-04-30T04:00:32.038668
1311 / tcp

-957557754 | 2024-04-29T00:19:31.718447
1344 / tcp

-957557754 | 2024-04-21T19:58:39.718138
1388 / tcp

-957557754 | 2024-04-30T16:02:42.896095
1400 / tcp

1866007652 | 2024-04-30T13:38:16.382411
1433 / tcp

-957557754 | 2024-04-30T21:24:40.955661
1471 / tcp

-957557754 | 2024-04-30T11:15:15.682012
1604 / tcp

261189147 | 2024-04-29T20:34:08.507178
1723 / tcp

-957557754 | 2024-04-30T22:22:57.040096
1741 / tcp

-1351362334 | 2024-04-30T04:54:50.653588
1883 / tcp

-957557754 | 2024-04-30T22:06:06.776155
1925 / tcp

-957557754 | 2024-04-30T19:41:53.095339
1935 / tcp

-957557754 | 2024-04-30T18:03:00.349313
2002 / tcp

-957557754 | 2024-04-14T14:48:53.109022
2008 / tcp

-957557754 | 2024-04-30T18:28:56.600444
2067 / tcp

-957557754 | 2024-04-30T14:15:39.720194
2081 / tcp

-957557754 | 2024-04-30T17:39:13.199790
2082 / tcp

-957557754 | 2024-04-30T22:27:58.157167
2086 / tcp

-957557754 | 2024-04-30T16:06:37.662225
2087 / tcp

-957557754 | 2024-04-30T19:43:22.246914
2121 / tcp

-957557754 | 2024-04-30T09:38:39.449222
2154 / tcp

-957557754 | 2024-04-29T21:39:38.384377
2181 / tcp

-957557754 | 2024-04-30T21:55:27.600171
2222 / tcp

-957557754 | 2024-04-30T18:25:50.688545
2225 / tcp

-480514891 | 2024-04-30T04:46:27.286274
2323 / tcp

-957557754 | 2024-04-30T17:51:21.800916
2332 / tcp

-957557754 | 2024-04-30T20:21:24.593312
2375 / tcp