Cyber Defense Search Engine

IP
203.162.130.88

Alternative IP(s)
203.162.0.78

Network
203.162.128.0/20

Domain(s)
vnpt.vn

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
static.vnpt.vn

ASN
AS45899

Organization
VNPT Corp

Protocol
unknown

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
7e2692430e3d3dffde29f9184711027c

\x00\x9c\x00\x01\x1a+<M\x00\x02\x00\x00\x01\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x01local\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00linux\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:28:10.000Z",
   "alternativeip" : [
      "203.162.0.78"
   ],
   "app" : {
      "length" : 156
   },
   "asn" : "AS45899",
   "city" : "Hanoi",
   "country" : "VN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "\\x00\\x9c\\x00\\x01\\x1a+<M\\x00\\x02\\x00\\x00\\x01\\x00\\x01\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x01\\x00\\x01local\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00linux\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00",
   "datamd5" : "7e2692430e3d3dffde29f9184711027c",
   "datammh3" : -162252752,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "vnpt.vn"
   ],
   "geolocus" : {
      "asn" : "AS45899",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "VN",
      "countryname" : "Vietnam",
      "domain" : [
         "vnnic.vn",
         "vnpt.vn"
      ],
      "isineu" : "false",
      "latitude" : "14.058324",
      "location" : "14.058324,108.277199",
      "longitude" : "108.277199",
      "netname" : "VDC-NET",
      "organization" : "VNPT",
      "subnet" : "203.162.128.0/20"
   },
   "host" : [
      "static"
   ],
   "hostname" : [
      "static.vnpt.vn"
   ],
   "ip" : "203.162.130.88",
   "ipv6" : "false",
   "latitude" : "21.0292",
   "location" : "21.0292,105.8526",
   "longitude" : "105.8526",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "VNPT Corp",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 1723,
   "protocol" : "unknown",
   "reverse" : [
      "static.vnpt.vn"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subnet" : "203.162.128.0/20",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "vn"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
3.68.233.6

Network
3.64.0.0/12

Domain(s)
amazonaws.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://3.68.233.6:1723/ 200

Reverse DNS
ec2-3-68-233-6.eu-central-1.compute.amazonaws.com

ASN
AS16509

Organization
AMAZON-02

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
Apache HTTP Server

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
502364b4947035af3929d7c7c1366bf5

HTTP Header MD5
c3107926acada8cdd5184d209c4d148a

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

HTTP/1.1 200 OK
Connection: close
Date: Thu, 21 Nov 2024 10:27:07 GMT
Server: Apache
Content-Length: 0

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:27:08.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1,
         "headermd5" : "c3107926acada8cdd5184d209c4d148a",
         "headermmh3" : 193225849
      },
      "length" : 110
   },
   "asn" : "AS16509",
   "city" : "Frankfurt am Main",
   "country" : "DE",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nConnection: close\r\nDate: Thu, 21 Nov 2024 10:27:07 GMT\r\nServer: Apache\r\nContent-Length: 0\r\n\r\n",
   "datamd5" : "502364b4947035af3929d7c7c1366bf5",
   "datammh3" : -1757667577,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amazonaws.com"
   ],
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "DE",
      "countryname" : "Germany",
      "domain" : [
         "amazon.com",
         "amazonaws.com"
      ],
      "isineu" : "true",
      "latitude" : "51.165691",
      "location" : "51.165691,10.451526",
      "longitude" : "10.451526",
      "netname" : "AMAZON-FRA",
      "organization" : "A100 ROW GmbH",
      "subnet" : "3.64.0.0/12"
   },
   "host" : [
      "ec2-3-68-233-6"
   ],
   "hostname" : [
      "ec2-3-68-233-6.eu-central-1.compute.amazonaws.com"
   ],
   "ip" : "3.68.233.6",
   "ipv6" : "false",
   "latitude" : "50.1187",
   "location" : "50.1187,8.6842",
   "longitude" : "8.6842",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 1723,
   "product" : "HTTP Server",
   "productvendor" : "Apache",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "ec2-3-68-233-6.eu-central-1.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "compute.amazonaws.com",
      "eu-central-1.compute.amazonaws.com"
   ],
   "subnet" : "3.64.0.0/12",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
123.6.52.106

Network
123.4.0.0/14

Domain(s)
ny.adsl

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://123.6.52.106:1723/ 403

Reverse DNS
hn.kd.ny.adsl

ASN
AS4837

Organization
CHINA UNICOM China169 Backbone

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
e588a40e92191b334c22f752c533be82

HTTP Header MD5
1353db59f65c5ac8a1976d66114673cf

HTTP Body MD5
e487c2463d50fe6ec7df945cc31c468b

HTTP/1.1 403 Forbidden
Server: volc-dcdn
Date: Thu, 21 Nov 2024 10:26:54 GMT
Content-Type: application/octet-stream
Content-Length: 29
Connection: close
via: n123-006-052-084.bdcdn-zzcu04.ToB
x-request-ip: <srcip>
x-tt-trace-tag: id=5
x-dsa-trace-id: 17321848148c03b158ba1ad3b7b23adda5d64c417b
X-Dsa-Origin-Status: -

<redacted>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:26:54.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "e487c2463d50fe6ec7df945cc31c468b",
         "bodymmh3" : -1530396008,
         "headermd5" : "1353db59f65c5ac8a1976d66114673cf",
         "headermmh3" : 1738764951
      },
      "length" : 351
   },
   "asn" : "AS4837",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 403 Forbidden\r\nServer: volc-dcdn\r\nDate: Thu, 21 Nov 2024 10:26:54 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 29\r\nConnection: close\r\nvia: n123-006-052-084.bdcdn-zzcu04.ToB\r\nx-request-ip: <srcip>\r\nx-tt-trace-tag: id=5\r\nx-dsa-trace-id: 17321848148c03b158ba1ad3b7b23adda5d64c417b\r\nX-Dsa-Origin-Status: -\n\n<redacted>",
   "datamd5" : "e588a40e92191b334c22f752c533be82",
   "datammh3" : -68846984,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "ny.adsl"
   ],
   "geolocus" : {
      "asn" : "AS4837",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinaunicom.cn",
         "ny.adsl",
         "zz.ha.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "UNICOM-HA",
      "organization" : "CNC Group CHINA169 Henan Province Network",
      "subnet" : "123.6.0.0/15"
   },
   "host" : [
      "hn"
   ],
   "hostname" : [
      "hn.kd.ny.adsl"
   ],
   "ip" : "123.6.52.106",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "CHINA UNICOM China169 Backbone",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 1723,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Forbidden",
   "reverse" : [
      "hn.kd.ny.adsl"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 403,
   "subdomains" : [
      "kd.ny.adsl"
   ],
   "subnet" : "123.4.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "adsl"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
195.12.191.173

Network
195.12.188.0/22

Domain(s)
nonamehosts.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://195.12.191.173:1723/ 302

Reverse DNS
nnm173.nonamehosts.com

ASN
AS198651

Organization
Hostline, Uab

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

HTTP Component(s)
Oracle Java

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
79bfa6ce9247910015d95d5afd268282

HTTP Header MD5
1c1958f3c84e870233ed2fc0a8e666cb

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

HTTP/1.1 302 Found
Set-Cookie: JSESSIONID=6D0673A6F6318043010D055900375B60; Path=/; Secure; HttpOnly
X-UA-Compatible: IE=edge
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Location: /webclient/Dashboard.xhtml
Content-Type: text/html;charset=UTF-8
Content-Length: 0
Date: Thu, 21 Nov 2024 10:26:06 UTC

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:26:06.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1636538602,
         "component" : [
            {
               "productvendor" : "Oracle",
               "product" : "Java"
            }
         ],
         "headermd5" : "1c1958f3c84e870233ed2fc0a8e666cb",
         "headermmh3" : -1115864316
      },
      "length" : 440
   },
   "asn" : "AS198651",
   "city" : "Vilnius",
   "country" : "LT",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 302 Found\r\nSet-Cookie: JSESSIONID=6D0673A6F6318043010D055900375B60; Path=/; Secure; HttpOnly\r\nX-UA-Compatible: IE=edge\r\nCache-Control: no-cache, no-store, must-revalidate\r\nPragma: no-cache\r\nExpires: Thu, 01 Jan 1970 00:00:00 GMT\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nLocation: /webclient/Dashboard.xhtml\r\nContent-Type: text/html;charset=UTF-8\r\nContent-Length: 0\r\nDate: Thu, 21 Nov 2024 10:26:06 UTC\r\n\r\n",
   "datamd5" : "79bfa6ce9247910015d95d5afd268282",
   "datammh3" : -176501737,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "nonamehosts.com"
   ],
   "host" : [
      "nnm173"
   ],
   "hostname" : [
      "nnm173.nonamehosts.com"
   ],
   "ip" : "195.12.191.173",
   "ipv6" : "false",
   "latitude" : "54.6912",
   "location" : "54.6912,25.2816",
   "longitude" : "25.2816",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Hostline, Uab",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 1723,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Found",
   "reverse" : [
      "nnm173.nonamehosts.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 302,
   "subnet" : "195.12.188.0/22",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
91.135.248.8

Network
91.135.248.0/22

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

ASN
AS8814

Organization
Aztelekom LLC

Protocol
unknown

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
836ecf833cbd0c63176242b11a4fa1bd
```
ERROR\x0d
```

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:18:55.000Z",
   "app" : {
      "length" : 7
   },
   "asn" : "AS8814",
   "country" : "AZ",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "ERROR\\x0d\n",
   "datamd5" : "836ecf833cbd0c63176242b11a4fa1bd",
   "datammh3" : -1440470547,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS8814",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "AZ",
      "countryname" : "Azerbaijan",
      "domain" : [
         "aztelekom.az"
      ],
      "isineu" : "false",
      "latitude" : "40.143105",
      "location" : "40.143105,47.576927",
      "longitude" : "47.576927",
      "netname" : "AZT-ISP-3",
      "organization" : "Aztelekom.Net Ip Segment",
      "subnet" : "91.135.248.0/22"
   },
   "ip" : "91.135.248.8",
   "ipv6" : "false",
   "latitude" : "40.5040",
   "location" : "40.5040,47.4997",
   "longitude" : "47.4997",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Aztelekom LLC",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 1723,
   "protocol" : "unknown",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subnet" : "91.135.248.0/22",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
58.215.89.162

Network
58.215.80.0/20

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://58.215.89.162:1723/ 403

ASN
AS4134

Organization
Chinanet

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
5f2b9f6be5d55a15f6c7356013ac9082

HTTP Header MD5
4038542dfb8886d0a69c5cabdcedeade

HTTP Body MD5
ee1f021828a1fcbcc56d8ab865fb22f2

Favicon MD5
237e0770eccea4cc795613e0998486dd

Favicon MMH3
-1155478433

HTTP/1.1 403 Forbidden
Server: volc-dcdn
Date: Thu, 21 Nov 2024 10:08:05 GMT
Content-Type: application/octet-stream
Content-Length: 30
Connection: close
via: n36-150-202-140.bdcdn-jswxmp02.ToB
x-request-ip: <srcip>
x-tt-trace-tag: id=5
x-dsa-trace-id: 1732183685848ab34d27c674893f98894805d18cce
X-Dsa-Origin-Status: -

<redacted>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:15:07.000Z",
   "app" : {
      "favicon" : {
         "image" : "Tm90IEFsbG93ZWQgRm9yIDU4LjIxNS44OS4xNjIK",
         "imagemd5" : "237e0770eccea4cc795613e0998486dd",
         "imagemmh3" : -1155478433,
         "length" : 30,
         "url" : "/favicon.ico"
      },
      "http" : {
         "bodymd5" : "ee1f021828a1fcbcc56d8ab865fb22f2",
         "bodymmh3" : 2119328507,
         "headermd5" : "4038542dfb8886d0a69c5cabdcedeade",
         "headermmh3" : 2107256396
      },
      "length" : 352
   },
   "asn" : "AS4134",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 403 Forbidden\r\nServer: volc-dcdn\r\nDate: Thu, 21 Nov 2024 10:08:05 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 30\r\nConnection: close\r\nvia: n36-150-202-140.bdcdn-jswxmp02.ToB\r\nx-request-ip: <srcip>\r\nx-tt-trace-tag: id=5\r\nx-dsa-trace-id: 1732183685848ab34d27c674893f98894805d18cce\r\nX-Dsa-Origin-Status: -\n\n<redacted>",
   "datamd5" : "5f2b9f6be5d55a15f6c7356013ac9082",
   "datammh3" : 2032301261,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4134",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "163.com",
         "chinatelecom.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "CHINANET-JS",
      "organization" : "CHINANET jiangsu province network",
      "subnet" : "58.215.80.0/20"
   },
   "ip" : "58.215.89.162",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Chinanet",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 1723,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Forbidden",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 403,
   "subnet" : "58.215.80.0/20",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
37.120.139.150

Network
37.120.136.0/21

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://37.120.139.150:1723/ 407

HTTP Title
407 Proxy Authentication Required

ASN
AS9009

Organization
M247 Europe SRL

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
5de3222b1729fd391ce8647b836c2398

HTTP Header MD5
21284f1c018b202a467f839fc9f13ddc

HTTP Body MD5
5056940c475609544702ecf5718d5120

HTTP/1.1 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm="proxy"
Connection: close
Content-type: text/html; charset=utf-8

<html><head><title>407 Proxy Authentication Required</title></head>
<body><h2>407 Proxy Authentication Required</h2><h3>Access to requested resource disallowed by administrator or you need valid username/password to use this resource</h3></body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:09:16.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "5056940c475609544702ecf5718d5120",
         "bodymmh3" : -1116199576,
         "headermd5" : "21284f1c018b202a467f839fc9f13ddc",
         "headermmh3" : -2045892210,
         "realm" : "proxy",
         "title" : "407 Proxy Authentication Required"
      },
      "length" : 403
   },
   "asn" : "AS9009",
   "city" : "New York",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 407 Proxy Authentication Required\r\nProxy-Authenticate: Basic realm=\"proxy\"\r\nConnection: close\r\nContent-type: text/html; charset=utf-8\r\n\r\n<html><head><title>407 Proxy Authentication Required</title></head>\r\n<body><h2>407 Proxy Authentication Required</h2><h3>Access to requested resource disallowed by administrator or you need valid username/password to use this resource</h3></body></html>\r\n\r\n",
   "datamd5" : "5de3222b1729fd391ce8647b836c2398",
   "datammh3" : 1187186573,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "ip" : "37.120.139.150",
   "ipv6" : "false",
   "latitude" : "40.7157",
   "location" : "40.7157,-74.0000",
   "longitude" : "-74.0000",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "M247 Europe SRL",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 1723,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Proxy Authentication Required",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 407,
   "subnet" : "37.120.136.0/21",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
68.168.114.234

Network
68.168.112.0/20

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://68.168.114.234:1723/ 407

HTTP Title
407 Proxy Authentication Required

ASN
AS36666

Organization
GTCOMM

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
5de3222b1729fd391ce8647b836c2398

HTTP Header MD5
21284f1c018b202a467f839fc9f13ddc

HTTP Body MD5
5056940c475609544702ecf5718d5120

HTTP/1.1 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm="proxy"
Connection: close
Content-type: text/html; charset=utf-8

<html><head><title>407 Proxy Authentication Required</title></head>
<body><h2>407 Proxy Authentication Required</h2><h3>Access to requested resource disallowed by administrator or you need valid username/password to use this resource</h3></body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:09:06.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "5056940c475609544702ecf5718d5120",
         "bodymmh3" : -1116199576,
         "headermd5" : "21284f1c018b202a467f839fc9f13ddc",
         "headermmh3" : -2045892210,
         "realm" : "proxy",
         "title" : "407 Proxy Authentication Required"
      },
      "length" : 403
   },
   "asn" : "AS36666",
   "country" : "CA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 407 Proxy Authentication Required\r\nProxy-Authenticate: Basic realm=\"proxy\"\r\nConnection: close\r\nContent-type: text/html; charset=utf-8\r\n\r\n<html><head><title>407 Proxy Authentication Required</title></head>\r\n<body><h2>407 Proxy Authentication Required</h2><h3>Access to requested resource disallowed by administrator or you need valid username/password to use this resource</h3></body></html>\r\n\r\n",
   "datamd5" : "5de3222b1729fd391ce8647b836c2398",
   "datammh3" : 1187186573,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS36666",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "CA",
      "countryname" : "Canada",
      "domain" : [
         "globo.tech"
      ],
      "isineu" : "false",
      "latitude" : "56.130366",
      "location" : "56.130366,-106.346771",
      "longitude" : "-106.346771",
      "netname" : "GTCOMM",
      "organization" : "GloboTech Communications",
      "subnet" : "68.168.112.0/20"
   },
   "ip" : "68.168.114.234",
   "ipv6" : "false",
   "latitude" : "43.6319",
   "location" : "43.6319,-79.3716",
   "longitude" : "-79.3716",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "GTCOMM",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 1723,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Proxy Authentication Required",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 407,
   "subnet" : "68.168.112.0/20",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
158.172.134.228

Network
158.172.128.0/21

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://158.172.134.228:1723/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

ASN
AS200845

Organization
Avatel Telecom, SA

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0c1820e0d381850a77897bf32978a1f0

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
ea425366a98dfc499c0cbeedb9a4f02a

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 21 Nov 2024 10:08:31 GMT
Content-Type: text/html
Content-Length: 248
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:08:31.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
         "bodymmh3" : 1153229498,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : 295344503,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 393
   },
   "asn" : "AS200845",
   "country" : "ES",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 21 Nov 2024 10:08:31 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
   "datammh3" : 190190724,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "ip" : "158.172.134.228",
   "ipv6" : "false",
   "latitude" : "40.4172",
   "location" : "40.4172,-3.6840",
   "longitude" : "-3.6840",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Avatel Telecom, SA",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 1723,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "158.172.128.0/21",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
44.242.214.63

Network
44.224.0.0/11

Domain(s)
amazonaws.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://44.242.214.63:1723/ 200

HTTP Title
Infocon Holding - EasyIO-30P Sedona

Reverse DNS
ec2-44-242-214-63.us-west-2.compute.amazonaws.com

ASN
AS16509

Organization
AMAZON-02

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
a0d13f5a8644408f638911c1a4d30bc0

HTTP Header MD5
b93e910767bc7dd35ce0736d46622fe3

HTTP Body MD5
1852f44d5a4231d68b3b2ca70e893cc5

Favicon MD5
2b86aa50c3a66bb77ff07c42cc051dcc

Favicon MMH3
-1216248324

HTTP/1.1 200 OK
Connection: close
Date: Thu, 21 Nov 2024 10:00:58 GMT
Server: nginx
Content-Type: text/html
Content-Length: 1289

<html><head><link rel=stylesheet type="text/css" href=menu.css><title>Infocon Holding - EasyIO-30P Sedona</title></head><body style="margin:0;" onload="onDocLoad();"><script language=javascript src=menuitem.js></script><script language=javascript src=menusc.js></script><div id=dropMenu onmouseout="onDropMenuMouseout(event);" onmouseover="onDropMenuMouseover();"></div><TABLE width=100% cellSpacing=0 cellPadding=0 bgcolor=#ffffff border=0 align=center><tr><td height=53px><img src=logo.gif class='clsMenu'><img src=btl.jpg></td></tr><tr><td><table width=100% bgcolor=#ece9d8 cellSpacing=0 cellPadding=2 border=1><tr id=menubar><td height=28><span id=mmenu onmouseover="onMenuBarMouseover();"></span></td><td id=login></td><td id=userid></td></tr></table></td></tr><tr height=768 valign=top align=center bgcolor="white"><td><table><tr><td colspan=2 height=10></td></tr><TR><Th colspan=2 id="cTtl"></Th></TR><tr><td align=center colspan=2><br></td></tr><tr><td colspan=2 height=10></td></tr><tr><td colspan=2 ID="cTbl"></td></tr><tr><td colspan=2 height=10></td></tr></table></td></tr></table><script language=javascript src=main.js></script><script language=javascript src=table.js></script><script language=javascript>function onDocLoad(){cTxtTbl();createMenu();}</script></body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:07:05.000Z",
   "app" : {
      "favicon" : {
         "image" : "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",
         "imagemd5" : "2b86aa50c3a66bb77ff07c42cc051dcc",
         "imagemmh3" : -1216248324,
         "length" : 1078,
         "url" : "/favicon.ico"
      },
      "http" : {
         "bodymd5" : "1852f44d5a4231d68b3b2ca70e893cc5",
         "bodymmh3" : 777722857,
         "headermd5" : "b93e910767bc7dd35ce0736d46622fe3",
         "headermmh3" : -1205032870,
         "title" : "Infocon Holding - EasyIO-30P Sedona"
      },
      "length" : 1426
   },
   "asn" : "AS16509",
   "city" : "Boardman",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nConnection: close\r\nDate: Thu, 21 Nov 2024 10:00:58 GMT\r\nServer: nginx\r\nContent-Type: text/html\r\nContent-Length: 1289\r\n\r\n<html><head><link rel=stylesheet type=\"text/css\" href=menu.css><title>Infocon Holding - EasyIO-30P Sedona</title></head><body style=\"margin:0;\" onload=\"onDocLoad();\"><script language=javascript src=menuitem.js></script><script language=javascript src=menusc.js></script><div id=dropMenu onmouseout=\"onDropMenuMouseout(event);\" onmouseover=\"onDropMenuMouseover();\"></div><TABLE width=100% cellSpacing=0 cellPadding=0 bgcolor=#ffffff border=0 align=center><tr><td height=53px><img src=logo.gif class='clsMenu'><img src=btl.jpg></td></tr><tr><td><table width=100% bgcolor=#ece9d8 cellSpacing=0 cellPadding=2 border=1><tr id=menubar><td height=28><span id=mmenu onmouseover=\"onMenuBarMouseover();\"></span></td><td id=login></td><td id=userid></td></tr></table></td></tr><tr height=768 valign=top align=center bgcolor=\"white\"><td><table><tr><td colspan=2 height=10></td></tr><TR><Th colspan=2 id=\"cTtl\"></Th></TR><tr><td align=center colspan=2><br></td></tr><tr><td colspan=2 height=10></td></tr><tr><td colspan=2 ID=\"cTbl\"></td></tr><tr><td colspan=2 height=10></td></tr></table></td></tr></table><script language=javascript src=main.js></script><script language=javascript src=table.js></script><script language=javascript>function onDocLoad(){cTxtTbl();createMenu();}</script></body></html>\u0000",
   "datamd5" : "a0d13f5a8644408f638911c1a4d30bc0",
   "datammh3" : -2071317735,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amazonaws.com"
   ],
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "amazon.com",
         "amazonaws.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "AMAZO-ZPDX",
      "organization" : "Amazon.com, Inc.",
      "subnet" : "44.224.0.0/11"
   },
   "host" : [
      "ec2-44-242-214-63"
   ],
   "hostname" : [
      "ec2-44-242-214-63.us-west-2.compute.amazonaws.com"
   ],
   "ip" : "44.242.214.63",
   "ipv6" : "false",
   "latitude" : "45.8491",
   "location" : "45.8491,-119.7143",
   "longitude" : "-119.7143",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 1723,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "ec2-44-242-214-63.us-west-2.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "compute.amazonaws.com",
      "us-west-2.compute.amazonaws.com"
   ],
   "subnet" : "44.224.0.0/11",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

Returning 10 result(s) out of 15,280 in 0.068 second(s)

203.162.130.88:1723 (tcp/unknown) - last seen on 2024-11-21 at 10:28:10 UTC

3.68.233.6:1723 (tcp/http) - last seen on 2024-11-21 at 10:27:08 UTC

123.6.52.106:1723 (tcp/http) - last seen on 2024-11-21 at 10:26:54 UTC

195.12.191.173:1723 (tcp/http) - last seen on 2024-11-21 at 10:26:06 UTC

91.135.248.8:1723 (tcp/unknown) - last seen on 2024-11-21 at 10:18:55 UTC

58.215.89.162:1723 (tcp/http) - last seen on 2024-11-21 at 10:15:07 UTC

37.120.139.150:1723 (tcp/http) - last seen on 2024-11-21 at 10:09:16 UTC

68.168.114.234:1723 (tcp/http) - last seen on 2024-11-21 at 10:09:06 UTC

158.172.134.228:1723 (tcp/http) - last seen on 2024-11-21 at 10:08:31 UTC

44.242.214.63:1723 (tcp/http) - last seen on 2024-11-21 at 10:07:05 UTC