Cyber Defense Search Engine

IP
66.215.18.116

Network
66.215.0.0/17

Domain(s)
spectrum.com

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

Reverse DNS
syn-066-215-018-116.biz.spectrum.com

ASN
AS20115

Organization
CHARTER-20115

Protocol
ftp

Source
datascan
Operating System
Microsoft Windows

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
14ad030f05239ebe4b857c6de7e4700f

220 Xlight FTP Server 3.8 ready...
502 Unknown ftp command
502 Unknown ftp command

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:27:15.000Z",
   "app" : {
      "ftp" : {
         "anonymous" : "false"
      },
      "length" : 85
   },
   "asn" : "AS20115",
   "city" : "Glendale",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220 Xlight FTP Server 3.8 ready...\r\n502 Unknown ftp command\r\n502 Unknown ftp command\n",
   "datamd5" : "14ad030f05239ebe4b857c6de7e4700f",
   "datammh3" : -174715160,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "spectrum.com"
   ],
   "geolocus" : {
      "asn" : "AS20115",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "charter.com",
         "charter.net"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "CH-LB-66-214-0-47",
      "organization" : "Charter Communications",
      "subnet" : "66.214.0.0/15"
   },
   "host" : [
      "syn-066-215-018-116"
   ],
   "hostname" : [
      "syn-066-215-018-116.biz.spectrum.com"
   ],
   "ip" : "66.215.18.116",
   "ipv6" : "false",
   "latitude" : "34.1370",
   "location" : "34.1370,-118.2376",
   "longitude" : "-118.2376",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "CHARTER-20115",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 2121,
   "protocol" : "ftp",
   "reverse" : [
      "syn-066-215-018-116.biz.spectrum.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "subdomains" : [
      "biz.spectrum.com"
   ],
   "subnet" : "66.215.0.0/17",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
154.198.130.252

Network
154.198.128.0/19

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://154.198.130.252:2121/ 200

ASN
AS55933

Organization
Cloudie Limited

Protocol
http

Source
datascan
Operating System
Microsoft Windows

Product
Proxy Proxy

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
9279d99c38449bd33d03835cdbd6ec23

HTTP Header MD5
a91a8cc9907e923eb08191fee3bb75c7

HTTP Body MD5
87ee24a60e161eb7624018c635b80b71

HTTP/1.0 200 OK
Server: Proxy




Unauthorized ...

IP Address: <srcip>
MAC Address: 
Server Time: 2024-11-07 13:27:08
Auth Result: 无效用户.

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:27:09.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "87ee24a60e161eb7624018c635b80b71",
         "bodymmh3" : 1259775847,
         "headermd5" : "a91a8cc9907e923eb08191fee3bb75c7",
         "headermmh3" : 141730637
      },
      "length" : 162
   },
   "asn" : "AS55933",
   "country" : "SC",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.0 200 OK\r\nServer: Proxy\r\n\r\n\r\n\r\n\r\nUnauthorized ...\r\n\r\nIP Address: <srcip>\r\nMAC Address: \r\nServer Time: 2024-11-07 13:27:08\r\nAuth Result: \u65e0\u6548\u7528\u6237.\r\n\r\n\r\n",
   "datamd5" : "9279d99c38449bd33d03835cdbd6ec23",
   "datammh3" : -1128639327,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS55933",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "HK",
      "countryname" : "Hong Kong",
      "domain" : [
         "cloudinnovation.org"
      ],
      "isineu" : "false",
      "latitude" : "22.396428",
      "location" : "22.396428,114.109497",
      "longitude" : "114.109497",
      "netname" : "TOPTECH",
      "organization" : "TOPTECH",
      "subnet" : "154.198.128.0/19"
   },
   "ip" : "154.198.130.252",
   "ipv6" : "false",
   "latitude" : "-4.5833",
   "location" : "-4.5833,55.6667",
   "longitude" : "55.6667",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Cloudie Limited",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 2121,
   "product" : "Proxy",
   "productvendor" : "Proxy",
   "protocol" : "http",
   "protocolversion" : "1.0",
   "reason" : "OK",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "154.198.128.0/19",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
182.151.30.204

Network
182.151.0.0/18

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://182.151.30.204:2121/ 200

ASN
AS38283

Organization
CHINANET SiChuan Telecom Internet Data Center

Protocol
http

Source
datascan
Operating System
Microsoft Windows

Product
Proxy Proxy

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
f47dfed4ab9b3b72d1cbd563b98a3f99

HTTP Header MD5
a91a8cc9907e923eb08191fee3bb75c7

HTTP Body MD5
c9861ed276e705fa06d5952d933e9322

HTTP/1.0 200 OK
Server: Proxy




Unauthorized ...

IP Address: <srcip>
MAC Address: 
Server Time: 2024-11-07 13:26:44
Auth Result: 无效用户.

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:26:44.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "c9861ed276e705fa06d5952d933e9322",
         "bodymmh3" : -802454171,
         "headermd5" : "a91a8cc9907e923eb08191fee3bb75c7",
         "headermmh3" : 141730637
      },
      "length" : 162
   },
   "asn" : "AS38283",
   "city" : "Shanghai",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.0 200 OK\r\nServer: Proxy\r\n\r\n\r\n\r\n\r\nUnauthorized ...\r\n\r\nIP Address: <srcip>\r\nMAC Address: \r\nServer Time: 2024-11-07 13:26:44\r\nAuth Result: \u65e0\u6548\u7528\u6237.\r\n\r\n\r\n",
   "datamd5" : "f47dfed4ab9b3b72d1cbd563b98a3f99",
   "datammh3" : -383493569,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS38283",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "189.cn",
         "chinatelecom.cn",
         "sctel.com.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "CHINANET-SC",
      "organization" : "CHINANET Sichuan province network",
      "subnet" : "182.151.0.0/18"
   },
   "ip" : "182.151.30.204",
   "ipv6" : "false",
   "latitude" : "31.2222",
   "location" : "31.2222,121.4581",
   "longitude" : "121.4581",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "CHINANET SiChuan Telecom Internet Data Center",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 2121,
   "product" : "Proxy",
   "productvendor" : "Proxy",
   "protocol" : "http",
   "protocolversion" : "1.0",
   "reason" : "OK",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "182.151.0.0/18",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
62.234.166.22

Network
62.234.0.0/16

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://62.234.166.22:2121/ 200

ASN
AS45090

Organization
Shenzhen Tencent Computer Systems Company Limited

Protocol
http

Source
datascan
Operating System
Microsoft Windows

Product
Proxy Proxy

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
795b3db1fb027090d94c78fd838e0fca

HTTP Header MD5
a91a8cc9907e923eb08191fee3bb75c7

HTTP Body MD5
2c35dddddd2993ba32726b5dcfbc8f22

HTTP/1.0 200 OK
Server: Proxy




Unauthorized ...

IP Address: <srcip>
MAC Address: 
Server Time: 2024-11-07 13:25:56
Auth Result: 无效用户.

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:26:44.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "2c35dddddd2993ba32726b5dcfbc8f22",
         "bodymmh3" : 1640517648,
         "headermd5" : "a91a8cc9907e923eb08191fee3bb75c7",
         "headermmh3" : 141730637
      },
      "length" : 162
   },
   "asn" : "AS45090",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.0 200 OK\r\nServer: Proxy\r\n\r\n\r\n\r\n\r\nUnauthorized ...\r\n\r\nIP Address: <srcip>\r\nMAC Address: \r\nServer Time: 2024-11-07 13:25:56\r\nAuth Result: \u65e0\u6548\u7528\u6237.\r\n\r\n\r\n",
   "datamd5" : "795b3db1fb027090d94c78fd838e0fca",
   "datammh3" : -278132344,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS45090",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "tencent.com"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "TENCENT-CN",
      "organization" : "Tencent Cloud Computing (Beijing) Co., Ltd",
      "subnet" : "62.234.0.0/16"
   },
   "ip" : "62.234.166.22",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Shenzhen Tencent Computer Systems Company Limited",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 2121,
   "product" : "Proxy",
   "productvendor" : "Proxy",
   "protocol" : "http",
   "protocolversion" : "1.0",
   "reason" : "OK",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "62.234.0.0/16",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
37.247.96.83

Network
37.247.96.0/21

Domain(s)
routergate.com

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://37.247.96.83:2121/ 200

Reverse DNS
host-37.247.96.83.routergate.com

ASN
AS43260

Organization
Dgn Teknoloji A.s.

Protocol
http

Source
datascan
Operating System
Microsoft Windows

Product
Proxy Proxy

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
7bece4460af89e2664a70e71dda24963

HTTP Header MD5
a91a8cc9907e923eb08191fee3bb75c7

HTTP Body MD5
8876e130b97cb7abf3f5599c318849dd

HTTP/1.0 200 OK
Server: Proxy




Unauthorized ...

IP Address: <srcip>
MAC Address: 
Server Time: 2024-11-07 08:26:42
Auth Result: Invalid user.

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:26:44.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "8876e130b97cb7abf3f5599c318849dd",
         "bodymmh3" : 1165733362,
         "headermd5" : "a91a8cc9907e923eb08191fee3bb75c7",
         "headermmh3" : 141730637
      },
      "length" : 162
   },
   "asn" : "AS43260",
   "city" : "Bursa",
   "country" : "TR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.0 200 OK\r\nServer: Proxy\r\n\r\n\r\n\r\n\r\nUnauthorized ...\r\n\r\nIP Address: <srcip>\r\nMAC Address: \r\nServer Time: 2024-11-07 08:26:42\r\nAuth Result: Invalid user.\r\n\r\n\r\n",
   "datamd5" : "7bece4460af89e2664a70e71dda24963",
   "datammh3" : -1252285118,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "routergate.com"
   ],
   "host" : [
      "host-37"
   ],
   "hostname" : [
      "host-37.247.96.83.routergate.com"
   ],
   "ip" : "37.247.96.83",
   "ipv6" : "false",
   "latitude" : "40.2739",
   "location" : "40.2739,29.0965",
   "longitude" : "29.0965",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Dgn Teknoloji A.s.",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 2121,
   "product" : "Proxy",
   "productvendor" : "Proxy",
   "protocol" : "http",
   "protocolversion" : "1.0",
   "reason" : "OK",
   "reverse" : [
      "host-37.247.96.83.routergate.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "83.routergate.com",
      "96.83.routergate.com",
      "247.96.83.routergate.com"
   ],
   "subnet" : "37.247.96.0/21",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
42.194.205.118

Network
42.194.128.0/17

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://42.194.205.118:2121/ 200

ASN
AS45090

Organization
Shenzhen Tencent Computer Systems Company Limited

Protocol
http

Source
datascan
Operating System
Microsoft Windows

Product
Proxy Proxy

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
4e47795f28d736b26985cacf92c4694a

HTTP Header MD5
a91a8cc9907e923eb08191fee3bb75c7

HTTP Body MD5
53b6a7c7c52c98fcfec9ebd195ea65ab

HTTP/1.0 200 OK
Server: Proxy




Unauthorized ...

IP Address: <srcip>
MAC Address: 
Server Time: 2024-11-07 13:26:43
Auth Result: 无效用户.

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:26:43.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "53b6a7c7c52c98fcfec9ebd195ea65ab",
         "bodymmh3" : -1497581899,
         "headermd5" : "a91a8cc9907e923eb08191fee3bb75c7",
         "headermmh3" : 141730637
      },
      "length" : 162
   },
   "asn" : "AS45090",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.0 200 OK\r\nServer: Proxy\r\n\r\n\r\n\r\n\r\nUnauthorized ...\r\n\r\nIP Address: <srcip>\r\nMAC Address: \r\nServer Time: 2024-11-07 13:26:43\r\nAuth Result: \u65e0\u6548\u7528\u6237.\r\n\r\n\r\n",
   "datamd5" : "4e47795f28d736b26985cacf92c4694a",
   "datammh3" : -1039119769,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS45090",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "cnnic.cn",
         "tencent.com"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "TencentCloud",
      "organization" : "Shenzhen Tencent Computer Systems Company Limited",
      "subnet" : "42.194.128.0/17"
   },
   "ip" : "42.194.205.118",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Shenzhen Tencent Computer Systems Company Limited",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 2121,
   "product" : "Proxy",
   "productvendor" : "Proxy",
   "protocol" : "http",
   "protocolversion" : "1.0",
   "reason" : "OK",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "42.194.128.0/17",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
180.102.16.171

Network
180.102.16.0/20

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://180.102.16.171:2121/ 200

ASN
AS134756

Organization
CHINANET Nanjing Jishan IDC network

Protocol
http

Source
datascan
Operating System
Microsoft Windows

Product
Proxy Proxy

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
b4c4cdd2a61b0c157c0331eea19912b0

HTTP Header MD5
a91a8cc9907e923eb08191fee3bb75c7

HTTP Body MD5
e1b641a1aaa5654a4e896cd811b17d51

HTTP/1.0 200 OK
Server: Proxy




Unauthorized ...

IP Address: <srcip>
MAC Address: 
Server Time: 2024-11-07 13:26:42
Auth Result: 无效用户.

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:26:42.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "e1b641a1aaa5654a4e896cd811b17d51",
         "bodymmh3" : 672159375,
         "headermd5" : "a91a8cc9907e923eb08191fee3bb75c7",
         "headermmh3" : 141730637
      },
      "length" : 162
   },
   "asn" : "AS134756",
   "city" : "Nanjing",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.0 200 OK\r\nServer: Proxy\r\n\r\n\r\n\r\n\r\nUnauthorized ...\r\n\r\nIP Address: <srcip>\r\nMAC Address: \r\nServer Time: 2024-11-07 13:26:42\r\nAuth Result: \u65e0\u6548\u7528\u6237.\r\n\r\n\r\n",
   "datamd5" : "b4c4cdd2a61b0c157c0331eea19912b0",
   "datammh3" : -461420111,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS134756",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "163.com",
         "chinatelecom.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "CHINANET-JS",
      "organization" : "Chinanet Jiangsu Province Network",
      "subnet" : "180.102.16.0/20"
   },
   "ip" : "180.102.16.171",
   "ipv6" : "false",
   "latitude" : "32.0589",
   "location" : "32.0589,118.7738",
   "longitude" : "118.7738",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "CHINANET Nanjing Jishan IDC network",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 2121,
   "product" : "Proxy",
   "productvendor" : "Proxy",
   "protocol" : "http",
   "protocolversion" : "1.0",
   "reason" : "OK",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "180.102.16.0/20",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
218.78.38.83

Network
218.78.0.0/15

Domain(s)
163data.com.cn

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://218.78.38.83:2121/ 200

Reverse DNS
83.38.78.218.dial.xw.sh.dynamic.163data.com.cn

ASN
AS4812

Organization
China Telecom Group

Protocol
http

Source
datascan
Operating System
Microsoft Windows

Product
Proxy Proxy

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
b4c4cdd2a61b0c157c0331eea19912b0

HTTP Header MD5
a91a8cc9907e923eb08191fee3bb75c7

HTTP Body MD5
e1b641a1aaa5654a4e896cd811b17d51

HTTP/1.0 200 OK
Server: Proxy




Unauthorized ...

IP Address: <srcip>
MAC Address: 
Server Time: 2024-11-07 13:26:42
Auth Result: 无效用户.

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:26:42.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "e1b641a1aaa5654a4e896cd811b17d51",
         "bodymmh3" : 672159375,
         "headermd5" : "a91a8cc9907e923eb08191fee3bb75c7",
         "headermmh3" : 141730637
      },
      "length" : 162
   },
   "asn" : "AS4812",
   "city" : "Shanghai",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.0 200 OK\r\nServer: Proxy\r\n\r\n\r\n\r\n\r\nUnauthorized ...\r\n\r\nIP Address: <srcip>\r\nMAC Address: \r\nServer Time: 2024-11-07 13:26:42\r\nAuth Result: \u65e0\u6548\u7528\u6237.\r\n\r\n\r\n",
   "datamd5" : "b4c4cdd2a61b0c157c0331eea19912b0",
   "datammh3" : -461420111,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "163data.com.cn"
   ],
   "geolocus" : {
      "asn" : "AS4812",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "163data.com.cn",
         "chinatelecom.cn",
         "online.sh.cn",
         "shtel.com.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "CHINANET-SH",
      "organization" : "CHINANET Shanghai province network",
      "subnet" : "218.78.0.0/15"
   },
   "host" : [
      83
   ],
   "hostname" : [
      "83.38.78.218.dial.xw.sh.dynamic.163data.com.cn"
   ],
   "ip" : "218.78.38.83",
   "ipv6" : "false",
   "latitude" : "31.2222",
   "location" : "31.2222,121.4581",
   "longitude" : "121.4581",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "China Telecom Group",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 2121,
   "product" : "Proxy",
   "productvendor" : "Proxy",
   "protocol" : "http",
   "protocolversion" : "1.0",
   "reason" : "OK",
   "reverse" : [
      "83.38.78.218.dial.xw.sh.dynamic.163data.com.cn"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "dial.xw.sh.dynamic.163data.com.cn",
      "dynamic.163data.com.cn",
      "38.78.218.dial.xw.sh.dynamic.163data.com.cn",
      "xw.sh.dynamic.163data.com.cn",
      "78.218.dial.xw.sh.dynamic.163data.com.cn",
      "218.dial.xw.sh.dynamic.163data.com.cn",
      "sh.dynamic.163data.com.cn"
   ],
   "subnet" : "218.78.0.0/15",
   "tld" : [
      "com.cn"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
124.155.124.225

Network
124.155.0.0/17

Domain(s)
asahi-net.or.jp

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

Reverse DNS
v124225.ppp.asahi-net.or.jp

ASN
AS4685

Organization
Asahi Net

Protocol
ftp

Source
datascan
Operating System
Microsoft Windows

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
847c39aac1210a78ff6108d4745a9724

220 Service ready for new user.
530 Access denied.
530 Access denied.
530 Access denied.
530 Access denied.
530 Access denied.
530 Access denied.
530 Access denied.
It is not AUTH connetion.550 Requested action not taken.

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:26:30.000Z",
   "app" : {
      "ftp" : {
         "anonymous" : "false"
      },
      "length" : 230
   },
   "asn" : "AS4685",
   "city" : "Motomachi",
   "country" : "JP",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220 Service ready for new user.\r\n530 Access denied.\r\n530 Access denied.\r\n530 Access denied.\r\n530 Access denied.\r\n530 Access denied.\r\n530 Access denied.\r\n530 Access denied.\r\nIt is not AUTH connetion.550 Requested action not taken.\n",
   "datamd5" : "847c39aac1210a78ff6108d4745a9724",
   "datammh3" : 2028946018,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "asahi-net.or.jp"
   ],
   "geolocus" : {
      "asn" : "AS4685",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "JP",
      "countryname" : "Japan",
      "domain" : [
         "asahi-net.jp",
         "asahi-net.or.jp",
         "nic.ad.jp"
      ],
      "isineu" : "false",
      "latitude" : "36.204824",
      "location" : "36.204824,138.252924",
      "longitude" : "138.252924",
      "netname" : "ASAHI-NET",
      "organization" : "ASAHI Net,Inc.",
      "subnet" : "124.155.0.0/17"
   },
   "host" : [
      "v124225"
   ],
   "hostname" : [
      "v124225.ppp.asahi-net.or.jp"
   ],
   "ip" : "124.155.124.225",
   "ipv6" : "false",
   "latitude" : "34.4031",
   "location" : "34.4031,132.4601",
   "longitude" : "132.4601",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Asahi Net",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 2121,
   "protocol" : "ftp",
   "reverse" : [
      "v124225.ppp.asahi-net.or.jp"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "subdomains" : [
      "ppp.asahi-net.or.jp"
   ],
   "subnet" : "124.155.0.0/17",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "or.jp"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
101.35.228.186

Network
101.34.0.0/15

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://101.35.228.186:2121/ 200

ASN
AS45090

Organization
Shenzhen Tencent Computer Systems Company Limited

Protocol
http

Source
datascan
Operating System
Microsoft Windows

Product
Proxy Proxy

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
be875e6cbdd4036a8b5f27adae3d24aa

HTTP Header MD5
a91a8cc9907e923eb08191fee3bb75c7

HTTP Body MD5
c08e10f2222404957c51e84e9483a971

HTTP/1.0 200 OK
Server: Proxy




Unauthorized ...

IP Address: <srcip>
MAC Address: 
Server Time: 2024-11-07 13:26:20
Auth Result: 无效用户.

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:26:20.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "c08e10f2222404957c51e84e9483a971",
         "bodymmh3" : 1524016050,
         "headermd5" : "a91a8cc9907e923eb08191fee3bb75c7",
         "headermmh3" : 141730637
      },
      "length" : 162
   },
   "asn" : "AS45090",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.0 200 OK\r\nServer: Proxy\r\n\r\n\r\n\r\n\r\nUnauthorized ...\r\n\r\nIP Address: <srcip>\r\nMAC Address: \r\nServer Time: 2024-11-07 13:26:20\r\nAuth Result: \u65e0\u6548\u7528\u6237.\r\n\r\n\r\n",
   "datamd5" : "be875e6cbdd4036a8b5f27adae3d24aa",
   "datammh3" : -246981982,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS45090",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "tencent.com"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "TENCENT-CN",
      "organization" : "Tencent Cloud Computing (Beijing) Co., Ltd",
      "subnet" : "101.34.0.0/15"
   },
   "ip" : "101.35.228.186",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Shenzhen Tencent Computer Systems Company Limited",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 2121,
   "product" : "Proxy",
   "productvendor" : "Proxy",
   "protocol" : "http",
   "protocolversion" : "1.0",
   "reason" : "OK",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "101.34.0.0/15",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

Returning 10 result(s) out of 152,984 in 0.080 second(s)

66.215.18.116:2121 (tcp/ftp) - last seen on 2024-11-07 at 05:27:15 UTC

154.198.130.252:2121 (tcp/http) - last seen on 2024-11-07 at 05:27:09 UTC

182.151.30.204:2121 (tcp/http) - last seen on 2024-11-07 at 05:26:44 UTC

62.234.166.22:2121 (tcp/http) - last seen on 2024-11-07 at 05:26:44 UTC

37.247.96.83:2121 (tcp/http) - last seen on 2024-11-07 at 05:26:44 UTC

42.194.205.118:2121 (tcp/http) - last seen on 2024-11-07 at 05:26:43 UTC

180.102.16.171:2121 (tcp/http) - last seen on 2024-11-07 at 05:26:42 UTC

218.78.38.83:2121 (tcp/http) - last seen on 2024-11-07 at 05:26:42 UTC

124.155.124.225:2121 (tcp/ftp) - last seen on 2024-11-07 at 05:26:30 UTC

101.35.228.186:2121 (tcp/http) - last seen on 2024-11-07 at 05:26:20 UTC