ONYPHE
datascan ctl threatlist sniffer vulnscan riskscan

Returning 10 result(s) out of 251 in 0.031 second(s)

  • 58.26.103.121:50070 (tcp/http) - last seen on 2024-11-07 at 03:28:12 UTC

    • IP
      58.26.103.121
      Network
      58.26.0.0/16
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://58.26.103.121:50070/ 400

      HTTP Title
      400 Bad Request
      ASN
      AS4788
      Organization
      TM TECHNOLOGY SERVICES SDN. BHD.
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      152abbe7f95c2bb89c68886104a2bac7
      HTTP Header MD5
      5961a35ab592eff85e58af28234c67e9
      HTTP Body MD5
      71eb2f549dc7104180f6318c8d047897 
    • HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 07 Nov 2024 03:28:11 GMT
Content-Type: text/html
Content-Length: 2423
Connection: close
x-ws-request-id: 672c33cb_PSmlxydxua191_18325-50422

<!DOCTYPE html>
<html>
	<head>
		<meta charset="utf-8">
		<meta http-equiv="X-UA-Compatible" content="IE=edge">
		<meta name="viewport" content="width=device-width, initial-scale=1">
		<title>400 Bad Request</title>
		<style type="text/css">body{margin:5% auto 0 auto;padding:0 18px}.P{margin:0 22%}.O{margin-top:20px}.N{margin-top:10px}.M{margin:10px 0 30px 0}.L{margin-bottom:60px}.K{font-size:25px;color:#F90}.J{font-size:14px}.I{font-size:20px}.H{font-size:18px}.G{font-size:16px}.F{width:230px;float:left}.E{margin-top:5px}.D{margin:8px 0 0 -20px}.C{color:#3CF;cursor:pointer}.B{color:#909090;margin-top:15px}.A{line-height:30px}.hide_me{display:none}</style>
	</head>
	<body>
		<div id="p" class="P">
			<div class="K">400</div>
			<div class="O I">Bad Request</div>
			<p class="J A L">Error Times: Thu, 07 Nov 2024 03:28:11 GMT
				<br>
				<span class="F">IP: <srcip></span>Node information: PSmlxydxua191
				<br>URL: http://<ip>:50070/
				<br>Request-Id: 672c33cb_PSmlxydxua191_18325-50422
				<br>
				<br>Check:
				<span class="C G" onclick="s(0)">Details</span></p>
		</div>
		<div id="d" class="hide_me P H">
			<div class="K">ERROR</div>
			<p class="O I">"The Requested URL could not be retrieved</p>
			<div class="O">
				<div>While trying to retrieve the URL:</div>
				<pre class="B G">http://<ip>:50070/</pre></div>
			<div class="M">
				<span>The following error was encountered:</span>
				<ul class="E">
					<li class="D G">Invalid Request</li></ul>
			</div>
			<div class="M">
				<span>This request could not be forwarded to the origin server or to any higher level cache servers. The most likely cause for this error is that:</span>
				<ul class="E G">
					<li class="D">Missing or unknown request method</li>
					<li class="D">Missing URL</li>
					<li class="D">Missing HTTP Identifier (HTTP/1.0)</li>
					<li class="D">Request is too large</li>
					<li class="D">Content-Length missing for POST or PUT requests</li>
					<li class="D">Illegal character in hostname;underscores are not allowed</li>
					<li class="D">Range Invalid</li></ul>
			</div>
			<a class="N C" href="#" onclick="s(1)">return</a></div>
		<script type="text/javascript">function e(i) {
				return document.getElementById(i);
			}
			function d(i, t) {
				e(i).style.display = (t ? 'block': 'none');
			}
			function s(e) {
				d('p', e);
				d('d', !e);
			}</script>
	</body>
</html>
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:28:12.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "71eb2f549dc7104180f6318c8d047897",
         "bodymmh3" : 1559564235,
         "headermd5" : "5961a35ab592eff85e58af28234c67e9",
         "headermmh3" : 546217329,
         "title" : "400 Bad Request"
      },
      "length" : 2598
   },
   "asn" : "AS4788",
   "city" : "Kuala Lumpur",
   "country" : "MY",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 03:28:11 GMT\r\nContent-Type: text/html\r\nContent-Length: 2423\r\nConnection: close\r\nx-ws-request-id: 672c33cb_PSmlxydxua191_18325-50422\r\n\r\n<!DOCTYPE html>\n<html>\n\t<head>\n\t\t<meta charset=\"utf-8\">\n\t\t<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\n\t\t<meta name=\"viewport\" content=\"width=device-width, initial-scale=1\">\n\t\t<title>400 Bad Request</title>\n\t\t<style type=\"text/css\">body{margin:5% auto 0 auto;padding:0 18px}.P{margin:0 22%}.O{margin-top:20px}.N{margin-top:10px}.M{margin:10px 0 30px 0}.L{margin-bottom:60px}.K{font-size:25px;color:#F90}.J{font-size:14px}.I{font-size:20px}.H{font-size:18px}.G{font-size:16px}.F{width:230px;float:left}.E{margin-top:5px}.D{margin:8px 0 0 -20px}.C{color:#3CF;cursor:pointer}.B{color:#909090;margin-top:15px}.A{line-height:30px}.hide_me{display:none}</style>\n\t</head>\n\t<body>\n\t\t<div id=\"p\" class=\"P\">\n\t\t\t<div class=\"K\">400</div>\n\t\t\t<div class=\"O I\">Bad Request</div>\n\t\t\t<p class=\"J A L\">Error Times: Thu, 07 Nov 2024 03:28:11 GMT\n\t\t\t\t<br>\n\t\t\t\t<span class=\"F\">IP: <srcip></span>Node information: PSmlxydxua191\n\t\t\t\t<br>URL: http://<ip>:50070/\n\t\t\t\t<br>Request-Id: 672c33cb_PSmlxydxua191_18325-50422\n\t\t\t\t<br>\n\t\t\t\t<br>Check:\n\t\t\t\t<span class=\"C G\" onclick=\"s(0)\">Details</span></p>\n\t\t</div>\n\t\t<div id=\"d\" class=\"hide_me P H\">\n\t\t\t<div class=\"K\">ERROR</div>\n\t\t\t<p class=\"O I\">\"The Requested URL could not be retrieved</p>\n\t\t\t<div class=\"O\">\n\t\t\t\t<div>While trying to retrieve the URL:</div>\n\t\t\t\t<pre class=\"B G\">http://<ip>:50070/</pre></div>\n\t\t\t<div class=\"M\">\n\t\t\t\t<span>The following error was encountered:</span>\n\t\t\t\t<ul class=\"E\">\n\t\t\t\t\t<li class=\"D G\">Invalid Request</li></ul>\n\t\t\t</div>\n\t\t\t<div class=\"M\">\n\t\t\t\t<span>This request could not be forwarded to the origin server or to any higher level cache servers. The most likely cause for this error is that:</span>\n\t\t\t\t<ul class=\"E G\">\n\t\t\t\t\t<li class=\"D\">Missing or unknown request method</li>\n\t\t\t\t\t<li class=\"D\">Missing URL</li>\n\t\t\t\t\t<li class=\"D\">Missing HTTP Identifier (HTTP/1.0)</li>\n\t\t\t\t\t<li class=\"D\">Request is too large</li>\n\t\t\t\t\t<li class=\"D\">Content-Length missing for POST or PUT requests</li>\n\t\t\t\t\t<li class=\"D\">Illegal character in hostname;underscores are not allowed</li>\n\t\t\t\t\t<li class=\"D\">Range Invalid</li></ul>\n\t\t\t</div>\n\t\t\t<a class=\"N C\" href=\"#\" onclick=\"s(1)\">return</a></div>\n\t\t<script type=\"text/javascript\">function e(i) {\n\t\t\t\treturn document.getElementById(i);\n\t\t\t}\n\t\t\tfunction d(i, t) {\n\t\t\t\te(i).style.display = (t ? 'block': 'none');\n\t\t\t}\n\t\t\tfunction s(e) {\n\t\t\t\td('p', e);\n\t\t\t\td('d', !e);\n\t\t\t}</script>\n\t</body>\n</html>",
   "datamd5" : "152abbe7f95c2bb89c68886104a2bac7",
   "datammh3" : -1521029238,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4788",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "MY",
      "countryname" : "Malaysia",
      "domain" : [
         "tm.com.my"
      ],
      "isineu" : "false",
      "latitude" : "4.210484",
      "location" : "4.210484,101.975766",
      "longitude" : "101.975766",
      "netname" : "TTSSB-MY",
      "organization" : "TM TECHNOLOGY SERVICES SDN BHD",
      "subnet" : "58.26.0.0/16"
   },
   "ip" : "58.26.103.121",
   "ipv6" : "false",
   "latitude" : "3.1412",
   "location" : "3.1412,101.6850",
   "longitude" : "101.6850",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TM TECHNOLOGY SERVICES SDN. BHD.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 50070,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "58.26.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 124.13.232.222:50070 (tcp/vnc) - last seen on 2024-11-07 at 00:29:12 UTC

    • IP
      124.13.232.222
      Network
      124.13.0.0/16
      Device

      <enterprise field>: device.class

      Operating System
      FreeBSD FreeBSD
      ASN
      AS4788
      Organization
      TM TECHNOLOGY SERVICES SDN. BHD.
      Protocol
      vnc
      Source
      datascan
    • Operating System
      FreeBSD FreeBSD

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      8b03f7104e89ee4a73adec68629f866d 
    • RFB 003.008

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T00:29:12.000Z",
   "app" : {
      "length" : 12
   },
   "asn" : "AS4788",
   "city" : "Kuala Lumpur",
   "country" : "MY",
   "data" : "RFB 003.008\n",
   "datamd5" : "8b03f7104e89ee4a73adec68629f866d",
   "datammh3" : -1800413357,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4788",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "MY",
      "countryname" : "Malaysia",
      "domain" : [
         "tm.com.my"
      ],
      "isineu" : "false",
      "latitude" : "4.210484",
      "location" : "4.210484,101.975766",
      "longitude" : "101.975766",
      "netname" : "STREAMYX-HOME-SOUTHERN",
      "organization" : "Telekom Malaysia Berhad",
      "subnet" : "124.13.192.0/18"
   },
   "ip" : "124.13.232.222",
   "ipv6" : "false",
   "latitude" : "3.1412",
   "location" : "3.1412,101.6850",
   "longitude" : "101.6850",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TM TECHNOLOGY SERVICES SDN. BHD.",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 50070,
   "protocol" : "vnc",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "subnet" : "124.13.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp"
}

  • 175.144.85.168:50070 (tcp/http) - last seen on 2024-11-06 at 21:26:13 UTC

    • IP
      175.144.85.168
      Network
      175.144.0.0/15
      Device

      <enterprise field>: device.class

      Operating System
      Microsoft Windows
      URL

      http://175.144.85.168:50070/ 200

      HTTP Title
      SmartIMSLibrary - Remoting SDK for .NET 9.4.107.1363
      ASN
      AS4788
      Organization
      TM TECHNOLOGY SERVICES SDN. BHD.
      Protocol
      http
      Source
      datascan
    • Operating System
      Microsoft Windows

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      c73df22159fa1add03f7b584e7896e6d
      HTTP Header MD5
      3ca0601b9e171437df1cbed04159884a
      HTTP Body MD5
      6dd0a7badb4c64472952c3ebf3f8982e 
    • HTTP/1.1 200 OK
Server: RemObjects SDK for .NET HTTP Server/5.0
Connection: Close
Content-Type: text/html; charset=utf-8
Content-Length: 1700

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
    <title>SmartIMSLibrary - Remoting SDK for .NET 9.4.107.1363</title>
    <meta name="GENERATOR" content="Remoting SDK for .NET v9.4.107.1363">
    <style>
        body
        {
            background-color: #f7f7f7;
            margin: 0;
            padding: 0;
            font-family: Verdana, Tahoma, Arial, Helvetica, sans serif;
            font-size: 10pt;
        }
        .header
        {
            padding: 5px;
            background-color: #c0c0c0;
            border-bottom: 5px solid #808080;
            font-size: 1.5em;
        }
        .body
        {
            padding: 5px;
        }
        .footer
        {
            padding: 5px;
            border-top: 1px solid #808080;
            font-size: 0.8em;
        }
        .h2
        {
            font-weight: bold;
        }
    </style>
</head>
<body>
    <div class="header">
        <img src="/favicon.ico" style="padding-right: 5px;" />SmartIMSLibrary
    </div>
    <div class="body">
        
        <p>
            <a href="/doc">View full documentation</a> | <a href="/rodl">View RODL</a>
        </p>
        <p>
            
        </p>
        <p class="h2">Service Dispatchers:</p>
        <ul>
            <li><a href="/bin">/bin</a> <i>(BinMessage)</i></li>
        </ul>
        
    </div>
    <div class="footer">
        Framework Version v4.0.30319.42000
        <br />
        Remoting SDK for .NET v9.4.107.1363
        <br /><br />
        RemObjects Software, LLC. <a href="http://www.remobjects.com">remobjects.com</a>.
    </div>
</body>
</html>
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T21:26:13.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "remobjects.com"
         ],
         "hostname" : [
            "www.remobjects.com"
         ],
         "ip" : [
            "9.4.107.136"
         ],
         "url" : [
            "http://www.remobjects.com"
         ]
      },
      "http" : {
         "bodymd5" : "6dd0a7badb4c64472952c3ebf3f8982e",
         "bodymmh3" : -100720350,
         "headermd5" : "3ca0601b9e171437df1cbed04159884a",
         "headermmh3" : 841912321,
         "title" : "SmartIMSLibrary - Remoting SDK for .NET 9.4.107.1363"
      },
      "length" : 1849
   },
   "asn" : "AS4788",
   "city" : "Yong Peng",
   "country" : "MY",
   "data" : "HTTP/1.1 200 OK\r\nServer: RemObjects SDK for .NET HTTP Server/5.0\r\nConnection: Close\r\nContent-Type: text/html; charset=utf-8\r\nContent-Length: 1700\r\n\r\n<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.0 Transitional//EN\">\r\n<html>\r\n<head>\r\n    <title>SmartIMSLibrary - Remoting SDK for .NET 9.4.107.1363</title>\r\n    <meta name=\"GENERATOR\" content=\"Remoting SDK for .NET v9.4.107.1363\">\r\n    <style>\r\n        body\r\n        {\r\n            background-color: #f7f7f7;\r\n            margin: 0;\r\n            padding: 0;\r\n            font-family: Verdana, Tahoma, Arial, Helvetica, sans serif;\r\n            font-size: 10pt;\r\n        }\r\n        .header\r\n        {\r\n            padding: 5px;\r\n            background-color: #c0c0c0;\r\n            border-bottom: 5px solid #808080;\r\n            font-size: 1.5em;\r\n        }\r\n        .body\r\n        {\r\n            padding: 5px;\r\n        }\r\n        .footer\r\n        {\r\n            padding: 5px;\r\n            border-top: 1px solid #808080;\r\n            font-size: 0.8em;\r\n        }\r\n        .h2\r\n        {\r\n            font-weight: bold;\r\n        }\r\n    </style>\r\n</head>\r\n<body>\r\n    <div class=\"header\">\r\n        <img src=\"/favicon.ico\" style=\"padding-right: 5px;\" />SmartIMSLibrary\r\n    </div>\r\n    <div class=\"body\">\r\n        \r\n        <p>\r\n            <a href=\"/doc\">View full documentation</a> | <a href=\"/rodl\">View RODL</a>\r\n        </p>\r\n        <p>\r\n            \r\n        </p>\r\n        <p class=\"h2\">Service Dispatchers:</p>\r\n        <ul>\r\n            <li><a href=\"/bin\">/bin</a> <i>(BinMessage)</i></li>\r\n        </ul>\r\n        \r\n    </div>\r\n    <div class=\"footer\">\r\n        Framework Version v4.0.30319.42000\r\n        <br />\r\n        Remoting SDK for .NET v9.4.107.1363\r\n        <br /><br />\r\n        RemObjects Software, LLC. <a href=\"http://www.remobjects.com\">remobjects.com</a>.\r\n    </div>\r\n</body>\r\n</html>",
   "datamd5" : "c73df22159fa1add03f7b584e7896e6d",
   "datammh3" : -1125533508,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4788",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "MY",
      "countryname" : "Malaysia",
      "domain" : [
         "tm.com.my",
         "tm.net.my"
      ],
      "isineu" : "false",
      "latitude" : "4.210484",
      "location" : "4.210484,101.975766",
      "longitude" : "101.975766",
      "netname" : "ADSL-STREAMYX",
      "organization" : "Telekom Malaysia Berhad",
      "subnet" : "175.144.0.0/16"
   },
   "ip" : "175.144.85.168",
   "ipv6" : "false",
   "latitude" : "1.9108",
   "location" : "1.9108,103.1336",
   "longitude" : "103.1336",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TM TECHNOLOGY SERVICES SDN. BHD.",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 50070,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "seen_date" : "2024-11-06",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "175.144.0.0/15",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 115.135.154.40:50070 (tcp/mysql) - last seen on 2024-11-06 at 19:54:03 UTC

    • IP
      115.135.154.40
      Network
      115.132.0.0/14
      Device

      <enterprise field>: device.class

      Operating System
      Microsoft Windows
      ASN
      AS4788
      Organization
      TM TECHNOLOGY SERVICES SDN. BHD.
      Protocol
      mysql
      Source
      datascan
    • Operating System
      Microsoft Windows
      Product
      Oracle MySQL 4.1.22
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      3f2eeecf68d610df32c7e1a8889ba9ac 
    • A\x00\x00\x00
4.1.22-community-nt\x00\x96\xcd\x03\x0096A&8'Wc\x00,\xa2\x08\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00mv-y>gmn^n/:\x00\x10\x00\x00\x01\xff\x13\x04Bad handshake
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T19:54:03.000Z",
   "app" : {
      "length" : 89
   },
   "asn" : "AS4788",
   "city" : "Kuala Lumpur",
   "country" : "MY",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "A\\x00\\x00\\x00\n4.1.22-community-nt\\x00\\x96\\xcd\\x03\\x0096A&8'Wc\\x00,\\xa2\\x08\\x02\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00mv-y>gmn^n/:\\x00\\x10\\x00\\x00\\x01\\xff\\x13\\x04Bad handshake",
   "datamd5" : "3f2eeecf68d610df32c7e1a8889ba9ac",
   "datammh3" : 2024294790,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4788",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "MY",
      "countryname" : "Malaysia",
      "domain" : [
         "tm.com.my"
      ],
      "isineu" : "false",
      "latitude" : "4.210484",
      "location" : "4.210484,101.975766",
      "longitude" : "101.975766",
      "netname" : "ADSL-STREAMYX",
      "organization" : "Telekom Malaysia Berhad",
      "subnet" : "115.135.0.0/16"
   },
   "ip" : "115.135.154.40",
   "ipv6" : "false",
   "latitude" : "3.1412",
   "location" : "3.1412,101.6850",
   "longitude" : "101.6850",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TM TECHNOLOGY SERVICES SDN. BHD.",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 50070,
   "product" : "MySQL",
   "productvendor" : "Oracle",
   "productversion" : "4.1.22",
   "protocol" : "mysql",
   "seen_date" : "2024-11-06",
   "source" : "datascan",
   "subnet" : "115.132.0.0/14",
   "tls" : "false",
   "transport" : "tcp"
}

  • 58.26.7.236:50070 (tcp/http) - last seen on 2024-11-06 at 18:16:15 UTC

    • IP
      58.26.7.236
      Network
      58.26.0.0/16
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://58.26.7.236:50070/ 400

      HTTP Title
      400 Bad Request
      ASN
      AS4788
      Organization
      TM TECHNOLOGY SERVICES SDN. BHD.
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      37e233844422524a3cf4ec04f03ae66c
      HTTP Header MD5
      bb0444ea02d01b8615d4b0cb1dc22e94
      HTTP Body MD5
      6094e5f23616d0e3a9cb468d3a472dd6 
    • HTTP/1.1 400 Bad Request
Server: nginx
Date: Wed, 06 Nov 2024 18:16:13 GMT
Content-Type: text/html
Content-Length: 2422
Connection: close
x-ws-request-id: 672bb26d_VM-KUL-012Ga102_8959-24224

<!DOCTYPE html>
<html>
	<head>
		<meta charset="utf-8">
		<meta http-equiv="X-UA-Compatible" content="IE=edge">
		<meta name="viewport" content="width=device-width, initial-scale=1">
		<title>400 Bad Request</title>
		<style type="text/css">body{margin:5% auto 0 auto;padding:0 18px}.P{margin:0 22%}.O{margin-top:20px}.N{margin-top:10px}.M{margin:10px 0 30px 0}.L{margin-bottom:60px}.K{font-size:25px;color:#F90}.J{font-size:14px}.I{font-size:20px}.H{font-size:18px}.G{font-size:16px}.F{width:230px;float:left}.E{margin-top:5px}.D{margin:8px 0 0 -20px}.C{color:#3CF;cursor:pointer}.B{color:#909090;margin-top:15px}.A{line-height:30px}.hide_me{display:none}</style>
	</head>
	<body>
		<div id="p" class="P">
			<div class="K">400</div>
			<div class="O I">Bad Request</div>
			<p class="J A L">Error Times: Wed, 06 Nov 2024 18:16:13 GMT
				<br>
				<span class="F">IP: <srcip></span>Node information: VM-KUL-012Ga102
				<br>URL: http://<ip>:50070/
				<br>Request-Id: 672bb26d_VM-KUL-012Ga102_8959-24224
				<br>
				<br>Check:
				<span class="C G" onclick="s(0)">Details</span></p>
		</div>
		<div id="d" class="hide_me P H">
			<div class="K">ERROR</div>
			<p class="O I">"The Requested URL could not be retrieved</p>
			<div class="O">
				<div>While trying to retrieve the URL:</div>
				<pre class="B G">http://<ip>:50070/</pre></div>
			<div class="M">
				<span>The following error was encountered:</span>
				<ul class="E">
					<li class="D G">Invalid Request</li></ul>
			</div>
			<div class="M">
				<span>This request could not be forwarded to the origin server or to any higher level cache servers. The most likely cause for this error is that:</span>
				<ul class="E G">
					<li class="D">Missing or unknown request method</li>
					<li class="D">Missing URL</li>
					<li class="D">Missing HTTP Identifier (HTTP/1.0)</li>
					<li class="D">Request is too large</li>
					<li class="D">Content-Length missing for POST or PUT requests</li>
					<li class="D">Illegal character in hostname;underscores are not allowed</li>
					<li class="D">Range Invalid</li></ul>
			</div>
			<a class="N C" href="#" onclick="s(1)">return</a></div>
		<script type="text/javascript">function e(i) {
				return document.getElementById(i);
			}
			function d(i, t) {
				e(i).style.display = (t ? 'block': 'none');
			}
			function s(e) {
				d('p', e);
				d('d', !e);
			}</script>
	</body>
</html>
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T18:16:15.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "6094e5f23616d0e3a9cb468d3a472dd6",
         "bodymmh3" : 1337836066,
         "headermd5" : "bb0444ea02d01b8615d4b0cb1dc22e94",
         "headermmh3" : -1647710528,
         "title" : "400 Bad Request"
      },
      "length" : 2602
   },
   "asn" : "AS4788",
   "city" : "Kuala Lumpur",
   "country" : "MY",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Wed, 06 Nov 2024 18:16:13 GMT\r\nContent-Type: text/html\r\nContent-Length: 2422\r\nConnection: close\r\nx-ws-request-id: 672bb26d_VM-KUL-012Ga102_8959-24224\r\n\r\n<!DOCTYPE html>\n<html>\n\t<head>\n\t\t<meta charset=\"utf-8\">\n\t\t<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\n\t\t<meta name=\"viewport\" content=\"width=device-width, initial-scale=1\">\n\t\t<title>400 Bad Request</title>\n\t\t<style type=\"text/css\">body{margin:5% auto 0 auto;padding:0 18px}.P{margin:0 22%}.O{margin-top:20px}.N{margin-top:10px}.M{margin:10px 0 30px 0}.L{margin-bottom:60px}.K{font-size:25px;color:#F90}.J{font-size:14px}.I{font-size:20px}.H{font-size:18px}.G{font-size:16px}.F{width:230px;float:left}.E{margin-top:5px}.D{margin:8px 0 0 -20px}.C{color:#3CF;cursor:pointer}.B{color:#909090;margin-top:15px}.A{line-height:30px}.hide_me{display:none}</style>\n\t</head>\n\t<body>\n\t\t<div id=\"p\" class=\"P\">\n\t\t\t<div class=\"K\">400</div>\n\t\t\t<div class=\"O I\">Bad Request</div>\n\t\t\t<p class=\"J A L\">Error Times: Wed, 06 Nov 2024 18:16:13 GMT\n\t\t\t\t<br>\n\t\t\t\t<span class=\"F\">IP: <srcip></span>Node information: VM-KUL-012Ga102\n\t\t\t\t<br>URL: http://<ip>:50070/\n\t\t\t\t<br>Request-Id: 672bb26d_VM-KUL-012Ga102_8959-24224\n\t\t\t\t<br>\n\t\t\t\t<br>Check:\n\t\t\t\t<span class=\"C G\" onclick=\"s(0)\">Details</span></p>\n\t\t</div>\n\t\t<div id=\"d\" class=\"hide_me P H\">\n\t\t\t<div class=\"K\">ERROR</div>\n\t\t\t<p class=\"O I\">\"The Requested URL could not be retrieved</p>\n\t\t\t<div class=\"O\">\n\t\t\t\t<div>While trying to retrieve the URL:</div>\n\t\t\t\t<pre class=\"B G\">http://<ip>:50070/</pre></div>\n\t\t\t<div class=\"M\">\n\t\t\t\t<span>The following error was encountered:</span>\n\t\t\t\t<ul class=\"E\">\n\t\t\t\t\t<li class=\"D G\">Invalid Request</li></ul>\n\t\t\t</div>\n\t\t\t<div class=\"M\">\n\t\t\t\t<span>This request could not be forwarded to the origin server or to any higher level cache servers. The most likely cause for this error is that:</span>\n\t\t\t\t<ul class=\"E G\">\n\t\t\t\t\t<li class=\"D\">Missing or unknown request method</li>\n\t\t\t\t\t<li class=\"D\">Missing URL</li>\n\t\t\t\t\t<li class=\"D\">Missing HTTP Identifier (HTTP/1.0)</li>\n\t\t\t\t\t<li class=\"D\">Request is too large</li>\n\t\t\t\t\t<li class=\"D\">Content-Length missing for POST or PUT requests</li>\n\t\t\t\t\t<li class=\"D\">Illegal character in hostname;underscores are not allowed</li>\n\t\t\t\t\t<li class=\"D\">Range Invalid</li></ul>\n\t\t\t</div>\n\t\t\t<a class=\"N C\" href=\"#\" onclick=\"s(1)\">return</a></div>\n\t\t<script type=\"text/javascript\">function e(i) {\n\t\t\t\treturn document.getElementById(i);\n\t\t\t}\n\t\t\tfunction d(i, t) {\n\t\t\t\te(i).style.display = (t ? 'block': 'none');\n\t\t\t}\n\t\t\tfunction s(e) {\n\t\t\t\td('p', e);\n\t\t\t\td('d', !e);\n\t\t\t}</script>\n\t</body>\n</html>",
   "datamd5" : "37e233844422524a3cf4ec04f03ae66c",
   "datammh3" : -672967054,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4788",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "MY",
      "countryname" : "Malaysia",
      "domain" : [
         "tm.com.my"
      ],
      "isineu" : "false",
      "latitude" : "4.210484",
      "location" : "4.210484,101.975766",
      "longitude" : "101.975766",
      "netname" : "TTSSB-MY",
      "organization" : "TM TECHNOLOGY SERVICES SDN BHD",
      "subnet" : "58.26.0.0/16"
   },
   "ip" : "58.26.7.236",
   "ipv6" : "false",
   "latitude" : "3.1412",
   "location" : "3.1412,101.6850",
   "longitude" : "101.6850",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TM TECHNOLOGY SERVICES SDN. BHD.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 50070,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-06",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "58.26.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 202.188.246.53:50070 (tcp/http) - last seen on 2024-11-06 at 15:21:25 UTC

    • IP
      202.188.246.53
      Network
      202.188.0.0/16
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://202.188.246.53:50070/ 200

      HTTP Title
      WEB SERVICE
      ASN
      AS4788
      Organization
      TM TECHNOLOGY SERVICES SDN. BHD.
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      04556e32bd1f48638ae4652a75bbfae1
      HTTP Header MD5
      16aa56a7bf550a630e80c815add27257
      HTTP Body MD5
      63fed911c7e9eb468e2d4f6a6721d6df 
    • HTTP/1.1 200 OK
CONNECTION: keep-alive
Date: Wed, 06 Nov 2024 23:02:01 GMT
Last-Modified: Tue, 22 Nov 2022 14:02:21 GMT
Etag: "1669125741:ce1"
CONTENT-LENGTH: 3297
P3P: CP=CAO PSA OUR
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1;mode=block
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'
X-Content-Type-Options: nosniff
CONTENT-TYPE: text/html

<!DOCTYPE HTML> <html> <head> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <meta charset="UTF-8"> <title>WEB SERVICE</title> <link href="./baseProj/images/favicon.ico" type="image/x-icon" rel="shortcut icon"> <script src="ext/ext-all.js"></script> <script type="text/javascript" src="./projectPath.js"></script> <script type="text/javascript" src="/app/libs/require.js"></script> <script type="text/javascript" src="/app/jsCore/require-config.js"></script> <script type="text/javascript"> Ext.onReady(function () {
            //启用缓存
            Ext.Loader.setConfig({
                "disableCaching": true,
                "paths":{
                    "basePath": BASEURL, //配置基础项目的文件路径
                    "projectPath": PROJECT_URL //配置定制项目的文件路径
                }
            });

            //定义项目的加载路径
            var basePath = Ext.Loader.getPath('basePath'),
                projectPath = Ext.Loader.getPath('projectPath');

            //设置类的地址路径
            Ext.Loader.setPath({
                "jsCore": "app/jsCore",
                'component': "baseProj/js/component",
                'js': 'baseProj/js',
                'plugin': 'app/plugin',
                'widget': 'baseProj/js/widget',
                'baseCls':'app/baseCls',
				'app': 'baseCls', //各个项目统一一个app
                'customJs': projectPath+'js', // 非基线项目引用的js路径
                'desktop':PROJ_MODULE.indexOf('desktop') != -1? projectPath+'js/desktop':basePath+'/js/desktop', //加载指定项目的Desktop.js
                'data': PROJ_MODULE.indexOf('data') != -1 ? projectPath + 'data': basePath + '/data'  //加载指定项目的数据文件
            });

            require(['pubsub', 'core', 'extend', 'libs/qrcode', 'libs/jsonpath', 'libs/json2',
                'libs/base64',
                'libs/md5', 'libs/aes', 'libs/rsa', 'libs/xss', 'libs/moment',
                'timeaxes/TimeAxes',
                'timeaxes/TimeAxesAdaptor',
                'timeaxes/TimeGridLayer',
                'timeaxes/TimeAxes_old',
                'timeaxes/TimeGridLayer_old',
                'h5Player',
                'FileSaver'
            ], function () {
                //载入必要的模块,字符串文件加载完成后,初始化和加载应用
                Ext.require(['jsCore.Common', 'data.Constants'], function () {
                    /* cp版本需求 修改页面title */
                    document.title = data.Constants.TITLE;
                    /* end */
                    jsCore.Common.getJsonLanguage().done(function () {
                        //自验问题修改:设备初始化界面,密码输入框输入时,报js错误,修改为先设置规则
                        jsCore.Common.setFieldVtype();
                        Ext.require(['baseCls.App']);
                        //***密码输入框输入时,报js错误 END***//
                    });
                });
            });
        }); </script> </head> <body></body> <script type="text/javascript" src="./pluginVersion.js"></script> <script type="text/javascript" src="./webVersion.js"></script> <script type="text/javascript" src="./cap.js"></script> </html>
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T15:21:25.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "63fed911c7e9eb468e2d4f6a6721d6df",
         "bodymmh3" : 1813836106,
         "header" : [
            {
               "value" : "Tue, 22 Nov 2022 14:02:21 GMT",
               "name" : "Last-Modified"
            },
            {
               "value" : "1669125741:ce1",
               "name" : "Etag"
            }
         ],
         "headermd5" : "16aa56a7bf550a630e80c815add27257",
         "headermmh3" : -1251888942,
         "title" : "WEB SERVICE"
      },
      "length" : 3683
   },
   "asn" : "AS4788",
   "city" : "Petaling Jaya",
   "country" : "MY",
   "data" : "HTTP/1.1 200 OK\r\nCONNECTION: keep-alive\r\nDate: Wed, 06 Nov 2024 23:02:01 GMT\r\nLast-Modified: Tue, 22 Nov 2022 14:02:21 GMT\r\nEtag: \"1669125741:ce1\"\r\nCONTENT-LENGTH: 3297\r\nP3P: CP=CAO PSA OUR\r\nX-Frame-Options: SAMEORIGIN\r\nX-XSS-Protection: 1;mode=block\r\nContent-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'\r\nX-Content-Type-Options: nosniff\r\nCONTENT-TYPE: text/html\r\n\r\n<!DOCTYPE HTML> <html> <head> <meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\"> <meta charset=\"UTF-8\"> <title>WEB SERVICE</title> <link href=\"./baseProj/images/favicon.ico\" type=\"image/x-icon\" rel=\"shortcut icon\"> <script src=\"ext/ext-all.js\"></script> <script type=\"text/javascript\" src=\"./projectPath.js\"></script> <script type=\"text/javascript\" src=\"/app/libs/require.js\"></script> <script type=\"text/javascript\" src=\"/app/jsCore/require-config.js\"></script> <script type=\"text/javascript\"> Ext.onReady(function () {\n            //\u542f\u7528\u7f13\u5b58\n            Ext.Loader.setConfig({\n                \"disableCaching\": true,\n                \"paths\":{\n                    \"basePath\": BASEURL, //\u914d\u7f6e\u57fa\u7840\u9879\u76ee\u7684\u6587\u4ef6\u8def\u5f84\n                    \"projectPath\": PROJECT_URL //\u914d\u7f6e\u5b9a\u5236\u9879\u76ee\u7684\u6587\u4ef6\u8def\u5f84\n                }\n            });\n\n            //\u5b9a\u4e49\u9879\u76ee\u7684\u52a0\u8f7d\u8def\u5f84\n            var basePath = Ext.Loader.getPath('basePath'),\n                projectPath = Ext.Loader.getPath('projectPath');\n\n            //\u8bbe\u7f6e\u7c7b\u7684\u5730\u5740\u8def\u5f84\n            Ext.Loader.setPath({\n                \"jsCore\": \"app/jsCore\",\n                'component': \"baseProj/js/component\",\n                'js': 'baseProj/js',\n                'plugin': 'app/plugin',\n                'widget': 'baseProj/js/widget',\n                'baseCls':'app/baseCls',\n\t\t\t\t'app': 'baseCls', //\u5404\u4e2a\u9879\u76ee\u7edf\u4e00\u4e00\u4e2aapp\n                'customJs': projectPath+'js', // \u975e\u57fa\u7ebf\u9879\u76ee\u5f15\u7528\u7684js\u8def\u5f84\n                'desktop':PROJ_MODULE.indexOf('desktop') != -1? projectPath+'js/desktop':basePath+'/js/desktop', //\u52a0\u8f7d\u6307\u5b9a\u9879\u76ee\u7684Desktop.js\n                'data': PROJ_MODULE.indexOf('data') != -1 ? projectPath + 'data': basePath + '/data'  //\u52a0\u8f7d\u6307\u5b9a\u9879\u76ee\u7684\u6570\u636e\u6587\u4ef6\n            });\n\n            require(['pubsub', 'core', 'extend', 'libs/qrcode', 'libs/jsonpath', 'libs/json2',\n                'libs/base64',\n                'libs/md5', 'libs/aes', 'libs/rsa', 'libs/xss', 'libs/moment',\n                'timeaxes/TimeAxes',\n                'timeaxes/TimeAxesAdaptor',\n                'timeaxes/TimeGridLayer',\n                'timeaxes/TimeAxes_old',\n                'timeaxes/TimeGridLayer_old',\n                'h5Player',\n                'FileSaver'\n            ], function () {\n                //\u8f7d\u5165\u5fc5\u8981\u7684\u6a21\u5757\uff0c\u5b57\u7b26\u4e32\u6587\u4ef6\u52a0\u8f7d\u5b8c\u6210\u540e\uff0c\u521d\u59cb\u5316\u548c\u52a0\u8f7d\u5e94\u7528\n                Ext.require(['jsCore.Common', 'data.Constants'], function () {\n                    /* cp\u7248\u672c\u9700\u6c42 \u4fee\u6539\u9875\u9762title */\n                    document.title = data.Constants.TITLE;\n                    /* end */\n                    jsCore.Common.getJsonLanguage().done(function () {\n                        //\u81ea\u9a8c\u95ee\u9898\u4fee\u6539\uff1a\u8bbe\u5907\u521d\u59cb\u5316\u754c\u9762\uff0c\u5bc6\u7801\u8f93\u5165\u6846\u8f93\u5165\u65f6\uff0c\u62a5js\u9519\u8bef,\u4fee\u6539\u4e3a\u5148\u8bbe\u7f6e\u89c4\u5219\n                        jsCore.Common.setFieldVtype();\n                        Ext.require(['baseCls.App']);\n                        //***\u5bc6\u7801\u8f93\u5165\u6846\u8f93\u5165\u65f6\uff0c\u62a5js\u9519\u8bef END***//\n                    });\n                });\n            });\n        }); </script> </head> <body></body> <script type=\"text/javascript\" src=\"./pluginVersion.js\"></script> <script type=\"text/javascript\" src=\"./webVersion.js\"></script> <script type=\"text/javascript\" src=\"./cap.js\"></script> </html>",
   "datamd5" : "04556e32bd1f48638ae4652a75bbfae1",
   "datammh3" : -1696542282,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4788",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "MY",
      "countryname" : "Malaysia",
      "domain" : [
         "tm.com.my"
      ],
      "isineu" : "false",
      "latitude" : "4.210484",
      "location" : "4.210484,101.975766",
      "longitude" : "101.975766",
      "netname" : "ERICSSON-TMNET",
      "organization" : "TMnet route object",
      "subnet" : "202.188.224.0/19"
   },
   "ip" : "202.188.246.53",
   "ipv6" : "false",
   "latitude" : "3.1314",
   "location" : "3.1314,101.6042",
   "longitude" : "101.6042",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TM TECHNOLOGY SERVICES SDN. BHD.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 50070,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "seen_date" : "2024-11-06",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "202.188.0.0/16",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 175.138.93.82:50070 (tcp/http) - last seen on 2024-11-06 at 07:36:55 UTC

    • IP
      175.138.93.82
      Network
      175.136.0.0/13
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://175.138.93.82:50070/ 401

      HTTP Title
      401 Unauthorized
      ASN
      AS4788
      Organization
      TM TECHNOLOGY SERVICES SDN. BHD.
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      4c96d779a7102e81d09f403b0613d30a
      HTTP Header MD5
      fec29f3d3583e42cff7b7693771dee13
      HTTP Body MD5
      b8bfb2d66af038926197d3afa16c262f 
    • HTTP/1.1 401 Unauthorized
Server: 7ece388a-3907-268d-4afe-27b33cffbebc
Date: Wed, 06 Nov 2024 15:53:28 GMT
Cache-Control: no-cache,no-store
WWW-Authenticate: Basic realm=""
Content-Type: text/html; charset=%s
Connection: close

<HTML>
<HEAD><TITLE>401 Unauthorized</TITLE></HEAD>
<BODY BGCOLOR="#cc9999" TEXT="#000000" LINK="#2020ff" VLINK="#4040cc">
<H4>401 Unauthorized</H4>
Authorization required.
<HR>
<ADDRESS><A HREF="http://www.acme.com/software/mini_httpd/">7ece388a-3907-268d-4afe-27b33cffbebc</A></ADDRESS>
</BODY>
</HTML>

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T07:36:55.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "acme.com"
         ],
         "hostname" : [
            "www.acme.com"
         ],
         "url" : [
            "http://www.acme.com/software/mini_httpd/"
         ]
      },
      "http" : {
         "bodymd5" : "b8bfb2d66af038926197d3afa16c262f",
         "bodymmh3" : 1861224384,
         "headermd5" : "fec29f3d3583e42cff7b7693771dee13",
         "headermmh3" : -1376994461,
         "title" : "401 Unauthorized"
      },
      "length" : 541
   },
   "asn" : "AS4788",
   "city" : "Kuala Lumpur",
   "country" : "MY",
   "data" : "HTTP/1.1 401 Unauthorized\r\nServer: 7ece388a-3907-268d-4afe-27b33cffbebc\r\nDate: Wed, 06 Nov 2024 15:53:28 GMT\r\nCache-Control: no-cache,no-store\r\nWWW-Authenticate: Basic realm=\"\"\r\nContent-Type: text/html; charset=%s\r\nConnection: close\r\n\r\n<HTML>\n<HEAD><TITLE>401 Unauthorized</TITLE></HEAD>\n<BODY BGCOLOR=\"#cc9999\" TEXT=\"#000000\" LINK=\"#2020ff\" VLINK=\"#4040cc\">\n<H4>401 Unauthorized</H4>\nAuthorization required.\n<HR>\n<ADDRESS><A HREF=\"http://www.acme.com/software/mini_httpd/\">7ece388a-3907-268d-4afe-27b33cffbebc</A></ADDRESS>\n</BODY>\n</HTML>\n",
   "datamd5" : "4c96d779a7102e81d09f403b0613d30a",
   "datammh3" : -346076529,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4788",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "MY",
      "countryname" : "Malaysia",
      "domain" : [
         "tm.com.my",
         "tm.net.my"
      ],
      "isineu" : "false",
      "latitude" : "4.210484",
      "location" : "4.210484,101.975766",
      "longitude" : "101.975766",
      "netname" : "ADSL-STREAMYX",
      "organization" : "Telekom Malaysia Berhad",
      "subnet" : "175.138.64.0/18"
   },
   "ip" : "175.138.93.82",
   "ipv6" : "false",
   "latitude" : "3.1412",
   "location" : "3.1412,101.6850",
   "longitude" : "101.6850",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TM TECHNOLOGY SERVICES SDN. BHD.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 50070,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Unauthorized",
   "seen_date" : "2024-11-06",
   "source" : "datascan",
   "status" : 401,
   "subnet" : "175.136.0.0/13",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 175.139.25.168:50070 (tcp/ftp) - last seen on 2024-11-06 at 06:06:20 UTC

    • IP
      175.139.25.168
      Network
      175.136.0.0/13
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      ASN
      AS4788
      Organization
      TM TECHNOLOGY SERVICES SDN. BHD.
      Protocol
      ftp
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      vsFTPd vsFTPd 3.0.2
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      999dda6ed38305bf9e9de1dc2eacf464 
    • 220 (vsFTPd 3.0.2)
530 Please login with USER and PASS.
530 Please login with USER and PASS.
530 Please login with USER and PASS.
530 Please login with USER and PASS.
530 Please login with USER and PASS.
530 Please login with USER and PASS.
331 Please specify the password.
530 Login incorrect.

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T06:06:20.000Z",
   "app" : {
      "ftp" : {
         "anonymous" : "false"
      },
      "length" : 302
   },
   "asn" : "AS4788",
   "city" : "Kuala Lumpur",
   "country" : "MY",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220 (vsFTPd 3.0.2)\r\n530 Please login with USER and PASS.\r\n530 Please login with USER and PASS.\r\n530 Please login with USER and PASS.\r\n530 Please login with USER and PASS.\r\n530 Please login with USER and PASS.\r\n530 Please login with USER and PASS.\r\n331 Please specify the password.\n530 Login incorrect.\n",
   "datamd5" : "999dda6ed38305bf9e9de1dc2eacf464",
   "datammh3" : -1287561948,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4788",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "MY",
      "countryname" : "Malaysia",
      "domain" : [
         "tm.com.my",
         "tm.net.my"
      ],
      "isineu" : "false",
      "latitude" : "4.210484",
      "location" : "4.210484,101.975766",
      "longitude" : "101.975766",
      "netname" : "ADSL-STREAMYX",
      "organization" : "Telekom Malaysia Berhad",
      "subnet" : "175.139.0.0/17"
   },
   "ip" : "175.139.25.168",
   "ipv6" : "false",
   "latitude" : "3.1412",
   "location" : "3.1412,101.6850",
   "longitude" : "101.6850",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TM TECHNOLOGY SERVICES SDN. BHD.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 50070,
   "product" : "vsFTPd",
   "productvendor" : "vsFTPd",
   "productversion" : "3.0.2",
   "protocol" : "ftp",
   "seen_date" : "2024-11-06",
   "source" : "datascan",
   "subnet" : "175.136.0.0/13",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 175.143.116.169:50070 (tcp/http) - last seen on 2024-11-06 at 01:31:40 UTC

    • IP
      175.143.116.169
      Network
      175.136.0.0/13
      Device

      <enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

      URL

      http://175.143.116.169:50070/ 200

      HTTP Title
      BL-VP104W Network Camera
      ASN
      AS4788
      Organization
      TM TECHNOLOGY SERVICES SDN. BHD.
      Protocol
      http
      Source
      datascan
    • CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      17b2ec0240eb75229c2dc8a5fb790b70
      HTTP Header MD5
      1ad2fdcf5d4155d6c490ff09bbb7e878
      HTTP Body MD5
      597fbc6caa21a98aa0a8bc1692619dc8 
    • HTTP/1.1 200 OK
Status: 200
Date: Thu, 06 Nov 2014 09:11:51 GMT
Server: ver2.4 rev0
Connection: Close
Content-Type: text/html
Accept-Ranges: bytes
Cache-Control: no-cache
Content-length: 540


 
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Frameset//EN">
<html lang="en" oncontextmenu="return false">
<head>
<meta http-equiv="pragma" content="no-cache">
<meta http-equiv="cache-control" content="no-cache">
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<title>BL-VP104W Network Camera</title>
</head>
<body leftmargin="0" topmargin="0" marginwidth="0" marginheight="0">
<script type="text/javascript">
<!--
location.replace("./live/index2.html?Language=0")
//-->
</script>
</body>
</html>

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T01:31:40.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "597fbc6caa21a98aa0a8bc1692619dc8",
         "bodymmh3" : 625923988,
         "headermd5" : "1ad2fdcf5d4155d6c490ff09bbb7e878",
         "headermmh3" : -1154437538,
         "title" : "BL-VP104W Network Camera"
      },
      "length" : 742
   },
   "asn" : "AS4788",
   "city" : "Kota Kinabalu",
   "country" : "MY",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nStatus: 200\r\nDate: Thu, 06 Nov 2014 09:11:51 GMT\r\nServer: ver2.4 rev0\r\nConnection: Close\r\nContent-Type: text/html\r\nAccept-Ranges: bytes\r\nCache-Control: no-cache\r\nContent-length: 540\r\n\r\n\ufeff\r\n \r\n<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01 Frameset//EN\">\r\n<html lang=\"en\" oncontextmenu=\"return false\">\r\n<head>\r\n<meta http-equiv=\"pragma\" content=\"no-cache\">\r\n<meta http-equiv=\"cache-control\" content=\"no-cache\">\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\">\r\n<title>BL-VP104W Network Camera</title>\r\n</head>\r\n<body leftmargin=\"0\" topmargin=\"0\" marginwidth=\"0\" marginheight=\"0\">\r\n<script type=\"text/javascript\">\r\n<!--\r\nlocation.replace(\"./live/index2.html?Language=0\")\r\n//-->\r\n</script>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "17b2ec0240eb75229c2dc8a5fb790b70",
   "datammh3" : 1263829871,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "geolocus" : {
      "asn" : "AS4788",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "MY",
      "countryname" : "Malaysia",
      "domain" : [
         "tm.com.my",
         "tm.net.my"
      ],
      "isineu" : "false",
      "latitude" : "4.210484",
      "location" : "4.210484,101.975766",
      "longitude" : "101.975766",
      "netname" : "ADSL-STREAMYX",
      "organization" : "Telekom Malaysia Berhad",
      "subnet" : "175.143.0.0/16"
   },
   "ip" : "175.143.116.169",
   "ipv6" : "false",
   "latitude" : "5.9479",
   "location" : "5.9479,116.0827",
   "longitude" : "116.0827",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TM TECHNOLOGY SERVICES SDN. BHD.",
   "port" : 50070,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "seen_date" : "2024-11-06",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "175.136.0.0/13",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 115.132.229.237:50070 (tcp/unknown) - last seen on 2024-11-05 at 19:22:09 UTC

    • IP
      115.132.229.237
      Network
      115.132.0.0/14
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      ASN
      AS4788
      Organization
      TM TECHNOLOGY SERVICES SDN. BHD.
      Protocol
      unknown
      Source
      datascan
    • Operating System
      Linux Linux Kernel

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      77cecf43bb016871926ffc088b1852cd 
    • \x00\x00\x00\x10\x00\x00\x00 \x00\x00\x00 \x00\x00\x00\x00
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-05T19:22:09.000Z",
   "app" : {
      "length" : 16
   },
   "asn" : "AS4788",
   "city" : "Cyberjaya",
   "country" : "MY",
   "data" : "\\x00\\x00\\x00\\x10\\x00\\x00\\x00 \\x00\\x00\\x00 \\x00\\x00\\x00\\x00",
   "datamd5" : "77cecf43bb016871926ffc088b1852cd",
   "datammh3" : 1050737756,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4788",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "MY",
      "countryname" : "Malaysia",
      "domain" : [
         "tm.com.my"
      ],
      "isineu" : "false",
      "latitude" : "4.210484",
      "location" : "4.210484,101.975766",
      "longitude" : "101.975766",
      "netname" : "ADSL-STREAMYX",
      "organization" : "TM TECHNOLOGY SERVICES SDN BHD",
      "subnet" : "115.132.128.0/17"
   },
   "ip" : "115.132.229.237",
   "ipv6" : "false",
   "latitude" : "2.9304",
   "location" : "2.9304,101.6627",
   "longitude" : "101.6627",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TM TECHNOLOGY SERVICES SDN. BHD.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 50070,
   "protocol" : "unknown",
   "seen_date" : "2024-11-05",
   "source" : "datascan",
   "subnet" : "115.132.0.0/14",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}