Cyber Defense Search Engine

IP
128.204.223.71

Network
128.204.222.0/23

Domain(s)
serv00.com

Device

<enterprise field>: device.class

Operating System
FreeBSD FreeBSD

URL

http://128.204.223.71:5222/ 426

Reverse DNS
cache3.serv00.com

ASN
AS57367

Organization
Atman Sp. z o.o.

Protocol
http

Source
datascan
Operating System
FreeBSD FreeBSD

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
3984359b295799157128a4c85801989c

HTTP Header MD5
273528d7920faeff0fa3b83bee0b7a72

HTTP Body MD5
7580e1f4e34b963d5ce1bbb35001f953

HTTP/1.1 426 Upgrade Required
Content-Length: 16
Content-Type: text/plain
Date: Thu, 07 Nov 2024 05:22:30 GMT
Connection: close

Upgrade Required

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:22:30.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "7580e1f4e34b963d5ce1bbb35001f953",
         "bodymmh3" : -1548582296,
         "headermd5" : "273528d7920faeff0fa3b83bee0b7a72",
         "headermmh3" : -627966621
      },
      "length" : 151
   },
   "asn" : "AS57367",
   "city" : "Warsaw",
   "country" : "PL",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 426 Upgrade Required\r\nContent-Length: 16\r\nContent-Type: text/plain\r\nDate: Thu, 07 Nov 2024 05:22:30 GMT\r\nConnection: close\r\n\r\nUpgrade Required",
   "datamd5" : "3984359b295799157128a4c85801989c",
   "datammh3" : 107862910,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "serv00.com"
   ],
   "geolocus" : {
      "asn" : "AS57367",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "PL",
      "countryname" : "Poland",
      "domain" : [
         "atman.pl",
         "gadu-gadu.pl"
      ],
      "isineu" : "true",
      "latitude" : "51.919438",
      "location" : "51.919438,19.145136",
      "longitude" : "19.145136",
      "netname" : "ECO-ATMAN-PL-20111228",
      "organization" : "ECOSERV",
      "subnet" : "128.204.223.0/24"
   },
   "host" : [
      "cache3"
   ],
   "hostname" : [
      "cache3.serv00.com"
   ],
   "ip" : "128.204.223.71",
   "ipv6" : "false",
   "latitude" : "52.2296",
   "location" : "52.2296,21.0067",
   "longitude" : "21.0067",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Atman Sp. z o.o.",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 5222,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Upgrade Required",
   "reverse" : [
      "cache3.serv00.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 426,
   "subnet" : "128.204.222.0/23",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
193.109.79.126

Network
193.109.78.0/23

Domain(s)
example.com

Device

<enterprise field>: device.class

Operating System
FreeBSD FreeBSD

Reverse DNS
agolubev.n.example.com

ASN
AS204997

Organization
First Server Limited

Protocol
unknown

Source
datascan
Operating System
FreeBSD FreeBSD

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
75f103b0a1022a5300845582be212520

<?xml version='1.0'?><stream:stream xml:lang='en' xmlns:stream='http://etherx.jabber.org/streams' xmlns='jabber:client'><stream:error><not-well-formed xmlns='urn:ietf:params:xml:ns:xmpp-streams'/></stream:error></stream:stream>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T04:12:29.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "jabber.org"
         ],
         "hostname" : [
            "etherx.jabber.org"
         ],
         "url" : [
            "http://etherx.jabber.org/streams"
         ]
      },
      "length" : 227
   },
   "asn" : "AS204997",
   "city" : "Moscow",
   "country" : "RU",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "<?xml version='1.0'?><stream:stream xml:lang='en' xmlns:stream='http://etherx.jabber.org/streams' xmlns='jabber:client'><stream:error><not-well-formed xmlns='urn:ietf:params:xml:ns:xmpp-streams'/></stream:error></stream:stream>",
   "datamd5" : "75f103b0a1022a5300845582be212520",
   "datammh3" : 803103520,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "example.com"
   ],
   "geolocus" : {
      "asn" : "AS204997",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "RU",
      "countryname" : "Russia",
      "domain" : [
         "first-server.net",
         "firstbyte.pro",
         "firstbyte.ru"
      ],
      "isineu" : "false",
      "latitude" : "61.52401",
      "location" : "61.52401,105.318756",
      "longitude" : "105.318756",
      "netname" : "FirstByte",
      "organization" : "FIRST SERVER LIMITED",
      "subnet" : "193.109.78.0/23"
   },
   "host" : [
      "agolubev"
   ],
   "hostname" : [
      "agolubev.n.example.com"
   ],
   "ip" : "193.109.79.126",
   "ipv6" : "false",
   "latitude" : "55.7483",
   "location" : "55.7483,37.6171",
   "longitude" : "37.6171",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "First Server Limited",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 5222,
   "protocol" : "unknown",
   "reverse" : [
      "agolubev.n.example.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "subdomains" : [
      "n.example.com"
   ],
   "subnet" : "193.109.78.0/23",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
117.6.42.173

Network
117.6.0.0/16

Device

<enterprise field>: device.class

Operating System
FreeBSD FreeBSD

URL

http://117.6.42.173:5222/ 302

HTTP Title
Object moved

ASN
AS7552

Organization
Viettel Group

Protocol
http

Source
datascan
Operating System
FreeBSD FreeBSD

HTTP Component(s)
Microsoft ASP.NET 4.0.30319

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
f75d30a502d9bfb51daf64e1fe1e1d72

HTTP Header MD5
8b618ae5b976910a4133b21ed147a684

HTTP Body MD5
d9f511dfb27a58051e4e3882b865bd1c

HTTP/1.1 302 Found
Cache-Control: private
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
Location: /?AspxAutoDetectCookieSupport=1
Set-Cookie: AspxAutoDetectCookieSupport=1; path=/; HttpOnly
X-AspNet-Version: 4.0.30319
Set-Cookie: AspxAutoDetectCookieSupport=1; path=/
X-Powered-By: ASP.NET
Date: Thu, 07 Nov 2024 04:03:10 GMT
Connection: close

94
<html><head><title>Object moved</title></head><body>
<h2>Object moved to <a href="/?AspxAutoDetectCookieSupport=1">here</a>.</h2>
</body></html>

0

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T04:03:10.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d9f511dfb27a58051e4e3882b865bd1c",
         "bodymmh3" : 1911473433,
         "component" : [
            {
               "productversion" : "4.0.30319",
               "productvendor" : "Microsoft",
               "product" : "ASP.NET"
            }
         ],
         "headermd5" : "8b618ae5b976910a4133b21ed147a684",
         "headermmh3" : -1905037555,
         "title" : "Object moved"
      },
      "length" : 536
   },
   "asn" : "AS7552",
   "city" : "Hanoi",
   "country" : "VN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 302 Found\r\nCache-Control: private\r\nTransfer-Encoding: chunked\r\nContent-Type: text/html; charset=utf-8\r\nLocation: /?AspxAutoDetectCookieSupport=1\r\nSet-Cookie: AspxAutoDetectCookieSupport=1; path=/; HttpOnly\r\nX-AspNet-Version: 4.0.30319\r\nSet-Cookie: AspxAutoDetectCookieSupport=1; path=/\r\nX-Powered-By: ASP.NET\r\nDate: Thu, 07 Nov 2024 04:03:10 GMT\r\nConnection: close\r\n\r\n94\r\n<html><head><title>Object moved</title></head><body>\r\n<h2>Object moved to <a href=\"/?AspxAutoDetectCookieSupport=1\">here</a>.</h2>\r\n</body></html>\r\n\r\n0\r\n\r\n",
   "datamd5" : "f75d30a502d9bfb51daf64e1fe1e1d72",
   "datammh3" : 201442015,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS7552",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "VN",
      "countryname" : "Vietnam",
      "domain" : [
         "viettel.com.vn",
         "vnnic.vn"
      ],
      "isineu" : "false",
      "latitude" : "14.058324",
      "location" : "14.058324,108.277199",
      "longitude" : "108.277199",
      "netname" : "VIETTEL-VN",
      "organization" : "VIETTEL-VN",
      "subnet" : "117.6.0.0/16"
   },
   "ip" : "117.6.42.173",
   "ipv6" : "false",
   "latitude" : "21.0292",
   "location" : "21.0292,105.8526",
   "longitude" : "105.8526",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Viettel Group",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 5222,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Found",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 302,
   "subnet" : "117.6.0.0/16",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
39.108.117.86

Network
39.108.0.0/16

Device

<enterprise field>: device.class

Operating System
FreeBSD FreeBSD

ASN
AS37963

Organization
Hangzhou Alibaba Advertising Co.,Ltd.

Protocol
unknown

Source
datascan
Operating System
FreeBSD FreeBSD

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
61ca0c12de4f06ed3aebfbed012ed1ac

1\x00\x00\x00x\x01cc\x00\x01F V\x001\x88\x00\x9eye\x899\x99)
I9\xf9\xc9\xd9
\xc5\x99U\xa9
\x1a\xa6&F\xc6\x96\xc6f\xe6\x86\x9a\x8a\x00\xb4\xc0	_

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:29:37.000Z",
   "app" : {
      "length" : 53
   },
   "asn" : "AS37963",
   "city" : "Shenzhen",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "1\\x00\\x00\\x00x\\x01cc\\x00\\x01F V\\x001\\x88\\x00\\x9eye\\x899\\x99)\nI9\\xf9\\xc9\\xd9\n\\xc5\\x99U\\xa9\n\\x1a\\xa6&F\\xc6\\x96\\xc6f\\xe6\\x86\\x9a\\x8a\\x00\\xb4\\xc0\t_",
   "datamd5" : "61ca0c12de4f06ed3aebfbed012ed1ac",
   "datammh3" : 1519707870,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS37963",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "alibaba-inc.com",
         "cnnic.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "ALISOFT",
      "organization" : "Hangzhou Alibaba Advertising Co.,Ltd.",
      "subnet" : "39.108.0.0/16"
   },
   "ip" : "39.108.117.86",
   "ipv6" : "false",
   "latitude" : "22.5559",
   "location" : "22.5559,114.0577",
   "longitude" : "114.0577",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Hangzhou Alibaba Advertising Co.,Ltd.",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 5222,
   "protocol" : "unknown",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "subnet" : "39.108.0.0/16",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
174.100.196.1

Network
174.100.0.0/14

Domain(s)
spectrum.com

Device

<enterprise field>: device.class

Operating System
FreeBSD FreeBSD

Reverse DNS
syn-174-100-196-001.res.spectrum.com

ASN
AS10796

Organization
TWC-10796-MIDWEST

Protocol
unknown

Source
datascan
Operating System
FreeBSD FreeBSD

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
10028b82225db6f747daa7725baa6392

<stream:stream xmlns:stream='http://etherx.jabber.org/streams' version='1.0'><stream:error xmlns:stream='http://etherx.jabber.org/streams'><xml-not-well-formed xmlns='urn:ietf:params:xml:ns:xmpp-streams'/><text xmlns='urn:ietf:params:xml:ns:xmpp-streams'>syntax error</text></stream:error></stream:stream>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:20:50.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "jabber.org"
         ],
         "hostname" : [
            "etherx.jabber.org"
         ],
         "url" : [
            "http://etherx.jabber.org/streams"
         ]
      },
      "length" : 305
   },
   "asn" : "AS10796",
   "city" : "Beachwood",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "<stream:stream xmlns:stream='http://etherx.jabber.org/streams' version='1.0'><stream:error xmlns:stream='http://etherx.jabber.org/streams'><xml-not-well-formed xmlns='urn:ietf:params:xml:ns:xmpp-streams'/><text xmlns='urn:ietf:params:xml:ns:xmpp-streams'>syntax error</text></stream:error></stream:stream>",
   "datamd5" : "10028b82225db6f747daa7725baa6392",
   "datammh3" : 891553947,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "spectrum.com"
   ],
   "geolocus" : {
      "asn" : "AS10796",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "charter.com",
         "charter.net",
         "spectrum.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "RRMA",
      "organization" : "Charter Communications Inc",
      "subnet" : "174.100.0.0/14"
   },
   "host" : [
      "syn-174-100-196-001"
   ],
   "hostname" : [
      "syn-174-100-196-001.res.spectrum.com"
   ],
   "ip" : "174.100.196.1",
   "ipv6" : "false",
   "latitude" : "41.4712",
   "location" : "41.4712,-81.5248",
   "longitude" : "-81.5248",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TWC-10796-MIDWEST",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 5222,
   "protocol" : "unknown",
   "reverse" : [
      "syn-174-100-196-001.res.spectrum.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "subdomains" : [
      "res.spectrum.com"
   ],
   "subnet" : "174.100.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
185.12.143.223

Network
185.12.142.0/23

Domain(s)
lts.org.ua

Device

<enterprise field>: device.class

Operating System
FreeBSD FreeBSD

Reverse DNS
185-12-143-223.lts.org.ua

ASN
AS212695

Organization
Link Telecom Service Ltd

Protocol
unknown

Source
datascan
Operating System
FreeBSD FreeBSD

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
a97d737c7aebc0fb2cd827b305bccc3e

<?xml version='1.0'?><stream:stream id='9282944284909031425' version='1.0' xml:lang='ru' xmlns:stream='http://etherx.jabber.org/streams' xmlns='jabber:client'><stream:error><not-well-formed xmlns='urn:ietf:params:xml:ns:xmpp-streams'/><text xml:lang='en' xmlns='urn:ietf:params:xml:ns:xmpp-streams'>syntax error</text></stream:error></stream:stream>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:20:48.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "jabber.org"
         ],
         "hostname" : [
            "etherx.jabber.org"
         ],
         "url" : [
            "http://etherx.jabber.org/streams"
         ]
      },
      "length" : 349
   },
   "asn" : "AS212695",
   "city" : "Lviv",
   "country" : "UA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "<?xml version='1.0'?><stream:stream id='9282944284909031425' version='1.0' xml:lang='ru' xmlns:stream='http://etherx.jabber.org/streams' xmlns='jabber:client'><stream:error><not-well-formed xmlns='urn:ietf:params:xml:ns:xmpp-streams'/><text xml:lang='en' xmlns='urn:ietf:params:xml:ns:xmpp-streams'>syntax error</text></stream:error></stream:stream>",
   "datamd5" : "a97d737c7aebc0fb2cd827b305bccc3e",
   "datammh3" : 262311081,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "lts.org.ua"
   ],
   "geolocus" : {
      "asn" : "AS212695",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "UA",
      "countryname" : "Ukraine",
      "domain" : [
         "lts.org.ua"
      ],
      "isineu" : "false",
      "latitude" : "48.379433",
      "location" : "48.379433,31.16558",
      "longitude" : "31.16558",
      "netname" : "LINKTELECOMSERVICE-NETWORK",
      "organization" : "Link Telecom Service Ltd",
      "subnet" : "185.12.142.0/23"
   },
   "host" : [
      "185-12-143-223"
   ],
   "hostname" : [
      "185-12-143-223.lts.org.ua"
   ],
   "ip" : "185.12.143.223",
   "ipv6" : "false",
   "latitude" : "49.8390",
   "location" : "49.8390,24.0191",
   "longitude" : "24.0191",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Link Telecom Service Ltd",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 5222,
   "protocol" : "unknown",
   "reverse" : [
      "185-12-143-223.lts.org.ua"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "subnet" : "185.12.142.0/23",
   "tld" : [
      "org.ua"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
104.207.154.34

Network
104.207.128.0/19

Domain(s)
vultrusercontent.com

Device

<enterprise field>: device.class

Operating System
FreeBSD FreeBSD

Reverse DNS
104.207.154.34.vultrusercontent.com

ASN
AS20473

Organization
AS-VULTR

Protocol
unknown

Source
datascan
Operating System
FreeBSD FreeBSD

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
65c869b3ff3f9b34cf19497cc587d0fa

<?xml version='1.0'?><stream:stream xmlns:stream='http://etherx.jabber.org/streams' xmlns='jabber:client' id='' xml:lang='en'><stream:error><not-well-formed xmlns='urn:ietf:params:xml:ns:xmpp-streams'/></stream:error></stream:stream>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:11:38.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "jabber.org"
         ],
         "hostname" : [
            "etherx.jabber.org"
         ],
         "url" : [
            "http://etherx.jabber.org/streams"
         ]
      },
      "length" : 233
   },
   "asn" : "AS20473",
   "city" : "Richmond",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "<?xml version='1.0'?><stream:stream xmlns:stream='http://etherx.jabber.org/streams' xmlns='jabber:client' id='' xml:lang='en'><stream:error><not-well-formed xmlns='urn:ietf:params:xml:ns:xmpp-streams'/></stream:error></stream:stream>",
   "datamd5" : "65c869b3ff3f9b34cf19497cc587d0fa",
   "datammh3" : 672295657,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "vultrusercontent.com"
   ],
   "geolocus" : {
      "asn" : "AS20473",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "constant.com",
         "vultr.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "NET-104-207-154-0-23",
      "organization" : "Vultr Holdings, LLC",
      "subnet" : "104.207.154.0/23"
   },
   "host" : [
      104
   ],
   "hostname" : [
      "104.207.154.34.vultrusercontent.com"
   ],
   "ip" : "104.207.154.34",
   "ipv6" : "false",
   "latitude" : "37.7548",
   "location" : "37.7548,-84.2985",
   "longitude" : "-84.2985",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AS-VULTR",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 5222,
   "protocol" : "unknown",
   "reverse" : [
      "104.207.154.34.vultrusercontent.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "subdomains" : [
      "154.34.vultrusercontent.com",
      "207.154.34.vultrusercontent.com",
      "34.vultrusercontent.com"
   ],
   "subnet" : "104.207.128.0/19",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
99.32.100.25

Network
99.32.0.0/12

Domain(s)
sbcglobal.net

Device

<enterprise field>: device.class

Operating System
FreeBSD FreeBSD

URL

http://99.32.100.25:5222/ 302

Reverse DNS
99-32-100-25.lightspeed.tulsok.sbcglobal.net

ASN
AS7018

Organization
ATT-INTERNET4

Protocol
http

Source
datascan
Operating System
FreeBSD FreeBSD

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
6f848873775d3e05fa4e9948494e3787

HTTP Header MD5
4de1d19aaf81f9216939441aa4c1ebbe

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

HTTP/1.0 302 Redirection
Server: BlueServer/5.9.5.2
Date: Thu, 07 Nov 2024 03:09:47 GMT
P3P: CP="CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE"
Set-Cookie: session=57bb445033c7198c4a9a7f5938da30b0; path=/
Access-Control-Allow-Origin: *
Connection: close
Location: /login.htm?page=%2F
Content-Length: 0

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:10:05.000Z",
   "app" : {
      "extract" : {
         "ip" : [
            "5.9.5.2"
         ]
      },
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1,
         "headermd5" : "4de1d19aaf81f9216939441aa4c1ebbe",
         "headermmh3" : 2126592005
      },
      "length" : 314
   },
   "asn" : "AS7018",
   "city" : "Tulsa",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.0 302 Redirection\r\nServer: BlueServer/5.9.5.2\r\nDate: Thu, 07 Nov 2024 03:09:47 GMT\r\nP3P: CP=\"CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE\"\r\nSet-Cookie: session=57bb445033c7198c4a9a7f5938da30b0; path=/\r\nAccess-Control-Allow-Origin: *\r\nConnection: close\r\nLocation: /login.htm?page=%2F\r\nContent-Length: 0\r\n\r\n",
   "datamd5" : "6f848873775d3e05fa4e9948494e3787",
   "datammh3" : -116647704,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "sbcglobal.net"
   ],
   "geolocus" : {
      "asn" : "AS7018",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "att.com",
         "att.net"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "SBCIS-SBIS",
      "organization" : "AT&T Corp.",
      "subnet" : "99.32.0.0/11"
   },
   "host" : [
      "99-32-100-25"
   ],
   "hostname" : [
      "99-32-100-25.lightspeed.tulsok.sbcglobal.net"
   ],
   "ip" : "99.32.100.25",
   "ipv6" : "false",
   "latitude" : "36.1220",
   "location" : "36.1220,-95.9183",
   "longitude" : "-95.9183",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "ATT-INTERNET4",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 5222,
   "protocol" : "http",
   "protocolversion" : "1.0",
   "reason" : "Redirection",
   "reverse" : [
      "99-32-100-25.lightspeed.tulsok.sbcglobal.net"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 302,
   "subdomains" : [
      "lightspeed.tulsok.sbcglobal.net",
      "tulsok.sbcglobal.net"
   ],
   "subnet" : "99.32.0.0/12",
   "tld" : [
      "net"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
46.248.190.62

Network
46.248.160.0/19

Domain(s)
iq.pl

Device

<enterprise field>: device.class

Operating System
FreeBSD FreeBSD

Reverse DNS
r190-62.rev.iq.pl

ASN
AS47544

Organization
IQ PL Sp. z o.o.

Protocol
unknown

Source
datascan
Operating System
FreeBSD FreeBSD

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
49d98ffefe2057eca542cdc49aa1b740

<?xml version='1.0'?><stream:stream xmlns='jabber:client' xmlns:stream='http://etherx.jabber.org/streams' id='' xml:lang='en'><stream:error><not-well-formed xmlns='urn:ietf:params:xml:ns:xmpp-streams'/></stream:error></stream:stream>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:01:36.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "jabber.org"
         ],
         "hostname" : [
            "etherx.jabber.org"
         ],
         "url" : [
            "http://etherx.jabber.org/streams"
         ]
      },
      "length" : 233
   },
   "asn" : "AS47544",
   "city" : "Gdansk",
   "country" : "PL",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "<?xml version='1.0'?><stream:stream xmlns='jabber:client' xmlns:stream='http://etherx.jabber.org/streams' id='' xml:lang='en'><stream:error><not-well-formed xmlns='urn:ietf:params:xml:ns:xmpp-streams'/></stream:error></stream:stream>",
   "datamd5" : "49d98ffefe2057eca542cdc49aa1b740",
   "datammh3" : 2141893841,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "iq.pl"
   ],
   "host" : [
      "r190-62"
   ],
   "hostname" : [
      "r190-62.rev.iq.pl"
   ],
   "ip" : "46.248.190.62",
   "ipv6" : "false",
   "latitude" : "54.3730",
   "location" : "54.3730,18.4888",
   "longitude" : "18.4888",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "IQ PL Sp. z o.o.",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 5222,
   "protocol" : "unknown",
   "reverse" : [
      "r190-62.rev.iq.pl"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "subdomains" : [
      "rev.iq.pl"
   ],
   "subnet" : "46.248.160.0/19",
   "tld" : [
      "pl"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
128.204.223.70

Network
128.204.222.0/23

Domain(s)
serv00.com

Device

<enterprise field>: device.class

Operating System
FreeBSD FreeBSD

URL

http://128.204.223.70:5222/ 426

Reverse DNS
web3.serv00.com

ASN
AS57367

Organization
Atman Sp. z o.o.

Protocol
http

Source
datascan
Operating System
FreeBSD FreeBSD

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
3984359b295799157128a4c85801989c

HTTP Header MD5
273528d7920faeff0fa3b83bee0b7a72

HTTP Body MD5
7580e1f4e34b963d5ce1bbb35001f953

HTTP/1.1 426 Upgrade Required
Content-Length: 16
Content-Type: text/plain
Date: Thu, 07 Nov 2024 02:45:05 GMT
Connection: close

Upgrade Required

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T02:45:05.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "7580e1f4e34b963d5ce1bbb35001f953",
         "bodymmh3" : -1548582296,
         "headermd5" : "273528d7920faeff0fa3b83bee0b7a72",
         "headermmh3" : 1948791388
      },
      "length" : 151
   },
   "asn" : "AS57367",
   "city" : "Warsaw",
   "country" : "PL",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 426 Upgrade Required\r\nContent-Length: 16\r\nContent-Type: text/plain\r\nDate: Thu, 07 Nov 2024 02:45:05 GMT\r\nConnection: close\r\n\r\nUpgrade Required",
   "datamd5" : "3984359b295799157128a4c85801989c",
   "datammh3" : 107862910,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "serv00.com"
   ],
   "geolocus" : {
      "asn" : "AS57367",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "PL",
      "countryname" : "Poland",
      "domain" : [
         "atman.pl",
         "gadu-gadu.pl"
      ],
      "isineu" : "true",
      "latitude" : "51.919438",
      "location" : "51.919438,19.145136",
      "longitude" : "19.145136",
      "netname" : "ECO-ATMAN-PL-20111228",
      "organization" : "ECOSERV",
      "subnet" : "128.204.223.0/24"
   },
   "host" : [
      "web3"
   ],
   "hostname" : [
      "web3.serv00.com"
   ],
   "ip" : "128.204.223.70",
   "ipv6" : "false",
   "latitude" : "52.2296",
   "location" : "52.2296,21.0067",
   "longitude" : "21.0067",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Atman Sp. z o.o.",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 5222,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Upgrade Required",
   "reverse" : [
      "web3.serv00.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 426,
   "subnet" : "128.204.222.0/23",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

Returning 10 result(s) out of 1,662 in 0.080 second(s)

128.204.223.71:5222 (tcp/http) - last seen on 2024-11-07 at 05:22:30 UTC

193.109.79.126:5222 (tcp/unknown) - last seen on 2024-11-07 at 04:12:29 UTC

117.6.42.173:5222 (tcp/http) - last seen on 2024-11-07 at 04:03:10 UTC

39.108.117.86:5222 (tcp/unknown) - last seen on 2024-11-07 at 03:29:37 UTC

174.100.196.1:5222 (tcp/unknown) - last seen on 2024-11-07 at 03:20:50 UTC

185.12.143.223:5222 (tcp/unknown) - last seen on 2024-11-07 at 03:20:48 UTC

104.207.154.34:5222 (tcp/unknown) - last seen on 2024-11-07 at 03:11:38 UTC

99.32.100.25:5222 (tcp/http) - last seen on 2024-11-07 at 03:10:05 UTC

46.248.190.62:5222 (tcp/unknown) - last seen on 2024-11-07 at 03:01:36 UTC

128.204.223.70:5222 (tcp/http) - last seen on 2024-11-07 at 02:45:05 UTC