ONYPHE
datascan ctl threatlist sniffer vulnscan riskscan

Returning 10 result(s) out of 606 in 0.141 second(s)

  • 175.138.48.207:5683 (tcp/mysql) - last seen on 2024-11-07 at 04:38:31 UTC

    • IP
      175.138.48.207
      Network
      175.136.0.0/13
      Device

      <enterprise field>: device.class

      Operating System
      FreeBSD FreeBSD
      ASN
      AS4788
      Organization
      TM TECHNOLOGY SERVICES SDN. BHD.
      Protocol
      mysql
      Source
      datascan
    • Operating System
      FreeBSD FreeBSD
      Product
      Oracle MySQL 5.6.23
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      5417fc0714b4e9e66a9a2cf43169aa3c 
    • N\x00\x00\x00
5.6.23-log\x00\x8cY\x02\x007qS,"aGz\x00\xff\xf7!\x02\x00\x7f\x80\x15\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00V|1{9KJqz55H\x00mysql_native_password\x00!\x00\x00\x01\xff\x84\x04#08S01Got packets out of order
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T04:38:31.000Z",
   "app" : {
      "length" : 119
   },
   "asn" : "AS4788",
   "city" : "Kuala Lumpur",
   "country" : "MY",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "N\\x00\\x00\\x00\n5.6.23-log\\x00\\x8cY\\x02\\x007qS,\"aGz\\x00\\xff\\xf7!\\x02\\x00\\x7f\\x80\\x15\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00V|1{9KJqz55H\\x00mysql_native_password\\x00!\\x00\\x00\\x01\\xff\\x84\\x04#08S01Got packets out of order",
   "datamd5" : "5417fc0714b4e9e66a9a2cf43169aa3c",
   "datammh3" : -506751583,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4788",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "MY",
      "countryname" : "Malaysia",
      "domain" : [
         "tm.com.my",
         "tm.net.my"
      ],
      "isineu" : "false",
      "latitude" : "4.210484",
      "location" : "4.210484,101.975766",
      "longitude" : "101.975766",
      "netname" : "ADSL-STREAMYX",
      "organization" : "Telekom Malaysia Berhad",
      "subnet" : "175.138.32.0/19"
   },
   "ip" : "175.138.48.207",
   "ipv6" : "false",
   "latitude" : "3.1412",
   "location" : "3.1412,101.6850",
   "longitude" : "101.6850",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TM TECHNOLOGY SERVICES SDN. BHD.",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 5683,
   "product" : "MySQL",
   "productvendor" : "Oracle",
   "productversion" : "5.6.23",
   "protocol" : "mysql",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "subnet" : "175.136.0.0/13",
   "tls" : "false",
   "transport" : "tcp"
}

  • 185.59.224.33:5683 (tcp/ftp) - last seen on 2024-11-07 at 03:57:16 UTC

    • IP
      185.59.224.33
      Network
      185.59.224.0/24
      Device

      <enterprise field>: device.class

      Operating System
      FreeBSD FreeBSD
      ASN
      AS42644
      Organization
      Virtual Telecom Sp. Z O.o.
      Protocol
      ftp
      Source
      datascan
    • Operating System
      FreeBSD FreeBSD
      Product
      ProFTPD ProFTPD
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      24ea2afe5b3234380e240f8ab9ba9f49 
    • 220 ProFTPD Server (ftp2 FTP Server) [::ffff:10.3.154.131]

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:57:16.000Z",
   "app" : {
      "length" : 60
   },
   "asn" : "AS42644",
   "country" : "PL",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220 ProFTPD Server (ftp2 FTP Server) [::ffff:10.3.154.131]\r\n",
   "datamd5" : "24ea2afe5b3234380e240f8ab9ba9f49",
   "datammh3" : -975662313,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS42644",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "PL",
      "countryname" : "Poland",
      "domain" : [
         "vtelecom.pl"
      ],
      "isineu" : "true",
      "latitude" : "51.919438",
      "location" : "51.919438,19.145136",
      "longitude" : "19.145136",
      "netname" : "VT-Stoktorka",
      "organization" : "Stokrotka-PL",
      "subnet" : "185.59.224.0/24"
   },
   "ip" : "185.59.224.33",
   "ipv6" : "false",
   "latitude" : "52.2394",
   "location" : "52.2394,21.0362",
   "longitude" : "21.0362",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Virtual Telecom Sp. Z O.o.",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 5683,
   "product" : "ProFTPD",
   "productvendor" : "ProFTPD",
   "protocol" : "ftp",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "subnet" : "185.59.224.0/24",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 116.96.89.125:5683 (tcp/unknown) - last seen on 2024-11-07 at 03:29:57 UTC

    • IP
      116.96.89.125
      Network
      116.96.0.0/16
      Device

      <enterprise field>: device.class

      Operating System
      FreeBSD FreeBSD
      ASN
      AS7552
      Organization
      Viettel Group
      Protocol
      unknown
      Source
      datascan
    • Operating System
      FreeBSD FreeBSD

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      099963e08620cd1c8a9f84a441294609 
    • _
\xf9\xe4\xdc*F\\x93<\xd6\xb8\x04\xce/4\xbfLE8\x7f\x84\xa7\x9b\xa4\xc3\xa0f\xe4\x1ft\xe1\x94\xfan\xeb\x08 X}\xc9\x98\xae\x05\xb8\x87%\x16K\xf6\xd0V!\xcc\xe8~yd>\xd3\x15\xc9^\xcc\x105y\xd2\xfcC\x96y'\xc5\x08\xb4pP\xed\xf5\xca\x8d\x87@Q\xa10F\xcc\xbc	\xe3\xae\xd9\x13\xecS\x81\xffz\ \xd5c\\x98klQ\x91\xbe\\xfd\xaa&2\xd6\x9aW\x07+|\xfczg2\xc8#\xc4\x01\x1e\xc9\x9eIA\x14\xdb\xe0\x95\xee#\xe2H
\xdaM\xb0G\x0f\xfb\xbb\xe1X\x1e\x84\xd7zG\xb0\x05&\xec\x88]\xb9q\xb6\x18b\xe6\xe10=)\xda?\xe0\xcc\xc1##d\x84\xe7a\xa4\xcc\x14S\x1cJ\x8ax@C#\xc0\xb2\xae\x9a\xdfyf\xd8\x86~\x1d\xb3\xed\x1e\xdb\xc6\xe8\xb7\x98\xf5y\xad0E\xf2\x90\xf4\x18k\x9f\xa8\x017\xb5-\x9e\xc9h\xf7\xbe\xd8*\xd7\x0b}\xdd\x95$LZ!k\x19\x8d\xfdJ\x97\x80P\xcc\xea#d$\xfcu\x9b`\x17\xbb\x1c\x99\x07\x80\xc0\x1c8h\x1d\x04B\xfbr\xb8\x1f\xeb\xc3\xd51\x941\x01T}d\x03Us\xdf&\x9b\x88~\x93\x9d\x04\x89Ne\xae\xd9\xbdA\x00\x89\xe6\xea-\xf6V\x87"\x02\xca\xed\x9b\x0d\xbe\x9f\xb4\xf8\x94\x9a;\xcdH\xbc\xf3\x94"\xbf%\x12\xfd\xd6\xcb0\xa9\x9eS\xda
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:29:57.000Z",
   "app" : {
      "length" : 347
   },
   "asn" : "AS7552",
   "city" : "Hanoi",
   "country" : "VN",
   "data" : "_\n\\xf9\\xe4\\xdc*F\\\\x93<\\xd6\\xb8\\x04\\xce/4\\xbfLE8\\x7f\\x84\\xa7\\x9b\\xa4\\xc3\\xa0f\\xe4\\x1ft\\xe1\\x94\\xfan\\xeb\\x08 X}\\xc9\\x98\\xae\\x05\\xb8\\x87%\\x16K\\xf6\\xd0V!\\xcc\\xe8~yd>\\xd3\\x15\\xc9^\\xcc\\x105y\\xd2\\xfcC\\x96y'\\xc5\\x08\\xb4pP\\xed\\xf5\\xca\\x8d\\x87@Q\\xa10F\\xcc\\xbc\t\\xe3\\xae\\xd9\\x13\\xecS\\x81\\xffz\\ \\xd5c\\\\x98klQ\\x91\\xbe\\\\xfd\\xaa&2\\xd6\\x9aW\\x07+|\\xfczg2\\xc8#\\xc4\\x01\\x1e\\xc9\\x9eIA\\x14\\xdb\\xe0\\x95\\xee#\\xe2H\n\\xdaM\\xb0G\\x0f\\xfb\\xbb\\xe1X\\x1e\\x84\\xd7zG\\xb0\\x05&\\xec\\x88]\\xb9q\\xb6\\x18b\\xe6\\xe10=)\\xda?\\xe0\\xcc\\xc1##d\\x84\\xe7a\\xa4\\xcc\\x14S\\x1cJ\\x8ax@C#\\xc0\\xb2\\xae\\x9a\\xdfyf\\xd8\\x86~\\x1d\\xb3\\xed\\x1e\\xdb\\xc6\\xe8\\xb7\\x98\\xf5y\\xad0E\\xf2\\x90\\xf4\\x18k\\x9f\\xa8\\x017\\xb5-\\x9e\\xc9h\\xf7\\xbe\\xd8*\\xd7\\x0b}\\xdd\\x95$LZ!k\\x19\\x8d\\xfdJ\\x97\\x80P\\xcc\\xea#d$\\xfcu\\x9b`\\x17\\xbb\\x1c\\x99\\x07\\x80\\xc0\\x1c8h\\x1d\\x04B\\xfbr\\xb8\\x1f\\xeb\\xc3\\xd51\\x941\\x01T}d\\x03Us\\xdf&\\x9b\\x88~\\x93\\x9d\\x04\\x89Ne\\xae\\xd9\\xbdA\\x00\\x89\\xe6\\xea-\\xf6V\\x87\"\\x02\\xca\\xed\\x9b\\x0d\\xbe\\x9f\\xb4\\xf8\\x94\\x9a;\\xcdH\\xbc\\xf3\\x94\"\\xbf%\\x12\\xfd\\xd6\\xcb0\\xa9\\x9eS\\xda",
   "datamd5" : "099963e08620cd1c8a9f84a441294609",
   "datammh3" : -404130779,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS7552",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "VN",
      "countryname" : "Vietnam",
      "domain" : [
         "viettel.com.vn",
         "vnnic.vn"
      ],
      "isineu" : "false",
      "latitude" : "14.058324",
      "location" : "14.058324,108.277199",
      "longitude" : "108.277199",
      "netname" : "VIETTEL-VN",
      "organization" : "VIETTEL-VN",
      "subnet" : "116.96.0.0/16"
   },
   "ip" : "116.96.89.125",
   "ipv6" : "false",
   "latitude" : "21.0292",
   "location" : "21.0292,105.8526",
   "longitude" : "105.8526",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Viettel Group",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 5683,
   "protocol" : "unknown",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "subnet" : "116.96.0.0/16",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 103.98.74.22:5683 (tcp/unknown) - last seen on 2024-11-07 at 02:09:43 UTC

    • IP
      103.98.74.22
      Network
      103.98.74.0/23
      Device

      <enterprise field>: device.class

      Operating System
      FreeBSD FreeBSD
      ASN
      AS9678
      Organization
      HostingInside LTD.
      Protocol
      unknown
      Source
      datascan
    • Operating System
      FreeBSD FreeBSD

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      55a54008ad1ba589aa210d2629c1df41 
    • \x01
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T02:09:43.000Z",
   "app" : {
      "length" : 1
   },
   "asn" : "AS9678",
   "city" : "Taipei",
   "country" : "TW",
   "data" : "\\x01",
   "datamd5" : "55a54008ad1ba589aa210d2629c1df41",
   "datammh3" : -463810133,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS9678",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "TW",
      "countryname" : "Taiwan",
      "domain" : [
         "hostinginside.com",
         "twnic.net.tw"
      ],
      "isineu" : "false",
      "latitude" : "23.69781",
      "location" : "23.69781,120.960515",
      "longitude" : "120.960515",
      "netname" : "HOSTINGINSIDE",
      "organization" : "Taiwan Network Information Center",
      "subnet" : "103.98.74.0/23"
   },
   "ip" : "103.98.74.22",
   "ipv6" : "false",
   "latitude" : "25.0504",
   "location" : "25.0504,121.5324",
   "longitude" : "121.5324",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "HostingInside LTD.",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 5683,
   "protocol" : "unknown",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "subnet" : "103.98.74.0/23",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 103.91.208.57:5683 (tcp/unknown) - last seen on 2024-11-07 at 02:08:18 UTC

    • IP
      103.91.208.57
      Network
      103.91.208.0/22
      Device

      <enterprise field>: device.class

      Operating System
      FreeBSD FreeBSD
      ASN
      AS4837
      Organization
      CHINA UNICOM China169 Backbone
      Protocol
      unknown
      Source
      datascan
    • Operating System
      FreeBSD FreeBSD

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      d2e3fa95dbc9156d8416befd48e59565 
    • U\xaaU\xaa	O\x9f}\x01\x00\x05\x00\x00\x00\x00\x19+ 9
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T02:08:18.000Z",
   "app" : {
      "length" : 19
   },
   "asn" : "AS4837",
   "country" : "CN",
   "data" : "U\\xaaU\\xaa\tO\\x9f}\\x01\\x00\\x05\\x00\\x00\\x00\\x00\\x19+ 9",
   "datamd5" : "d2e3fa95dbc9156d8416befd48e59565",
   "datammh3" : 1670954053,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS139180",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "163.com",
         "cnnic.cn",
         "qq.com"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "SDYXT",
      "organization" : "CHINAUNICOM CHINA169 Shandong Province Network",
      "subnet" : "103.91.208.0/22"
   },
   "ip" : "103.91.208.57",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "CHINA UNICOM China169 Backbone",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 5683,
   "protocol" : "unknown",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "subnet" : "103.91.208.0/22",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 49.49.213.188:5683 (tcp/mysql) - last seen on 2024-11-07 at 02:00:10 UTC

    • IP
      49.49.213.188
      Network
      49.48.0.0/15
      Domain(s)
      3bb.in.th
      Device

      <enterprise field>: device.class

      Operating System
      FreeBSD FreeBSD
      Reverse DNS
      mx-ll-49.49.213-188.dynamic.3bb.in.th
      ASN
      AS45758
      Organization
      Triple T Broadband Public Company Limited
      Protocol
      mysql
      Source
      datascan
    • Operating System
      FreeBSD FreeBSD
      Product
      Oracle MySQL 5.5.46
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      88bcb6447b0c35d320fcd2b51d6761dc 
    • J\x00\x00\x00
5.5.46\x00\x9d$\x02\x00yzxk0KkV\x00\xff\xf7!\x02\x00\x0f\x80\x15\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00Na"~yemu&Vbg\x00mysql_native_password\x00!\x00\x00\x01\xff\x84\x04#08S01Got packets out of order
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T02:00:10.000Z",
   "app" : {
      "length" : 115
   },
   "asn" : "AS45758",
   "city" : "Bangkok",
   "country" : "TH",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "J\\x00\\x00\\x00\n5.5.46\\x00\\x9d$\\x02\\x00yzxk0KkV\\x00\\xff\\xf7!\\x02\\x00\\x0f\\x80\\x15\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00Na\"~yemu&Vbg\\x00mysql_native_password\\x00!\\x00\\x00\\x01\\xff\\x84\\x04#08S01Got packets out of order",
   "datamd5" : "88bcb6447b0c35d320fcd2b51d6761dc",
   "datammh3" : 1784871833,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "3bb.in.th"
   ],
   "geolocus" : {
      "asn" : "AS45758",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "TH",
      "countryname" : "Thailand",
      "domain" : [
         "3bb.co.th",
         "3bbmail.com",
         "jasmine.com"
      ],
      "isineu" : "false",
      "latitude" : "15.870032",
      "location" : "15.870032,100.992541",
      "longitude" : "100.992541",
      "netname" : "TTBP-TH",
      "organization" : "Triple T Broadband Public Company Limited",
      "subnet" : "49.49.192.0/19"
   },
   "host" : [
      "mx-ll-49"
   ],
   "hostname" : [
      "mx-ll-49.49.213-188.dynamic.3bb.in.th"
   ],
   "ip" : "49.49.213.188",
   "ipv6" : "false",
   "latitude" : "13.8590",
   "location" : "13.8590,100.4772",
   "longitude" : "100.4772",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Triple T Broadband Public Company Limited",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 5683,
   "product" : "MySQL",
   "productvendor" : "Oracle",
   "productversion" : "5.5.46",
   "protocol" : "mysql",
   "reverse" : [
      "mx-ll-49.49.213-188.dynamic.3bb.in.th"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "subdomains" : [
      "dynamic.3bb.in.th",
      "213-188.dynamic.3bb.in.th",
      "49.213-188.dynamic.3bb.in.th"
   ],
   "subnet" : "49.48.0.0/15",
   "tld" : [
      "in.th"
   ],
   "tls" : "false",
   "transport" : "tcp"
}

  • 24.103.181.44:5683 (tcp/http) - last seen on 2024-11-07 at 00:36:39 UTC

    • IP
      24.103.181.44
      Network
      24.103.128.0/18
      Domain(s)
      spectrum.com
      Device

      <enterprise field>: device.class

      Operating System
      FreeBSD FreeBSD
      URL

      http://24.103.181.44:5683/ 301

      HTTP Title
      Moved Permanently
      Reverse DNS
      syn-024-103-181-044.biz.spectrum.com
      ASN
      AS11351
      Organization
      TWC-11351-NORTHEAST
      Protocol
      http
      Source
      datascan
    • Operating System
      FreeBSD FreeBSD

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      db6fba8199d6232d8b1006b732d41fb9
      HTTP Header MD5
      2c561ce2561b7f6113f96cf56b362b57
      HTTP Body MD5
      6d74b20c6fa245a96aa940816c13f6ff 
    • HTTP/1.1 301 Moved Permanently
Access-Control-Allow-Origin: *
Content-Length: 98
Content-Type: text/html; charset=utf-8
Date: Thu, 07 Nov 2024 00:38:03 GMT
Location: https://<ip>:5683/

<HTML><HEAD><TITLE>Moved Permanently</TITLE></HEAD><BODY><H1>301 Moved Permanently -- </H1></BODY>
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T00:36:39.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "6d74b20c6fa245a96aa940816c13f6ff",
         "bodymmh3" : -2097937471,
         "headermd5" : "2c561ce2561b7f6113f96cf56b362b57",
         "headermmh3" : 1313518865,
         "title" : "Moved Permanently"
      },
      "length" : 291
   },
   "asn" : "AS11351",
   "city" : "Troy",
   "country" : "US",
   "data" : "HTTP/1.1 301 Moved Permanently\r\nAccess-Control-Allow-Origin: *\r\nContent-Length: 98\r\nContent-Type: text/html; charset=utf-8\r\nDate: Thu, 07 Nov 2024 00:38:03 GMT\r\nLocation: https://<ip>:5683/\r\n\r\n<HTML><HEAD><TITLE>Moved Permanently</TITLE></HEAD><BODY><H1>301 Moved Permanently -- </H1></BODY>",
   "datamd5" : "db6fba8199d6232d8b1006b732d41fb9",
   "datammh3" : -63307461,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "spectrum.com"
   ],
   "geolocus" : {
      "asn" : "AS11351",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "charter.com",
         "charter.net",
         "spectrum.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "RCNY",
      "organization" : "Charter Communications Inc",
      "subnet" : "24.103.128.0/18"
   },
   "host" : [
      "syn-024-103-181-044"
   ],
   "hostname" : [
      "syn-024-103-181-044.biz.spectrum.com"
   ],
   "ip" : "24.103.181.44",
   "ipv6" : "false",
   "latitude" : "42.7841",
   "location" : "42.7841,-73.6756",
   "longitude" : "-73.6756",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TWC-11351-NORTHEAST",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 5683,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Moved Permanently",
   "reverse" : [
      "syn-024-103-181-044.biz.spectrum.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 301,
   "subdomains" : [
      "biz.spectrum.com"
   ],
   "subnet" : "24.103.128.0/18",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 76.53.152.84:5683 (tcp/http) - last seen on 2024-11-07 at 00:35:39 UTC

    • IP
      76.53.152.84
      Network
      76.53.128.0/17
      Domain(s)
      spectrum.com
      Device

      <enterprise field>: device.class

      Operating System
      FreeBSD FreeBSD
      URL

      http://76.53.152.84:5683/ 301

      HTTP Title
      Moved Permanently
      Reverse DNS
      syn-076-053-152-084.biz.spectrum.com
      ASN
      AS20001
      Organization
      TWC-20001-PACWEST
      Protocol
      http
      Source
      datascan
    • Operating System
      FreeBSD FreeBSD

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      db6fba8199d6232d8b1006b732d41fb9
      HTTP Header MD5
      2c561ce2561b7f6113f96cf56b362b57
      HTTP Body MD5
      6d74b20c6fa245a96aa940816c13f6ff 
    • HTTP/1.1 301 Moved Permanently
Access-Control-Allow-Origin: *
Content-Length: 98
Content-Type: text/html; charset=utf-8
Date: Thu, 07 Nov 2024 00:35:39 GMT
Location: https://<ip>:5683/

<HTML><HEAD><TITLE>Moved Permanently</TITLE></HEAD><BODY><H1>301 Moved Permanently -- </H1></BODY>
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T00:35:39.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "6d74b20c6fa245a96aa940816c13f6ff",
         "bodymmh3" : -2097937471,
         "headermd5" : "2c561ce2561b7f6113f96cf56b362b57",
         "headermmh3" : 1745401577,
         "title" : "Moved Permanently"
      },
      "length" : 291
   },
   "asn" : "AS20001",
   "city" : "Santa Monica",
   "country" : "US",
   "data" : "HTTP/1.1 301 Moved Permanently\r\nAccess-Control-Allow-Origin: *\r\nContent-Length: 98\r\nContent-Type: text/html; charset=utf-8\r\nDate: Thu, 07 Nov 2024 00:35:39 GMT\r\nLocation: https://<ip>:5683/\r\n\r\n<HTML><HEAD><TITLE>Moved Permanently</TITLE></HEAD><BODY><H1>301 Moved Permanently -- </H1></BODY>",
   "datamd5" : "db6fba8199d6232d8b1006b732d41fb9",
   "datammh3" : -63307461,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "spectrum.com"
   ],
   "geolocus" : {
      "asn" : "AS20001",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "charter.com",
         "charter.net",
         "spectrum.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "435-N-PCH-LLC",
      "organization" : "Charter Communications Inc",
      "subnet" : "76.53.128.0/17"
   },
   "host" : [
      "syn-076-053-152-084"
   ],
   "hostname" : [
      "syn-076-053-152-084.biz.spectrum.com"
   ],
   "ip" : "76.53.152.84",
   "ipv6" : "false",
   "latitude" : "34.0308",
   "location" : "34.0308,-118.4730",
   "longitude" : "-118.4730",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TWC-20001-PACWEST",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 5683,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Moved Permanently",
   "reverse" : [
      "syn-076-053-152-084.biz.spectrum.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 301,
   "subdomains" : [
      "biz.spectrum.com"
   ],
   "subnet" : "76.53.128.0/17",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 175.143.65.199:5683 (tcp/http) - last seen on 2024-11-06 at 22:47:16 UTC

    • IP
      175.143.65.199
      Network
      175.136.0.0/13
      Device

      <enterprise field>: device.class

      Operating System
      FreeBSD FreeBSD
      URL

      http://175.143.65.199:5683/ 200

      ASN
      AS4788
      Organization
      TM TECHNOLOGY SERVICES SDN. BHD.
      Protocol
      http
      Source
      datascan
    • Operating System
      FreeBSD FreeBSD

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      42b9f280fb73f2d11e1d598b932bf361
      HTTP Header MD5
      e07e4164f4741d1439ffab1826c360ca
      HTTP Body MD5
      c591e691290b84dfe80065bc36c3919c 
    • HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"323-1661475216317"
Last-Modified: Fri, 26 Aug 2022 00:53:36 GMT
Content-Type: text/html
Content-Length: 323
Date: Wed, 06 Nov 2024 22:47:11 GMT
Connection: close

<?xml version="1.0" encoding="iso-8859-1"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">
<head>
    <meta http-equiv="refresh" content="0; URL=https://seito.com.hk" />
</head>

<body>
</body>

</html>

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T22:47:16.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "seito.com.hk",
            "w3.org"
         ],
         "hostname" : [
            "seito.com.hk",
            "www.w3.org"
         ],
         "url" : [
            "http://www.w3.org/1999/xhtml",
            "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd",
            "https://seito.com.hk"
         ]
      },
      "http" : {
         "bodymd5" : "c591e691290b84dfe80065bc36c3919c",
         "bodymmh3" : 729024967,
         "header" : [
            {
               "value" : "W/\"323-1661475216317",
               "name" : "ETag"
            },
            {
               "name" : "Last-Modified",
               "value" : "Fri, 26 Aug 2022 00:53:36 GMT"
            }
         ],
         "headermd5" : "e07e4164f4741d1439ffab1826c360ca",
         "headermmh3" : 1663788757
      },
      "length" : 539
   },
   "asn" : "AS4788",
   "city" : "Petaling Jaya",
   "country" : "MY",
   "data" : "HTTP/1.1 200 \r\nAccept-Ranges: bytes\r\nETag: W/\"323-1661475216317\"\r\nLast-Modified: Fri, 26 Aug 2022 00:53:36 GMT\r\nContent-Type: text/html\r\nContent-Length: 323\r\nDate: Wed, 06 Nov 2024 22:47:11 GMT\r\nConnection: close\r\n\r\n<?xml version=\"1.0\" encoding=\"iso-8859-1\"?>\n<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">\n\n<html xmlns=\"http://www.w3.org/1999/xhtml\">\n<head>\n    <meta http-equiv=\"refresh\" content=\"0; URL=https://seito.com.hk\" />\n</head>\n\n<body>\n</body>\n\n</html>\n",
   "datamd5" : "42b9f280fb73f2d11e1d598b932bf361",
   "datammh3" : -2114956703,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4788",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "MY",
      "countryname" : "Malaysia",
      "domain" : [
         "tm.com.my",
         "tm.net.my"
      ],
      "isineu" : "false",
      "latitude" : "4.210484",
      "location" : "4.210484,101.975766",
      "longitude" : "101.975766",
      "netname" : "ADSL-STREAMYX",
      "organization" : "Telekom Malaysia Berhad",
      "subnet" : "175.143.0.0/16"
   },
   "ip" : "175.143.65.199",
   "ipv6" : "false",
   "latitude" : "3.0999",
   "location" : "3.0999,101.5965",
   "longitude" : "101.5965",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TM TECHNOLOGY SERVICES SDN. BHD.",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 5683,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "seen_date" : "2024-11-06",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "175.136.0.0/13",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

  • 189.48.142.151:5683 (tcp/unknown) - last seen on 2024-11-06 at 20:36:29 UTC

    • IP
      189.48.142.151
      Network
      189.48.0.0/15
      Domain(s)
      net.br
      Device

      <enterprise field>: device.class

      Operating System
      FreeBSD FreeBSD
      Reverse DNS
      189-48-142-151.user3p.vtal.net.br
      ASN
      AS7738
      Organization
      V tal
      Protocol
      unknown
      Source
      datascan
    • Operating System
      FreeBSD FreeBSD

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      f96432f968b785327ac83f05b97d28b5 
    • \xc5X\x9f\xb3W\xa8Lz\xe6J4P\xae\x03\xe6\x82K\x8f}\x0f\xaaiF\x149"\xbf\x17&{\x01s\xa1\x9c\x9d\x02Y\xfd\xd0\xc7\xce|\xf9z\xf9JT/!D\x0b5\xfe\x83e\x19\xf9\xeb\x08\xf7\xf4\x8c\xe6\xfcw\xe2\xb6zqd\xda\xea\x0fUH.EEO\xc6F\x87\x03\xda3\xda\x0b\xe5\xed\xb5\xb2<\x02(A
[h\x1a\x0f\x9d\x03\x94\xa0.?\xf4\x18\xb3\x83\xf7\xdf\x91\xf2\x0f\xa5_\xa8\x1f(\x96\xe3\x87\x8a\x133=y\\x86X\xe3\x1c\x13\x8a\x18	\xb0}\xd5%\xb8\x0d\xfa\xb6\x19\x11\xb0\xd7\xa2\xff\xd1+]\x04$g\x90\xd3s\x8e/,\x0d\x83\x1f\xe3\x8c\xbd\xfa\xed\x1d\xc0\x9bHG\xb1\xb5$=	f\xd4\x86w\xa7\x96\x985}\x92\xb6\xf6e\xa0\xf6u\xd7\xb0d\x1f~\x813\x87\x93s#_\xe2\xf4\x14l\xbf\x8e\x98\xe9[\xa7_eD\x03\x1f(\xf9\xbd\xcc\xb4EE\xfe,\xae\xb7\x16c|6\x08\xa4\xa6_\xb6\x16\xb8itW\xde\xa3\xf5OD\x9d\xee\xf25,c\x9f\x18u\xc5jQ-\xbdK\xcd4\xab\x87\x13\xfb\x1c\x10(2\xec\x96\x1a\xbf+w[\xc6\xd3T\xf3\x88a\xda\xc5\x04J\xef\xf9\xc9\x7f\xc3\xb1\xe8->,K\xff\x01\x8d\xb4\xea=\xd5=\xab\xba\xaf\xe1%|0\xf6J\x16h\x10ngcP\x01\xcdqMJ\x8a=7!\x9c"\xcc\xc8\xd1\xde|s\xaa0#\xc0\x0c\x89*=\xde[\xd8\xa8O\x12_;\xe4\x0bwNx\x0e;\xa6\x80\xe5\x89\xb3k>\xf8\x0f\xe6h\xf9[\x83\x8dLo\xcc\x8fls\xa4.\xefb\xdc1\xeb\x14\xc5u\xa2\x12#4r\xe3IM<\x13\xbb1&\xa56DdB\x19\xe6\x1b\x1d\xc3\x84M\x91M3\x0dF4M0o\x95\xe7\xaa\x18\x84\x80^\xf4kNb\x83\x0cBI7^q\xba\x1e\xaa\xcdj*\xb8%\x9f\xc0\xaf\x1b\x89{\xe9\xe3\xf5\x1f\x0d\x00\x13\xd2\xa97P\xfa\xe1\x9f\xf0B\xe6P\x84\xa34)\x05NUFm\xa8\x95\x969\xf0\xc0QPD\x96\x84
\xc9\xb72\xac>C\xc1vF\x11\x86\xaa\xf4\xeb\xd8\x8c\xc3g\x8f\xcb\x04\xfc\xe8\x8c\x14\x8d+d\xf8\xeb\x81\xb8!!x\x83%\xf8\x02|\xfe\x9c\x1d|q\x13t\x8b@\xe0z\x14\x877
    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T20:36:29.000Z",
   "app" : {
      "length" : 561
   },
   "asn" : "AS7738",
   "city" : "Ribeir\u00e3o das Neves",
   "country" : "BR",
   "data" : "\\xc5X\\x9f\\xb3W\\xa8Lz\\xe6J4P\\xae\\x03\\xe6\\x82K\\x8f}\\x0f\\xaaiF\\x149\"\\xbf\\x17&{\\x01s\\xa1\\x9c\\x9d\\x02Y\\xfd\\xd0\\xc7\\xce|\\xf9z\\xf9JT/!D\\x0b5\\xfe\\x83e\\x19\\xf9\\xeb\\x08\\xf7\\xf4\\x8c\\xe6\\xfcw\\xe2\\xb6zqd\\xda\\xea\\x0fUH.EEO\\xc6F\\x87\\x03\\xda3\\xda\\x0b\\xe5\\xed\\xb5\\xb2<\\x02(A\n[h\\x1a\\x0f\\x9d\\x03\\x94\\xa0.?\\xf4\\x18\\xb3\\x83\\xf7\\xdf\\x91\\xf2\\x0f\\xa5_\\xa8\\x1f(\\x96\\xe3\\x87\\x8a\\x133=y\\\\x86X\\xe3\\x1c\\x13\\x8a\\x18\t\\xb0}\\xd5%\\xb8\\x0d\\xfa\\xb6\\x19\\x11\\xb0\\xd7\\xa2\\xff\\xd1+]\\x04$g\\x90\\xd3s\\x8e/,\\x0d\\x83\\x1f\\xe3\\x8c\\xbd\\xfa\\xed\\x1d\\xc0\\x9bHG\\xb1\\xb5$=\tf\\xd4\\x86w\\xa7\\x96\\x985}\\x92\\xb6\\xf6e\\xa0\\xf6u\\xd7\\xb0d\\x1f~\\x813\\x87\\x93s#_\\xe2\\xf4\\x14l\\xbf\\x8e\\x98\\xe9[\\xa7_eD\\x03\\x1f(\\xf9\\xbd\\xcc\\xb4EE\\xfe,\\xae\\xb7\\x16c|6\\x08\\xa4\\xa6_\\xb6\\x16\\xb8itW\\xde\\xa3\\xf5OD\\x9d\\xee\\xf25,c\\x9f\\x18u\\xc5jQ-\\xbdK\\xcd4\\xab\\x87\\x13\\xfb\\x1c\\x10(2\\xec\\x96\\x1a\\xbf+w[\\xc6\\xd3T\\xf3\\x88a\\xda\\xc5\\x04J\\xef\\xf9\\xc9\\x7f\\xc3\\xb1\\xe8->,K\\xff\\x01\\x8d\\xb4\\xea=\\xd5=\\xab\\xba\\xaf\\xe1%|0\\xf6J\\x16h\\x10ngcP\\x01\\xcdqMJ\\x8a=7!\\x9c\"\\xcc\\xc8\\xd1\\xde|s\\xaa0#\\xc0\\x0c\\x89*=\\xde[\\xd8\\xa8O\\x12_;\\xe4\\x0bwNx\\x0e;\\xa6\\x80\\xe5\\x89\\xb3k>\\xf8\\x0f\\xe6h\\xf9[\\x83\\x8dLo\\xcc\\x8fls\\xa4.\\xefb\\xdc1\\xeb\\x14\\xc5u\\xa2\\x12#4r\\xe3IM<\\x13\\xbb1&\\xa56DdB\\x19\\xe6\\x1b\\x1d\\xc3\\x84M\\x91M3\\x0dF4M0o\\x95\\xe7\\xaa\\x18\\x84\\x80^\\xf4kNb\\x83\\x0cBI7^q\\xba\\x1e\\xaa\\xcdj*\\xb8%\\x9f\\xc0\\xaf\\x1b\\x89{\\xe9\\xe3\\xf5\\x1f\\x0d\\x00\\x13\\xd2\\xa97P\\xfa\\xe1\\x9f\\xf0B\\xe6P\\x84\\xa34)\\x05NUFm\\xa8\\x95\\x969\\xf0\\xc0QPD\\x96\\x84\n\\xc9\\xb72\\xac>C\\xc1vF\\x11\\x86\\xaa\\xf4\\xeb\\xd8\\x8c\\xc3g\\x8f\\xcb\\x04\\xfc\\xe8\\x8c\\x14\\x8d+d\\xf8\\xeb\\x81\\xb8!!x\\x83%\\xf8\\x02|\\xfe\\x9c\\x1d|q\\x13t\\x8b@\\xe0z\\x14\\x877",
   "datamd5" : "f96432f968b785327ac83f05b97d28b5",
   "datammh3" : 2005277774,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "net.br"
   ],
   "geolocus" : {
      "asn" : "AS7738",
      "continent" : "SA",
      "continentname" : "South America",
      "country" : "BR",
      "countryname" : "Brazil",
      "domain" : [
         "cert.br",
         "veloxzone.com.br",
         "vtal.com"
      ],
      "isineu" : "false",
      "latitude" : "-14.235004",
      "location" : "-14.235004,-51.92528",
      "longitude" : "-51.92528",
      "netname" : "02.041.460/0001-93",
      "organization" : "V tal",
      "subnet" : "189.48.0.0/15"
   },
   "host" : [
      "189-48-142-151"
   ],
   "hostname" : [
      "189-48-142-151.user3p.vtal.net.br"
   ],
   "ip" : "189.48.142.151",
   "ipv6" : "false",
   "latitude" : "-19.7629",
   "location" : "-19.7629,-44.0591",
   "longitude" : "-44.0591",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "V tal",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 5683,
   "protocol" : "unknown",
   "reverse" : [
      "189-48-142-151.user3p.vtal.net.br"
   ],
   "seen_date" : "2024-11-06",
   "source" : "datascan",
   "subdomains" : [
      "user3p.vtal.net.br",
      "vtal.net.br"
   ],
   "subnet" : "189.48.0.0/15",
   "tld" : [
      "br"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}