Cyber Defense Search Engine

IP
211.83.10.68

Network
211.80.0.0/13

Device

<enterprise field>: device.class

URL

http://211.83.10.68:1099/ 200

ASN
AS4538

Organization
China Education and Research Network Center

Protocol
http

Source
datascan
Product
Apache HTTP Server

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
4cf4e9e02f072cbba1d82e915f8f99a8

HTTP Header MD5
97eb73c41d2d1f332d0a4ddd4c85c3de

HTTP Body MD5
a170adb6f77520582093a8cd048c345c

HTTP/1.1 200 ok
Server: Apache
Content-Length:  223
Cache-Control: no-cache
Connection: close

<script>top.self.location.href='http://211.83.41.225/eportal/index.jsp?wlanuserip=<srcip>&wlanacname=NAS&ssid=Ruijie&nasip=10.100.100.114&mac=000000000000&t=wireless-v2-plain&url=http://<ip>:1099/'</script>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:57:07.000Z",
   "app" : {
      "extract" : {
         "ip" : [
            "10.100.100.114",
            "211.83.41.225"
         ],
         "url" : [
            "http://211.83.41.225/eportal/index.jsp?wlanuserip="
         ]
      },
      "http" : {
         "bodymd5" : "a170adb6f77520582093a8cd048c345c",
         "bodymmh3" : 1207251241,
         "headermd5" : "97eb73c41d2d1f332d0a4ddd4c85c3de",
         "headermmh3" : -2113301773
      },
      "length" : 311
   },
   "asn" : "AS4538",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 ok\r\nServer: Apache\r\nContent-Length:  223\r\nCache-Control: no-cache\r\nConnection: close\r\n\r\n<script>top.self.location.href='http://211.83.41.225/eportal/index.jsp?wlanuserip=<srcip>&wlanacname=NAS&ssid=Ruijie&nasip=10.100.100.114&mac=000000000000&t=wireless-v2-plain&url=http://<ip>:1099/'</script>\r\n\r\n",
   "datamd5" : "4cf4e9e02f072cbba1d82e915f8f99a8",
   "datammh3" : -1207643184,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4538",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "211.in-addr.arpa",
         "apnic.net",
         "cernet.edu.cn",
         "scut.edu.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "CERNET",
      "organization" : "China Education and Research Network",
      "subnet" : "211.80.0.0/13"
   },
   "ip" : "211.83.10.68",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "China Education and Research Network Center",
   "port" : 1099,
   "product" : "HTTP Server",
   "productvendor" : "Apache",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "ok",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "211.80.0.0/13",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
182.106.195.135

Network
182.106.192.0/18

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://182.106.195.135:1099/ 403

HTTP Title
403 Forbidden

ASN
AS4134

Organization
Chinanet

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
OpenResty OpenResty

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
6201f5f195cdf42eae3ac489a3b995d8

HTTP Header MD5
9e72c087a1f3953502580c44bfed7b4d

HTTP Body MD5
60bb83ecb2636b0746851830fee4f930

HTTP/1.1 403 Forbidden
Server: openresty
Date: Thu, 21 Nov 2024 08:57:00 GMT
Content-Type: text/html
Content-Length: 150
Connection: close
Deny-Reason: hotload rechange server uri format error!!
Request-Id: c387673ef5dcb66a6aac16fc632c5048

<html>
<head><title>403 Forbidden</title></head>
<body>
<center><h1>403 Forbidden</h1></center>
<hr><center>openresty</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:57:00.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "60bb83ecb2636b0746851830fee4f930",
         "bodymmh3" : -74289043,
         "headermd5" : "9e72c087a1f3953502580c44bfed7b4d",
         "headermmh3" : 2054254518,
         "title" : "403 Forbidden"
      },
      "length" : 400
   },
   "asn" : "AS4134",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 403 Forbidden\r\nServer: openresty\r\nDate: Thu, 21 Nov 2024 08:57:00 GMT\r\nContent-Type: text/html\r\nContent-Length: 150\r\nConnection: close\r\nDeny-Reason: hotload rechange server uri format error!!\r\nRequest-Id: c387673ef5dcb66a6aac16fc632c5048\r\n\r\n<html>\r\n<head><title>403 Forbidden</title></head>\r\n<body>\r\n<center><h1>403 Forbidden</h1></center>\r\n<hr><center>openresty</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "6201f5f195cdf42eae3ac489a3b995d8",
   "datammh3" : 729159198,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4134",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "189.cn",
         "asiainfo.com",
         "bta.net.cn",
         "chinatelecom.cn",
         "qq.com"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "CHINANET-JX",
      "organization" : "CHINANET JIANGXI PROVINCE NETWORK",
      "subnet" : "182.106.192.0/18"
   },
   "ip" : "182.106.195.135",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Chinanet",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 1099,
   "product" : "OpenResty",
   "productvendor" : "OpenResty",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Forbidden",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 403,
   "subnet" : "182.106.192.0/18",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
98.98.45.48

Network
98.98.32.0/19

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://98.98.45.48:1099/ 403

HTTP Title
403 Forbidden

ASN
AS21859

Organization
ZEN-ECN

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
OpenResty OpenResty

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
6efe0d3647b5209f903b2073ca42fa6a

HTTP Header MD5
cddf122f154830bdd589705fa8b02b0c

HTTP Body MD5
60bb83ecb2636b0746851830fee4f930

HTTP/1.1 403 Forbidden
Server: openresty
Date: Thu, 21 Nov 2024 08:56:59 GMT
Content-Type: text/html
Content-Length: 150
Connection: close
Deny-Reason: hotload rechange server uri format error!!
Request-Id: 2d28673ef5db62625507caf93db20e9b

<html>
<head><title>403 Forbidden</title></head>
<body>
<center><h1>403 Forbidden</h1></center>
<hr><center>openresty</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:56:59.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "60bb83ecb2636b0746851830fee4f930",
         "bodymmh3" : -74289043,
         "headermd5" : "cddf122f154830bdd589705fa8b02b0c",
         "headermmh3" : -567702587,
         "title" : "403 Forbidden"
      },
      "length" : 400
   },
   "asn" : "AS21859",
   "city" : "Tokyo",
   "country" : "JP",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 403 Forbidden\r\nServer: openresty\r\nDate: Thu, 21 Nov 2024 08:56:59 GMT\r\nContent-Type: text/html\r\nContent-Length: 150\r\nConnection: close\r\nDeny-Reason: hotload rechange server uri format error!!\r\nRequest-Id: 2d28673ef5db62625507caf93db20e9b\r\n\r\n<html>\r\n<head><title>403 Forbidden</title></head>\r\n<body>\r\n<center><h1>403 Forbidden</h1></center>\r\n<hr><center>openresty</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "6efe0d3647b5209f903b2073ca42fa6a",
   "datammh3" : -1373466463,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS21859",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "zenlayer.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "ZENLA-7",
      "organization" : "Zenlayer Inc",
      "subnet" : "98.98.44.0/23"
   },
   "ip" : "98.98.45.48",
   "ipv6" : "false",
   "latitude" : "35.6893",
   "location" : "35.6893,139.6899",
   "longitude" : "139.6899",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "ZEN-ECN",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 1099,
   "product" : "OpenResty",
   "productvendor" : "OpenResty",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Forbidden",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 403,
   "subnet" : "98.98.32.0/19",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
119.147.227.16

Network
119.144.0.0/14

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://119.147.227.16:1099/ 403

HTTP Title
403 Forbidden

ASN
AS4134

Organization
Chinanet

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
OpenResty OpenResty

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
622e740d27e50f3fb86ad8875ea2daeb

HTTP Header MD5
e7e074368da72851b88c13e0e45679c4

HTTP Body MD5
60bb83ecb2636b0746851830fee4f930

HTTP/1.1 403 Forbidden
Server: openresty
Date: Thu, 21 Nov 2024 08:56:31 GMT
Content-Type: text/html
Content-Length: 150
Connection: close
Deny-Reason: hotload rechange server uri format error!!
Request-Id: e310673ef5bf7793250fa7707de4e0d5

<html>
<head><title>403 Forbidden</title></head>
<body>
<center><h1>403 Forbidden</h1></center>
<hr><center>openresty</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:56:32.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "60bb83ecb2636b0746851830fee4f930",
         "bodymmh3" : -74289043,
         "headermd5" : "e7e074368da72851b88c13e0e45679c4",
         "headermmh3" : -1279948606,
         "title" : "403 Forbidden"
      },
      "length" : 400
   },
   "asn" : "AS4134",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 403 Forbidden\r\nServer: openresty\r\nDate: Thu, 21 Nov 2024 08:56:31 GMT\r\nContent-Type: text/html\r\nContent-Length: 150\r\nConnection: close\r\nDeny-Reason: hotload rechange server uri format error!!\r\nRequest-Id: e310673ef5bf7793250fa7707de4e0d5\r\n\r\n<html>\r\n<head><title>403 Forbidden</title></head>\r\n<body>\r\n<center><h1>403 Forbidden</h1></center>\r\n<hr><center>openresty</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "622e740d27e50f3fb86ad8875ea2daeb",
   "datammh3" : 1105048354,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4134",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "163.com",
         "chinatelecom.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "CHINANET-GD",
      "organization" : "CHINANET Guangdong province network",
      "subnet" : "119.144.0.0/14"
   },
   "ip" : "119.147.227.16",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Chinanet",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 1099,
   "product" : "OpenResty",
   "productvendor" : "OpenResty",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Forbidden",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 403,
   "subnet" : "119.144.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
180.189.98.139

Network
180.189.64.0/18

Device

<enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

Operating System
Linux Linux

URL

http://180.189.98.139:1099/ 200

ASN
AS9770

Organization
LG HelloVision Corp.

Protocol
http

Source
datascan
Operating System
Linux Linux

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
a5179adf59dab7a7aa4ed2ebd49bd225

HTTP Header MD5
fefb1be2a26c18b07552b5627854ed4c

HTTP Body MD5
b3101955f9d95247b507748636a6e096

HTTP/1.1 200 OK
DLNADeviceName.lge.com: %5bLG%5d%20webOS%20TV%20UK681C
Date: Thu, 21 Nov 2024 08:56:31 GMT
Content-Language: en
Server: Linux/i686 UPnP/1,0 DLNADOC/1.50 LGE WebOS TV/Version 0.9
Content-Length: 3587
Content-Type: text/xml; charset="utf-8"
Connection: close

<?xml version="1.0" encoding="UTF-8"?>
<root xmlns="urn:schemas-upnp-org:device-1-0" xmlns:dlna="urn:schemas-dlna-org:device-1-0" xmlns:pnpx="http://schemas.microsoft.com/windows/pnpx/2005/11" xmlns:df="http://schemas.microsoft.com/windows/2008/09/devicefoundation">
  <specVersion>
    <major>1</major>
    <minor>0</minor>
  </specVersion>
  <device>
    <deviceType>urn:schemas-upnp-org:device:MediaRenderer:1</deviceType>
    <friendlyName>[LG] webOS TV UK681C</friendlyName>
    <manufacturer>LG Electronics.</manufacturer>
    <manufacturerURL>http://www.lge.com</manufacturerURL>
    <modelDescription>LG WebOSTV DMRplus</modelDescription>
    <modelName>LG TV</modelName>
    <modelURL></modelURL>
    <modelNumber>1.0</modelNumber>
    <serialNumber></serialNumber>
    <UDN>uuid:3ca48a42-8121-8b8f-0946-29ade1e9e5f1</UDN>
    <pnpx:X_compatibleId>MS_DigitalMediaDeviceClass_DMR_V001</pnpx:X_compatibleId>
    <pnpx:X_deviceCategory>MediaDevices</pnpx:X_deviceCategory>
    <df:X_deviceCategory>Multimedia.DMR</df:X_deviceCategory>
    <df:X_modelId>LG Digital Media Renderer TV</df:X_modelId>
    <lge:X_LG_DLNA_DOC xmlns:lge="urn:lge-com:device-1-0">1.0</lge:X_LG_DLNA_DOC>
    <dlna:X_DLNADOC xmlns:dlna="urn:schemas-dlna-org:device-1-0">DMR-1.50</dlna:X_DLNADOC>
    <iconList>
      <icon>
        <mimetype>image/jpeg</mimetype>
        <width>48</width>
        <height>48</height>
        <depth>24</depth>
        <url>/dmrIcon_48.jpeg</url>
      </icon>
      <icon>
        <mimetype>image/jpeg</mimetype>
        <width>120</width>
        <height>120</height>
        <depth>24</depth>
        <url>/dmrIcon_120.jpeg</url>
      </icon>
      <icon>
        <mimetype>image/png</mimetype>
        <width>48</width>
        <height>48</height>
        <depth>24</depth>
        <url>/dmrIcon_48.png</url>
      </icon>
      <icon>
        <mimetype>image/png</mimetype>
        <width>120</width>
        <height>120</height>
        <depth>8</depth>
        <url>/dmrIcon_120.png</url>
      </icon>
    </iconList>
    <serviceList>
      <service>
        <serviceType>urn:schemas-upnp-org:service:AVTransport:1</serviceType>
        <serviceId>urn:upnp-org:serviceId:AVTransport</serviceId>
        <SCPDURL>/AVTransport/3ca48a42-8121-8b8f-0946-29ade1e9e5f1/scpd.xml</SCPDURL>
        <controlURL>/AVTransport/3ca48a42-8121-8b8f-0946-29ade1e9e5f1/control.xml</controlURL>
        <eventSubURL>/AVTransport/3ca48a42-8121-8b8f-0946-29ade1e9e5f1/event.xml</eventSubURL>
      </service>
      <service>
        <serviceType>urn:schemas-upnp-org:service:ConnectionManager:1</serviceType>
        <serviceId>urn:upnp-org:serviceId:ConnectionManager</serviceId>
        <SCPDURL>/ConnectionManager/3ca48a42-8121-8b8f-0946-29ade1e9e5f1/scpd.xml</SCPDURL>
        <controlURL>/ConnectionManager/3ca48a42-8121-8b8f-0946-29ade1e9e5f1/control.xml</controlURL>
        <eventSubURL>/ConnectionManager/3ca48a42-8121-8b8f-0946-29ade1e9e5f1/event.xml</eventSubURL>
      </service>
      <service>
        <serviceType>urn:schemas-upnp-org:service:RenderingControl:1</serviceType>
        <serviceId>urn:upnp-org:serviceId:RenderingControl</serviceId>
        <SCPDURL>/RenderingControl/3ca48a42-8121-8b8f-0946-29ade1e9e5f1/scpd.xml</SCPDURL>
        <controlURL>/RenderingControl/3ca48a42-8121-8b8f-0946-29ade1e9e5f1/control.xml</controlURL>
        <eventSubURL>/RenderingControl/3ca48a42-8121-8b8f-0946-29ade1e9e5f1/event.xml</eventSubURL>
      </service>
    </serviceList>
  </device>
</root>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:56:31.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "lge.com",
            "microsoft.com"
         ],
         "hostname" : [
            "schemas.microsoft.com",
            "www.lge.com"
         ],
         "url" : [
            "http://schemas.microsoft.com/windows/2008/09/devicefoundation",
            "http://schemas.microsoft.com/windows/pnpx/2005/11",
            "http://www.lge.com"
         ]
      },
      "http" : {
         "bodymd5" : "b3101955f9d95247b507748636a6e096",
         "bodymmh3" : 1681519704,
         "headermd5" : "fefb1be2a26c18b07552b5627854ed4c",
         "headermmh3" : 79933415
      },
      "length" : 3870
   },
   "asn" : "AS9770",
   "city" : "Gyeongsan-si",
   "country" : "KR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nDLNADeviceName.lge.com: %5bLG%5d%20webOS%20TV%20UK681C\r\nDate: Thu, 21 Nov 2024 08:56:31 GMT\r\nContent-Language: en\r\nServer: Linux/i686 UPnP/1,0 DLNADOC/1.50 LGE WebOS TV/Version 0.9\r\nContent-Length: 3587\r\nContent-Type: text/xml; charset=\"utf-8\"\r\nConnection: close\r\n\r\n<?xml version=\"1.0\" encoding=\"UTF-8\"?>\r\n<root xmlns=\"urn:schemas-upnp-org:device-1-0\" xmlns:dlna=\"urn:schemas-dlna-org:device-1-0\" xmlns:pnpx=\"http://schemas.microsoft.com/windows/pnpx/2005/11\" xmlns:df=\"http://schemas.microsoft.com/windows/2008/09/devicefoundation\">\r\n  <specVersion>\r\n    <major>1</major>\r\n    <minor>0</minor>\r\n  </specVersion>\r\n  <device>\r\n    <deviceType>urn:schemas-upnp-org:device:MediaRenderer:1</deviceType>\r\n    <friendlyName>[LG] webOS TV UK681C</friendlyName>\r\n    <manufacturer>LG Electronics.</manufacturer>\r\n    <manufacturerURL>http://www.lge.com</manufacturerURL>\r\n    <modelDescription>LG WebOSTV DMRplus</modelDescription>\r\n    <modelName>LG TV</modelName>\r\n    <modelURL></modelURL>\r\n    <modelNumber>1.0</modelNumber>\r\n    <serialNumber></serialNumber>\r\n    <UDN>uuid:3ca48a42-8121-8b8f-0946-29ade1e9e5f1</UDN>\r\n    <pnpx:X_compatibleId>MS_DigitalMediaDeviceClass_DMR_V001</pnpx:X_compatibleId>\r\n    <pnpx:X_deviceCategory>MediaDevices</pnpx:X_deviceCategory>\r\n    <df:X_deviceCategory>Multimedia.DMR</df:X_deviceCategory>\r\n    <df:X_modelId>LG Digital Media Renderer TV</df:X_modelId>\r\n    <lge:X_LG_DLNA_DOC xmlns:lge=\"urn:lge-com:device-1-0\">1.0</lge:X_LG_DLNA_DOC>\r\n    <dlna:X_DLNADOC xmlns:dlna=\"urn:schemas-dlna-org:device-1-0\">DMR-1.50</dlna:X_DLNADOC>\r\n    <iconList>\r\n      <icon>\r\n        <mimetype>image/jpeg</mimetype>\r\n        <width>48</width>\r\n        <height>48</height>\r\n        <depth>24</depth>\r\n        <url>/dmrIcon_48.jpeg</url>\r\n      </icon>\r\n      <icon>\r\n        <mimetype>image/jpeg</mimetype>\r\n        <width>120</width>\r\n        <height>120</height>\r\n        <depth>24</depth>\r\n        <url>/dmrIcon_120.jpeg</url>\r\n      </icon>\r\n      <icon>\r\n        <mimetype>image/png</mimetype>\r\n        <width>48</width>\r\n        <height>48</height>\r\n        <depth>24</depth>\r\n        <url>/dmrIcon_48.png</url>\r\n      </icon>\r\n      <icon>\r\n        <mimetype>image/png</mimetype>\r\n        <width>120</width>\r\n        <height>120</height>\r\n        <depth>8</depth>\r\n        <url>/dmrIcon_120.png</url>\r\n      </icon>\r\n    </iconList>\r\n    <serviceList>\r\n      <service>\r\n        <serviceType>urn:schemas-upnp-org:service:AVTransport:1</serviceType>\r\n        <serviceId>urn:upnp-org:serviceId:AVTransport</serviceId>\r\n        <SCPDURL>/AVTransport/3ca48a42-8121-8b8f-0946-29ade1e9e5f1/scpd.xml</SCPDURL>\r\n        <controlURL>/AVTransport/3ca48a42-8121-8b8f-0946-29ade1e9e5f1/control.xml</controlURL>\r\n        <eventSubURL>/AVTransport/3ca48a42-8121-8b8f-0946-29ade1e9e5f1/event.xml</eventSubURL>\r\n      </service>\r\n      <service>\r\n        <serviceType>urn:schemas-upnp-org:service:ConnectionManager:1</serviceType>\r\n        <serviceId>urn:upnp-org:serviceId:ConnectionManager</serviceId>\r\n        <SCPDURL>/ConnectionManager/3ca48a42-8121-8b8f-0946-29ade1e9e5f1/scpd.xml</SCPDURL>\r\n        <controlURL>/ConnectionManager/3ca48a42-8121-8b8f-0946-29ade1e9e5f1/control.xml</controlURL>\r\n        <eventSubURL>/ConnectionManager/3ca48a42-8121-8b8f-0946-29ade1e9e5f1/event.xml</eventSubURL>\r\n      </service>\r\n      <service>\r\n        <serviceType>urn:schemas-upnp-org:service:RenderingControl:1</serviceType>\r\n        <serviceId>urn:upnp-org:serviceId:RenderingControl</serviceId>\r\n        <SCPDURL>/RenderingControl/3ca48a42-8121-8b8f-0946-29ade1e9e5f1/scpd.xml</SCPDURL>\r\n        <controlURL>/RenderingControl/3ca48a42-8121-8b8f-0946-29ade1e9e5f1/control.xml</controlURL>\r\n        <eventSubURL>/RenderingControl/3ca48a42-8121-8b8f-0946-29ade1e9e5f1/event.xml</eventSubURL>\r\n      </service>\r\n    </serviceList>\r\n  </device>\r\n</root>",
   "datamd5" : "a5179adf59dab7a7aa4ed2ebd49bd225",
   "datammh3" : 1694840249,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "geolocus" : {
      "asn" : "AS9770",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "KR",
      "countryname" : "South Korea",
      "domain" : [
         "nic.or.kr",
         "onmicrosoft.com"
      ],
      "isineu" : "false",
      "latitude" : "35.907757",
      "location" : "35.907757,127.766922",
      "longitude" : "127.766922",
      "netname" : "LG-HELLOVISION",
      "organization" : "LG HELLOVISION CORP.",
      "subnet" : "180.189.64.0/18"
   },
   "ip" : "180.189.98.139",
   "ipv6" : "false",
   "latitude" : "35.8240",
   "location" : "35.8240,128.7304",
   "longitude" : "128.7304",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "LG HelloVision Corp.",
   "os" : "Linux",
   "osvendor" : "Linux",
   "port" : 1099,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "180.189.64.0/18",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
218.60.173.155

Network
218.60.0.0/15

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://218.60.173.155:1099/ 403

HTTP Title
403 Forbidden

ASN
AS4837

Organization
CHINA UNICOM China169 Backbone

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
OpenResty OpenResty

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
acfb5cf690dd8569fed2680a3f9a0dac

HTTP Header MD5
fe4f74b1baa86e3fe1aace95c3c64de5

HTTP Body MD5
60bb83ecb2636b0746851830fee4f930

HTTP/1.1 403 Forbidden
Server: openresty
Date: Thu, 21 Nov 2024 08:56:07 GMT
Content-Type: text/html
Content-Length: 150
Connection: close
Deny-Reason: hotload rechange server uri format error!!
Request-Id: ad9b673ef5a7da3c69f3a5a0c5aefb52

<html>
<head><title>403 Forbidden</title></head>
<body>
<center><h1>403 Forbidden</h1></center>
<hr><center>openresty</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:56:07.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "60bb83ecb2636b0746851830fee4f930",
         "bodymmh3" : -74289043,
         "headermd5" : "fe4f74b1baa86e3fe1aace95c3c64de5",
         "headermmh3" : 1512771612,
         "title" : "403 Forbidden"
      },
      "length" : 400
   },
   "asn" : "AS4837",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 403 Forbidden\r\nServer: openresty\r\nDate: Thu, 21 Nov 2024 08:56:07 GMT\r\nContent-Type: text/html\r\nContent-Length: 150\r\nConnection: close\r\nDeny-Reason: hotload rechange server uri format error!!\r\nRequest-Id: ad9b673ef5a7da3c69f3a5a0c5aefb52\r\n\r\n<html>\r\n<head><title>403 Forbidden</title></head>\r\n<body>\r\n<center><h1>403 Forbidden</h1></center>\r\n<hr><center>openresty</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "acfb5cf690dd8569fed2680a3f9a0dac",
   "datammh3" : 1237770925,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4837",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinaunicom.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "UNICOM-LN",
      "organization" : "CNC Group CHINA169 Liaoning Province Network",
      "subnet" : "218.60.128.0/17"
   },
   "ip" : "218.60.173.155",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "CHINA UNICOM China169 Backbone",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 1099,
   "product" : "OpenResty",
   "productvendor" : "OpenResty",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Forbidden",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 403,
   "subnet" : "218.60.0.0/15",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
62.228.21.119

Network
62.228.0.0/17

Domain(s)
cytanet.com.cy

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://62.228.21.119:1099/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

Reverse DNS
62-21-119.netrun.cytanet.com.cy

ASN
AS6866

Organization
Cyprus Telecommunications Authority

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0c1820e0d381850a77897bf32978a1f0

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
ea425366a98dfc499c0cbeedb9a4f02a

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 21 Nov 2024 08:56:05 GMT
Content-Type: text/html
Content-Length: 248
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:56:05.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
         "bodymmh3" : 1153229498,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : 2125445855,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 393
   },
   "asn" : "AS6866",
   "city" : "Limassol",
   "country" : "CY",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 21 Nov 2024 08:56:05 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
   "datammh3" : 190190724,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "cytanet.com.cy"
   ],
   "geolocus" : {
      "asn" : "AS6866",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "CY",
      "countryname" : "Cyprus",
      "domain" : [
         "cytanet.com.cy"
      ],
      "isineu" : "true",
      "latitude" : "35.126413",
      "location" : "35.126413,33.429859",
      "longitude" : "33.429859",
      "netname" : "CYTANET",
      "organization" : "CYTANET - Cyprus Telecommunications Authority",
      "subnet" : "62.228.0.0/19"
   },
   "host" : [
      "62-21-119"
   ],
   "hostname" : [
      "62-21-119.netrun.cytanet.com.cy"
   ],
   "ip" : "62.228.21.119",
   "ipv6" : "false",
   "latitude" : "34.6874",
   "location" : "34.6874,33.0366",
   "longitude" : "33.0366",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Cyprus Telecommunications Authority",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 1099,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "reverse" : [
      "62-21-119.netrun.cytanet.com.cy"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "netrun.cytanet.com.cy"
   ],
   "subnet" : "62.228.0.0/17",
   "tld" : [
      "com.cy"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
44.243.255.119

Network
44.224.0.0/11

Domain(s)
amazonaws.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://44.243.255.119:1099/ 200

HTTP Title
Infocon Holding - EasyIO-30P Sedona

Reverse DNS
ec2-44-243-255-119.us-west-2.compute.amazonaws.com

ASN
AS16509

Organization
AMAZON-02

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
a0d13f5a8644408f638911c1a4d30bc0

HTTP Header MD5
b93e910767bc7dd35ce0736d46622fe3

HTTP Body MD5
1852f44d5a4231d68b3b2ca70e893cc5

HTTP/1.1 200 OK
Connection: close
Date: Thu, 21 Nov 2024 08:56:04 GMT
Server: nginx
Content-Type: text/html
Content-Length: 1289

<html><head><link rel=stylesheet type="text/css" href=menu.css><title>Infocon Holding - EasyIO-30P Sedona</title></head><body style="margin:0;" onload="onDocLoad();"><script language=javascript src=menuitem.js></script><script language=javascript src=menusc.js></script><div id=dropMenu onmouseout="onDropMenuMouseout(event);" onmouseover="onDropMenuMouseover();"></div><TABLE width=100% cellSpacing=0 cellPadding=0 bgcolor=#ffffff border=0 align=center><tr><td height=53px><img src=logo.gif class='clsMenu'><img src=btl.jpg></td></tr><tr><td><table width=100% bgcolor=#ece9d8 cellSpacing=0 cellPadding=2 border=1><tr id=menubar><td height=28><span id=mmenu onmouseover="onMenuBarMouseover();"></span></td><td id=login></td><td id=userid></td></tr></table></td></tr><tr height=768 valign=top align=center bgcolor="white"><td><table><tr><td colspan=2 height=10></td></tr><TR><Th colspan=2 id="cTtl"></Th></TR><tr><td align=center colspan=2><br></td></tr><tr><td colspan=2 height=10></td></tr><tr><td colspan=2 ID="cTbl"></td></tr><tr><td colspan=2 height=10></td></tr></table></td></tr></table><script language=javascript src=main.js></script><script language=javascript src=table.js></script><script language=javascript>function onDocLoad(){cTxtTbl();createMenu();}</script></body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:56:05.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "1852f44d5a4231d68b3b2ca70e893cc5",
         "bodymmh3" : 777722857,
         "headermd5" : "b93e910767bc7dd35ce0736d46622fe3",
         "headermmh3" : -321807558,
         "title" : "Infocon Holding - EasyIO-30P Sedona"
      },
      "length" : 1426
   },
   "asn" : "AS16509",
   "city" : "Boardman",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nConnection: close\r\nDate: Thu, 21 Nov 2024 08:56:04 GMT\r\nServer: nginx\r\nContent-Type: text/html\r\nContent-Length: 1289\r\n\r\n<html><head><link rel=stylesheet type=\"text/css\" href=menu.css><title>Infocon Holding - EasyIO-30P Sedona</title></head><body style=\"margin:0;\" onload=\"onDocLoad();\"><script language=javascript src=menuitem.js></script><script language=javascript src=menusc.js></script><div id=dropMenu onmouseout=\"onDropMenuMouseout(event);\" onmouseover=\"onDropMenuMouseover();\"></div><TABLE width=100% cellSpacing=0 cellPadding=0 bgcolor=#ffffff border=0 align=center><tr><td height=53px><img src=logo.gif class='clsMenu'><img src=btl.jpg></td></tr><tr><td><table width=100% bgcolor=#ece9d8 cellSpacing=0 cellPadding=2 border=1><tr id=menubar><td height=28><span id=mmenu onmouseover=\"onMenuBarMouseover();\"></span></td><td id=login></td><td id=userid></td></tr></table></td></tr><tr height=768 valign=top align=center bgcolor=\"white\"><td><table><tr><td colspan=2 height=10></td></tr><TR><Th colspan=2 id=\"cTtl\"></Th></TR><tr><td align=center colspan=2><br></td></tr><tr><td colspan=2 height=10></td></tr><tr><td colspan=2 ID=\"cTbl\"></td></tr><tr><td colspan=2 height=10></td></tr></table></td></tr></table><script language=javascript src=main.js></script><script language=javascript src=table.js></script><script language=javascript>function onDocLoad(){cTxtTbl();createMenu();}</script></body></html>\u0000",
   "datamd5" : "a0d13f5a8644408f638911c1a4d30bc0",
   "datammh3" : -2071317735,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amazonaws.com"
   ],
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "amazon.com",
         "amazonaws.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "AMAZO-ZPDX",
      "organization" : "Amazon.com, Inc.",
      "subnet" : "44.224.0.0/11"
   },
   "host" : [
      "ec2-44-243-255-119"
   ],
   "hostname" : [
      "ec2-44-243-255-119.us-west-2.compute.amazonaws.com"
   ],
   "ip" : "44.243.255.119",
   "ipv6" : "false",
   "latitude" : "45.8491",
   "location" : "45.8491,-119.7143",
   "longitude" : "-119.7143",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 1099,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "ec2-44-243-255-119.us-west-2.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "compute.amazonaws.com",
      "us-west-2.compute.amazonaws.com"
   ],
   "subnet" : "44.224.0.0/11",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
13.244.142.174

Network
13.244.0.0/14

Domain(s)
amazonaws.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://13.244.142.174:1099/ 200

HTTP Title
Infocon Holding - EasyIO-30P Sedona

Reverse DNS
ec2-13-244-142-174.af-south-1.compute.amazonaws.com

ASN
AS16509

Organization
AMAZON-02

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
a0d13f5a8644408f638911c1a4d30bc0

HTTP Header MD5
b93e910767bc7dd35ce0736d46622fe3

HTTP Body MD5
1852f44d5a4231d68b3b2ca70e893cc5

HTTP/1.1 200 OK
Connection: close
Date: Thu, 21 Nov 2024 08:55:34 GMT
Server: nginx
Content-Type: text/html
Content-Length: 1289

<html><head><link rel=stylesheet type="text/css" href=menu.css><title>Infocon Holding - EasyIO-30P Sedona</title></head><body style="margin:0;" onload="onDocLoad();"><script language=javascript src=menuitem.js></script><script language=javascript src=menusc.js></script><div id=dropMenu onmouseout="onDropMenuMouseout(event);" onmouseover="onDropMenuMouseover();"></div><TABLE width=100% cellSpacing=0 cellPadding=0 bgcolor=#ffffff border=0 align=center><tr><td height=53px><img src=logo.gif class='clsMenu'><img src=btl.jpg></td></tr><tr><td><table width=100% bgcolor=#ece9d8 cellSpacing=0 cellPadding=2 border=1><tr id=menubar><td height=28><span id=mmenu onmouseover="onMenuBarMouseover();"></span></td><td id=login></td><td id=userid></td></tr></table></td></tr><tr height=768 valign=top align=center bgcolor="white"><td><table><tr><td colspan=2 height=10></td></tr><TR><Th colspan=2 id="cTtl"></Th></TR><tr><td align=center colspan=2><br></td></tr><tr><td colspan=2 height=10></td></tr><tr><td colspan=2 ID="cTbl"></td></tr><tr><td colspan=2 height=10></td></tr></table></td></tr></table><script language=javascript src=main.js></script><script language=javascript src=table.js></script><script language=javascript>function onDocLoad(){cTxtTbl();createMenu();}</script></body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:55:34.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "1852f44d5a4231d68b3b2ca70e893cc5",
         "bodymmh3" : 777722857,
         "headermd5" : "b93e910767bc7dd35ce0736d46622fe3",
         "headermmh3" : -764920425,
         "title" : "Infocon Holding - EasyIO-30P Sedona"
      },
      "length" : 1426
   },
   "asn" : "AS16509",
   "city" : "Cape Town",
   "country" : "ZA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nConnection: close\r\nDate: Thu, 21 Nov 2024 08:55:34 GMT\r\nServer: nginx\r\nContent-Type: text/html\r\nContent-Length: 1289\r\n\r\n<html><head><link rel=stylesheet type=\"text/css\" href=menu.css><title>Infocon Holding - EasyIO-30P Sedona</title></head><body style=\"margin:0;\" onload=\"onDocLoad();\"><script language=javascript src=menuitem.js></script><script language=javascript src=menusc.js></script><div id=dropMenu onmouseout=\"onDropMenuMouseout(event);\" onmouseover=\"onDropMenuMouseover();\"></div><TABLE width=100% cellSpacing=0 cellPadding=0 bgcolor=#ffffff border=0 align=center><tr><td height=53px><img src=logo.gif class='clsMenu'><img src=btl.jpg></td></tr><tr><td><table width=100% bgcolor=#ece9d8 cellSpacing=0 cellPadding=2 border=1><tr id=menubar><td height=28><span id=mmenu onmouseover=\"onMenuBarMouseover();\"></span></td><td id=login></td><td id=userid></td></tr></table></td></tr><tr height=768 valign=top align=center bgcolor=\"white\"><td><table><tr><td colspan=2 height=10></td></tr><TR><Th colspan=2 id=\"cTtl\"></Th></TR><tr><td align=center colspan=2><br></td></tr><tr><td colspan=2 height=10></td></tr><tr><td colspan=2 ID=\"cTbl\"></td></tr><tr><td colspan=2 height=10></td></tr></table></td></tr></table><script language=javascript src=main.js></script><script language=javascript src=table.js></script><script language=javascript>function onDocLoad(){cTxtTbl();createMenu();}</script></body></html>\u0000",
   "datamd5" : "a0d13f5a8644408f638911c1a4d30bc0",
   "datammh3" : -2071317735,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amazonaws.com"
   ],
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "AF",
      "continentname" : "Africa",
      "country" : "ZA",
      "countryname" : "South Africa",
      "domain" : [
         "amazon.com",
         "amazonaws.com",
         "aws.com"
      ],
      "isineu" : "false",
      "latitude" : "-30.559482",
      "location" : "-30.559482,22.937506",
      "longitude" : "22.937506",
      "netname" : "AMAZON-CPT",
      "organization" : "Amazon Data Services South Africa",
      "subnet" : "13.244.0.0/14"
   },
   "host" : [
      "ec2-13-244-142-174"
   ],
   "hostname" : [
      "ec2-13-244-142-174.af-south-1.compute.amazonaws.com"
   ],
   "ip" : "13.244.142.174",
   "ipv6" : "false",
   "latitude" : "-34.0486",
   "location" : "-34.0486,18.4811",
   "longitude" : "18.4811",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 1099,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "ec2-13-244-142-174.af-south-1.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "af-south-1.compute.amazonaws.com",
      "compute.amazonaws.com"
   ],
   "subnet" : "13.244.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
119.0.79.31

Network
119.0.64.0/19

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://119.0.79.31:1099/ 403

HTTP Title
403 Forbidden

ASN
AS139203

Organization
Guizhou GuiAn IDC

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
OpenResty OpenResty

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
7fd8453c6913fab7d3ee5ef1747d0432

HTTP Header MD5
eb6f83cd7aa107575daf48534bcbaf79

HTTP Body MD5
60bb83ecb2636b0746851830fee4f930

HTTP/1.1 403 Forbidden
Server: openresty
Date: Thu, 21 Nov 2024 08:55:33 GMT
Content-Type: text/html
Content-Length: 150
Connection: close
Deny-Reason: hotload rechange server uri format error!!
Request-Id: 4f1f673ef58577007e9e6b5218d2c033

<html>
<head><title>403 Forbidden</title></head>
<body>
<center><h1>403 Forbidden</h1></center>
<hr><center>openresty</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:55:33.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "60bb83ecb2636b0746851830fee4f930",
         "bodymmh3" : -74289043,
         "headermd5" : "eb6f83cd7aa107575daf48534bcbaf79",
         "headermmh3" : -1860249932,
         "title" : "403 Forbidden"
      },
      "length" : 400
   },
   "asn" : "AS139203",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 403 Forbidden\r\nServer: openresty\r\nDate: Thu, 21 Nov 2024 08:55:33 GMT\r\nContent-Type: text/html\r\nContent-Length: 150\r\nConnection: close\r\nDeny-Reason: hotload rechange server uri format error!!\r\nRequest-Id: 4f1f673ef58577007e9e6b5218d2c033\r\n\r\n<html>\r\n<head><title>403 Forbidden</title></head>\r\n<body>\r\n<center><h1>403 Forbidden</h1></center>\r\n<hr><center>openresty</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "7fd8453c6913fab7d3ee5ef1747d0432",
   "datammh3" : -2042374422,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS139203",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinatelecom.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "CHINANET-GZ",
      "organization" : "China Telecom",
      "subnet" : "119.0.64.0/19"
   },
   "ip" : "119.0.79.31",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Guizhou GuiAn IDC",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 1099,
   "product" : "OpenResty",
   "productvendor" : "OpenResty",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Forbidden",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 403,
   "subnet" : "119.0.64.0/19",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

Returning 10 result(s) out of 50,858 in 0.215 second(s)

211.83.10.68:1099 (tcp/http) - last seen on 2024-11-21 at 08:57:07 UTC

182.106.195.135:1099 (tcp/http) - last seen on 2024-11-21 at 08:57:00 UTC

98.98.45.48:1099 (tcp/http) - last seen on 2024-11-21 at 08:56:59 UTC

119.147.227.16:1099 (tcp/http) - last seen on 2024-11-21 at 08:56:32 UTC

180.189.98.139:1099 (tcp/http) - last seen on 2024-11-21 at 08:56:31 UTC

218.60.173.155:1099 (tcp/http) - last seen on 2024-11-21 at 08:56:07 UTC

62.228.21.119:1099 (tcp/http) - last seen on 2024-11-21 at 08:56:05 UTC

44.243.255.119:1099 (tcp/http) - last seen on 2024-11-21 at 08:56:05 UTC

13.244.142.174:1099 (tcp/http) - last seen on 2024-11-21 at 08:55:34 UTC

119.0.79.31:1099 (tcp/http) - last seen on 2024-11-21 at 08:55:33 UTC