Cyber Defense Search Engine

IP
5.78.31.163

Network
5.78.0.0/16

Domain(s)
your-server.de

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
static.163.31.78.5.clients.your-server.de

ASN
AS212317

Organization
Hetzner Online GmbH

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
26f863247ceceb227f0ad4855d96930e

HTTP Header MD5
1e83b7a45956aa84d21d5ae87974ff97

HTTP Body MD5
1427eab8d21a39cecc59fcd7982abb6f

HTTP/1.1 509 OK
Date: Wed, 20 Jan 2021 05:55:41 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 41
Connection: keep-alive

port expire <srcip> <ip>:9401

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:37:30.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "1427eab8d21a39cecc59fcd7982abb6f",
         "bodymmh3" : 266974771,
         "headermd5" : "1e83b7a45956aa84d21d5ae87974ff97",
         "headermmh3" : -1286394930
      },
      "length" : 168
   },
   "asn" : "AS212317",
   "city" : "Hillsboro",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 509 OK\nDate: Wed, 20 Jan 2021 05:55:41 GMT\nContent-Type: text/plain; charset=utf-8\nContent-Length: 41\nConnection: keep-alive\n\nport expire <srcip> <ip>:9401\r\n\r\n",
   "datamd5" : "26f863247ceceb227f0ad4855d96930e",
   "datammh3" : 1691999524,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "your-server.de"
   ],
   "geolocus" : {
      "asn" : "AS212317",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "hetzner.com",
         "your-server.de"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "DE-HETZNER-20120612",
      "organization" : "Hetzner Online GmbH",
      "subnet" : "5.78.0.0/17"
   },
   "host" : [
      "static"
   ],
   "hostname" : [
      "static.163.31.78.5.clients.your-server.de"
   ],
   "ip" : "5.78.31.163",
   "ipv6" : "false",
   "latitude" : "45.5260",
   "location" : "45.5260,-122.9874",
   "longitude" : "-122.9874",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Hetzner Online GmbH",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 9401,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "static.163.31.78.5.clients.your-server.de"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 509,
   "subdomains" : [
      "163.31.78.5.clients.your-server.de",
      "31.78.5.clients.your-server.de",
      "5.clients.your-server.de",
      "78.5.clients.your-server.de",
      "clients.your-server.de"
   ],
   "subnet" : "5.78.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "de"
   ],
   "tls" : "false",
   "transport" : "tcp"
}

IP
163.172.100.141

Network
163.172.0.0/16

Domain(s)
poneytelecom.eu

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
163-172-100-141.rev.poneytelecom.eu

ASN
AS12876

Organization
Scaleway S.a.s.

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
1f7e8de7c99cf351e94a31907d24d96e

HTTP Header MD5
f7cb0809bf4c367e632d72473f9f285c

HTTP Body MD5
dcd0f85ead52886829c04f47ef3ccf52

HTTP/1.1 400 Bad Request
Date: Thu, 21 Nov 2024 10:35:36 GMT
Connection: close
Content-Type: text/plain; charset=UTF-8
Content-Length: 23

Unsupported HTTP method

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:35:38.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "dcd0f85ead52886829c04f47ef3ccf52",
         "bodymmh3" : -1280256413,
         "headermd5" : "f7cb0809bf4c367e632d72473f9f285c",
         "headermmh3" : 356783876
      },
      "length" : 168
   },
   "asn" : "AS12876",
   "country" : "FR",
   "data" : "HTTP/1.1 400 Bad Request\r\nDate: Thu, 21 Nov 2024 10:35:36 GMT\r\nConnection: close\r\nContent-Type: text/plain; charset=UTF-8\r\nContent-Length: 23\r\n\r\nUnsupported HTTP method",
   "datamd5" : "1f7e8de7c99cf351e94a31907d24d96e",
   "datammh3" : 1516573621,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "poneytelecom.eu"
   ],
   "geolocus" : {
      "asn" : "AS12876",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "FR",
      "countryname" : "France",
      "domain" : [
         "scaleway.com"
      ],
      "isineu" : "true",
      "latitude" : "46.227638",
      "location" : "46.227638,2.213749",
      "longitude" : "2.213749",
      "netname" : "SCALEWAY-DEDIBOX",
      "organization" : "Scaleway",
      "subnet" : "163.172.0.0/16"
   },
   "host" : [
      "163-172-100-141"
   ],
   "hostname" : [
      "163-172-100-141.rev.poneytelecom.eu"
   ],
   "ip" : "163.172.100.141",
   "ipv6" : "false",
   "latitude" : "48.8582",
   "location" : "48.8582,2.3387",
   "longitude" : "2.3387",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Scaleway S.a.s.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 9401,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "reverse" : [
      "163-172-100-141.rev.poneytelecom.eu"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "rev.poneytelecom.eu"
   ],
   "subnet" : "163.172.0.0/16",
   "tld" : [
      "eu"
   ],
   "tls" : "false",
   "transport" : "tcp"
}

IP
91.144.189.244

Network
91.144.189.0/24

Domain(s)
ertelecom.ru

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
91x144x189x244.static-business.omsk.ertelecom.ru

ASN
AS41843

Organization
JSC ER-Telecom Holding

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
ab37c8a80655756c5936ce1e093031c5

HTTP Header MD5
8c1538fbbca4912efec53f51e6ae4df5

HTTP Body MD5
080a3009c031a978e95f74091561b09f

HTTP/1.1 500 Server Error
Content-Length: 48
Date: Thu, 21 Nov 2024 10:32:06 GMT
Connection: close

Error 500: Server Error
Client closed connection

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:32:07.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "080a3009c031a978e95f74091561b09f",
         "bodymmh3" : 63629334,
         "headermd5" : "8c1538fbbca4912efec53f51e6ae4df5",
         "headermmh3" : 775284976
      },
      "length" : 153
   },
   "asn" : "AS41843",
   "country" : "RU",
   "data" : "HTTP/1.1 500 Server Error\r\nContent-Length: 48\r\nDate: Thu, 21 Nov 2024 10:32:06 GMT\r\nConnection: close\r\n\r\nError 500: Server Error\nClient closed connection",
   "datamd5" : "ab37c8a80655756c5936ce1e093031c5",
   "datammh3" : -2023267592,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "ertelecom.ru"
   ],
   "geolocus" : {
      "asn" : "AS41843",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "RU",
      "countryname" : "Russia",
      "domain" : [
         "domru.ru",
         "ertelecom.ru"
      ],
      "isineu" : "false",
      "latitude" : "61.52401",
      "location" : "61.52401,105.318756",
      "longitude" : "105.318756",
      "netname" : "ERTH-OMSK2-NET",
      "organization" : "JSC \"ER-Telecom Holding\" Omsk Branch",
      "subnet" : "91.144.189.0/24"
   },
   "host" : [
      "91x144x189x244"
   ],
   "hostname" : [
      "91x144x189x244.static-business.omsk.ertelecom.ru"
   ],
   "ip" : "91.144.189.244",
   "ipv6" : "false",
   "latitude" : "55.7386",
   "location" : "55.7386,37.6068",
   "longitude" : "37.6068",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "JSC ER-Telecom Holding",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 9401,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Server Error",
   "reverse" : [
      "91x144x189x244.static-business.omsk.ertelecom.ru"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 500,
   "subdomains" : [
      "omsk.ertelecom.ru",
      "static-business.omsk.ertelecom.ru"
   ],
   "subnet" : "91.144.189.0/24",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "ru"
   ],
   "tls" : "false",
   "transport" : "tcp"
}

IP
187.195.68.151

Network
187.195.64.0/18

Domain(s)
prod-infinitum.com.mx

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

HTTP Title
400 Bad Request

Reverse DNS
dsl-187-195-68-151-dyn.prod-infinitum.com.mx

ASN
AS8151

Organization
UNINET

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
28715c6ec3fd38b6ed232e3e37959e9c

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
16444d0bf46608253d591db62f41e7c3

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 21 Nov 2024 10:31:37 GMT
Content-Type: text/html
Content-Length: 150
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:31:38.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "16444d0bf46608253d591db62f41e7c3",
         "bodymmh3" : -534304446,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : 570954310,
         "title" : "400 Bad Request"
      },
      "length" : 295
   },
   "asn" : "AS8151",
   "city" : "Morelia",
   "country" : "MX",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 21 Nov 2024 10:31:37 GMT\r\nContent-Type: text/html\r\nContent-Length: 150\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 Bad Request</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "28715c6ec3fd38b6ed232e3e37959e9c",
   "datammh3" : -1512152686,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "prod-infinitum.com.mx"
   ],
   "geolocus" : {
      "asn" : "AS8151",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "MX",
      "countryname" : "Mexico",
      "domain" : [
         "prod-infinitum.com.mx",
         "uninet.com.mx"
      ],
      "isineu" : "false",
      "latitude" : "23.634501",
      "location" : "23.634501,-102.552784",
      "longitude" : "-102.552784",
      "netname" : "MX-USCV4-LACNIC",
      "organization" : "UNINET",
      "subnet" : "187.195.64.0/18"
   },
   "host" : [
      "dsl-187-195-68-151-dyn"
   ],
   "hostname" : [
      "dsl-187-195-68-151-dyn.prod-infinitum.com.mx"
   ],
   "ip" : "187.195.68.151",
   "ipv6" : "false",
   "latitude" : "19.7419",
   "location" : "19.7419,-101.2256",
   "longitude" : "-101.2256",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "UNINET",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 9401,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "reverse" : [
      "dsl-187-195-68-151-dyn.prod-infinitum.com.mx"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "187.195.64.0/18",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com.mx"
   ],
   "tls" : "false",
   "transport" : "tcp"
}

IP
45.89.19.17

Network
45.89.16.0/22

Operating System
Linux Linux Kernel

ASN
AS35048

Organization
Biterika Group LLC

Protocol
socks4a

Source
datascan
Operating System
Linux Linux Kernel

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
d0667d77071710c716b7978296e1b49e
```
\x00[\x00\x00\x00\x00\x00\x00
```

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:30:42.000Z",
   "app" : {
      "length" : 8
   },
   "asn" : "AS35048",
   "city" : "Moscow",
   "country" : "RU",
   "data" : "\\x00[\\x00\\x00\\x00\\x00\\x00\\x00",
   "datamd5" : "d0667d77071710c716b7978296e1b49e",
   "datammh3" : -971970408,
   "geolocus" : {
      "asn" : "AS35048",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "RU",
      "countryname" : "Russia",
      "domain" : [
         "biterika.ru"
      ],
      "isineu" : "false",
      "latitude" : "61.52401",
      "location" : "61.52401,105.318756",
      "longitude" : "105.318756",
      "netname" : "RU-BITERIKA-20190620",
      "organization" : "Biterika Group LLC",
      "subnet" : "45.89.16.0/22"
   },
   "ip" : "45.89.19.17",
   "ipv6" : "false",
   "latitude" : "55.7483",
   "location" : "55.7483,37.6171",
   "longitude" : "37.6171",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Biterika Group LLC",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 9401,
   "protocol" : "socks4a",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subnet" : "45.89.16.0/22",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp"
}

IP
218.210.219.143

Network
218.210.128.0/17

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

ASN
AS9919

Organization
New Century InfoComm Tech Co., Ltd.

Protocol
unknown

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
68b329da9893e34099c7d8ad5cb9c940

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:27:09.000Z",
   "app" : {
      "length" : 1
   },
   "asn" : "AS9919",
   "country" : "TW",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "\n",
   "datamd5" : "68b329da9893e34099c7d8ad5cb9c940",
   "datammh3" : -1840324437,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS9919",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "TW",
      "countryname" : "Taiwan",
      "domain" : [
         "fareastone.com.tw",
         "seed.net.tw",
         "sparqnet.net",
         "twnic.net",
         "twnic.net.tw"
      ],
      "isineu" : "false",
      "latitude" : "23.69781",
      "location" : "23.69781,120.960515",
      "longitude" : "120.960515",
      "netname" : "NCICNET-NET",
      "organization" : "New Century InfoComm Tech. Co., Ltd.",
      "subnet" : "218.210.128.0/17"
   },
   "ip" : "218.210.219.143",
   "ipv6" : "false",
   "latitude" : "24.0000",
   "location" : "24.0000,121.0000",
   "longitude" : "121.0000",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "New Century InfoComm Tech Co., Ltd.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 9401,
   "protocol" : "unknown",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subnet" : "218.210.128.0/17",
   "tls" : "false",
   "transport" : "tcp"
}

IP
45.89.18.238

Network
45.89.16.0/22

Operating System
Linux Linux Kernel

ASN
AS35048

Organization
Biterika Group LLC

Protocol
socks4a

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
d0667d77071710c716b7978296e1b49e
```
\x00[\x00\x00\x00\x00\x00\x00
```

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:27:08.000Z",
   "app" : {
      "length" : 8
   },
   "asn" : "AS35048",
   "city" : "Moscow",
   "country" : "RU",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "\\x00[\\x00\\x00\\x00\\x00\\x00\\x00",
   "datamd5" : "d0667d77071710c716b7978296e1b49e",
   "datammh3" : -971970408,
   "geolocus" : {
      "asn" : "AS55933",
      "continent" : "OC",
      "continentname" : "Oceania",
      "country" : "AU",
      "countryname" : "Australia",
      "domain" : [
         "apnic.net"
      ],
      "isineu" : "false",
      "latitude" : "-25.274398",
      "location" : "-25.274398,133.775136",
      "longitude" : "133.775136",
      "netname" : "IANA-NETBLOCK-45",
      "organization" : "This network range is not fully allocated to APNIC.",
      "subnet" : "45.0.0.0/8"
   },
   "ip" : "45.89.18.238",
   "ipv6" : "false",
   "latitude" : "55.7483",
   "location" : "55.7483,37.6171",
   "longitude" : "37.6171",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Biterika Group LLC",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 9401,
   "protocol" : "socks4a",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subnet" : "45.89.16.0/22",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp"
}

IP
47.122.29.198

Network
47.122.0.0/17

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

ASN
AS37963

Organization
Hangzhou Alibaba Advertising Co.,Ltd.

Protocol
unknown

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
89d1bcd5ab049a21902092dacbe43523

\x00\x01\x00\x01\x02\x02\x1dnet.tcp://<ip>:9401/\x03\x08	\x13application/ssl-tls

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:26:32.000Z",
   "app" : {
      "length" : 50
   },
   "asn" : "AS37963",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "\\x00\\x01\\x00\\x01\\x02\\x02\\x1dnet.tcp://<ip>:9401/\\x03\\x08\t\\x13application/ssl-tls",
   "datamd5" : "89d1bcd5ab049a21902092dacbe43523",
   "datammh3" : 1328991759,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS37963",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "alibaba-inc.com",
         "cnnic.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "ALISOFT",
      "organization" : "China Internet Network Information Center",
      "subnet" : "47.122.0.0/17"
   },
   "ip" : "47.122.29.198",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Hangzhou Alibaba Advertising Co.,Ltd.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 9401,
   "protocol" : "unknown",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subnet" : "47.122.0.0/17",
   "tls" : "false",
   "transport" : "tcp"
}

IP
220.71.106.145

Network
220.71.96.0/19

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

ASN
AS4766

Organization
Korea Telecom

Protocol
unknown

Source
datascan
Operating System
Linux Linux Kernel

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
2a6e2bbc63b9e304bf4d0d510dcb03af

\x00\x00\xad\xc3\x01\x00\x00\x00\xcb\x00\x00\x00\x04\x00\x04\x00\x00\x00\x11\x01\x1f\x00\x00\x00e\x00\x00\x00B4DA111900004377\x00\x00\x00\x00C\x00H\x001\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00C\x00H\x002\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00C\x00H\x003\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00C\x00H\x004\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00NEND

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:22:09.000Z",
   "app" : {
      "length" : 564
   },
   "asn" : "AS4766",
   "city" : "Buk-gu",
   "country" : "KR",
   "data" : "\\x00\\x00\\xad\\xc3\\x01\\x00\\x00\\x00\\xcb\\x00\\x00\\x00\\x04\\x00\\x04\\x00\\x00\\x00\\x11\\x01\\x1f\\x00\\x00\\x00e\\x00\\x00\\x00B4DA111900004377\\x00\\x00\\x00\\x00C\\x00H\\x001\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00C\\x00H\\x002\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00C\\x00H\\x003\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00C\\x00H\\x004\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00NEND",
   "datamd5" : "2a6e2bbc63b9e304bf4d0d510dcb03af",
   "datammh3" : 1655974477,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4766",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "KR",
      "countryname" : "South Korea",
      "domain" : [
         "kt.com",
         "nic.or.kr"
      ],
      "isineu" : "false",
      "latitude" : "35.907757",
      "location" : "35.907757,127.766922",
      "longitude" : "127.766922",
      "netname" : "KORNET",
      "organization" : "Korea Telecom",
      "subnet" : "220.71.96.0/19"
   },
   "ip" : "220.71.106.145",
   "ipv6" : "false",
   "latitude" : "35.1928",
   "location" : "35.1928,126.8743",
   "longitude" : "126.8743",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Korea Telecom",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 9401,
   "protocol" : "unknown",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subnet" : "220.71.96.0/19",
   "tls" : "false",
   "transport" : "tcp"
}

IP
223.204.174.215

Network
223.204.0.0/14

Domain(s)
3bb.in.th

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
mx-ll-223.204.174-215.dynamic.3bb.in.th

ASN
AS45758

Organization
Triple T Broadband Public Company Limited

Protocol
ftp

Source
datascan
Operating System
Linux Linux Kernel

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
171b52d22c962ee3fffabf3c9578396a

220 FTP-SERVER FTP server ready.
500 : command not understood.

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:21:21.000Z",
   "app" : {
      "ftp" : {
         "anonymous" : "false"
      },
      "length" : 64
   },
   "asn" : "AS45758",
   "city" : "Phra Nakhon Si Ayutthaya",
   "country" : "TH",
   "data" : "220 FTP-SERVER FTP server ready.\r\n500 : command not understood.\n",
   "datamd5" : "171b52d22c962ee3fffabf3c9578396a",
   "datammh3" : -673256608,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "3bb.in.th"
   ],
   "geolocus" : {
      "asn" : "AS45629",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "TH",
      "countryname" : "Thailand",
      "domain" : [
         "3bb.in.th",
         "3bbmail.com",
         "jasmine.com"
      ],
      "isineu" : "false",
      "latitude" : "15.870032",
      "location" : "15.870032,100.992541",
      "longitude" : "100.992541",
      "netname" : "TTBP-TH",
      "organization" : "Triple T Broadband Public Company Limited",
      "subnet" : "223.204.0.0/15"
   },
   "host" : [
      "mx-ll-223"
   ],
   "hostname" : [
      "mx-ll-223.204.174-215.dynamic.3bb.in.th"
   ],
   "ip" : "223.204.174.215",
   "ipv6" : "false",
   "latitude" : "14.3755",
   "location" : "14.3755,100.5663",
   "longitude" : "100.5663",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Triple T Broadband Public Company Limited",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 9401,
   "protocol" : "ftp",
   "reverse" : [
      "mx-ll-223.204.174-215.dynamic.3bb.in.th"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subdomains" : [
      "204.174-215.dynamic.3bb.in.th",
      "174-215.dynamic.3bb.in.th",
      "dynamic.3bb.in.th"
   ],
   "subnet" : "223.204.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "in.th"
   ],
   "tls" : "false",
   "transport" : "tcp"
}

Returning 10 result(s) out of 17,107 in 0.117 second(s)

5.78.31.163:9401 (tcp/http) - last seen on 2024-11-21 at 10:37:30 UTC

163.172.100.141:9401 (tcp/http) - last seen on 2024-11-21 at 10:35:38 UTC

91.144.189.244:9401 (tcp/http) - last seen on 2024-11-21 at 10:32:07 UTC

187.195.68.151:9401 (tcp/http) - last seen on 2024-11-21 at 10:31:38 UTC

45.89.19.17:9401 (tcp/socks4a) - last seen on 2024-11-21 at 10:30:42 UTC

218.210.219.143:9401 (tcp/unknown) - last seen on 2024-11-21 at 10:27:09 UTC

45.89.18.238:9401 (tcp/socks4a) - last seen on 2024-11-21 at 10:27:08 UTC

47.122.29.198:9401 (tcp/unknown) - last seen on 2024-11-21 at 10:26:32 UTC

220.71.106.145:9401 (tcp/unknown) - last seen on 2024-11-21 at 10:22:09 UTC

223.204.174.215:9401 (tcp/ftp) - last seen on 2024-11-21 at 10:21:21 UTC