80.47.61.240

As of: Apr 28, 2025 2:00am UTC | Latest

Host

Attribute Value
ip 80.47.61.240
location.continent Europe
location.country United Kingdom
location.country_code GB
location.city Weybridge
location.postal_code KT13
location.timezone Europe/London
location.province England
location.coordinates.latitude 51.37178
location.coordinates.longitude -0.45975
location_updated_at 2025-04-20T18:39:15.706420991Z
autonomous_system.asn 9105
autonomous_system.description TISCALI-UK TalkTalk Communications Limited
autonomous_system.bgp_prefix 80.46.0.0/15
autonomous_system.name TISCALI-UK TalkTalk Communications Limited
autonomous_system.country_code GB
autonomous_system_updated_at 2025-04-20T18:39:15.706491Z
whois.network.handle UK-OPALNET-20241904
whois.network.name Customer Dynamic IPs
whois.network.cidrs 80.44.0.0/14
whois.network.created 2024-04-19T00:00:00Z
whois.network.updated 2024-04-19T00:00:00Z
whois.organization.handle ORG-OTIS1-RIPE
whois.organization.name TalkTalk Communications Limited
whois.organization.address Soapworks, Ordsall Lane, Salford, Manchester\nM5 3TT\nManchester\nUNITED KINGDOM
whois.organization.abuse_contacts.handle TTAT1-RIPE
whois.organization.abuse_contacts.name TalkTalk Abuse Team
whois.organization.abuse_contacts.email [email protected]
whois.organization.admin_contacts.handle TTHM-RIPE
whois.organization.admin_contacts.name TalkTalk Hostmaster
whois.organization.admin_contacts.email [email protected]
dns.names host-80-47-61-240.as13285.net
dns.records.host-80-47-61-240.as13285.net.record_type A
dns.records.host-80-47-61-240.as13285.net.resolved_at 2025-04-21T17:37:54.487351011Z
last_updated_at 2025-04-28T02:00:58.365Z
labels login-page
labels network.device
labels network.device.vpn
labels remote-access

443/HTTP TCP View Definition

Attribute Value
services.banner HTTP/1.0 200 OK\r\nPragma: no-cache\r\nContent-type: text/html\r\nExpires: 0\r\nX-Frame-Options: SAMEORIGIN\r\nContent-length: 12337\r\nConnection: close\r\n
services.banner_hashes sha256:8cb68c43351736f8f981f4a5b857fa96582fd0f3cba1e236acd68bbe5f230bf5
services.banner_hex 485454502f312e3020323030204f4b0d0a507261676d613a206e6f2d63616368650d0a436f6e74656e742d747970653a20746578742f68746d6c0d0a457870697265733a20300d0a582d4672616d652d4f7074696f6e733a2053414d454f524947494e0d0a436f6e74656e742d6c656e6774683a2031323333370d0a436f6e6e656374696f6e3a20636c6f73650d0a
services.certificate 2b515141e952eb65d9a1f3cf500f003f8513e14f293bd224ec7478539cc31aae
services.discovery_method PREDICTIVE_METHOD_27
services.extended_service_name HTTPS
services.http.request.method GET
services.http.request.uri https://80.47.61.240/weblogin.htm
services.http.request.headers.User_Agent Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
services.http.request.headers.Accept */*
services.http.response.protocol HTTP/1.0
services.http.response.status_code 200
services.http.response.status_reason OK
services.http.response.headers.Content_type text/html
services.http.response.headers.X_Frame_Options SAMEORIGIN
services.http.response.headers.Expires 0
services.http.response.headers.Pragma no-cache
services.http.response.headers.Content_length 12337
services.http.response.headers.Connection close
services.http.response.html_tags <title>Vigor Login Page</title>
services.http.response.html_tags <meta content="text/html; charset=iso-8859-1" http-equiv=Content-Type>
services.http.response.body_size 12337
services.http.response.body <html><head><title>Vigor Login Page</title><LINK / href=../images/favicon.ico rel="shortcut icon" type=image/x-icon><meta content="text/html; charset=iso-8859-1" http-equiv=Content-Type><script> function TR(str){return str;}</script><style>\r\ninput {height:24px;}\r\nselect {height:24px;}\r\ntd.userpwd {\r\ncolor: #000000;\r\nfont-family : Verdana, Arial, Helvetica, sans-serif;\r\nfont-size : 14px;\r\nfont-weight: bold;\r\n}\r\ntd.errmsg {\r\ncolor : red;\r\nfont-family : Verdana, Arial, Helvetica, sans-serif;\r\nfont-size : 12px;\r\n}\r\ntd.errmsg1 {\r\ncolor : red;\r\nfont-family : Verdana, Arial, Helvetica, sans-serif;\r\nfont-size : 12px;\r\n}\r\ntd.copyright {\r\ncolor: #888;\r\nfont-family: Verdana, Arial, Helvetica, sans-serif;\r\nfont-size: 10px;\r\nfont-weight: normal;\r\npadding-bottom: 15px;\r\n-webkit-text-size-adjust:none\r\n}\r\ninput.userpwd {\r\nwidth: 180px;\r\nfont-family: Verdana, Arial, Helvetica, sans-serif;\r\n}\r\ninput.login {\r\ncolor: #000;\r\nwidth: 68px;\r\nheight: 25px;\r\npadding: 0 .38em .22em .38em;\r\nbackground: #004488 url(images/login1.jpg) scroll 0;\r\nborder: 0px #004488 solid;\r\nfont-family: Verdana, Arial, Helvetica, sans-serif;\r\nfont-style: normal;\r\nfont-weight: bold;\r\nfont-size: 14px;\r\ncursor: pointer;\r\nmargin-left: 275px;\r\n}\r\n</style></head><body style=background:#f1f1f1><form name=frm1 onsubmit="return false;"><div height=100% marginheight=0 marginwidth=0 style=z-index:-10 width=100%><iframe style="z-index:-1;position:absolute;left:0;top:0" name="content_frame" id="content_frame" width=100% height=100% frameborder=0></iframe></div><table border=0 height=90% width=100%><tr><td><script>var str="";var sLoginLogo='0';if(sLoginLogo=='2'){str='<table align=center width=524px border=0 cellspacing="0" cellpadding=0>';str+='<tr><td><img src="/get_logo.cgi" width="524px"></td></tr>';str+='<tr><td style="border:2px solid #aaaaaa;">';str+='<table width=80% align=center cellspacing="0" cellpadding=2 border=0 style="margin-top:30px">';}else if(sLoginLogo=='1'){str='<table align=center width=524px height=352px border=0 cellspacing="0" cellpadding=0>';str+='<tr><td>';str+='<table width=80% align=center cellspacing="0" cellpadding=2 border=0 style="margin-top:75px">';}else{str="<table align=center width=524px border=0 cellspacing=0 cellpadding=0><tr height=96><td colspan=2 style='background:url(images/login1.png) no-repeat;'>&nbsp;</td></tr>";str+='<tr><td style="background:url(images/login2.png) repeat;">';str+='<table width=80% align=center cellspacing="0" cellpadding=2 border=0>';}document.write(str);</script><tr align=center class=CustomLogin style=display:none><td colspan=2><h3>Router Login</h3></td></tr><tr height=35><td class=userpwd style=padding-right:20px;text-align:right; width=40%>Username</td><td width=60%><input autocapitalize=off autocomplete=off class=userpwd maxlength=24 name=sUserName type=text></td></tr><tr height=35><td class=userpwd style=padding-right:20px;text-align:right;>Password</td><td><input autocomplete=off class=userpwd maxlength=84 name=sSysPass type=password></td></tr><tr class=sValidatedCode height=35 style=display:none><td class=userpwd style=padding-right:20px;text-align:right;>Validation Code</td><td><input id=validated_code maxlength=4 style="width: 60px" type=text><img align=bottom alt=ValidatedCode height=24px id=sVerification onclick=changecode() style="margin-left:15px;cursor:pointer;vertical-align: middle;" width=96px></td></tr><script>var enSSlgrp='/*';var enAdminAuth='';var admin_local_en=0;var admin_ldap_en=0;var sslgrp_used=false;var add_group_selector=false;var ssl_group=["(nil)","(nil)","(nil)","(nil)","(nil)","(nil)","(nil)","(nil)","(nil)","(nil)"];var ssl_group_en=["(nil)","(nil)","(nil)","(nil)","(nil)","(nil)","(nil)","(nil)","(nil)","(nil)"];if(enSSlgrp==""){for(var i=0;i<ssl_group.length;i++){if(ssl_group_en[i]==1&&ssl_group[i]!="")sslgrp_used=true;}}add_group_selector=(enSSlgrp==""&&sslgrp_used)||(enAdminAuth==""&&(admin_local_en||admin_ldap_en));if(add_group_selector){var str="";str+="<tr height='35'><td class=userpwd style='padding-right:20px;text-align:right;'>"+TR("Group")+"</td>";str+="<td><select name=sltsslgrp>";str+="<option value=-1>---</option>";if(enAdminAuth==""){if(admin_local_en==1||admin_ldap_en==1){str+="<option value=admin>"+TR("admin")+"</option>";}}if(enSSlgrp==""){for(var i=0;i<ssl_group.length;i++){if(ssl_group_en[i]==1&&ssl_group[i]!="")str+="<option value="+i+">"+ssl_group[i]+"</option>";}}str+="</select></td></tr>";document.write(str);}else{document.write("<input type=hidden name=sltsslgrp value=-1>");}</script><tr><td class=errmsg colspan=2 height=15><span id=errmsg></span></td></tr><tr><td class=errmsg1 colspan=2 height=15><span id=errmsg1></span></td></tr><tr><td colspan=2 valign=top><input class=login name=btnOk type=button value=Login></td></tr></table></td></tr><script>var str='<tr><td height=60 class=copyright style="text-align:center;">';if(sLoginLogo=='2')str='<tr><td height=60 class=copyright style="text-align:center;">';else if(!sLoginLogo||sLoginLogo=='0')str='<tr><td class=copyright height=70 style="background:url(images/login3.png) no-repeat;text-align:center;">';str+=TR("Copyright &copy; 2000-");var buildtime="Nov 26 2019 12:20:59";var build_ary=buildtime.split(" ");for(var i=0;i<build_ary.length;i++){if(build_ary[i].length==4){str+=build_ary[i];break;}}str+=TR("DrayTek Corp. All Rights Reserved.")+"</td></tr>";document.write(str);</script></table><table align=center border=0 class=CustomLogin style=display:none><tr><td><h1><b><font color=red>Welcome Message</font></b></h1><p>This welcome message is displayed in the Login page of the router. Replace this text with your own message. </p><ol><li>The welcome message can be written in HTML so lists such as this one can be created </li><li>Other markup tags such as p, font or img can be used</li></ol></td></tr></table></td></tr></table></form><form name=frmSub><script>var sUser_mgt_End='-->';var sValidatedCode='';var sValidatedCodeNum;var form_num=2; if(sUser_mgt_End=="")form_num+=5; form_num+=1;if(sValidatedCode!="")form_num+=2;for(i=0;i<form_num+1;i++){document.write("<input type=hidden name=obj"+i+">");}</script></form></body></html><script>var isNav=(navigator.appName.indexOf("Netscape")!=-1);var isIE=(navigator.appName.indexOf("Microsoft")!=-1);var isOpr=(navigator.appName.indexOf("Opera")!=-1);var f=document.frm1;var iFrmLgErr=2;var iCustomLoginFlag='0';var CUST_LOGIN_ENABLE=(1<<3);var src_ip;var target_url;var mode;var fw_set;var fw_rule;initParameter();initPage();if(opener&&typeof(window.opener.document)!='unknown'&&typeof(window.opener.document)!='undefined'){if(opener.loginset_preview==1)opener.loginset_preview=0;}else ClearCookies();function changecode(){var verify=document.getElementById('sVerification');sValidatedCodeNum=Math.random()*1000000;verify.setAttribute('src','/image/verification.png?'+sValidatedCodeNum);}function showElmtByClass(_doc,_tag,_el){var doc=_doc;var tag=_tag;var el=_el;if(doc.getElementsByTagName){var nodes=doc.getElementsByTagName(tag);var max=nodes.length;for(var i=0;i<max;i++){var node=nodes.item(i);if(node.className==el){node.style.display="";}}}}function initPage(){if(sValidatedCode!=""){changecode();}if((iCustomLoginFlag&CUST_LOGIN_ENABLE)==CUST_LOGIN_ENABLE){if(sLoginLogo=='0')showElmtByClass(document,"tr","CustomLogin");showElmtByClass(document,"table","CustomLogin");} if(self!=top)top.location="weblogin.htm";f.sUserName.focus();if(sUser_mgt_End==""){if(mode){switch(mode){case 3: if(iFrmLgErr==4){errmsg.innerHTML=TR("User Mode is off now.");}else if(iFrmLgErr==5){errmsg.innerHTML=TR("Wrong validation code!");}else{errmsg.innerHTML=TR("The username or password you entered is incorrect.");}break;case 4: errmsg.innerHTML=TR("Reach the maximum login number. Try another user account.");break;case 5: errmsg.innerHTML=TR("No available buffer now. Please contact with your administrator");break;case 6: errmsg.innerHTML=TR("The username or password you entered is incorrect.");break;case 7:errmsg.innerHTML=TR("User account is not enabled now.");break;case 8:errmsg.innerHTML=TR("You aren't allowed to access internet (out of schedule).");break;case 9:errmsg.innerHTML=TR("User login denied from http protocol. Please contact with your administrator");break;case 10:errmsg.innerHTML=TR("The user ran out of time quota.");break;case 11:errmsg.innerHTML=TR("The user ran out of data quota.");break;case 12:errmsg.innerHTML=TR("Wrong user account. Please contact with your administrator.");break;default:if(iFrmLgErr==2)errmsg.innerHTML=TR("The username or password you entered is incorrect.");break;}}else if(iFrmLgErr==2){errmsg.innerHTML=TR("The username or password you entered is incorrect.");}else if(iFrmLgErr==4){errmsg.innerHTML=TR("User Mode is off now.");}else if(iFrmLgErr==5){errmsg.innerHTML=TR("Wrong validation code!");}}else if(iFrmLgErr==2){errmsg.innerHTML=TR("The username or password you entered is incorrect.");}else if(iFrmLgErr==4){errmsg.innerHTML=TR("User Mode is off now.");}else if(iFrmLgErr==5){errmsg.innerHTML=TR("Wrong validation code!");}if(sValidatedCode!=""){showElmtByClass(document,"tr","sValidatedCode");} for(var d=0;d<document.forms.length;d++){ for(var e=0;e<document.forms[d].elements.length;e++){addhandlers(document.forms[d].elements[e]);}}}function initParameter(){if(sUser_mgt_End==""){src_ip='(nil)';target_url='(nil)';mode=(nil);fw_set=(nil);fw_rule=(nil);}}function encode(instr){var keyStr="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";var outstr="";var chr1,chr2,chr3="";var enc1,enc2,enc3,enc4="";var i=0;do{chr1=instr.charCodeAt(i++);chr2=instr.charCodeAt(i++);chr3=instr.charCodeAt(i++);enc1=chr1>>2;enc2=((chr1&3)<<4)|(chr2>>4);enc3=((chr2&15)<<2)|(chr3>>6);enc4=chr3&63;if(isNaN(chr2)){enc3=enc4=64;}else if(isNaN(chr3)){enc4=64;}outstr=outstr+keyStr.charAt(enc1)+keyStr.charAt(enc2)+keyStr.charAt(enc3)+keyStr.charAt(enc4);chr1=chr2=chr3="";enc1=enc2=enc3=enc4="";}while(i<instr.length);return outstr;}function submitPara(){var frmSub=document.frmSub;var fwElmIdx=2;frmSub.method="post";frmSub.action="cgi-bin/wlogin.cgi";frmSub[0].name="aa";frmSub[0].value=encode(f.sUserName.value);frmSub[1].name="ab";frmSub[1].value=encode(f.sSysPass.value); if(sUser_mgt_End==""&&mode!=0){frmSub[2].name="src_ip";frmSub[2].value=src_ip;frmSub[3].name="target_url";frmSub[3].value=target_url;frmSub[4].name="mode";frmSub[4].value=mode;frmSub[5].name="fw_set";frmSub[5].value=fw_set;frmSub[6].name="fw_rule";frmSub[6].value=fw_rule;fwElmIdx=7;}if(enSSlgrp==""||enAdminAuth==""){frmSub[fwElmIdx].name="sslgroup";frmSub[fwElmIdx].value=f.sltsslgrp.value;}if(sValidatedCode!=""){fwElmIdx++;frmSub[fwElmIdx].name="sVerifCode";frmSub[fwElmIdx].value=document.getElementById("validated_code").value;fwElmIdx++;frmSub[fwElmIdx].name="sValidatedCodeNum";frmSub[fwElmIdx].value=sValidatedCodeNum;}frmSub[form_num].name="sFormAuthStr";frmSub[form_num].value=randomString(15);frmSub.submit();}function randomString(len){var chars='ABCDEFGHJKMNPQRSTWXYZabcdefhijkmnprstwxyz2345678';var maxPos=chars.length;var pwd='';for(i=0;i<len;i++){pwd+=chars.charAt(Math.floor(Math.random()*maxPos));}return pwd;}function handler(_e){var e=_e,elmt,type;if(isNav){elmt=e.target;type=e.type;keycode=e.which;}if(isIE||isOpr){e=window.event;elmt=e.srcElement;type=e.type;keycode=e.keyCode;} if(isIE){if(elmt.type=="text")e.cancelBubble=false;else e.cancelBubble=true;}if(elmt==f.btnOk&&type=="click"){submitPara();}if(elmt!=f.btnOk&&type=="keydown"){if(keycode==13){ e.returnValue=false;submitPara();}}} function addhandlers(_o){var o=_o;o.onclick=handler;o.onkeydown=handler;}function ClearCookies(){var temp=document.cookie.split(";");var ts;for(var i=0;;i++){if(!temp[i])break;ts=temp[i].split("=")[0];DeleteCookie(ts);}}function GetCookieVal(offset){var endstr=document.cookie.indexOf(";",offset);if(endstr==-1)endstr=document.cookie.length;return unescape(document.cookie.substring(offset,endstr));}function GetCookie(name){var arg=name+"=";var alen=arg.length;var clen=document.cookie.length;var i=0;while(i<clen){var j=i+alen;if(document.cookie.substring(i,j)==arg)return GetCookieVal(j);i=document.cookie.indexOf(" ",i)+1;if(i==0)break;}return null;}function DeleteCookie(name){var exp=new Date();exp.setTime(exp.getTime()-1);var cval=GetCookie(name);document.cookie=name+"="+cval+"; expires="+exp.toGMTString();}</script>
services.http.response.favicons.size 1406
services.http.response.favicons.name https://80.47.61.240/../images/favicon.ico
services.http.response.favicons.md5_hash ad1d65e19419d2e7ce3925fbdc0bfcdc
services.http.response.favicons.hashes sha256:0af4f089d58e919f4ee421727e9ac54d885d6b3b05ec16e4d94b703f45c7eef9
services.http.response.favicons.hashes md5:ad1d65e19419d2e7ce3925fbdc0bfcdc
services.http.response.favicons.shodan_hash 104189364
services.http.response.body_hashes sha256:3d15d8dc8c1edbf205b2fcbf04bf7678a8c4ac57348e1aa4752ccc40be0e53fd
services.http.response.body_hashes sha1:2b9ce680a44f841048c2339024b67cf3672c20d7
services.http.response.body_hashes tlsh:c5422a249a0806258887a5f2bc1b3ec96cb741128702ee945c6ce1745ffcdf599f2fad
services.http.response.body_hash sha1:2b9ce680a44f841048c2339024b67cf3672c20d7
services.http.response.html_title Vigor Login Page
services.http.supports_http2 false
services.jarm.fingerprint 29d29d00029d29d22c29d29d00029d79afa2e68b3d8e6c4a272a7e4fb26d3c
services.jarm.cipher_and_version_fingerprint 29d29d00029d29d22c29d29d00029d
services.jarm.tls_extensions_sha256 79afa2e68b3d8e6c4a272a7e4fb26d3c
services.jarm.observed_at 2025-04-20T21:41:27.425516936Z
services.labels login-page
services.labels network.device
services.observed_at 2025-04-28T02:00:54.568173402Z
services.perspective_id PERSPECTIVE_UNKNOWN
services.port 443
services.service_name HTTP
services.software.part h
services.software.vendor DrayTek
services.software.other.family Vigor
services.software.source OSI_APPLICATION_LAYER
services.software.part o
services.software.vendor DrayTek
services.software.other.family Vigor
services.software.source OSI_APPLICATION_LAYER
services.software.uniform_resource_identifier cpe:2.3:a:draytek:vigorconnect:*:*:*:*:*:*:*:*
services.software.part a
services.software.vendor DrayTek
services.software.product Vigor Connect
services.software.source OSI_APPLICATION_LAYER
services.source_ip 167.94.146.63
services.tls.version_selected TLSv1_2
services.tls.cipher_selected TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
services.tls.certificates.leaf_fp_sha_256 2b515141e952eb65d9a1f3cf500f003f8513e14f293bd224ec7478539cc31aae
services.tls.certificates.leaf_data.names www.draytek.com
services.tls.certificates.leaf_data.subject_dn C=TW, ST=HsinChu, L=HuKou, O=DrayTek Corp., OU=DrayTek Support, CN=Vigor Router
services.tls.certificates.leaf_data.issuer_dn C=TW, ST=HsinChu, L=HuKou, O=DrayTek Corp., OU=DrayTek Support, CN=Vigor Router
services.tls.certificates.leaf_data.pubkey_bit_size 2048
services.tls.certificates.leaf_data.pubkey_algorithm RSA
services.tls.certificates.leaf_data.tbs_fingerprint 01160e830299299b50d82dee266440df117159e9f42c215ffc09cef75ccd5c7b
services.tls.certificates.leaf_data.fingerprint 2b515141e952eb65d9a1f3cf500f003f8513e14f293bd224ec7478539cc31aae
services.tls.certificates.leaf_data.issuer.common_name Vigor Router
services.tls.certificates.leaf_data.issuer.locality HuKou
services.tls.certificates.leaf_data.issuer.organization DrayTek Corp.
services.tls.certificates.leaf_data.issuer.organizational_unit DrayTek Support
services.tls.certificates.leaf_data.issuer.province HsinChu
services.tls.certificates.leaf_data.issuer.country TW
services.tls.certificates.leaf_data.subject.common_name Vigor Router
services.tls.certificates.leaf_data.subject.locality HuKou
services.tls.certificates.leaf_data.subject.organization DrayTek Corp.
services.tls.certificates.leaf_data.subject.organizational_unit DrayTek Support
services.tls.certificates.leaf_data.subject.province HsinChu
services.tls.certificates.leaf_data.subject.country TW
services.tls.certificates.leaf_data.public_key.key_algorithm RSA
services.tls.certificates.leaf_data.public_key.rsa.modulus sKpg4XqegrBhP7B/L06zOmHEHDFKhIBRQP21hZOwKwmVfSWOeI12PrH/QjyKTfmFwUxFvGVG1c9OAA2+1/Wh3j3UjqjxKpf0/QV+BIrGfNIcisl9rjbxSF5t8a6ZEIjy90/fGffF+3CkDUxQRrJP0zf/2U6v22QsKfVCUEyph+1AHX6v1/CZyhadc+Ac0z4W5HPZwjx1L6RZVRb4dJyG10Fn8cRzarzxSlMWaUg4cn9L5JhU4xMrlL0uBLy959hlnxgBriRu59bPfcyMoUnVZlZoJiJYN6bRVB4pSx2apTixIFHPxcnEH8q8EoLt5z5+Ci7TeymtEA6aob0c0cNmBQ==
services.tls.certificates.leaf_data.public_key.rsa.exponent AAEAAQ==
services.tls.certificates.leaf_data.public_key.rsa.length 256
services.tls.certificates.leaf_data.public_key.fingerprint a1c258cdf591150e92e983e627de04f292617b87465f38fce560732ce3bb9433
services.tls.certificates.leaf_data.signature.self_signed true
services.tls.certificates.leaf_data.signature.signature_algorithm SHA256-RSA
services.tls.server_key_exchange.ec_params.named_curve 23
services.tls.ja3s 70745099b394fe3f42264227c098cc98
services.tls.ja4s t120100_c02f_bcb145a8c2a7
services.tls.versions.tls_version TLSv1_2
services.tls.versions.ja3s 70745099b394fe3f42264227c098cc98
services.tls.versions.ja4s t120100_c02f_bcb145a8c2a7
services.tls.versions.tls_version TLSv1_1
services.tls.versions.ja3s b2c687c73ca896487ec8d64cae251c3c
services.tls.versions.ja4s t110100_c014_bcb145a8c2a7
services.tls.versions.tls_version TLSv1_0
services.tls.versions.ja3s ab1e32eeaf70ee94c0af00f08d126891
services.tls.versions.ja4s t100000_0035_e3b0c44298fc
services.transport_protocol TCP
services.truncated false

1194/OPENVPN TCP View Definition

Attribute Value
services.discovery_method IPV4_WALK_FULL_PRIORITY_1
services.extended_service_name OPENVPN
services.labels network.device.vpn
services.labels remote-access
services.observed_at 2025-04-28T00:05:05.139217979Z
services.openvpn.accepts_v2 true
services.openvpn.accepts_v1 false
services.perspective_id PERSPECTIVE_UNKNOWN
services.port 1194
services.service_name OPENVPN
services.source_ip 199.45.155.77
services.transport_fingerprint.raw 25600,255,false,M,1400,false,false
services.transport_protocol TCP
services.truncated false

1701/L2TP UDP View Definition

Attribute Value
services.banner �hhi�\b�\b�\n�\n\b�\r\aDrayTek\bDrayTek, l2tp�\b\t\t�\b\n\b�hhi�\b�\b�\n�\n\b�\r\aDrayTek\bDrayTek, l2tp�\b\t\t�\b\n\b�hhi�\b�\b�\n�\n\b�\r\aDrayTek\bDrayTek, l2tp�\b\t\t�\b\n\b�hhi�\b�\b�\n�\n\b�\r\aDrayTek\bDrayTek, l2tp�\b\t\t�\b\n\b
services.banner_hashes sha256:68415e52ba97d3e9de35291365677fd1894c7c75c63ef34aba2e28ebc408af87
services.banner_hex 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
services.discovery_method IPV4_WALK_FULL_PRIORITY_1
services.extended_service_name L2TP
services.observed_at 2025-04-28T00:45:57.579649291Z
services.parsed.l2tp.zlb_received false
services.parsed.l2tp.sccrq_received false
services.parsed.l2tp.sccrp_received true
services.parsed.l2tp.sccn_received false
services.parsed.l2tp.stop_sccn_received false
services.parsed.l2tp.hello_received false
services.parsed.l2tp.sccrp.attribute_values.protocol_version 1
services.parsed.l2tp.sccrp.attribute_values.protocol_revision 0
services.parsed.l2tp.sccrp.attribute_values.firmware_revision 1280
services.parsed.l2tp.sccrp.attribute_values.hostname DrayTek
services.parsed.l2tp.sccrp.attribute_values.vendor_name DrayTek, l2tp
services.parsed.l2tp.ordered_messages_raw yAIAaGhpAAAAAAABgAgAAAAAAAKACAAAAAIBAIAKAAAAAwAAAAGACgAAAAQAAAABAAgAAAAGBQCADQAAAAdEcmF5VGVrABMAAAAIRHJheVRlaywgbDJ0cIAIAAAACQAJgAgAAAAKAAg=
services.parsed.l2tp.ordered_messages_raw yAIAaGhpAAAAAAABgAgAAAAAAAKACAAAAAIBAIAKAAAAAwAAAAGACgAAAAQAAAABAAgAAAAGBQCADQAAAAdEcmF5VGVrABMAAAAIRHJheVRlaywgbDJ0cIAIAAAACQAJgAgAAAAKAAg=
services.parsed.l2tp.ordered_messages_raw yAIAaGhpAAAAAAABgAgAAAAAAAKACAAAAAIBAIAKAAAAAwAAAAGACgAAAAQAAAABAAgAAAAGBQCADQAAAAdEcmF5VGVrABMAAAAIRHJheVRlaywgbDJ0cIAIAAAACQAJgAgAAAAKAAg=
services.parsed.l2tp.ordered_messages_raw yAIAaGhpAAAAAAABgAgAAAAAAAKACAAAAAIBAIAKAAAAAwAAAAGACgAAAAQAAAABAAgAAAAGBQCADQAAAAdEcmF5VGVrABMAAAAIRHJheVRlaywgbDJ0cIAIAAAACQAJgAgAAAAKAAg=
services.perspective_id PERSPECTIVE_UNKNOWN
services.port 1701
services.service_name L2TP
services.software.uniform_resource_identifier cpe:2.3:a:draytek:vigor_router:*:*:*:*:*:*:*:*
services.software.part a
services.software.vendor DrayTek
services.software.product Vigor Router
services.software.source OSI_APPLICATION_LAYER
services.source_ip 167.94.138.183
services.transport_protocol UDP
services.truncated false

1723/PPTP TCP View Definition

Attribute Value
services.banner DrayTek Vigor 1.0 0.1
services.banner_hashes sha256:81a0c2ed6825c992f2b1ecb18040ef467ff35ec52f32c42b91d9a23199038120
services.banner_hex 4472617954656b205669676f7220312e3020302e31
services.discovery_method IPV4_WALK_FULL_PRIORITY_1
services.extended_service_name PPTP
services.observed_at 2025-04-27T08:26:09.931717808Z
services.perspective_id PERSPECTIVE_UNKNOWN
services.port 1723
services.pptp.result_message.code 1
services.pptp.result_message.meaning Successful channel establishment
services.pptp.error_message.meaning No general error
services.pptp.error_message.code 0
services.pptp.framing_message.code 3
services.pptp.framing_message.meaning Synchronous or asynchronous framing supported
services.pptp.bearer_message.code 3
services.pptp.bearer_message.meaning Digital or analog access supported
services.pptp.firmware.minor 1
services.pptp.firmware.major 0
services.pptp.protocol.major 1
services.pptp.protocol.minor 0
services.pptp.maximum_channels 5
services.pptp.hostname Vigor
services.pptp.vendor DrayTek
services.service_name PPTP
services.software.uniform_resource_identifier cpe:2.3:a:draytek:vigor_router:1.0_0.1:*:*:*:*:*:*:*
services.software.part a
services.software.vendor DrayTek
services.software.product Vigor Router
services.software.version 1.0_0.1
services.software.source OSI_APPLICATION_LAYER
services.source_ip 167.94.138.49
services.transport_protocol TCP
services.truncated false