geolite2_country/dataplane_vncrfb.json

{
	"name": "dataplane_vncrfb",
	"entries": 3842,
	"entries_min": 1377,
	"entries_max": 6672,
	"ips": 3842,
	"ips_min": 1377,
	"ips_max": 6672,
	"ipv": "ipv4",
	"hash": "ip",
	"frequency": 60,
	"aggregation": 0,
	"started": 1491343270000,
	"updated": 1633007347000,
	"processed": 1633007785000,
	"checked": 1633007347000,
	"clock_skew": 0,
	"category": "attacks",
	"maintainer": "DataPlane.org",
	"maintainer_url": "https://dataplane.org/",
	"info": "<a href=\"https://dataplane.org/\">DataPlane.org</a>  IP addresses that have been seen initiating a VNC remote frame buffer (RFB)  session to a remote host. This report lists hosts that are suspicious of more than just port scanning. These hosts may be VNC server cataloging or conducting various forms of remote access abuse. ",
	"source": "",
	"file": "dataplane_vncrfb.ipset",
	"history": "dataplane_vncrfb_history.csv",
	"geolite2": "dataplane_vncrfb_geolite2_country.json",
	"ipdeny": "dataplane_vncrfb_ipdeny_country.json",
	"ip2location": "dataplane_vncrfb_ip2location_country.json",
	"ipip": "dataplane_vncrfb_ipip_country.json",
	"comparison": "dataplane_vncrfb_comparison.json",
	"file_local": "",
	"commit_history": "",
	"license": "unknown",
	"grade": "unknown",
	"protection": "unknown",
	"intended_use": "unknown",
	"false_positives": "unknown",
	"poisoning": "unknown",
	"services": [ "unknown" ],
	"errors": 0,
	"version": 22048,
	"average_update": 65,
	"min_update": 53,
	"max_update": 183,
	"downloader": "geturl"
}