Returning 10 result(s) out of 304 in 0.035 second(s)

  • 54.239.2.57:443 (tcp/http/tls) - last seen on 2024-11-21 at 09:38:17 UTC

    • IP
      54.239.2.57
      Alternative IP(s)
      18.225.12.160 34.214.225.168 35.155.101.86 35.155.250.21 35.155.78.37 35.85.131.104 44.227.95.21 44.231.204.22 50.112.248.192 52.12.148.114 52.12.81.87 52.12.94.206 52.25.192.99 52.27.77.173 52.94.120.58 52.94.120.70 52.94.120.94 54.184.130.120 54.184.173.70 54.188.62.255 54.189.187.170 54.189.55.82 54.189.74.23 54.212.84.172 54.214.105.19 54.239.51.234 54.71.195.20
      Network
      54.239.2.0/23
      Domain(s)
      amazon.com
      Device

      <enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

      Operating System
      Cisco IOS
      URL

      https://54.239.2.57/ 200

      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http Cert not expired http
      Source
      datascan
    • NOTE
      This tab is a merge from current page results.
      CPE(s)
      Domain(s)
      amazon.com amazonaws.com
      Hostname(s)
      ec2-44-232-222-31.us-west-2.compute.amazonaws.com ec2-52-12-94-206.us-west-2.compute.amazonaws.com ec2-52-8-136-181.us-west-1.compute.amazonaws.com ec2-52-8-61-6.us-west-1.compute.amazonaws.com ec2-52-9-143-109.us-west-1.compute.amazonaws.com orca.amazon.com pdx-e-orca.amazon.com pdx-j-orca.amazon.com pdx-orca-bak.amazon.com pdx-orca.amazon.com pdx-w-orca.amazon.com sea-orca-bak.amazon.com sea-orca.amazon.com sfo-d-orca.amazon.com sfo-g-orca.amazon.com sfo-n-orca.amazon.com sfo-orca-bak.amazon.com sfo-orca.amazon.com sfo-r-orca.amazon.com sfo-u-orca.amazon.com
      IP(s)
      44.232.222.31 52.12.94.206 52.8.136.181 52.8.61.6 52.9.143.109 52.94.120.74 54.239.2.57 54.240.213.202
      Port(s)
      443
      Protocol(s)
      http
      Tag(s)
      URL(s)
      /
    • Operating System
      Cisco IOS
      Product
      Cisco WebVPN
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      Amazon RSA 2048 M01
      Issuer Organization
      Amazon
      Subject Common Name
      pdx-j-orca.amazon.com
      Subject Alt Name
      pdx-orca.amazon.com pdx-orca-bak.amazon.com orca.amazon.com pdx-j-orca.amazon.com sfo-orca.amazon.com sfo-orca-bak.amazon.com sea-orca.amazon.com sea-orca-bak.amazon.com
      SHA256 Fingerprint
      bc38b45bc9b4d7643d1b01af3c7217d373a1ca498776cba9814fcb4c1f853a51
      Validity Not Before
      2024-10-19T00:00:00Z
      Validity Not After
      2025-09-26T23:59:59Z
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      22990b9384a1046726337fafe4b7ef99
      HTTP Header MD5
      3c7768ba7c4073a533bff882812b5c37
      HTTP Body MD5
      5d15e952a2d2310e1ddc732ab4f51a36
    • HTTP/1.1 200 OK
      Content-Type: text/html; charset=utf-8
      Transfer-Encoding: chunked
      Cache-Control: no-store
      Pragma: no-cache
      Connection: Keep-Alive
      Date: Thu, 21 Nov 2024 09:38:06 GMT
      X-Frame-Options: SAMEORIGIN
      Strict-Transport-Security: max-age=31536000; includeSubDomains
      X-Content-Type-Options: nosniff
      X-XSS-Protection: 1
      Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob:; frame-ancestors 'self'; base-uri 'self'; block-all-mixed-content
      Set-Cookie: webvpn=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnc=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpn_portal=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnlogin=1; path=/; secure
      Set-Cookie: webvpn_as=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnSharePoint=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: samlPreauthSessionHash=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: acSamlv2Error=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      
      0159
      
          <html>
              <script>
                  
                      document.cookie = "tg=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure";
                  
                  document.cookie = "sdesktop=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure";
                  document.location.replace("/+CSCOE+/logon.html");
              </script>
          </html>
          
      0
      
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T09:38:17.000Z",
         "alternativeip" : [
            "18.225.12.160",
            "34.214.225.168",
            "35.155.101.86",
            "35.155.250.21",
            "35.155.78.37",
            "35.85.131.104",
            "44.227.95.21",
            "44.231.204.22",
            "50.112.248.192",
            "52.12.148.114",
            "52.12.81.87",
            "52.12.94.206",
            "52.25.192.99",
            "52.27.77.173",
            "52.94.120.58",
            "52.94.120.70",
            "52.94.120.94",
            "54.184.130.120",
            "54.184.173.70",
            "54.188.62.255",
            "54.189.187.170",
            "54.189.55.82",
            "54.189.74.23",
            "54.212.84.172",
            "54.214.105.19",
            "54.239.51.234",
            "54.71.195.20"
         ],
         "app" : {
            "http" : {
               "bodymd5" : "5d15e952a2d2310e1ddc732ab4f51a36",
               "bodymmh3" : -1830871261,
               "headermd5" : "3c7768ba7c4073a533bff882812b5c37",
               "headermmh3" : 134896527
            },
            "length" : 1468
         },
         "asn" : "AS16509",
         "basicconstraints" : "critical",
         "ca" : "false",
         "city" : "Boardman",
         "company" : {
            "country" : "<enterprise field>: company.country",
            "globalrank" : "<enterprise field>: company.globalrank",
            "industry" : "<enterprise field>: company.industry",
            "name" : "<enterprise field>: company.name",
            "sector" : "<enterprise field>: company.sector"
         },
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nCache-Control: no-store\r\nPragma: no-cache\r\nConnection: Keep-Alive\r\nDate: Thu, 21 Nov 2024 09:38:06 GMT\r\nX-Frame-Options: SAMEORIGIN\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1\r\nContent-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob:; frame-ancestors 'self'; base-uri 'self'; block-all-mixed-content\r\nSet-Cookie: webvpn=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnc=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpn_portal=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnlogin=1; path=/; secure\r\nSet-Cookie: webvpn_as=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnSharePoint=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: samlPreauthSessionHash=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: acSamlv2Error=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\n\r\n0159\r\n\n    <html>\n        <script>\n            \n                document.cookie = \"tg=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\";\n            \n            document.cookie = \"sdesktop=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\";\n            document.location.replace(\"/+CSCOE+/logon.html\");\n        </script>\n    </html>\n    \r\n0\r\n\r\n",
         "datamd5" : "22990b9384a1046726337fafe4b7ef99",
         "datammh3" : -1903145697,
         "device" : {
            "class" : "<enterprise field>: device.class",
            "product" : "<enterprise field>: device.product",
            "productvendor" : "<enterprise field>: device.productvendor"
         },
         "domain" : [
            "amazon.com"
         ],
         "extkeyusage" : [
            "serverAuth",
            "clientAuth"
         ],
         "fingerprint" : {
            "md5" : "fd2a215300e6fcc7fdcc36da6ae1adc8",
            "sha1" : "704d3580e76211f2f6fcf9b6023f9a94b423f8c9",
            "sha256" : "bc38b45bc9b4d7643d1b01af3c7217d373a1ca498776cba9814fcb4c1f853a51"
         },
         "geolocus" : {
            "asn" : "AS16509",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "amazon.com",
               "aws.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "AMAZON-2011L",
            "organization" : "Amazon Technologies Inc.",
            "subnet" : "54.239.2.0/23"
         },
         "host" : [
            "orca",
            "pdx-j-orca",
            "pdx-orca",
            "pdx-orca-bak",
            "sea-orca",
            "sea-orca-bak",
            "sfo-orca",
            "sfo-orca-bak"
         ],
         "hostname" : [
            "orca.amazon.com",
            "pdx-j-orca.amazon.com",
            "pdx-orca-bak.amazon.com",
            "pdx-orca.amazon.com",
            "sea-orca-bak.amazon.com",
            "sea-orca.amazon.com",
            "sfo-orca-bak.amazon.com",
            "sfo-orca.amazon.com"
         ],
         "ip" : "54.239.2.57",
         "ipv6" : "false",
         "issuer" : {
            "commonname" : "Amazon RSA 2048 M01",
            "country" : "US",
            "organization" : "Amazon"
         },
         "keyusage" : [
            "digitalSignature",
            "keyEncipherment"
         ],
         "latitude" : "45.8491",
         "location" : "45.8491,-119.7143",
         "longitude" : "-119.7143",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "AMAZON-02",
         "os" : "IOS",
         "osvendor" : "Cisco",
         "port" : 443,
         "product" : "WebVPN",
         "productvendor" : "Cisco",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "publickey" : {
            "algorithm" : "rsaEncryption",
            "length" : 2048
         },
         "reason" : "OK",
         "seen_date" : "2024-11-21",
         "serial" : "01:68:a1:95:2c:f2:86:e5:47:07:00:a4:c4:df:d4:7d",
         "signature" : {
            "algorithm" : "sha256WithRSAEncryption"
         },
         "source" : "datascan",
         "status" : 200,
         "subject" : {
            "altname" : [
               "pdx-orca.amazon.com",
               "pdx-orca-bak.amazon.com",
               "orca.amazon.com",
               "pdx-j-orca.amazon.com",
               "sfo-orca.amazon.com",
               "sfo-orca-bak.amazon.com",
               "sea-orca.amazon.com",
               "sea-orca-bak.amazon.com"
            ],
            "commonname" : "pdx-j-orca.amazon.com"
         },
         "subnet" : "54.239.2.0/23",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com"
         ],
         "tls" : "true",
         "transport" : "tcp",
         "url" : "/",
         "validity" : {
            "notafter" : "2025-09-26T23:59:59Z",
            "notbefore" : "2024-10-19T00:00:00Z"
         },
         "version" : "v3",
         "wildcard" : "false"
      }
      
  • 52.9.143.109:443 (tcp/http/tls) - last seen on 2024-11-21 at 09:12:15 UTC

    • IP
      52.9.143.109
      Alternative IP(s)
      3.124.105.192 34.214.225.168 35.155.101.86 35.155.250.21 35.155.78.37 44.227.95.21 44.231.204.22 50.112.248.192 52.12.148.114 52.12.81.87 52.12.94.206 52.25.192.99 52.27.77.173 54.153.17.207 54.184.130.120 54.184.173.70 54.188.62.255 54.189.55.82 54.189.74.23 54.212.84.172 54.71.195.20
      Network
      52.8.0.0/13
      Domain(s)
      amazon.com amazonaws.com
      Device

      <enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

      Operating System
      Cisco IOS
      URL

      https://52.9.143.109/ 200

      Reverse DNS
      ec2-52-9-143-109.us-west-1.compute.amazonaws.com
      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http Cert not expired http
      Source
      datascan
    • NOTE
      This tab is a merge from current page results.
      CPE(s)
      Domain(s)
      amazon.com amazonaws.com
      Hostname(s)
      ec2-44-232-222-31.us-west-2.compute.amazonaws.com ec2-52-12-94-206.us-west-2.compute.amazonaws.com ec2-52-8-136-181.us-west-1.compute.amazonaws.com ec2-52-8-61-6.us-west-1.compute.amazonaws.com ec2-52-9-143-109.us-west-1.compute.amazonaws.com orca.amazon.com pdx-e-orca.amazon.com pdx-j-orca.amazon.com pdx-orca-bak.amazon.com pdx-orca.amazon.com pdx-w-orca.amazon.com sea-orca-bak.amazon.com sea-orca.amazon.com sfo-d-orca.amazon.com sfo-g-orca.amazon.com sfo-n-orca.amazon.com sfo-orca-bak.amazon.com sfo-orca.amazon.com sfo-r-orca.amazon.com sfo-u-orca.amazon.com
      IP(s)
      44.232.222.31 52.12.94.206 52.8.136.181 52.8.61.6 52.9.143.109 52.94.120.74 54.239.2.57 54.240.213.202
      Port(s)
      443
      Protocol(s)
      http
      Tag(s)
      URL(s)
      /
    • Operating System
      Cisco IOS
      Product
      Cisco WebVPN
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      Amazon RSA 2048 M01
      Issuer Organization
      Amazon
      Subject Common Name
      sfo-r-orca.amazon.com
      Subject Alt Name
      sfo-orca.amazon.com sfo-orca-bak.amazon.com orca.amazon.com sfo-r-orca.amazon.com
      SHA256 Fingerprint
      9fcd5e1c03dbd7833dd993f35e1124597642edea9153400baf9897b93c6ec379
      Validity Not Before
      2024-10-30T00:00:00Z
      Validity Not After
      2025-10-20T23:59:59Z
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      22990b9384a1046726337fafe4b7ef99
      HTTP Header MD5
      3c7768ba7c4073a533bff882812b5c37
      HTTP Body MD5
      5d15e952a2d2310e1ddc732ab4f51a36
    • HTTP/1.1 200 OK
      Content-Type: text/html; charset=utf-8
      Transfer-Encoding: chunked
      Cache-Control: no-store
      Pragma: no-cache
      Connection: Keep-Alive
      Date: Thu, 21 Nov 2024 09:12:05 GMT
      X-Frame-Options: SAMEORIGIN
      Strict-Transport-Security: max-age=31536000; includeSubDomains
      X-Content-Type-Options: nosniff
      X-XSS-Protection: 1
      Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob:; frame-ancestors 'self'; base-uri 'self'; block-all-mixed-content
      Set-Cookie: webvpn=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnc=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpn_portal=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnlogin=1; path=/; secure
      Set-Cookie: webvpn_as=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnSharePoint=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: samlPreauthSessionHash=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: acSamlv2Error=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      
      0159
      
          <html>
              <script>
                  
                      document.cookie = "tg=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure";
                  
                  document.cookie = "sdesktop=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure";
                  document.location.replace("/+CSCOE+/logon.html");
              </script>
          </html>
          
      0
      
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T09:12:15.000Z",
         "alternativeip" : [
            "3.124.105.192",
            "34.214.225.168",
            "35.155.101.86",
            "35.155.250.21",
            "35.155.78.37",
            "44.227.95.21",
            "44.231.204.22",
            "50.112.248.192",
            "52.12.148.114",
            "52.12.81.87",
            "52.12.94.206",
            "52.25.192.99",
            "52.27.77.173",
            "54.153.17.207",
            "54.184.130.120",
            "54.184.173.70",
            "54.188.62.255",
            "54.189.55.82",
            "54.189.74.23",
            "54.212.84.172",
            "54.71.195.20"
         ],
         "app" : {
            "http" : {
               "bodymd5" : "5d15e952a2d2310e1ddc732ab4f51a36",
               "bodymmh3" : -1830871261,
               "headermd5" : "3c7768ba7c4073a533bff882812b5c37",
               "headermmh3" : -1677998802
            },
            "length" : 1468
         },
         "asn" : "AS16509",
         "basicconstraints" : "critical",
         "ca" : "false",
         "city" : "San Jose",
         "company" : {
            "country" : "<enterprise field>: company.country",
            "globalrank" : "<enterprise field>: company.globalrank",
            "industry" : "<enterprise field>: company.industry",
            "name" : "<enterprise field>: company.name",
            "sector" : "<enterprise field>: company.sector"
         },
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nCache-Control: no-store\r\nPragma: no-cache\r\nConnection: Keep-Alive\r\nDate: Thu, 21 Nov 2024 09:12:05 GMT\r\nX-Frame-Options: SAMEORIGIN\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1\r\nContent-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob:; frame-ancestors 'self'; base-uri 'self'; block-all-mixed-content\r\nSet-Cookie: webvpn=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnc=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpn_portal=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnlogin=1; path=/; secure\r\nSet-Cookie: webvpn_as=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnSharePoint=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: samlPreauthSessionHash=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: acSamlv2Error=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\n\r\n0159\r\n\n    <html>\n        <script>\n            \n                document.cookie = \"tg=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\";\n            \n            document.cookie = \"sdesktop=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\";\n            document.location.replace(\"/+CSCOE+/logon.html\");\n        </script>\n    </html>\n    \r\n0\r\n\r\n",
         "datamd5" : "22990b9384a1046726337fafe4b7ef99",
         "datammh3" : -1903145697,
         "device" : {
            "class" : "<enterprise field>: device.class",
            "product" : "<enterprise field>: device.product",
            "productvendor" : "<enterprise field>: device.productvendor"
         },
         "domain" : [
            "amazon.com",
            "amazonaws.com"
         ],
         "extkeyusage" : [
            "serverAuth",
            "clientAuth"
         ],
         "fingerprint" : {
            "md5" : "d9eee852555adbf86f30d9d45436796f",
            "sha1" : "4a27ac1cd8a4a85f2633a1576796fa87bc2b4867",
            "sha256" : "9fcd5e1c03dbd7833dd993f35e1124597642edea9153400baf9897b93c6ec379"
         },
         "geolocus" : {
            "asn" : "AS16509",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "amazon.com",
               "amazonaws.com",
               "aws.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "AT-88-Z",
            "organization" : "Amazon Technologies Inc.",
            "subnet" : "52.8.0.0/13"
         },
         "host" : [
            "ec2-52-9-143-109",
            "orca",
            "sfo-orca",
            "sfo-orca-bak",
            "sfo-r-orca"
         ],
         "hostname" : [
            "ec2-52-9-143-109.us-west-1.compute.amazonaws.com",
            "orca.amazon.com",
            "sfo-orca-bak.amazon.com",
            "sfo-orca.amazon.com",
            "sfo-r-orca.amazon.com"
         ],
         "ip" : "52.9.143.109",
         "ipv6" : "false",
         "issuer" : {
            "commonname" : "Amazon RSA 2048 M01",
            "country" : "US",
            "organization" : "Amazon"
         },
         "keyusage" : [
            "digitalSignature",
            "keyEncipherment"
         ],
         "latitude" : "37.1835",
         "location" : "37.1835,-121.7714",
         "longitude" : "-121.7714",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "AMAZON-02",
         "os" : "IOS",
         "osvendor" : "Cisco",
         "port" : 443,
         "product" : "WebVPN",
         "productvendor" : "Cisco",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "publickey" : {
            "algorithm" : "rsaEncryption",
            "length" : 2048
         },
         "reason" : "OK",
         "reverse" : [
            "ec2-52-9-143-109.us-west-1.compute.amazonaws.com"
         ],
         "seen_date" : "2024-11-21",
         "serial" : "06:5d:21:1b:ee:65:8c:33:ca:26:c6:eb:b3:6f:c2:52",
         "signature" : {
            "algorithm" : "sha256WithRSAEncryption"
         },
         "source" : "datascan",
         "status" : 200,
         "subdomains" : [
            "compute.amazonaws.com",
            "us-west-1.compute.amazonaws.com"
         ],
         "subject" : {
            "altname" : [
               "sfo-orca.amazon.com",
               "sfo-orca-bak.amazon.com",
               "orca.amazon.com",
               "sfo-r-orca.amazon.com"
            ],
            "commonname" : "sfo-r-orca.amazon.com"
         },
         "subnet" : "52.8.0.0/13",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com"
         ],
         "tls" : "true",
         "transport" : "tcp",
         "url" : "/",
         "validity" : {
            "notafter" : "2025-10-20T23:59:59Z",
            "notbefore" : "2024-10-30T00:00:00Z"
         },
         "version" : "v3",
         "wildcard" : "false"
      }
      
  • 52.8.61.6:443 (tcp/http/tls) - last seen on 2024-11-21 at 07:07:08 UTC

    • IP
      52.8.61.6
      Alternative IP(s)
      3.124.105.192 34.214.225.168 35.155.101.86 35.155.250.21 35.155.78.37 44.227.95.21 44.231.204.22 50.112.248.192 52.12.148.114 52.12.81.87 52.12.94.206 52.25.192.99 52.27.77.173 54.184.130.120 54.184.173.70 54.188.62.255 54.189.55.82 54.189.74.23 54.212.84.172 54.71.195.20
      Network
      52.8.0.0/13
      Domain(s)
      amazon.com amazonaws.com
      Device

      <enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

      Operating System
      Cisco IOS
      URL

      https://52.8.61.6/ 200

      Reverse DNS
      ec2-52-8-61-6.us-west-1.compute.amazonaws.com
      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http Cert not expired http
      Source
      datascan
    • NOTE
      This tab is a merge from current page results.
      CPE(s)
      Domain(s)
      amazon.com amazonaws.com
      Hostname(s)
      ec2-44-232-222-31.us-west-2.compute.amazonaws.com ec2-52-12-94-206.us-west-2.compute.amazonaws.com ec2-52-8-136-181.us-west-1.compute.amazonaws.com ec2-52-8-61-6.us-west-1.compute.amazonaws.com ec2-52-9-143-109.us-west-1.compute.amazonaws.com orca.amazon.com pdx-e-orca.amazon.com pdx-j-orca.amazon.com pdx-orca-bak.amazon.com pdx-orca.amazon.com pdx-w-orca.amazon.com sea-orca-bak.amazon.com sea-orca.amazon.com sfo-d-orca.amazon.com sfo-g-orca.amazon.com sfo-n-orca.amazon.com sfo-orca-bak.amazon.com sfo-orca.amazon.com sfo-r-orca.amazon.com sfo-u-orca.amazon.com
      IP(s)
      44.232.222.31 52.12.94.206 52.8.136.181 52.8.61.6 52.9.143.109 52.94.120.74 54.239.2.57 54.240.213.202
      Port(s)
      443
      Protocol(s)
      http
      Tag(s)
      URL(s)
      /
    • Operating System
      Cisco IOS
      Product
      Cisco WebVPN
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      Amazon RSA 2048 M01
      Issuer Organization
      Amazon
      Subject Common Name
      sfo-u-orca.amazon.com
      Subject Alt Name
      sfo-orca.amazon.com sfo-orca-bak.amazon.com orca.amazon.com sfo-u-orca.amazon.com
      SHA256 Fingerprint
      cff6bbdb93029d18baef8496b6e2b0bea3e5f8144fc79c715c5b909a7cad2a66
      Validity Not Before
      2024-10-13T00:00:00Z
      Validity Not After
      2025-09-18T23:59:59Z
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      22990b9384a1046726337fafe4b7ef99
      HTTP Header MD5
      3c7768ba7c4073a533bff882812b5c37
      HTTP Body MD5
      5d15e952a2d2310e1ddc732ab4f51a36
    • HTTP/1.1 200 OK
      Content-Type: text/html; charset=utf-8
      Transfer-Encoding: chunked
      Cache-Control: no-store
      Pragma: no-cache
      Connection: Keep-Alive
      Date: Thu, 21 Nov 2024 07:06:58 GMT
      X-Frame-Options: SAMEORIGIN
      Strict-Transport-Security: max-age=31536000; includeSubDomains
      X-Content-Type-Options: nosniff
      X-XSS-Protection: 1
      Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob:; frame-ancestors 'self'; base-uri 'self'; block-all-mixed-content
      Set-Cookie: webvpn=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnc=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpn_portal=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnlogin=1; path=/; secure
      Set-Cookie: webvpn_as=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnSharePoint=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: samlPreauthSessionHash=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: acSamlv2Error=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      
      0159
      
          <html>
              <script>
                  
                      document.cookie = "tg=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure";
                  
                  document.cookie = "sdesktop=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure";
                  document.location.replace("/+CSCOE+/logon.html");
              </script>
          </html>
          
      0
      
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T07:07:08.000Z",
         "alternativeip" : [
            "3.124.105.192",
            "34.214.225.168",
            "35.155.101.86",
            "35.155.250.21",
            "35.155.78.37",
            "44.227.95.21",
            "44.231.204.22",
            "50.112.248.192",
            "52.12.148.114",
            "52.12.81.87",
            "52.12.94.206",
            "52.25.192.99",
            "52.27.77.173",
            "54.184.130.120",
            "54.184.173.70",
            "54.188.62.255",
            "54.189.55.82",
            "54.189.74.23",
            "54.212.84.172",
            "54.71.195.20"
         ],
         "app" : {
            "http" : {
               "bodymd5" : "5d15e952a2d2310e1ddc732ab4f51a36",
               "bodymmh3" : -1830871261,
               "headermd5" : "3c7768ba7c4073a533bff882812b5c37",
               "headermmh3" : 1556030836
            },
            "length" : 1468
         },
         "asn" : "AS16509",
         "basicconstraints" : "critical",
         "ca" : "false",
         "city" : "San Jose",
         "company" : {
            "country" : "<enterprise field>: company.country",
            "globalrank" : "<enterprise field>: company.globalrank",
            "industry" : "<enterprise field>: company.industry",
            "name" : "<enterprise field>: company.name",
            "sector" : "<enterprise field>: company.sector"
         },
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nCache-Control: no-store\r\nPragma: no-cache\r\nConnection: Keep-Alive\r\nDate: Thu, 21 Nov 2024 07:06:58 GMT\r\nX-Frame-Options: SAMEORIGIN\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1\r\nContent-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob:; frame-ancestors 'self'; base-uri 'self'; block-all-mixed-content\r\nSet-Cookie: webvpn=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnc=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpn_portal=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnlogin=1; path=/; secure\r\nSet-Cookie: webvpn_as=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnSharePoint=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: samlPreauthSessionHash=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: acSamlv2Error=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\n\r\n0159\r\n\n    <html>\n        <script>\n            \n                document.cookie = \"tg=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\";\n            \n            document.cookie = \"sdesktop=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\";\n            document.location.replace(\"/+CSCOE+/logon.html\");\n        </script>\n    </html>\n    \r\n0\r\n\r\n",
         "datamd5" : "22990b9384a1046726337fafe4b7ef99",
         "datammh3" : -1903145697,
         "device" : {
            "class" : "<enterprise field>: device.class",
            "product" : "<enterprise field>: device.product",
            "productvendor" : "<enterprise field>: device.productvendor"
         },
         "domain" : [
            "amazon.com",
            "amazonaws.com"
         ],
         "extkeyusage" : [
            "serverAuth",
            "clientAuth"
         ],
         "fingerprint" : {
            "md5" : "c843eb25a44985ae500451a0636b13e4",
            "sha1" : "f454aafa6d5a7ee75239e44756368de9b2b810eb",
            "sha256" : "cff6bbdb93029d18baef8496b6e2b0bea3e5f8144fc79c715c5b909a7cad2a66"
         },
         "geolocus" : {
            "asn" : "AS16509",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "amazon.com",
               "amazonaws.com",
               "aws.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "AT-88-Z",
            "organization" : "Amazon Technologies Inc.",
            "subnet" : "52.8.0.0/13"
         },
         "host" : [
            "ec2-52-8-61-6",
            "orca",
            "sfo-orca",
            "sfo-orca-bak",
            "sfo-u-orca"
         ],
         "hostname" : [
            "ec2-52-8-61-6.us-west-1.compute.amazonaws.com",
            "orca.amazon.com",
            "sfo-orca-bak.amazon.com",
            "sfo-orca.amazon.com",
            "sfo-u-orca.amazon.com"
         ],
         "ip" : "52.8.61.6",
         "ipv6" : "false",
         "issuer" : {
            "commonname" : "Amazon RSA 2048 M01",
            "country" : "US",
            "organization" : "Amazon"
         },
         "keyusage" : [
            "digitalSignature",
            "keyEncipherment"
         ],
         "latitude" : "37.1835",
         "location" : "37.1835,-121.7714",
         "longitude" : "-121.7714",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "AMAZON-02",
         "os" : "IOS",
         "osvendor" : "Cisco",
         "port" : 443,
         "product" : "WebVPN",
         "productvendor" : "Cisco",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "publickey" : {
            "algorithm" : "rsaEncryption",
            "length" : 2048
         },
         "reason" : "OK",
         "reverse" : [
            "ec2-52-8-61-6.us-west-1.compute.amazonaws.com"
         ],
         "seen_date" : "2024-11-21",
         "serial" : "09:2b:c1:be:b4:c2:39:a1:d8:39:9f:bb:1f:08:24:2d",
         "signature" : {
            "algorithm" : "sha256WithRSAEncryption"
         },
         "source" : "datascan",
         "status" : 200,
         "subdomains" : [
            "compute.amazonaws.com",
            "us-west-1.compute.amazonaws.com"
         ],
         "subject" : {
            "altname" : [
               "sfo-orca.amazon.com",
               "sfo-orca-bak.amazon.com",
               "orca.amazon.com",
               "sfo-u-orca.amazon.com"
            ],
            "commonname" : "sfo-u-orca.amazon.com"
         },
         "subnet" : "52.8.0.0/13",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com"
         ],
         "tls" : "true",
         "transport" : "tcp",
         "url" : "/",
         "validity" : {
            "notafter" : "2025-09-18T23:59:59Z",
            "notbefore" : "2024-10-13T00:00:00Z"
         },
         "version" : "v3",
         "wildcard" : "false"
      }
      
  • 52.94.120.74:443 (tcp/http/tls) - last seen on 2024-11-21 at 05:50:23 UTC

    • IP
      52.94.120.74
      Alternative IP(s)
      3.127.1.190 34.214.225.168 35.155.101.86 35.155.250.21 35.155.78.37 35.85.210.61 44.227.95.21 44.231.204.22 50.112.248.192 52.12.148.114 52.12.81.87 52.12.94.206 52.25.192.99 52.27.77.173 52.9.29.27 52.94.120.58 52.94.120.70 52.94.120.94 54.184.130.120 54.184.173.70 54.188.62.255 54.189.55.82 54.189.74.23 54.212.84.172 54.214.105.19 54.239.51.234 54.71.195.20
      Network
      52.94.120.0/21
      Domain(s)
      amazon.com
      Device

      <enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

      Operating System
      Cisco IOS
      URL

      https://52.94.120.74/ 200

      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http Cert not expired http
      Source
      datascan
    • NOTE
      This tab is a merge from current page results.
      CPE(s)
      Domain(s)
      amazon.com amazonaws.com
      Hostname(s)
      ec2-44-232-222-31.us-west-2.compute.amazonaws.com ec2-52-12-94-206.us-west-2.compute.amazonaws.com ec2-52-8-136-181.us-west-1.compute.amazonaws.com ec2-52-8-61-6.us-west-1.compute.amazonaws.com ec2-52-9-143-109.us-west-1.compute.amazonaws.com orca.amazon.com pdx-e-orca.amazon.com pdx-j-orca.amazon.com pdx-orca-bak.amazon.com pdx-orca.amazon.com pdx-w-orca.amazon.com sea-orca-bak.amazon.com sea-orca.amazon.com sfo-d-orca.amazon.com sfo-g-orca.amazon.com sfo-n-orca.amazon.com sfo-orca-bak.amazon.com sfo-orca.amazon.com sfo-r-orca.amazon.com sfo-u-orca.amazon.com
      IP(s)
      44.232.222.31 52.12.94.206 52.8.136.181 52.8.61.6 52.9.143.109 52.94.120.74 54.239.2.57 54.240.213.202
      Port(s)
      443
      Protocol(s)
      http
      Tag(s)
      URL(s)
      /
    • Operating System
      Cisco IOS
      Product
      Cisco WebVPN
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      Amazon RSA 2048 M01
      Issuer Organization
      Amazon
      Subject Common Name
      pdx-e-orca.amazon.com
      Subject Alt Name
      pdx-orca.amazon.com pdx-orca-bak.amazon.com orca.amazon.com sfo-orca.amazon.com sfo-orca-bak.amazon.com sea-orca.amazon.com sea-orca-bak.amazon.com pdx-e-orca.amazon.com
      SHA256 Fingerprint
      de028ea04b685993f03714c25db1c294974b904efe472397dd1cf8294f26f5ba
      Validity Not Before
      2024-06-26T00:00:00Z
      Validity Not After
      2025-06-06T23:59:59Z
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      22990b9384a1046726337fafe4b7ef99
      HTTP Header MD5
      3c7768ba7c4073a533bff882812b5c37
      HTTP Body MD5
      5d15e952a2d2310e1ddc732ab4f51a36
    • HTTP/1.1 200 OK
      Content-Type: text/html; charset=utf-8
      Transfer-Encoding: chunked
      Cache-Control: no-store
      Pragma: no-cache
      Connection: Keep-Alive
      Date: Thu, 21 Nov 2024 05:50:13 GMT
      X-Frame-Options: SAMEORIGIN
      Strict-Transport-Security: max-age=31536000; includeSubDomains
      X-Content-Type-Options: nosniff
      X-XSS-Protection: 1
      Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob:; frame-ancestors 'self'; base-uri 'self'; block-all-mixed-content
      Set-Cookie: webvpn=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnc=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpn_portal=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnlogin=1; path=/; secure
      Set-Cookie: webvpn_as=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnSharePoint=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: samlPreauthSessionHash=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: acSamlv2Error=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      
      0159
      
          <html>
              <script>
                  
                      document.cookie = "tg=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure";
                  
                  document.cookie = "sdesktop=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure";
                  document.location.replace("/+CSCOE+/logon.html");
              </script>
          </html>
          
      0
      
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T05:50:23.000Z",
         "alternativeip" : [
            "3.127.1.190",
            "34.214.225.168",
            "35.155.101.86",
            "35.155.250.21",
            "35.155.78.37",
            "35.85.210.61",
            "44.227.95.21",
            "44.231.204.22",
            "50.112.248.192",
            "52.12.148.114",
            "52.12.81.87",
            "52.12.94.206",
            "52.25.192.99",
            "52.27.77.173",
            "52.9.29.27",
            "52.94.120.58",
            "52.94.120.70",
            "52.94.120.94",
            "54.184.130.120",
            "54.184.173.70",
            "54.188.62.255",
            "54.189.55.82",
            "54.189.74.23",
            "54.212.84.172",
            "54.214.105.19",
            "54.239.51.234",
            "54.71.195.20"
         ],
         "app" : {
            "http" : {
               "bodymd5" : "5d15e952a2d2310e1ddc732ab4f51a36",
               "bodymmh3" : -1830871261,
               "headermd5" : "3c7768ba7c4073a533bff882812b5c37",
               "headermmh3" : 814297950
            },
            "length" : 1468
         },
         "asn" : "AS16509",
         "basicconstraints" : "critical",
         "ca" : "false",
         "city" : "Boardman",
         "company" : {
            "country" : "<enterprise field>: company.country",
            "globalrank" : "<enterprise field>: company.globalrank",
            "industry" : "<enterprise field>: company.industry",
            "name" : "<enterprise field>: company.name",
            "sector" : "<enterprise field>: company.sector"
         },
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nCache-Control: no-store\r\nPragma: no-cache\r\nConnection: Keep-Alive\r\nDate: Thu, 21 Nov 2024 05:50:13 GMT\r\nX-Frame-Options: SAMEORIGIN\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1\r\nContent-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob:; frame-ancestors 'self'; base-uri 'self'; block-all-mixed-content\r\nSet-Cookie: webvpn=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnc=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpn_portal=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnlogin=1; path=/; secure\r\nSet-Cookie: webvpn_as=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnSharePoint=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: samlPreauthSessionHash=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: acSamlv2Error=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\n\r\n0159\r\n\n    <html>\n        <script>\n            \n                document.cookie = \"tg=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\";\n            \n            document.cookie = \"sdesktop=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\";\n            document.location.replace(\"/+CSCOE+/logon.html\");\n        </script>\n    </html>\n    \r\n0\r\n\r\n",
         "datamd5" : "22990b9384a1046726337fafe4b7ef99",
         "datammh3" : -1903145697,
         "device" : {
            "class" : "<enterprise field>: device.class",
            "product" : "<enterprise field>: device.product",
            "productvendor" : "<enterprise field>: device.productvendor"
         },
         "domain" : [
            "amazon.com"
         ],
         "extkeyusage" : [
            "serverAuth",
            "clientAuth"
         ],
         "fingerprint" : {
            "md5" : "7371284fdbb95989ff1b30591bb9dcd5",
            "sha1" : "cc5056bb0325cb0d87d665ad2b6904668770a2a7",
            "sha256" : "de028ea04b685993f03714c25db1c294974b904efe472397dd1cf8294f26f5ba"
         },
         "geolocus" : {
            "asn" : "AS16509",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "amazon.com",
               "amazonaws.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "AT-88-Z",
            "organization" : "Amazon Technologies Inc.",
            "subnet" : "52.94.120.0/21"
         },
         "host" : [
            "orca",
            "pdx-e-orca",
            "pdx-orca",
            "pdx-orca-bak",
            "sea-orca",
            "sea-orca-bak",
            "sfo-orca",
            "sfo-orca-bak"
         ],
         "hostname" : [
            "orca.amazon.com",
            "pdx-e-orca.amazon.com",
            "pdx-orca-bak.amazon.com",
            "pdx-orca.amazon.com",
            "sea-orca-bak.amazon.com",
            "sea-orca.amazon.com",
            "sfo-orca-bak.amazon.com",
            "sfo-orca.amazon.com"
         ],
         "ip" : "52.94.120.74",
         "ipv6" : "false",
         "issuer" : {
            "commonname" : "Amazon RSA 2048 M01",
            "country" : "US",
            "organization" : "Amazon"
         },
         "keyusage" : [
            "digitalSignature",
            "keyEncipherment"
         ],
         "latitude" : "45.8491",
         "location" : "45.8491,-119.7143",
         "longitude" : "-119.7143",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "AMAZON-02",
         "os" : "IOS",
         "osvendor" : "Cisco",
         "port" : 443,
         "product" : "WebVPN",
         "productvendor" : "Cisco",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "publickey" : {
            "algorithm" : "rsaEncryption",
            "length" : 2048
         },
         "reason" : "OK",
         "seen_date" : "2024-11-21",
         "serial" : "05:ad:79:29:48:1b:ac:ee:0e:da:4e:46:7f:56:d4:6a",
         "signature" : {
            "algorithm" : "sha256WithRSAEncryption"
         },
         "source" : "datascan",
         "status" : 200,
         "subject" : {
            "altname" : [
               "pdx-orca.amazon.com",
               "pdx-orca-bak.amazon.com",
               "orca.amazon.com",
               "sfo-orca.amazon.com",
               "sfo-orca-bak.amazon.com",
               "sea-orca.amazon.com",
               "sea-orca-bak.amazon.com",
               "pdx-e-orca.amazon.com"
            ],
            "commonname" : "pdx-e-orca.amazon.com"
         },
         "subnet" : "52.94.120.0/21",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com"
         ],
         "tls" : "true",
         "transport" : "tcp",
         "url" : "/",
         "validity" : {
            "notafter" : "2025-06-06T23:59:59Z",
            "notbefore" : "2024-06-26T00:00:00Z"
         },
         "version" : "v3",
         "wildcard" : "false"
      }
      
  • 44.232.222.31:443 (tcp/http/tls) - last seen on 2024-11-21 at 04:20:19 UTC

    • IP
      44.232.222.31
      Alternative IP(s)
      13.57.82.116 3.123.226.214 34.214.225.168 35.155.101.86 35.155.250.21 35.155.78.37 44.227.95.21 44.231.204.22 50.112.248.192 52.12.148.114 52.12.81.87 52.12.94.206 52.25.192.99 52.27.77.173 54.184.130.120 54.184.173.70 54.188.62.255 54.189.55.82 54.189.74.23 54.212.84.172 54.71.195.20
      Network
      44.224.0.0/11
      Domain(s)
      amazon.com amazonaws.com
      Device

      <enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

      Operating System
      Cisco IOS
      URL

      https://44.232.222.31/ 200

      Reverse DNS
      ec2-44-232-222-31.us-west-2.compute.amazonaws.com
      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http Cert not expired http
      Source
      datascan
    • NOTE
      This tab is a merge from current page results.
      CPE(s)
      Domain(s)
      amazon.com amazonaws.com
      Hostname(s)
      ec2-44-232-222-31.us-west-2.compute.amazonaws.com ec2-52-12-94-206.us-west-2.compute.amazonaws.com ec2-52-8-136-181.us-west-1.compute.amazonaws.com ec2-52-8-61-6.us-west-1.compute.amazonaws.com ec2-52-9-143-109.us-west-1.compute.amazonaws.com orca.amazon.com pdx-e-orca.amazon.com pdx-j-orca.amazon.com pdx-orca-bak.amazon.com pdx-orca.amazon.com pdx-w-orca.amazon.com sea-orca-bak.amazon.com sea-orca.amazon.com sfo-d-orca.amazon.com sfo-g-orca.amazon.com sfo-n-orca.amazon.com sfo-orca-bak.amazon.com sfo-orca.amazon.com sfo-r-orca.amazon.com sfo-u-orca.amazon.com
      IP(s)
      44.232.222.31 52.12.94.206 52.8.136.181 52.8.61.6 52.9.143.109 52.94.120.74 54.239.2.57 54.240.213.202
      Port(s)
      443
      Protocol(s)
      http
      Tag(s)
      URL(s)
      /
    • Operating System
      Cisco IOS
      Product
      Cisco WebVPN
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      Amazon RSA 2048 M01
      Issuer Organization
      Amazon
      Subject Common Name
      sfo-g-orca.amazon.com
      Subject Alt Name
      orca.amazon.com sfo-orca.amazon.com sfo-orca-bak.amazon.com sfo-g-orca.amazon.com
      SHA256 Fingerprint
      918c145d983aa9c8a78361792ac601eab7ddd2cd7977f5506a1516904390c362
      Validity Not Before
      2024-10-09T00:00:00Z
      Validity Not After
      2025-09-27T23:59:59Z
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      22990b9384a1046726337fafe4b7ef99
      HTTP Header MD5
      3c7768ba7c4073a533bff882812b5c37
      HTTP Body MD5
      5d15e952a2d2310e1ddc732ab4f51a36
    • HTTP/1.1 200 OK
      Content-Type: text/html; charset=utf-8
      Transfer-Encoding: chunked
      Cache-Control: no-store
      Pragma: no-cache
      Connection: Keep-Alive
      Date: Thu, 21 Nov 2024 04:20:09 GMT
      X-Frame-Options: SAMEORIGIN
      Strict-Transport-Security: max-age=31536000; includeSubDomains
      X-Content-Type-Options: nosniff
      X-XSS-Protection: 1
      Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob:; frame-ancestors 'self'; base-uri 'self'; block-all-mixed-content
      Set-Cookie: webvpn=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnc=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpn_portal=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnlogin=1; path=/; secure
      Set-Cookie: webvpn_as=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnSharePoint=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: samlPreauthSessionHash=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: acSamlv2Error=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      
      0159
      
          <html>
              <script>
                  
                      document.cookie = "tg=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure";
                  
                  document.cookie = "sdesktop=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure";
                  document.location.replace("/+CSCOE+/logon.html");
              </script>
          </html>
          
      0
      
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T04:20:19.000Z",
         "alternativeip" : [
            "13.57.82.116",
            "3.123.226.214",
            "34.214.225.168",
            "35.155.101.86",
            "35.155.250.21",
            "35.155.78.37",
            "44.227.95.21",
            "44.231.204.22",
            "50.112.248.192",
            "52.12.148.114",
            "52.12.81.87",
            "52.12.94.206",
            "52.25.192.99",
            "52.27.77.173",
            "54.184.130.120",
            "54.184.173.70",
            "54.188.62.255",
            "54.189.55.82",
            "54.189.74.23",
            "54.212.84.172",
            "54.71.195.20"
         ],
         "app" : {
            "http" : {
               "bodymd5" : "5d15e952a2d2310e1ddc732ab4f51a36",
               "bodymmh3" : -1830871261,
               "headermd5" : "3c7768ba7c4073a533bff882812b5c37",
               "headermmh3" : 1158755523
            },
            "length" : 1468
         },
         "asn" : "AS16509",
         "basicconstraints" : "critical",
         "ca" : "false",
         "city" : "Boardman",
         "company" : {
            "country" : "<enterprise field>: company.country",
            "globalrank" : "<enterprise field>: company.globalrank",
            "industry" : "<enterprise field>: company.industry",
            "name" : "<enterprise field>: company.name",
            "sector" : "<enterprise field>: company.sector"
         },
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nCache-Control: no-store\r\nPragma: no-cache\r\nConnection: Keep-Alive\r\nDate: Thu, 21 Nov 2024 04:20:09 GMT\r\nX-Frame-Options: SAMEORIGIN\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1\r\nContent-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob:; frame-ancestors 'self'; base-uri 'self'; block-all-mixed-content\r\nSet-Cookie: webvpn=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnc=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpn_portal=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnlogin=1; path=/; secure\r\nSet-Cookie: webvpn_as=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnSharePoint=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: samlPreauthSessionHash=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: acSamlv2Error=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\n\r\n0159\r\n\n    <html>\n        <script>\n            \n                document.cookie = \"tg=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\";\n            \n            document.cookie = \"sdesktop=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\";\n            document.location.replace(\"/+CSCOE+/logon.html\");\n        </script>\n    </html>\n    \r\n0\r\n\r\n",
         "datamd5" : "22990b9384a1046726337fafe4b7ef99",
         "datammh3" : -1903145697,
         "device" : {
            "class" : "<enterprise field>: device.class",
            "product" : "<enterprise field>: device.product",
            "productvendor" : "<enterprise field>: device.productvendor"
         },
         "domain" : [
            "amazon.com",
            "amazonaws.com"
         ],
         "extkeyusage" : [
            "serverAuth",
            "clientAuth"
         ],
         "fingerprint" : {
            "md5" : "05ab7c9aeb6eb2a5951e0087d45a94fa",
            "sha1" : "b6e65b4e7212ee8173483b5ce719eec3aac2d903",
            "sha256" : "918c145d983aa9c8a78361792ac601eab7ddd2cd7977f5506a1516904390c362"
         },
         "geolocus" : {
            "asn" : "AS16509",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "amazon.com",
               "amazonaws.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "AMAZO-ZPDX",
            "organization" : "Amazon.com, Inc.",
            "subnet" : "44.224.0.0/11"
         },
         "host" : [
            "ec2-44-232-222-31",
            "orca",
            "sfo-g-orca",
            "sfo-orca",
            "sfo-orca-bak"
         ],
         "hostname" : [
            "ec2-44-232-222-31.us-west-2.compute.amazonaws.com",
            "orca.amazon.com",
            "sfo-g-orca.amazon.com",
            "sfo-orca-bak.amazon.com",
            "sfo-orca.amazon.com"
         ],
         "ip" : "44.232.222.31",
         "ipv6" : "false",
         "issuer" : {
            "commonname" : "Amazon RSA 2048 M01",
            "country" : "US",
            "organization" : "Amazon"
         },
         "keyusage" : [
            "digitalSignature",
            "keyEncipherment"
         ],
         "latitude" : "45.8491",
         "location" : "45.8491,-119.7143",
         "longitude" : "-119.7143",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "AMAZON-02",
         "os" : "IOS",
         "osvendor" : "Cisco",
         "port" : 443,
         "product" : "WebVPN",
         "productvendor" : "Cisco",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "publickey" : {
            "algorithm" : "rsaEncryption",
            "length" : 2048
         },
         "reason" : "OK",
         "reverse" : [
            "ec2-44-232-222-31.us-west-2.compute.amazonaws.com"
         ],
         "seen_date" : "2024-11-21",
         "serial" : "01:d6:27:1b:5b:90:3a:ea:f6:84:78:f5:20:56:d5:34",
         "signature" : {
            "algorithm" : "sha256WithRSAEncryption"
         },
         "source" : "datascan",
         "status" : 200,
         "subdomains" : [
            "compute.amazonaws.com",
            "us-west-2.compute.amazonaws.com"
         ],
         "subject" : {
            "altname" : [
               "orca.amazon.com",
               "sfo-orca.amazon.com",
               "sfo-orca-bak.amazon.com",
               "sfo-g-orca.amazon.com"
            ],
            "commonname" : "sfo-g-orca.amazon.com"
         },
         "subnet" : "44.224.0.0/11",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com"
         ],
         "tls" : "true",
         "transport" : "tcp",
         "url" : "/",
         "validity" : {
            "notafter" : "2025-09-27T23:59:59Z",
            "notbefore" : "2024-10-09T00:00:00Z"
         },
         "version" : "v3",
         "wildcard" : "false"
      }
      
  • 52.94.120.74:443 (tcp/http/tls) - last seen on 2024-11-21 at 03:31:38 UTC

    • IP
      52.94.120.74
      Alternative IP(s)
      3.21.63.176 34.214.225.168 35.155.101.86 35.155.250.21 35.155.78.37 44.227.95.21 44.231.204.22 50.112.248.192 52.12.148.114 52.12.81.87 52.12.94.206 52.25.192.99 52.27.77.173 52.94.120.58 52.94.120.70 52.94.120.94 54.184.130.120 54.184.173.70 54.188.62.255 54.189.55.82 54.189.74.23 54.212.84.172 54.214.105.19 54.239.2.62 54.239.51.234 54.71.195.20
      Network
      52.94.120.0/21
      Domain(s)
      amazon.com
      Device

      <enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

      Operating System
      Cisco IOS
      URL

      https://52.94.120.74/ 200

      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http Cert not expired http
      Source
      datascan
    • NOTE
      This tab is a merge from current page results.
      CPE(s)
      Domain(s)
      amazon.com amazonaws.com
      Hostname(s)
      ec2-44-232-222-31.us-west-2.compute.amazonaws.com ec2-52-12-94-206.us-west-2.compute.amazonaws.com ec2-52-8-136-181.us-west-1.compute.amazonaws.com ec2-52-8-61-6.us-west-1.compute.amazonaws.com ec2-52-9-143-109.us-west-1.compute.amazonaws.com orca.amazon.com pdx-e-orca.amazon.com pdx-j-orca.amazon.com pdx-orca-bak.amazon.com pdx-orca.amazon.com pdx-w-orca.amazon.com sea-orca-bak.amazon.com sea-orca.amazon.com sfo-d-orca.amazon.com sfo-g-orca.amazon.com sfo-n-orca.amazon.com sfo-orca-bak.amazon.com sfo-orca.amazon.com sfo-r-orca.amazon.com sfo-u-orca.amazon.com
      IP(s)
      44.232.222.31 52.12.94.206 52.8.136.181 52.8.61.6 52.9.143.109 52.94.120.74 54.239.2.57 54.240.213.202
      Port(s)
      443
      Protocol(s)
      http
      Tag(s)
      URL(s)
      /
    • Operating System
      Cisco IOS
      Product
      Cisco WebVPN
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      Amazon RSA 2048 M01
      Issuer Organization
      Amazon
      Subject Common Name
      pdx-e-orca.amazon.com
      Subject Alt Name
      pdx-orca.amazon.com pdx-orca-bak.amazon.com orca.amazon.com sfo-orca.amazon.com sfo-orca-bak.amazon.com sea-orca.amazon.com sea-orca-bak.amazon.com pdx-e-orca.amazon.com
      SHA256 Fingerprint
      de028ea04b685993f03714c25db1c294974b904efe472397dd1cf8294f26f5ba
      Validity Not Before
      2024-06-26T00:00:00Z
      Validity Not After
      2025-06-06T23:59:59Z
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      22990b9384a1046726337fafe4b7ef99
      HTTP Header MD5
      3c7768ba7c4073a533bff882812b5c37
      HTTP Body MD5
      5d15e952a2d2310e1ddc732ab4f51a36
    • HTTP/1.1 200 OK
      Content-Type: text/html; charset=utf-8
      Transfer-Encoding: chunked
      Cache-Control: no-store
      Pragma: no-cache
      Connection: Keep-Alive
      Date: Thu, 21 Nov 2024 03:31:28 GMT
      X-Frame-Options: SAMEORIGIN
      Strict-Transport-Security: max-age=31536000; includeSubDomains
      X-Content-Type-Options: nosniff
      X-XSS-Protection: 1
      Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob:; frame-ancestors 'self'; base-uri 'self'; block-all-mixed-content
      Set-Cookie: webvpn=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnc=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpn_portal=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnlogin=1; path=/; secure
      Set-Cookie: webvpn_as=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnSharePoint=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: samlPreauthSessionHash=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: acSamlv2Error=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      
      0159
      
          <html>
              <script>
                  
                      document.cookie = "tg=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure";
                  
                  document.cookie = "sdesktop=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure";
                  document.location.replace("/+CSCOE+/logon.html");
              </script>
          </html>
          
      0
      
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T03:31:38.000Z",
         "alternativeip" : [
            "3.21.63.176",
            "34.214.225.168",
            "35.155.101.86",
            "35.155.250.21",
            "35.155.78.37",
            "44.227.95.21",
            "44.231.204.22",
            "50.112.248.192",
            "52.12.148.114",
            "52.12.81.87",
            "52.12.94.206",
            "52.25.192.99",
            "52.27.77.173",
            "52.94.120.58",
            "52.94.120.70",
            "52.94.120.94",
            "54.184.130.120",
            "54.184.173.70",
            "54.188.62.255",
            "54.189.55.82",
            "54.189.74.23",
            "54.212.84.172",
            "54.214.105.19",
            "54.239.2.62",
            "54.239.51.234",
            "54.71.195.20"
         ],
         "app" : {
            "http" : {
               "bodymd5" : "5d15e952a2d2310e1ddc732ab4f51a36",
               "bodymmh3" : -1830871261,
               "headermd5" : "3c7768ba7c4073a533bff882812b5c37",
               "headermmh3" : -1078021305
            },
            "length" : 1468
         },
         "asn" : "AS16509",
         "basicconstraints" : "critical",
         "ca" : "false",
         "city" : "Boardman",
         "company" : {
            "country" : "<enterprise field>: company.country",
            "globalrank" : "<enterprise field>: company.globalrank",
            "industry" : "<enterprise field>: company.industry",
            "name" : "<enterprise field>: company.name",
            "sector" : "<enterprise field>: company.sector"
         },
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nCache-Control: no-store\r\nPragma: no-cache\r\nConnection: Keep-Alive\r\nDate: Thu, 21 Nov 2024 03:31:28 GMT\r\nX-Frame-Options: SAMEORIGIN\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1\r\nContent-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob:; frame-ancestors 'self'; base-uri 'self'; block-all-mixed-content\r\nSet-Cookie: webvpn=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnc=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpn_portal=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnlogin=1; path=/; secure\r\nSet-Cookie: webvpn_as=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnSharePoint=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: samlPreauthSessionHash=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: acSamlv2Error=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\n\r\n0159\r\n\n    <html>\n        <script>\n            \n                document.cookie = \"tg=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\";\n            \n            document.cookie = \"sdesktop=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\";\n            document.location.replace(\"/+CSCOE+/logon.html\");\n        </script>\n    </html>\n    \r\n0\r\n\r\n",
         "datamd5" : "22990b9384a1046726337fafe4b7ef99",
         "datammh3" : -1903145697,
         "device" : {
            "class" : "<enterprise field>: device.class",
            "product" : "<enterprise field>: device.product",
            "productvendor" : "<enterprise field>: device.productvendor"
         },
         "domain" : [
            "amazon.com"
         ],
         "extkeyusage" : [
            "serverAuth",
            "clientAuth"
         ],
         "fingerprint" : {
            "md5" : "7371284fdbb95989ff1b30591bb9dcd5",
            "sha1" : "cc5056bb0325cb0d87d665ad2b6904668770a2a7",
            "sha256" : "de028ea04b685993f03714c25db1c294974b904efe472397dd1cf8294f26f5ba"
         },
         "geolocus" : {
            "asn" : "AS16509",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "amazon.com",
               "amazonaws.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "AT-88-Z",
            "organization" : "Amazon Technologies Inc.",
            "subnet" : "52.94.120.0/21"
         },
         "host" : [
            "orca",
            "pdx-e-orca",
            "pdx-orca",
            "pdx-orca-bak",
            "sea-orca",
            "sea-orca-bak",
            "sfo-orca",
            "sfo-orca-bak"
         ],
         "hostname" : [
            "orca.amazon.com",
            "pdx-e-orca.amazon.com",
            "pdx-orca-bak.amazon.com",
            "pdx-orca.amazon.com",
            "sea-orca-bak.amazon.com",
            "sea-orca.amazon.com",
            "sfo-orca-bak.amazon.com",
            "sfo-orca.amazon.com"
         ],
         "ip" : "52.94.120.74",
         "ipv6" : "false",
         "issuer" : {
            "commonname" : "Amazon RSA 2048 M01",
            "country" : "US",
            "organization" : "Amazon"
         },
         "keyusage" : [
            "digitalSignature",
            "keyEncipherment"
         ],
         "latitude" : "45.8491",
         "location" : "45.8491,-119.7143",
         "longitude" : "-119.7143",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "AMAZON-02",
         "os" : "IOS",
         "osvendor" : "Cisco",
         "port" : 443,
         "product" : "WebVPN",
         "productvendor" : "Cisco",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "publickey" : {
            "algorithm" : "rsaEncryption",
            "length" : 2048
         },
         "reason" : "OK",
         "seen_date" : "2024-11-21",
         "serial" : "05:ad:79:29:48:1b:ac:ee:0e:da:4e:46:7f:56:d4:6a",
         "signature" : {
            "algorithm" : "sha256WithRSAEncryption"
         },
         "source" : "datascan",
         "status" : 200,
         "subject" : {
            "altname" : [
               "pdx-orca.amazon.com",
               "pdx-orca-bak.amazon.com",
               "orca.amazon.com",
               "sfo-orca.amazon.com",
               "sfo-orca-bak.amazon.com",
               "sea-orca.amazon.com",
               "sea-orca-bak.amazon.com",
               "pdx-e-orca.amazon.com"
            ],
            "commonname" : "pdx-e-orca.amazon.com"
         },
         "subnet" : "52.94.120.0/21",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com"
         ],
         "tls" : "true",
         "transport" : "tcp",
         "url" : "/",
         "validity" : {
            "notafter" : "2025-06-06T23:59:59Z",
            "notbefore" : "2024-06-26T00:00:00Z"
         },
         "version" : "v3",
         "wildcard" : "false"
      }
      
  • 52.8.136.181:443 (tcp/http/tls) - last seen on 2024-11-21 at 02:54:45 UTC

    • IP
      52.8.136.181
      Alternative IP(s)
      13.57.82.116 3.127.53.31 34.214.225.168 35.155.101.86 35.155.250.21 35.155.78.37 44.227.95.21 44.231.204.22 50.112.248.192 52.12.148.114 52.12.81.87 52.12.94.206 52.25.192.99 52.27.77.173 54.184.130.120 54.184.173.70 54.188.62.255 54.189.55.82 54.189.74.23 54.212.84.172 54.71.195.20
      Network
      52.8.0.0/13
      Domain(s)
      amazon.com amazonaws.com
      Device

      <enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

      Operating System
      Cisco IOS
      URL

      https://52.8.136.181/ 200

      Reverse DNS
      ec2-52-8-136-181.us-west-1.compute.amazonaws.com
      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http Cert not expired http
      Source
      datascan
    • NOTE
      This tab is a merge from current page results.
      CPE(s)
      Domain(s)
      amazon.com amazonaws.com
      Hostname(s)
      ec2-44-232-222-31.us-west-2.compute.amazonaws.com ec2-52-12-94-206.us-west-2.compute.amazonaws.com ec2-52-8-136-181.us-west-1.compute.amazonaws.com ec2-52-8-61-6.us-west-1.compute.amazonaws.com ec2-52-9-143-109.us-west-1.compute.amazonaws.com orca.amazon.com pdx-e-orca.amazon.com pdx-j-orca.amazon.com pdx-orca-bak.amazon.com pdx-orca.amazon.com pdx-w-orca.amazon.com sea-orca-bak.amazon.com sea-orca.amazon.com sfo-d-orca.amazon.com sfo-g-orca.amazon.com sfo-n-orca.amazon.com sfo-orca-bak.amazon.com sfo-orca.amazon.com sfo-r-orca.amazon.com sfo-u-orca.amazon.com
      IP(s)
      44.232.222.31 52.12.94.206 52.8.136.181 52.8.61.6 52.9.143.109 52.94.120.74 54.239.2.57 54.240.213.202
      Port(s)
      443
      Protocol(s)
      http
      Tag(s)
      URL(s)
      /
    • Operating System
      Cisco IOS
      Product
      Cisco WebVPN
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      Amazon RSA 2048 M01
      Issuer Organization
      Amazon
      Subject Common Name
      sfo-n-orca.amazon.com
      Subject Alt Name
      sfo-orca.amazon.com sfo-orca-bak.amazon.com orca.amazon.com sfo-n-orca.amazon.com
      SHA256 Fingerprint
      369bbe2022b06d17519a9369f9f4aa2d231f62775b280d925a8d78ee02848861
      Validity Not Before
      2024-10-29T00:00:00Z
      Validity Not After
      2025-10-01T23:59:59Z
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      22990b9384a1046726337fafe4b7ef99
      HTTP Header MD5
      3c7768ba7c4073a533bff882812b5c37
      HTTP Body MD5
      5d15e952a2d2310e1ddc732ab4f51a36
    • HTTP/1.1 200 OK
      Content-Type: text/html; charset=utf-8
      Transfer-Encoding: chunked
      Cache-Control: no-store
      Pragma: no-cache
      Connection: Keep-Alive
      Date: Thu, 21 Nov 2024 02:54:35 GMT
      X-Frame-Options: SAMEORIGIN
      Strict-Transport-Security: max-age=31536000; includeSubDomains
      X-Content-Type-Options: nosniff
      X-XSS-Protection: 1
      Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob:; frame-ancestors 'self'; base-uri 'self'; block-all-mixed-content
      Set-Cookie: webvpn=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnc=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpn_portal=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnlogin=1; path=/; secure
      Set-Cookie: webvpn_as=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnSharePoint=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: samlPreauthSessionHash=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: acSamlv2Error=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      
      0159
      
          <html>
              <script>
                  
                      document.cookie = "tg=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure";
                  
                  document.cookie = "sdesktop=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure";
                  document.location.replace("/+CSCOE+/logon.html");
              </script>
          </html>
          
      0
      
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T02:54:45.000Z",
         "alternativeip" : [
            "13.57.82.116",
            "3.127.53.31",
            "34.214.225.168",
            "35.155.101.86",
            "35.155.250.21",
            "35.155.78.37",
            "44.227.95.21",
            "44.231.204.22",
            "50.112.248.192",
            "52.12.148.114",
            "52.12.81.87",
            "52.12.94.206",
            "52.25.192.99",
            "52.27.77.173",
            "54.184.130.120",
            "54.184.173.70",
            "54.188.62.255",
            "54.189.55.82",
            "54.189.74.23",
            "54.212.84.172",
            "54.71.195.20"
         ],
         "app" : {
            "http" : {
               "bodymd5" : "5d15e952a2d2310e1ddc732ab4f51a36",
               "bodymmh3" : -1830871261,
               "headermd5" : "3c7768ba7c4073a533bff882812b5c37",
               "headermmh3" : -938493671
            },
            "length" : 1468
         },
         "asn" : "AS16509",
         "basicconstraints" : "critical",
         "ca" : "false",
         "city" : "San Jose",
         "company" : {
            "country" : "<enterprise field>: company.country",
            "globalrank" : "<enterprise field>: company.globalrank",
            "industry" : "<enterprise field>: company.industry",
            "name" : "<enterprise field>: company.name",
            "sector" : "<enterprise field>: company.sector"
         },
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nCache-Control: no-store\r\nPragma: no-cache\r\nConnection: Keep-Alive\r\nDate: Thu, 21 Nov 2024 02:54:35 GMT\r\nX-Frame-Options: SAMEORIGIN\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1\r\nContent-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob:; frame-ancestors 'self'; base-uri 'self'; block-all-mixed-content\r\nSet-Cookie: webvpn=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnc=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpn_portal=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnlogin=1; path=/; secure\r\nSet-Cookie: webvpn_as=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnSharePoint=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: samlPreauthSessionHash=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: acSamlv2Error=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\n\r\n0159\r\n\n    <html>\n        <script>\n            \n                document.cookie = \"tg=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\";\n            \n            document.cookie = \"sdesktop=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\";\n            document.location.replace(\"/+CSCOE+/logon.html\");\n        </script>\n    </html>\n    \r\n0\r\n\r\n",
         "datamd5" : "22990b9384a1046726337fafe4b7ef99",
         "datammh3" : -1903145697,
         "device" : {
            "class" : "<enterprise field>: device.class",
            "product" : "<enterprise field>: device.product",
            "productvendor" : "<enterprise field>: device.productvendor"
         },
         "domain" : [
            "amazon.com",
            "amazonaws.com"
         ],
         "extkeyusage" : [
            "serverAuth",
            "clientAuth"
         ],
         "fingerprint" : {
            "md5" : "e39046983d005b471cf367538c50cc7f",
            "sha1" : "1cabb221a675b5fb5b302d5e2d39b6cea4fa264a",
            "sha256" : "369bbe2022b06d17519a9369f9f4aa2d231f62775b280d925a8d78ee02848861"
         },
         "geolocus" : {
            "asn" : "AS16509",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "amazon.com",
               "amazonaws.com",
               "aws.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "AT-88-Z",
            "organization" : "Amazon Technologies Inc.",
            "subnet" : "52.8.0.0/13"
         },
         "host" : [
            "ec2-52-8-136-181",
            "orca",
            "sfo-n-orca",
            "sfo-orca",
            "sfo-orca-bak"
         ],
         "hostname" : [
            "ec2-52-8-136-181.us-west-1.compute.amazonaws.com",
            "orca.amazon.com",
            "sfo-n-orca.amazon.com",
            "sfo-orca-bak.amazon.com",
            "sfo-orca.amazon.com"
         ],
         "ip" : "52.8.136.181",
         "ipv6" : "false",
         "issuer" : {
            "commonname" : "Amazon RSA 2048 M01",
            "country" : "US",
            "organization" : "Amazon"
         },
         "keyusage" : [
            "digitalSignature",
            "keyEncipherment"
         ],
         "latitude" : "37.1835",
         "location" : "37.1835,-121.7714",
         "longitude" : "-121.7714",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "AMAZON-02",
         "os" : "IOS",
         "osvendor" : "Cisco",
         "port" : 443,
         "product" : "WebVPN",
         "productvendor" : "Cisco",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "publickey" : {
            "algorithm" : "rsaEncryption",
            "length" : 2048
         },
         "reason" : "OK",
         "reverse" : [
            "ec2-52-8-136-181.us-west-1.compute.amazonaws.com"
         ],
         "seen_date" : "2024-11-21",
         "serial" : "01:24:fc:98:cf:ce:f9:6f:c7:6e:a4:80:12:bd:6f:5b",
         "signature" : {
            "algorithm" : "sha256WithRSAEncryption"
         },
         "source" : "datascan",
         "status" : 200,
         "subdomains" : [
            "compute.amazonaws.com",
            "us-west-1.compute.amazonaws.com"
         ],
         "subject" : {
            "altname" : [
               "sfo-orca.amazon.com",
               "sfo-orca-bak.amazon.com",
               "orca.amazon.com",
               "sfo-n-orca.amazon.com"
            ],
            "commonname" : "sfo-n-orca.amazon.com"
         },
         "subnet" : "52.8.0.0/13",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com"
         ],
         "tls" : "true",
         "transport" : "tcp",
         "url" : "/",
         "validity" : {
            "notafter" : "2025-10-01T23:59:59Z",
            "notbefore" : "2024-10-29T00:00:00Z"
         },
         "version" : "v3",
         "wildcard" : "false"
      }
      
  • 54.240.213.202:443 (tcp/http/tls) - last seen on 2024-11-21 at 02:37:20 UTC

    • IP
      54.240.213.202
      Alternative IP(s)
      13.52.40.86 3.126.227.179 34.214.225.168 35.155.101.86 35.155.250.21 35.155.78.37 44.227.95.21 44.231.204.22 50.112.248.192 52.12.148.114 52.12.81.87 52.12.94.206 52.25.192.99 52.27.77.173 54.184.130.120 54.184.173.70 54.188.62.255 54.189.55.82 54.189.74.23 54.212.84.172 54.71.195.20
      Network
      54.240.208.0/20
      Domain(s)
      amazon.com
      Device

      <enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

      Operating System
      Cisco IOS
      URL

      https://54.240.213.202/ 200

      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http Cert not expired http
      Source
      datascan
    • NOTE
      This tab is a merge from current page results.
      CPE(s)
      Domain(s)
      amazon.com amazonaws.com
      Hostname(s)
      ec2-44-232-222-31.us-west-2.compute.amazonaws.com ec2-52-12-94-206.us-west-2.compute.amazonaws.com ec2-52-8-136-181.us-west-1.compute.amazonaws.com ec2-52-8-61-6.us-west-1.compute.amazonaws.com ec2-52-9-143-109.us-west-1.compute.amazonaws.com orca.amazon.com pdx-e-orca.amazon.com pdx-j-orca.amazon.com pdx-orca-bak.amazon.com pdx-orca.amazon.com pdx-w-orca.amazon.com sea-orca-bak.amazon.com sea-orca.amazon.com sfo-d-orca.amazon.com sfo-g-orca.amazon.com sfo-n-orca.amazon.com sfo-orca-bak.amazon.com sfo-orca.amazon.com sfo-r-orca.amazon.com sfo-u-orca.amazon.com
      IP(s)
      44.232.222.31 52.12.94.206 52.8.136.181 52.8.61.6 52.9.143.109 52.94.120.74 54.239.2.57 54.240.213.202
      Port(s)
      443
      Protocol(s)
      http
      Tag(s)
      URL(s)
      /
    • Operating System
      Cisco IOS
      Product
      Cisco WebVPN
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      Amazon RSA 2048 M01
      Issuer Organization
      Amazon
      Subject Common Name
      sfo-d-orca.amazon.com
      Subject Alt Name
      sfo-orca.amazon.com sfo-orca-bak.amazon.com orca.amazon.com sfo-d-orca.amazon.com
      SHA256 Fingerprint
      148874015765f1bccf99b7bb73748e1246002a38187d3de34e2cc45415df78fd
      Validity Not Before
      2024-08-25T00:00:00Z
      Validity Not After
      2025-08-22T23:59:59Z
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      22990b9384a1046726337fafe4b7ef99
      HTTP Header MD5
      3c7768ba7c4073a533bff882812b5c37
      HTTP Body MD5
      5d15e952a2d2310e1ddc732ab4f51a36
    • HTTP/1.1 200 OK
      Content-Type: text/html; charset=utf-8
      Transfer-Encoding: chunked
      Cache-Control: no-store
      Pragma: no-cache
      Connection: Keep-Alive
      Date: Thu, 21 Nov 2024 02:37:10 GMT
      X-Frame-Options: SAMEORIGIN
      Strict-Transport-Security: max-age=31536000; includeSubDomains
      X-Content-Type-Options: nosniff
      X-XSS-Protection: 1
      Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob:; frame-ancestors 'self'; base-uri 'self'; block-all-mixed-content
      Set-Cookie: webvpn=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnc=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpn_portal=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnlogin=1; path=/; secure
      Set-Cookie: webvpn_as=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnSharePoint=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: samlPreauthSessionHash=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: acSamlv2Error=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      
      0159
      
          <html>
              <script>
                  
                      document.cookie = "tg=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure";
                  
                  document.cookie = "sdesktop=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure";
                  document.location.replace("/+CSCOE+/logon.html");
              </script>
          </html>
          
      0
      
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T02:37:20.000Z",
         "alternativeip" : [
            "13.52.40.86",
            "3.126.227.179",
            "34.214.225.168",
            "35.155.101.86",
            "35.155.250.21",
            "35.155.78.37",
            "44.227.95.21",
            "44.231.204.22",
            "50.112.248.192",
            "52.12.148.114",
            "52.12.81.87",
            "52.12.94.206",
            "52.25.192.99",
            "52.27.77.173",
            "54.184.130.120",
            "54.184.173.70",
            "54.188.62.255",
            "54.189.55.82",
            "54.189.74.23",
            "54.212.84.172",
            "54.71.195.20"
         ],
         "app" : {
            "http" : {
               "bodymd5" : "5d15e952a2d2310e1ddc732ab4f51a36",
               "bodymmh3" : -1830871261,
               "headermd5" : "3c7768ba7c4073a533bff882812b5c37",
               "headermmh3" : -1494309732
            },
            "length" : 1468
         },
         "asn" : "AS16509",
         "basicconstraints" : "critical",
         "ca" : "false",
         "city" : "San Jose",
         "company" : {
            "country" : "<enterprise field>: company.country",
            "globalrank" : "<enterprise field>: company.globalrank",
            "industry" : "<enterprise field>: company.industry",
            "name" : "<enterprise field>: company.name",
            "sector" : "<enterprise field>: company.sector"
         },
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nCache-Control: no-store\r\nPragma: no-cache\r\nConnection: Keep-Alive\r\nDate: Thu, 21 Nov 2024 02:37:10 GMT\r\nX-Frame-Options: SAMEORIGIN\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1\r\nContent-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob:; frame-ancestors 'self'; base-uri 'self'; block-all-mixed-content\r\nSet-Cookie: webvpn=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnc=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpn_portal=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnlogin=1; path=/; secure\r\nSet-Cookie: webvpn_as=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnSharePoint=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: samlPreauthSessionHash=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: acSamlv2Error=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\n\r\n0159\r\n\n    <html>\n        <script>\n            \n                document.cookie = \"tg=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\";\n            \n            document.cookie = \"sdesktop=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\";\n            document.location.replace(\"/+CSCOE+/logon.html\");\n        </script>\n    </html>\n    \r\n0\r\n\r\n",
         "datamd5" : "22990b9384a1046726337fafe4b7ef99",
         "datammh3" : -1903145697,
         "device" : {
            "class" : "<enterprise field>: device.class",
            "product" : "<enterprise field>: device.product",
            "productvendor" : "<enterprise field>: device.productvendor"
         },
         "domain" : [
            "amazon.com"
         ],
         "extkeyusage" : [
            "serverAuth",
            "clientAuth"
         ],
         "fingerprint" : {
            "md5" : "f58dda469dd2ef63c008a23ebfcda205",
            "sha1" : "81f86929370200f5d05967906fccb030007b5b90",
            "sha256" : "148874015765f1bccf99b7bb73748e1246002a38187d3de34e2cc45415df78fd"
         },
         "geolocus" : {
            "asn" : "AS16509",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "amazon.com",
               "aws.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "AMAZON-2Z",
            "organization" : "Amazon.com, Inc.",
            "subnet" : "54.240.208.0/21"
         },
         "host" : [
            "orca",
            "sfo-d-orca",
            "sfo-orca",
            "sfo-orca-bak"
         ],
         "hostname" : [
            "orca.amazon.com",
            "sfo-d-orca.amazon.com",
            "sfo-orca-bak.amazon.com",
            "sfo-orca.amazon.com"
         ],
         "ip" : "54.240.213.202",
         "ipv6" : "false",
         "issuer" : {
            "commonname" : "Amazon RSA 2048 M01",
            "country" : "US",
            "organization" : "Amazon"
         },
         "keyusage" : [
            "digitalSignature",
            "keyEncipherment"
         ],
         "latitude" : "37.1835",
         "location" : "37.1835,-121.7714",
         "longitude" : "-121.7714",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "AMAZON-02",
         "os" : "IOS",
         "osvendor" : "Cisco",
         "port" : 443,
         "product" : "WebVPN",
         "productvendor" : "Cisco",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "publickey" : {
            "algorithm" : "rsaEncryption",
            "length" : 2048
         },
         "reason" : "OK",
         "seen_date" : "2024-11-21",
         "serial" : "06:ef:df:51:63:f3:33:aa:ef:13:5f:60:42:29:f9:f5",
         "signature" : {
            "algorithm" : "sha256WithRSAEncryption"
         },
         "source" : "datascan",
         "status" : 200,
         "subject" : {
            "altname" : [
               "sfo-orca.amazon.com",
               "sfo-orca-bak.amazon.com",
               "orca.amazon.com",
               "sfo-d-orca.amazon.com"
            ],
            "commonname" : "sfo-d-orca.amazon.com"
         },
         "subnet" : "54.240.208.0/20",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com"
         ],
         "tls" : "true",
         "transport" : "tcp",
         "url" : "/",
         "validity" : {
            "notafter" : "2025-08-22T23:59:59Z",
            "notbefore" : "2024-08-25T00:00:00Z"
         },
         "version" : "v3",
         "wildcard" : "false"
      }
      
  • 44.232.222.31:443 (tcp/http/tls) - last seen on 2024-11-21 at 02:00:10 UTC

    • IP
      44.232.222.31
      Alternative IP(s)
      34.214.225.168 35.155.101.86 35.155.250.21 35.155.78.37 44.227.95.21 44.231.204.22 50.112.248.192 52.12.148.114 52.12.81.87 52.12.94.206 52.25.192.99 52.27.77.173 54.184.130.120 54.184.173.70 54.188.62.255 54.189.55.82 54.189.74.23 54.212.84.172 54.219.219.248 54.71.195.20 54.86.64.158
      Network
      44.224.0.0/11
      Domain(s)
      amazon.com amazonaws.com
      Device

      <enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

      Operating System
      Cisco IOS
      URL

      https://44.232.222.31/ 200

      Reverse DNS
      ec2-44-232-222-31.us-west-2.compute.amazonaws.com
      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http Cert not expired http
      Source
      datascan
    • NOTE
      This tab is a merge from current page results.
      CPE(s)
      Domain(s)
      amazon.com amazonaws.com
      Hostname(s)
      ec2-44-232-222-31.us-west-2.compute.amazonaws.com ec2-52-12-94-206.us-west-2.compute.amazonaws.com ec2-52-8-136-181.us-west-1.compute.amazonaws.com ec2-52-8-61-6.us-west-1.compute.amazonaws.com ec2-52-9-143-109.us-west-1.compute.amazonaws.com orca.amazon.com pdx-e-orca.amazon.com pdx-j-orca.amazon.com pdx-orca-bak.amazon.com pdx-orca.amazon.com pdx-w-orca.amazon.com sea-orca-bak.amazon.com sea-orca.amazon.com sfo-d-orca.amazon.com sfo-g-orca.amazon.com sfo-n-orca.amazon.com sfo-orca-bak.amazon.com sfo-orca.amazon.com sfo-r-orca.amazon.com sfo-u-orca.amazon.com
      IP(s)
      44.232.222.31 52.12.94.206 52.8.136.181 52.8.61.6 52.9.143.109 52.94.120.74 54.239.2.57 54.240.213.202
      Port(s)
      443
      Protocol(s)
      http
      Tag(s)
      URL(s)
      /
    • Operating System
      Cisco IOS
      Product
      Cisco WebVPN
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      Amazon RSA 2048 M01
      Issuer Organization
      Amazon
      Subject Common Name
      sfo-g-orca.amazon.com
      Subject Alt Name
      orca.amazon.com sfo-orca.amazon.com sfo-orca-bak.amazon.com sfo-g-orca.amazon.com
      SHA256 Fingerprint
      918c145d983aa9c8a78361792ac601eab7ddd2cd7977f5506a1516904390c362
      Validity Not Before
      2024-10-09T00:00:00Z
      Validity Not After
      2025-09-27T23:59:59Z
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      22990b9384a1046726337fafe4b7ef99
      HTTP Header MD5
      3c7768ba7c4073a533bff882812b5c37
      HTTP Body MD5
      5d15e952a2d2310e1ddc732ab4f51a36
    • HTTP/1.1 200 OK
      Content-Type: text/html; charset=utf-8
      Transfer-Encoding: chunked
      Cache-Control: no-store
      Pragma: no-cache
      Connection: Keep-Alive
      Date: Thu, 21 Nov 2024 02:00:00 GMT
      X-Frame-Options: SAMEORIGIN
      Strict-Transport-Security: max-age=31536000; includeSubDomains
      X-Content-Type-Options: nosniff
      X-XSS-Protection: 1
      Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob:; frame-ancestors 'self'; base-uri 'self'; block-all-mixed-content
      Set-Cookie: webvpn=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnc=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpn_portal=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnlogin=1; path=/; secure
      Set-Cookie: webvpn_as=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnSharePoint=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: samlPreauthSessionHash=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: acSamlv2Error=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      
      0159
      
          <html>
              <script>
                  
                      document.cookie = "tg=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure";
                  
                  document.cookie = "sdesktop=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure";
                  document.location.replace("/+CSCOE+/logon.html");
              </script>
          </html>
          
      0
      
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T02:00:10.000Z",
         "alternativeip" : [
            "34.214.225.168",
            "35.155.101.86",
            "35.155.250.21",
            "35.155.78.37",
            "44.227.95.21",
            "44.231.204.22",
            "50.112.248.192",
            "52.12.148.114",
            "52.12.81.87",
            "52.12.94.206",
            "52.25.192.99",
            "52.27.77.173",
            "54.184.130.120",
            "54.184.173.70",
            "54.188.62.255",
            "54.189.55.82",
            "54.189.74.23",
            "54.212.84.172",
            "54.219.219.248",
            "54.71.195.20",
            "54.86.64.158"
         ],
         "app" : {
            "http" : {
               "bodymd5" : "5d15e952a2d2310e1ddc732ab4f51a36",
               "bodymmh3" : -1830871261,
               "headermd5" : "3c7768ba7c4073a533bff882812b5c37",
               "headermmh3" : 1627721807
            },
            "length" : 1468
         },
         "asn" : "AS16509",
         "basicconstraints" : "critical",
         "ca" : "false",
         "city" : "Boardman",
         "company" : {
            "country" : "<enterprise field>: company.country",
            "globalrank" : "<enterprise field>: company.globalrank",
            "industry" : "<enterprise field>: company.industry",
            "name" : "<enterprise field>: company.name",
            "sector" : "<enterprise field>: company.sector"
         },
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nCache-Control: no-store\r\nPragma: no-cache\r\nConnection: Keep-Alive\r\nDate: Thu, 21 Nov 2024 02:00:00 GMT\r\nX-Frame-Options: SAMEORIGIN\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1\r\nContent-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob:; frame-ancestors 'self'; base-uri 'self'; block-all-mixed-content\r\nSet-Cookie: webvpn=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnc=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpn_portal=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnlogin=1; path=/; secure\r\nSet-Cookie: webvpn_as=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnSharePoint=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: samlPreauthSessionHash=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: acSamlv2Error=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\n\r\n0159\r\n\n    <html>\n        <script>\n            \n                document.cookie = \"tg=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\";\n            \n            document.cookie = \"sdesktop=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\";\n            document.location.replace(\"/+CSCOE+/logon.html\");\n        </script>\n    </html>\n    \r\n0\r\n\r\n",
         "datamd5" : "22990b9384a1046726337fafe4b7ef99",
         "datammh3" : -1903145697,
         "device" : {
            "class" : "<enterprise field>: device.class",
            "product" : "<enterprise field>: device.product",
            "productvendor" : "<enterprise field>: device.productvendor"
         },
         "domain" : [
            "amazon.com",
            "amazonaws.com"
         ],
         "extkeyusage" : [
            "serverAuth",
            "clientAuth"
         ],
         "fingerprint" : {
            "md5" : "05ab7c9aeb6eb2a5951e0087d45a94fa",
            "sha1" : "b6e65b4e7212ee8173483b5ce719eec3aac2d903",
            "sha256" : "918c145d983aa9c8a78361792ac601eab7ddd2cd7977f5506a1516904390c362"
         },
         "geolocus" : {
            "asn" : "AS16509",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "amazon.com",
               "amazonaws.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "AMAZO-ZPDX",
            "organization" : "Amazon.com, Inc.",
            "subnet" : "44.224.0.0/11"
         },
         "host" : [
            "ec2-44-232-222-31",
            "orca",
            "sfo-g-orca",
            "sfo-orca",
            "sfo-orca-bak"
         ],
         "hostname" : [
            "ec2-44-232-222-31.us-west-2.compute.amazonaws.com",
            "orca.amazon.com",
            "sfo-g-orca.amazon.com",
            "sfo-orca-bak.amazon.com",
            "sfo-orca.amazon.com"
         ],
         "ip" : "44.232.222.31",
         "ipv6" : "false",
         "issuer" : {
            "commonname" : "Amazon RSA 2048 M01",
            "country" : "US",
            "organization" : "Amazon"
         },
         "keyusage" : [
            "digitalSignature",
            "keyEncipherment"
         ],
         "latitude" : "45.8491",
         "location" : "45.8491,-119.7143",
         "longitude" : "-119.7143",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "AMAZON-02",
         "os" : "IOS",
         "osvendor" : "Cisco",
         "port" : 443,
         "product" : "WebVPN",
         "productvendor" : "Cisco",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "publickey" : {
            "algorithm" : "rsaEncryption",
            "length" : 2048
         },
         "reason" : "OK",
         "reverse" : [
            "ec2-44-232-222-31.us-west-2.compute.amazonaws.com"
         ],
         "seen_date" : "2024-11-21",
         "serial" : "01:d6:27:1b:5b:90:3a:ea:f6:84:78:f5:20:56:d5:34",
         "signature" : {
            "algorithm" : "sha256WithRSAEncryption"
         },
         "source" : "datascan",
         "status" : 200,
         "subdomains" : [
            "compute.amazonaws.com",
            "us-west-2.compute.amazonaws.com"
         ],
         "subject" : {
            "altname" : [
               "orca.amazon.com",
               "sfo-orca.amazon.com",
               "sfo-orca-bak.amazon.com",
               "sfo-g-orca.amazon.com"
            ],
            "commonname" : "sfo-g-orca.amazon.com"
         },
         "subnet" : "44.224.0.0/11",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com"
         ],
         "tls" : "true",
         "transport" : "tcp",
         "url" : "/",
         "validity" : {
            "notafter" : "2025-09-27T23:59:59Z",
            "notbefore" : "2024-10-09T00:00:00Z"
         },
         "version" : "v3",
         "wildcard" : "false"
      }
      
  • 52.12.94.206:443 (tcp/http/tls) - last seen on 2024-11-20 at 19:48:19 UTC

    • IP
      52.12.94.206
      Alternative IP(s)
      3.126.227.179 34.214.225.168 35.155.101.86 35.155.250.21 35.155.78.37 44.227.95.21 44.231.204.22 50.112.248.192 52.12.148.114 52.12.81.87 52.25.192.99 52.27.77.173 52.94.120.58 52.94.120.70 52.94.120.94 54.184.130.120 54.184.173.70 54.188.62.255 54.189.55.82 54.189.74.23 54.212.84.172 54.214.105.19 54.239.51.234 54.71.195.20
      Network
      52.8.0.0/13
      Domain(s)
      amazon.com amazonaws.com
      Device

      <enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

      Operating System
      Cisco IOS
      URL

      https://52.12.94.206/ 200

      Reverse DNS
      ec2-52-12-94-206.us-west-2.compute.amazonaws.com
      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http Cert not expired http
      Source
      datascan
    • NOTE
      This tab is a merge from current page results.
      CPE(s)
      Domain(s)
      amazon.com amazonaws.com
      Hostname(s)
      ec2-44-232-222-31.us-west-2.compute.amazonaws.com ec2-52-12-94-206.us-west-2.compute.amazonaws.com ec2-52-8-136-181.us-west-1.compute.amazonaws.com ec2-52-8-61-6.us-west-1.compute.amazonaws.com ec2-52-9-143-109.us-west-1.compute.amazonaws.com orca.amazon.com pdx-e-orca.amazon.com pdx-j-orca.amazon.com pdx-orca-bak.amazon.com pdx-orca.amazon.com pdx-w-orca.amazon.com sea-orca-bak.amazon.com sea-orca.amazon.com sfo-d-orca.amazon.com sfo-g-orca.amazon.com sfo-n-orca.amazon.com sfo-orca-bak.amazon.com sfo-orca.amazon.com sfo-r-orca.amazon.com sfo-u-orca.amazon.com
      IP(s)
      44.232.222.31 52.12.94.206 52.8.136.181 52.8.61.6 52.9.143.109 52.94.120.74 54.239.2.57 54.240.213.202
      Port(s)
      443
      Protocol(s)
      http
      Tag(s)
      URL(s)
      /
    • Operating System
      Cisco IOS
      Product
      Cisco WebVPN
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      Amazon RSA 2048 M01
      Issuer Organization
      Amazon
      Subject Common Name
      pdx-w-orca.amazon.com
      Subject Alt Name
      orca.amazon.com pdx-orca.amazon.com pdx-orca-bak.amazon.com sfo-orca.amazon.com sfo-orca-bak.amazon.com sea-orca.amazon.com sea-orca-bak.amazon.com pdx-w-orca.amazon.com
      SHA256 Fingerprint
      3bd5d16239f4fec1253905ffa50243a1a84e3a81f92d7c0616daace895b39fec
      Validity Not Before
      2024-06-23T00:00:00Z
      Validity Not After
      2025-05-31T23:59:59Z
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      22990b9384a1046726337fafe4b7ef99
      HTTP Header MD5
      3c7768ba7c4073a533bff882812b5c37
      HTTP Body MD5
      5d15e952a2d2310e1ddc732ab4f51a36
    • HTTP/1.1 200 OK
      Content-Type: text/html; charset=utf-8
      Transfer-Encoding: chunked
      Cache-Control: no-store
      Pragma: no-cache
      Connection: Keep-Alive
      Date: Wed, 20 Nov 2024 19:48:09 GMT
      X-Frame-Options: SAMEORIGIN
      Strict-Transport-Security: max-age=31536000; includeSubDomains
      X-Content-Type-Options: nosniff
      X-XSS-Protection: 1
      Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob:; frame-ancestors 'self'; base-uri 'self'; block-all-mixed-content
      Set-Cookie: webvpn=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnc=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpn_portal=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnlogin=1; path=/; secure
      Set-Cookie: webvpn_as=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: webvpnSharePoint=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: samlPreauthSessionHash=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      Set-Cookie: acSamlv2Error=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
      
      0159
      
          <html>
              <script>
                  
                      document.cookie = "tg=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure";
                  
                  document.cookie = "sdesktop=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure";
                  document.location.replace("/+CSCOE+/logon.html");
              </script>
          </html>
          
      0
      
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-20T19:48:19.000Z",
         "alternativeip" : [
            "3.126.227.179",
            "34.214.225.168",
            "35.155.101.86",
            "35.155.250.21",
            "35.155.78.37",
            "44.227.95.21",
            "44.231.204.22",
            "50.112.248.192",
            "52.12.148.114",
            "52.12.81.87",
            "52.25.192.99",
            "52.27.77.173",
            "52.94.120.58",
            "52.94.120.70",
            "52.94.120.94",
            "54.184.130.120",
            "54.184.173.70",
            "54.188.62.255",
            "54.189.55.82",
            "54.189.74.23",
            "54.212.84.172",
            "54.214.105.19",
            "54.239.51.234",
            "54.71.195.20"
         ],
         "app" : {
            "http" : {
               "bodymd5" : "5d15e952a2d2310e1ddc732ab4f51a36",
               "bodymmh3" : -1830871261,
               "headermd5" : "3c7768ba7c4073a533bff882812b5c37",
               "headermmh3" : -1148919795
            },
            "length" : 1468
         },
         "asn" : "AS16509",
         "basicconstraints" : "critical",
         "ca" : "false",
         "city" : "Boardman",
         "company" : {
            "country" : "<enterprise field>: company.country",
            "globalrank" : "<enterprise field>: company.globalrank",
            "industry" : "<enterprise field>: company.industry",
            "name" : "<enterprise field>: company.name",
            "sector" : "<enterprise field>: company.sector"
         },
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nCache-Control: no-store\r\nPragma: no-cache\r\nConnection: Keep-Alive\r\nDate: Wed, 20 Nov 2024 19:48:09 GMT\r\nX-Frame-Options: SAMEORIGIN\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1\r\nContent-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob:; frame-ancestors 'self'; base-uri 'self'; block-all-mixed-content\r\nSet-Cookie: webvpn=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnc=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpn_portal=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnlogin=1; path=/; secure\r\nSet-Cookie: webvpn_as=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: webvpnSharePoint=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: samlPreauthSessionHash=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\nSet-Cookie: acSamlv2Error=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\r\n\r\n0159\r\n\n    <html>\n        <script>\n            \n                document.cookie = \"tg=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\";\n            \n            document.cookie = \"sdesktop=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure\";\n            document.location.replace(\"/+CSCOE+/logon.html\");\n        </script>\n    </html>\n    \r\n0\r\n\r\n",
         "datamd5" : "22990b9384a1046726337fafe4b7ef99",
         "datammh3" : -1903145697,
         "device" : {
            "class" : "<enterprise field>: device.class",
            "product" : "<enterprise field>: device.product",
            "productvendor" : "<enterprise field>: device.productvendor"
         },
         "domain" : [
            "amazon.com",
            "amazonaws.com"
         ],
         "extkeyusage" : [
            "serverAuth",
            "clientAuth"
         ],
         "fingerprint" : {
            "md5" : "0f47e36bb9e6d0e61360ed77c7d0f65c",
            "sha1" : "09a099ca2a3209ef08f79bba2948f4aeea64bd27",
            "sha256" : "3bd5d16239f4fec1253905ffa50243a1a84e3a81f92d7c0616daace895b39fec"
         },
         "geolocus" : {
            "asn" : "AS16509",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "amazon.com",
               "amazonaws.com",
               "aws.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "AT-88-Z",
            "organization" : "Amazon Technologies Inc.",
            "subnet" : "52.8.0.0/13"
         },
         "host" : [
            "ec2-52-12-94-206",
            "orca",
            "pdx-orca",
            "pdx-orca-bak",
            "pdx-w-orca",
            "sea-orca",
            "sea-orca-bak",
            "sfo-orca",
            "sfo-orca-bak"
         ],
         "hostname" : [
            "ec2-52-12-94-206.us-west-2.compute.amazonaws.com",
            "orca.amazon.com",
            "pdx-orca-bak.amazon.com",
            "pdx-orca.amazon.com",
            "pdx-w-orca.amazon.com",
            "sea-orca-bak.amazon.com",
            "sea-orca.amazon.com",
            "sfo-orca-bak.amazon.com",
            "sfo-orca.amazon.com"
         ],
         "ip" : "52.12.94.206",
         "ipv6" : "false",
         "issuer" : {
            "commonname" : "Amazon RSA 2048 M01",
            "country" : "US",
            "organization" : "Amazon"
         },
         "keyusage" : [
            "digitalSignature",
            "keyEncipherment"
         ],
         "latitude" : "45.8491",
         "location" : "45.8491,-119.7143",
         "longitude" : "-119.7143",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "AMAZON-02",
         "os" : "IOS",
         "osvendor" : "Cisco",
         "port" : 443,
         "product" : "WebVPN",
         "productvendor" : "Cisco",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "publickey" : {
            "algorithm" : "rsaEncryption",
            "length" : 2048
         },
         "reason" : "OK",
         "reverse" : [
            "ec2-52-12-94-206.us-west-2.compute.amazonaws.com"
         ],
         "seen_date" : "2024-11-20",
         "serial" : "0d:94:f9:05:b4:bb:15:27:ca:01:c9:db:db:e2:07:57",
         "signature" : {
            "algorithm" : "sha256WithRSAEncryption"
         },
         "source" : "datascan",
         "status" : 200,
         "subdomains" : [
            "compute.amazonaws.com",
            "us-west-2.compute.amazonaws.com"
         ],
         "subject" : {
            "altname" : [
               "orca.amazon.com",
               "pdx-orca.amazon.com",
               "pdx-orca-bak.amazon.com",
               "sfo-orca.amazon.com",
               "sfo-orca-bak.amazon.com",
               "sea-orca.amazon.com",
               "sea-orca-bak.amazon.com",
               "pdx-w-orca.amazon.com"
            ],
            "commonname" : "pdx-w-orca.amazon.com"
         },
         "subnet" : "52.8.0.0/13",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com"
         ],
         "tls" : "true",
         "transport" : "tcp",
         "url" : "/",
         "validity" : {
            "notafter" : "2025-05-31T23:59:59Z",
            "notbefore" : "2024-06-23T00:00:00Z"
         },
         "version" : "v3",
         "wildcard" : "false"
      }