121.184.62.38:1000 (tcp/http) - last seen on 2024-11-21 at 08:21:10 UTC
-
- IP
- 121.184.62.38
- Network
- 121.184.0.0/17
- Device
-
<enterprise field>: device.class
- URL
-
http://121.184.62.66:1000/fgtauth?07017fc65145bbef 200
- HTTP Title
- Firewall Authentication
- ASN
- AS4766
- Organization
- Korea Telecom
- Protocol
- http
- Source
- datascan::redirect::1
This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.
-
- Data MD5
- 42eac57f4f5c24a0996a9a48c4aeb84f
- HTTP Header MD5
- e2075400d0db00256ee037a5b80ae1f7
- HTTP Body MD5
- 32d348065808ca5154cc24bab3794aa9
-
HTTP/1.1 200 OK Content-Length: 1745 Connection: close Cache-Control: no-cache Content-Type: text/html X-Frame-Options: SAMEORIGIN <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><style type="text/css">html,body{height:100%;padding:0;margin:0;}.oc{display:table;width:100%;height:100%;}.ic{display:table-cell;vertical-align:middle;height:100%;}form{display:block;background:#ccc;border:2px solid red;padding:0 0 25px 0;width:500px;font-family:helvetica,sans-serif;font-size:14px;margin:10px auto;}.fel,.fer,.fec{text-align:center;width:350px;margin:0 auto;padding:10px;}.fel{text-align:left;}.fer{text-align:right;}h1{font-weight:bold;font-size:21px;margin:0;padding:20px 10px;text-align:center;}p{margin:15px auto;width:75%;text-align:left;}ul{margin:15px auto;width:75%;}h2{margin:25px 10px;font-weight:bold;text-align:center;}label,h2{font-size:16px;}.logo{background:#eee center 25px url(/XX/YY/ZZ/CI/MGPGHGPGPFGGHHPFBGFHEHIG) no-repeat;padding-top:80px;}</style><title>Firewall Authentication</title></head><body><div class="oc"><div class="ic"><form action="/" method="post"><input type="hidden" name="4Tredir" value="http://121.184.62.66:1000/fgtauth?07017fc65145bbef"><input type="hidden" name="magic" value="070d73c0524fe7a9"><input type="hidden" name="" value=""><h1 class="logo">Authentication Required</h1><h2>Please enter your username and password to continue.</h2><div class="fel"><label for="ft_un">Username:</label> <input name="username" id="ft_un" type="text" autocorrect="off" autocapitalize="off" style="width:230px"><br></div><div class="fel"><label for="ft_pd">Password:</label> <input name="password" id="ft_pd" type="password" autocomplete="off" style="width:230px"></div><div class="fer"><input type="submit" value= "Continue"></div></form></div></div></body></html>
-
{ "@category" : "datascan", "@timestamp" : "2024-11-21T08:21:10.000Z", "app" : { "extract" : { "ip" : [ "121.184.62.66" ], "url" : [ "http://121.184.62.66:1000/fgtauth?07017fc65145bbef" ] }, "http" : { "bodymd5" : "32d348065808ca5154cc24bab3794aa9", "bodymmh3" : 701975531, "headermd5" : "e2075400d0db00256ee037a5b80ae1f7", "headermmh3" : 1762167911, "title" : "Firewall Authentication" }, "length" : 1884 }, "asn" : "AS4766", "city" : "Sejong", "country" : "KR", "data" : "HTTP/1.1 200 OK\r\nContent-Length: 1745\r\nConnection: close\r\nCache-Control: no-cache\r\nContent-Type: text/html\r\nX-Frame-Options: SAMEORIGIN\r\n\r\n<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01//EN\">\n<html><head><meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"><style type=\"text/css\">html,body{height:100%;padding:0;margin:0;}.oc{display:table;width:100%;height:100%;}.ic{display:table-cell;vertical-align:middle;height:100%;}form{display:block;background:#ccc;border:2px solid red;padding:0 0 25px 0;width:500px;font-family:helvetica,sans-serif;font-size:14px;margin:10px auto;}.fel,.fer,.fec{text-align:center;width:350px;margin:0 auto;padding:10px;}.fel{text-align:left;}.fer{text-align:right;}h1{font-weight:bold;font-size:21px;margin:0;padding:20px 10px;text-align:center;}p{margin:15px auto;width:75%;text-align:left;}ul{margin:15px auto;width:75%;}h2{margin:25px 10px;font-weight:bold;text-align:center;}label,h2{font-size:16px;}.logo{background:#eee center 25px url(/XX/YY/ZZ/CI/MGPGHGPGPFGGHHPFBGFHEHIG) no-repeat;padding-top:80px;}</style><title>Firewall Authentication</title></head><body><div class=\"oc\"><div class=\"ic\"><form action=\"/\" method=\"post\"><input type=\"hidden\" name=\"4Tredir\" value=\"http://121.184.62.66:1000/fgtauth?07017fc65145bbef\"><input type=\"hidden\" name=\"magic\" value=\"070d73c0524fe7a9\"><input type=\"hidden\" name=\"\" value=\"\"><h1 class=\"logo\">Authentication Required</h1><h2>Please enter your username and password to continue.</h2><div class=\"fel\"><label for=\"ft_un\">Username:</label> <input name=\"username\" id=\"ft_un\" type=\"text\" autocorrect=\"off\" autocapitalize=\"off\" style=\"width:230px\"><br></div><div class=\"fel\"><label for=\"ft_pd\">Password:</label> <input name=\"password\" id=\"ft_pd\" type=\"password\" autocomplete=\"off\" style=\"width:230px\"></div><div class=\"fer\"><input type=\"submit\" value= \"Continue\"></div></form></div></div></body></html>\r\n", "datamd5" : "42eac57f4f5c24a0996a9a48c4aeb84f", "datammh3" : 875156739, "device" : { "class" : "<enterprise field>: device.class" }, "forward" : "121.184.62.66", "geolocus" : { "asn" : "AS4766", "continent" : "AS", "continentname" : "Asia", "country" : "KR", "countryname" : "South Korea", "domain" : [ "kt.com", "nic.or.kr" ], "isineu" : "false", "latitude" : "35.907757", "location" : "35.907757,127.766922", "longitude" : "127.766922", "netname" : "KORNET", "organization" : "Korea Telecom", "subnet" : "121.184.0.0/15" }, "hostname" : [ "121.184.62.66" ], "ip" : "121.184.62.38", "ipv6" : "false", "latitude" : "36.5916", "location" : "36.5916,127.2916", "longitude" : "127.2916", "node" : { "country" : "<enterprise field>: node.country", "groupid" : "<enterprise field>: node.groupid", "id" : "<enterprise field>: node.id", "physicalcountry" : "<enterprise field>: node.physicalcountry" }, "organization" : "Korea Telecom", "port" : 1000, "protocol" : "http", "protocolversion" : "1.1", "reason" : "OK", "seen_date" : "2024-11-21", "source" : "datascan::redirect::1", "status" : 200, "subnet" : "121.184.0.0/17", "tag" : "<enterprise field>: tag", "tls" : "false", "transport" : "tcp", "url" : "/fgtauth?07017fc65145bbef" }