Cyber Defense Search Engine

IP
187.103.69.141

Network
187.103.64.0/20

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://187.103.69.141:106/ 302

ASN
AS52965

Organization
1TELECOM SERVICOS DE TECNOLOGIA EM INTERNET LTDA

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
Boa Boa

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
810c4a32d288b22f86807231c5301294

HTTP Header MD5
fb3f12f6215590768c0168ec50d09a87

HTTP Body MD5
86d905b7ade4c208f792b75fb2fcc6c0

HTTP/1.0 302 Redirect
Date: Thu, 07 Nov 2024 05:22:52 GMT
Server: Boa
Accept-Ranges: bytes
Connection: close
Content-Type: text/html; charset=ISO-8859-1
Location: http://<ip>:106/login.html

<HTML><HEAD></HEAD>
<BODY>
<H1>302 Redirect</H1>The document has moved
<A HREF="login.html">here</A>.
</BODY></HTML>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:22:52.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "86d905b7ade4c208f792b75fb2fcc6c0",
         "bodymmh3" : -903705147,
         "headermd5" : "fb3f12f6215590768c0168ec50d09a87",
         "headermmh3" : 995976088
      },
      "length" : 316
   },
   "asn" : "AS52965",
   "city" : "Ribeir\u00e3o",
   "country" : "BR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.0 302 Redirect\r\nDate: Thu, 07 Nov 2024 05:22:52 GMT\r\nServer: Boa\r\nAccept-Ranges: bytes\r\nConnection: close\r\nContent-Type: text/html; charset=ISO-8859-1\r\nLocation: http://<ip>:106/login.html\r\n\r\n<HTML><HEAD></HEAD>\n<BODY>\n<H1>302 Redirect</H1>The document has moved\n<A HREF=\"login.html\">here</A>.\n</BODY></HTML>\n",
   "datamd5" : "810c4a32d288b22f86807231c5301294",
   "datammh3" : 971202587,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS52965",
      "continent" : "SA",
      "continentname" : "South America",
      "country" : "BR",
      "countryname" : "Brazil",
      "domain" : [
         "1telecom.com.br",
         "cert.br"
      ],
      "isineu" : "false",
      "latitude" : "-14.235004",
      "location" : "-14.235004,-51.92528",
      "longitude" : "-51.92528",
      "netname" : "11.844.663/0001-09",
      "organization" : "1TELECOM SERVICOS DE TECNOLOGIA EM INTERNET LTDA",
      "subnet" : "187.103.64.0/20"
   },
   "ip" : "187.103.69.141",
   "ipv6" : "false",
   "latitude" : "-8.5072",
   "location" : "-8.5072,-35.3939",
   "longitude" : "-35.3939",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "1TELECOM SERVICOS DE TECNOLOGIA EM INTERNET LTDA",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 106,
   "product" : "Boa",
   "productvendor" : "Boa",
   "protocol" : "http",
   "protocolversion" : "1.0",
   "reason" : "Redirect",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 302,
   "subnet" : "187.103.64.0/20",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
75.76.217.84

Network
75.76.192.0/18

Domain(s)
breezeline.net

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://75.76.217.84:106/ 302

Reverse DNS
d-75-76-217-84.oh.cpe.breezeline.net

ASN
AS11776

Organization
ATLANTICBB-JOHNSTOWN

Protocol
http

Source
datascan
Operating System
Microsoft Windows

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
1fdb88deb13d37bf1d2f4cd2f50d67b3

HTTP Header MD5
ff8dcd6f0613db4278b22d839a00f4b9

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

HTTP/1.0 302 Redirection
Server: BlueServer/5.9.5.3
Date: Thu, 07 Nov 2024 04:39:47 GMT
P3P: CP="CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE"
Set-Cookie: session=0f9d520d0ea929cb334138943635211f; path=/
Access-Control-Allow-Origin: *
Connection: close
Location: /login.htm?page=%2F
Content-Length: 0

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T04:39:53.000Z",
   "app" : {
      "extract" : {
         "ip" : [
            "5.9.5.3"
         ]
      },
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1,
         "headermd5" : "ff8dcd6f0613db4278b22d839a00f4b9",
         "headermmh3" : 533749208
      },
      "length" : 314
   },
   "asn" : "AS11776",
   "city" : "Columbus",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.0 302 Redirection\r\nServer: BlueServer/5.9.5.3\r\nDate: Thu, 07 Nov 2024 04:39:47 GMT\r\nP3P: CP=\"CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE\"\r\nSet-Cookie: session=0f9d520d0ea929cb334138943635211f; path=/\r\nAccess-Control-Allow-Origin: *\r\nConnection: close\r\nLocation: /login.htm?page=%2F\r\nContent-Length: 0\r\n\r\n",
   "datamd5" : "1fdb88deb13d37bf1d2f4cd2f50d67b3",
   "datammh3" : 1772467903,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "breezeline.net"
   ],
   "geolocus" : {
      "asn" : "AS11776",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "atlanticbb.com",
         "breezeline.com",
         "breezeline.net"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "ATLAN-19",
      "organization" : "Breezeline",
      "subnet" : "75.76.192.0/18"
   },
   "host" : [
      "d-75-76-217-84"
   ],
   "hostname" : [
      "d-75-76-217-84.oh.cpe.breezeline.net"
   ],
   "ip" : "75.76.217.84",
   "ipv6" : "false",
   "latitude" : "40.0818",
   "location" : "40.0818,-82.9665",
   "longitude" : "-82.9665",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "ATLANTICBB-JOHNSTOWN",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 106,
   "protocol" : "http",
   "protocolversion" : "1.0",
   "reason" : "Redirection",
   "reverse" : [
      "d-75-76-217-84.oh.cpe.breezeline.net"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 302,
   "subdomains" : [
      "cpe.breezeline.net",
      "oh.cpe.breezeline.net"
   ],
   "subnet" : "75.76.192.0/18",
   "tld" : [
      "net"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
59.75.38.103

Network
59.64.0.0/12

Device

<enterprise field>: device.class

URL

http://59.75.38.103:106/ 302

ASN
AS4538

Organization
China Education and Research Network Center

Protocol
http

Source
datascan

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
96d7aced4477a5334c7de4616620bcc7

HTTP Header MD5
17494da67b263d49a356f29516833bab

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

HTTP/1.1 302 Moved Temporarily
Server: DrcomServer1.0
Location: http://192.168.254.3
Cache-Control: no-cache
Content-Length: 0
Connection: close

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T04:30:53.000Z",
   "app" : {
      "extract" : {
         "ip" : [
            "192.168.254.3"
         ],
         "url" : [
            "http://192.168.254.3"
         ]
      },
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1,
         "headermd5" : "17494da67b263d49a356f29516833bab",
         "headermmh3" : 1664562682
      },
      "length" : 153
   },
   "asn" : "AS4538",
   "country" : "CN",
   "data" : "HTTP/1.1 302 Moved Temporarily\r\nServer: DrcomServer1.0\r\nLocation: http://192.168.254.3\r\nCache-Control: no-cache\r\nContent-Length: 0\r\nConnection: close\r\n\r\n",
   "datamd5" : "96d7aced4477a5334c7de4616620bcc7",
   "datammh3" : 1446480259,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4538",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "cernet.edu.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "XAR-CERNET",
      "organization" : "China Education and Research Network",
      "subnet" : "59.75.32.0/21"
   },
   "ip" : "59.75.38.103",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "China Education and Research Network Center",
   "port" : 106,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Moved Temporarily",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 302,
   "subnet" : "59.64.0.0/12",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
192.166.218.176

Alternative IP(s)
193.33.111.114

Network
192.166.216.0/22

Domain(s)
moovspot.pl

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://192.166.218.176:106/ 302

HTTP Title
302 Found

Reverse DNS
srv6.moovspot.pl

ASN
AS41508

Organization
IWACOM Sp. z o.o.

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
Server Server

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
9f6a83a713b5861bf0f621389895533a

HTTP Header MD5
87366acd3126b9318804da42bd42d33f

HTTP Body MD5
8cdea20f3188ee2014c294910fdef122

HTTP/1.1 302 Found
Date: Thu, 07 Nov 2024 04:14:55 UTC
Server: server
X-XSS-Protection: 1; mode=block
X-Frame-Options: SameOrigin
X-Content-Type-Options: nosniff
Location: https://<ip>:106/mifs/user/index.html
Content-Length: 288
Connection: close
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>302 Found</title>
</head><body>
<h1>Found</h1>
<p>The document has moved <a href="https://<ip>:106/mifs/user/index.html">here</a>.</p>
<hr>
<address>server Server at <ip> Port 106</address>
</body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T04:14:55.000Z",
   "alternativeip" : [
      "193.33.111.114"
   ],
   "app" : {
      "http" : {
         "bodymd5" : "8cdea20f3188ee2014c294910fdef122",
         "bodymmh3" : -1612698792,
         "headermd5" : "87366acd3126b9318804da42bd42d33f",
         "headermmh3" : 142141,
         "title" : "302 Found"
      },
      "length" : 579
   },
   "asn" : "AS41508",
   "country" : "PL",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 302 Found\r\nDate: Thu, 07 Nov 2024 04:14:55 UTC\r\nServer: server\r\nX-XSS-Protection: 1; mode=block\r\nX-Frame-Options: SameOrigin\r\nX-Content-Type-Options: nosniff\r\nLocation: https://<ip>:106/mifs/user/index.html\r\nContent-Length: 288\r\nConnection: close\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n<!DOCTYPE HTML PUBLIC \"-//IETF//DTD HTML 2.0//EN\">\n<html><head>\n<title>302 Found</title>\n</head><body>\n<h1>Found</h1>\n<p>The document has moved <a href=\"https://<ip>:106/mifs/user/index.html\">here</a>.</p>\n<hr>\n<address>server Server at <ip> Port 106</address>\n</body></html>",
   "datamd5" : "9f6a83a713b5861bf0f621389895533a",
   "datammh3" : 1113695365,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "moovspot.pl"
   ],
   "geolocus" : {
      "asn" : "AS41508",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "PL",
      "countryname" : "Poland",
      "domain" : [
         "iwacom.net.pl",
         "iwacom.pl"
      ],
      "isineu" : "true",
      "latitude" : "51.919438",
      "location" : "51.919438,19.145136",
      "longitude" : "19.145136",
      "netname" : "PL-IWACOMSPZOO",
      "organization" : "IWACOM Sp. z o.o.",
      "subnet" : "192.166.216.0/22"
   },
   "host" : [
      "srv6"
   ],
   "hostname" : [
      "srv6.moovspot.pl"
   ],
   "ip" : "192.166.218.176",
   "ipv6" : "false",
   "latitude" : "52.2394",
   "location" : "52.2394,21.0362",
   "longitude" : "21.0362",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "IWACOM Sp. z o.o.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 106,
   "product" : "Server",
   "productvendor" : "Server",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Found",
   "reverse" : [
      "srv6.moovspot.pl"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 302,
   "subnet" : "192.166.216.0/22",
   "tld" : [
      "pl"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
93.118.140.102

Network
93.118.128.0/19

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://93.118.140.102:106/ 302

HTTP Title
Document Moved

ASN
AS58224

Organization
Iran Telecommunication Company PJS

Protocol
http

Source
datascan
Operating System
Microsoft Windows

Product
Microsoft IIS 10.0

HTTP Component(s)
Microsoft ASP.NET

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
848450bc3315aededb8886f285a80b24

HTTP Header MD5
74893cb3de19b094eb5efdc9b41c1647

HTTP Body MD5
e39e1e8f4b0abca30b204bb5cc43da5c

HTTP/1.1 302 Redirect
Content-Type: text/html; charset=UTF-8
Location: http://<ip>:106/QueueWeb
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Thu, 07 Nov 2024 04:09:40 GMT
Connection: close
Content-Length: 157

<head><title>Document Moved</title></head>
<body><h1>Object Moved</h1>This document may be found <a HREF="http://<ip>:106/QueueWeb">here</a></body>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T04:14:02.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "e39e1e8f4b0abca30b204bb5cc43da5c",
         "bodymmh3" : -1641284502,
         "component" : [
            {
               "productvendor" : "Microsoft",
               "product" : "ASP.NET"
            }
         ],
         "headermd5" : "74893cb3de19b094eb5efdc9b41c1647",
         "headermmh3" : 622691569,
         "title" : "Document Moved"
      },
      "length" : 376
   },
   "asn" : "AS58224",
   "city" : "Tehran",
   "country" : "IR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 302 Redirect\r\nContent-Type: text/html; charset=UTF-8\r\nLocation: http://<ip>:106/QueueWeb\r\nServer: Microsoft-IIS/10.0\r\nX-Powered-By: ASP.NET\r\nDate: Thu, 07 Nov 2024 04:09:40 GMT\r\nConnection: close\r\nContent-Length: 157\r\n\r\n<head><title>Document Moved</title></head>\n<body><h1>Object Moved</h1>This document may be found <a HREF=\"http://<ip>:106/QueueWeb\">here</a></body>",
   "datamd5" : "848450bc3315aededb8886f285a80b24",
   "datammh3" : 442664877,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS12880",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "IR",
      "countryname" : "Iran",
      "domain" : [
         "tci.ir"
      ],
      "isineu" : "false",
      "latitude" : "32.427908",
      "location" : "32.427908,53.688046",
      "longitude" : "53.688046",
      "netname" : "TCITHR",
      "organization" : "Telecommunication Company of Tehran",
      "subnet" : "93.118.128.0/19"
   },
   "ip" : "93.118.140.102",
   "ipv6" : "false",
   "latitude" : "35.6824",
   "location" : "35.6824,51.4158",
   "longitude" : "51.4158",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Iran Telecommunication Company PJS",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "osversion" : [
      "Server 2016",
      10
   ],
   "port" : 106,
   "product" : "IIS",
   "productvendor" : "Microsoft",
   "productversion" : "10.0",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Redirect",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 302,
   "subnet" : "93.118.128.0/19",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
103.105.146.249

Network
103.105.144.0/22

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://103.105.146.249:106/ 302

HTTP Title
Redirect to userimage: /control/userimage.html

ASN
AS38858

Organization
Somerville

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
e308b369cbe41cfc6b1148e73223d88c

HTTP Header MD5
f6b33708ecb597bb5005ae2ec133c171

HTTP Body MD5
972976c15410c9c2e158b362b3975632

HTTP/1.0 302 Found
Location: /control/userimage.html
Content-type: text/html; charset=utf-8
Cache-Control: no-cache

<!DOCTYPE HTML>
<html>
<head>
<title>
Redirect to userimage: /control/userimage.html
</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
</head>
<body>
<p>
Redirect to userimage: /control/userimage.html
</p>
</body>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T04:05:36.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "972976c15410c9c2e158b362b3975632",
         "bodymmh3" : -2124109403,
         "headermd5" : "f6b33708ecb597bb5005ae2ec133c171",
         "headermmh3" : -1873624296,
         "title" : "Redirect to userimage: /control/userimage.html"
      },
      "length" : 376
   },
   "asn" : "AS38858",
   "city" : "Sunshine Coast",
   "country" : "AU",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.0 302 Found\r\nLocation: /control/userimage.html\r\nContent-type: text/html; charset=utf-8\r\nCache-Control: no-cache\r\n\r\n<!DOCTYPE HTML>\r\n<html>\r\n<head>\r\n<title>\r\nRedirect to userimage: /control/userimage.html\r\n</title>\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">\r\n</head>\r\n<body>\r\n<p>\r\nRedirect to userimage: /control/userimage.html\r\n</p>\r\n</body>\r\n",
   "datamd5" : "e308b369cbe41cfc6b1148e73223d88c",
   "datammh3" : 1490995249,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS38858",
      "continent" : "OC",
      "continentname" : "Oceania",
      "country" : "AU",
      "countryname" : "Australia",
      "domain" : [
         "atturra.com",
         "somerville.com.au"
      ],
      "isineu" : "false",
      "latitude" : "-25.274398",
      "location" : "-25.274398,133.775136",
      "longitude" : "133.775136",
      "netname" : "NETFILTER-AU",
      "organization" : "Netfilter Pty Ltd",
      "subnet" : "103.105.146.0/23"
   },
   "ip" : "103.105.146.249",
   "ipv6" : "false",
   "latitude" : "-26.6996",
   "location" : "-26.6996,153.1266",
   "longitude" : "153.1266",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Somerville",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 106,
   "protocol" : "http",
   "protocolversion" : "1.0",
   "reason" : "Found",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 302,
   "subnet" : "103.105.144.0/22",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
194.68.225.185

Network
194.68.225.0/24

Domain(s)
194.in-addr.arpa

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://194.68.225.185:106/ 302

HTTP Title
302 Found

Reverse DNS
185.225.68.194.in-addr.arpa

ASN
AS57169

Organization
EDIS GmbH

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx 1.23.0

HTTP Component(s)
GeoServer GeoServer

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
77fff245479ebac7cb761e559b1ea33d

HTTP Header MD5
7b54338a53a71649b70ea9b131f36142

HTTP Body MD5
313466a1cb86c02fb0d54750ae2c91dc

HTTP/1.1 302 Found
Server: nginx/1.23.0
Date: Thu, 07 Nov 2024 03:29:55 UTC
Content-Type: text/html
Content-Length: 145
Connection: keep-alive
Location: /geoserver/web/
Access-Control-Allow-Credentials: False
Access-Control-Allow-Headers: Content-Type, Accept, Authorization, Origin, User-Agent
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, OPTION

<html>
<head><title>302 Found</title></head>
<body>
<center><h1>302 Found</h1></center>
<hr><center>nginx/1.23.0</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:29:55.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "313466a1cb86c02fb0d54750ae2c91dc",
         "bodymmh3" : -360064107,
         "component" : [
            {
               "product" : "GeoServer",
               "productvendor" : "GeoServer"
            }
         ],
         "headermd5" : "7b54338a53a71649b70ea9b131f36142",
         "headermmh3" : 790656042,
         "title" : "302 Found"
      },
      "length" : 512
   },
   "asn" : "AS57169",
   "country" : "SE",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 302 Found\r\nServer: nginx/1.23.0\r\nDate: Thu, 07 Nov 2024 03:29:55 UTC\r\nContent-Type: text/html\r\nContent-Length: 145\r\nConnection: keep-alive\r\nLocation: /geoserver/web/\r\nAccess-Control-Allow-Credentials: False\r\nAccess-Control-Allow-Headers: Content-Type, Accept, Authorization, Origin, User-Agent\r\nAccess-Control-Allow-Methods: GET, POST, PUT, PATCH, OPTION\r\n\r\n<html>\r\n<head><title>302 Found</title></head>\r\n<body>\r\n<center><h1>302 Found</h1></center>\r\n<hr><center>nginx/1.23.0</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "77fff245479ebac7cb761e559b1ea33d",
   "datammh3" : -1957578169,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "194.in-addr.arpa"
   ],
   "host" : [
      185
   ],
   "hostname" : [
      "185.225.68.194.in-addr.arpa"
   ],
   "ip" : "194.68.225.185",
   "ipv6" : "false",
   "latitude" : "59.3247",
   "location" : "59.3247,18.0560",
   "longitude" : "18.0560",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "EDIS GmbH",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 106,
   "product" : "Nginx",
   "productvendor" : "F5",
   "productversion" : "1.23.0",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Found",
   "reverse" : [
      "185.225.68.194.in-addr.arpa"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 302,
   "subdomains" : [
      "68.194.in-addr.arpa",
      "225.68.194.in-addr.arpa"
   ],
   "subnet" : "194.68.225.0/24",
   "tld" : [
      "in-addr.arpa"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
171.101.139.65

Network
171.101.0.0/16

Domain(s)
asianet.co.th

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://171.101.139.65:106/ 302

Reverse DNS
cm-171-101-139-65.revip11.asianet.co.th

ASN
AS17552

Organization
True Online

Protocol
http

Source
datascan
Operating System
Microsoft Windows

Product
Apache HTTP Server 2.4.56

HTTP Component(s)
OpenSSL OpenSSL 1.1.1t PHP PHP 8.0.28

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
610b8ca083674603efdee69ceb26e6bb

HTTP Header MD5
04bd1d3dbed48c3e4601352de4b99cdd

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

HTTP/1.1 302 Found
Date: Thu, 07 Nov 2024 03:21:41 GMT
Server: Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.0.28
X-Powered-By: PHP/8.0.28
Location: http://<ip>:106/dashboard/
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:21:41.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1636538602,
         "component" : [
            {
               "product" : "PHP",
               "productversion" : "8.0.28",
               "productvendor" : "PHP"
            },
            {
               "product" : "OpenSSL",
               "productversion" : "1.1.1t",
               "productvendor" : "OpenSSL"
            }
         ],
         "headermd5" : "04bd1d3dbed48c3e4601352de4b99cdd",
         "headermmh3" : -1939026854
      },
      "length" : 258
   },
   "asn" : "AS17552",
   "city" : "Bangkok",
   "country" : "TH",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 302 Found\r\nDate: Thu, 07 Nov 2024 03:21:41 GMT\r\nServer: Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.0.28\r\nX-Powered-By: PHP/8.0.28\r\nLocation: http://<ip>:106/dashboard/\r\nContent-Length: 0\r\nConnection: close\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n",
   "datamd5" : "610b8ca083674603efdee69ceb26e6bb",
   "datammh3" : 1653137082,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "asianet.co.th"
   ],
   "geolocus" : {
      "asn" : "AS17552",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "TH",
      "countryname" : "Thailand",
      "domain" : [
         "asianet.co.th",
         "trueinternet.co.th"
      ],
      "isineu" : "false",
      "latitude" : "15.870032",
      "location" : "15.870032,100.992541",
      "longitude" : "100.992541",
      "netname" : "TRUENET-BB",
      "organization" : "TRUE BROADBAND",
      "subnet" : "171.101.0.0/16"
   },
   "host" : [
      "cm-171-101-139-65"
   ],
   "hostname" : [
      "cm-171-101-139-65.revip11.asianet.co.th"
   ],
   "ip" : "171.101.139.65",
   "ipv6" : "false",
   "latitude" : "13.8177",
   "location" : "13.8177,100.7465",
   "longitude" : "100.7465",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "True Online",
   "os" : "Windows",
   "osbits" : 64,
   "osvendor" : "Microsoft",
   "port" : 106,
   "product" : "HTTP Server",
   "productvendor" : "Apache",
   "productversion" : "2.4.56",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Found",
   "reverse" : [
      "cm-171-101-139-65.revip11.asianet.co.th"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 302,
   "subdomains" : [
      "revip11.asianet.co.th"
   ],
   "subnet" : "171.101.0.0/16",
   "tld" : [
      "co.th"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
5.200.72.50

Network
5.200.64.0/20

Domain(s)
fanaptelecom.net

Device

<enterprise field>: device.class

Operating System
FreeBSD FreeBSD

URL

http://5.200.72.50:106/ 302

HTTP Title
Object moved

Reverse DNS
int0.client.access.fanaptelecom.net

ASN
AS24631

Organization
Tose'h Fanavari Ertebabat Pasargad Arian Co. PJS

Protocol
http

Source
datascan
Operating System
FreeBSD FreeBSD

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
96fa9c7c37c10af7b544d5e0b7ce3dfd

HTTP Header MD5
5aac1c49669569666b4ec52b3a85820d

HTTP Body MD5
c3b0355f0fa4a273f2f46117e7786de7

HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: /User/Login?ReturnUrl=%2f
X-UA-Compatible: IE=10;IE=Edge
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer
X-XSS-Protection: 1; mode=block
Content-Security-Policy: frame-ancestors 'self'; default-src 'self' http://localhost:* https://localhost:* ws://localhost:* 'unsafe-inline' 'unsafe-eval'; media-src 'self' data: ; img-src 'self' data: blob:; worker-src 'self' blob: data:; style-src-elem 'self' 'unsafe-inline' 'unsafe-eval' data:
Date: Thu, 07 Nov 2024 03:20:26 GMT
Connection: close
Content-Length: 142

<html><head><title>Object moved</title></head><body>
<h2>Object moved to <a href="/User/Login?ReturnUrl=%2f">here</a>.</h2>
</body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:20:27.000Z",
   "app" : {
      "extract" : {
         "hostname" : [
            "localhost:"
         ],
         "url" : [
            "http://localhost:",
            "https://localhost:"
         ]
      },
      "http" : {
         "bodymd5" : "c3b0355f0fa4a273f2f46117e7786de7",
         "bodymmh3" : 1347265979,
         "headermd5" : "5aac1c49669569666b4ec52b3a85820d",
         "headermmh3" : 1572775556,
         "title" : "Object moved"
      },
      "length" : 797
   },
   "asn" : "AS24631",
   "country" : "IR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 302 Found\r\nCache-Control: private\r\nContent-Type: text/html; charset=utf-8\r\nLocation: /User/Login?ReturnUrl=%2f\r\nX-UA-Compatible: IE=10;IE=Edge\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nReferrer-Policy: no-referrer\r\nX-XSS-Protection: 1; mode=block\r\nContent-Security-Policy: frame-ancestors 'self'; default-src 'self' http://localhost:* https://localhost:* ws://localhost:* 'unsafe-inline' 'unsafe-eval'; media-src 'self' data: ; img-src 'self' data: blob:; worker-src 'self' blob: data:; style-src-elem 'self' 'unsafe-inline' 'unsafe-eval' data:\r\nDate: Thu, 07 Nov 2024 03:20:26 GMT\r\nConnection: close\r\nContent-Length: 142\r\n\r\n<html><head><title>Object moved</title></head><body>\r\n<h2>Object moved to <a href=\"/User/Login?ReturnUrl=%2f\">here</a>.</h2>\r\n</body></html>\r\n",
   "datamd5" : "96fa9c7c37c10af7b544d5e0b7ce3dfd",
   "datammh3" : -343545760,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "fanaptelecom.net"
   ],
   "geolocus" : {
      "asn" : "AS56466",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "IR",
      "countryname" : "Iran",
      "domain" : [
         "fanaptelecom.ir",
         "fanaptelecom.net",
         "gmail.com"
      ],
      "isineu" : "false",
      "latitude" : "32.427908",
      "location" : "32.427908,53.688046",
      "longitude" : "53.688046",
      "netname" : "FanapTelecom-USERS",
      "organization" : "BROADBANDUSER",
      "subnet" : "5.200.72.0/21"
   },
   "host" : [
      "int0"
   ],
   "hostname" : [
      "int0.client.access.fanaptelecom.net"
   ],
   "ip" : "5.200.72.50",
   "ipv6" : "false",
   "latitude" : "35.6980",
   "location" : "35.6980,51.4115",
   "longitude" : "51.4115",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Tose'h Fanavari Ertebabat Pasargad Arian Co. PJS",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 106,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Found",
   "reverse" : [
      "int0.client.access.fanaptelecom.net"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 302,
   "subdomains" : [
      "client.access.fanaptelecom.net",
      "access.fanaptelecom.net"
   ],
   "subnet" : "5.200.64.0/20",
   "tld" : [
      "net"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
103.13.113.210

Network
103.13.112.0/22

Domain(s)
op-net.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://103.13.113.210:106/ 302

Reverse DNS
mum-363231.op-net.com

ASN
AS132335

Organization
LEAPSWITCH NETWORKS PRIVATE LIMITED

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

HTTP Component(s)
Oracle Java

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
79bfa6ce9247910015d95d5afd268282

HTTP Header MD5
1c1958f3c84e870233ed2fc0a8e666cb

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

HTTP/1.1 302 Found
Set-Cookie: JSESSIONID=408E9B21B25288883D0F9FA089BB839B; Path=/; Secure; HttpOnly
X-UA-Compatible: IE=edge
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Location: /webclient/Dashboard.xhtml
Content-Type: text/html;charset=UTF-8
Content-Length: 0
Date: Thu, 07 Nov 2024 02:20:14 UTC

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T02:20:15.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1636538602,
         "component" : [
            {
               "productvendor" : "Oracle",
               "product" : "Java"
            }
         ],
         "headermd5" : "1c1958f3c84e870233ed2fc0a8e666cb",
         "headermmh3" : 1795001950
      },
      "length" : 440
   },
   "asn" : "AS132335",
   "city" : "Panvel",
   "country" : "IN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 302 Found\r\nSet-Cookie: JSESSIONID=408E9B21B25288883D0F9FA089BB839B; Path=/; Secure; HttpOnly\r\nX-UA-Compatible: IE=edge\r\nCache-Control: no-cache, no-store, must-revalidate\r\nPragma: no-cache\r\nExpires: Thu, 01 Jan 1970 00:00:00 GMT\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nLocation: /webclient/Dashboard.xhtml\r\nContent-Type: text/html;charset=UTF-8\r\nContent-Length: 0\r\nDate: Thu, 07 Nov 2024 02:20:14 UTC\r\n\r\n",
   "datamd5" : "79bfa6ce9247910015d95d5afd268282",
   "datammh3" : -176501737,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "op-net.com"
   ],
   "geolocus" : {
      "asn" : "AS132335",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "IN",
      "countryname" : "India",
      "domain" : [
         "advancedserverdns.com",
         "gmail.com"
      ],
      "isineu" : "false",
      "latitude" : "20.593684",
      "location" : "20.593684,78.96288",
      "longitude" : "78.96288",
      "netname" : "T4C-103-13-112-0-24",
      "organization" : "LEAPSWITCH NETWORKS PRIVATE LIMITED",
      "subnet" : "103.13.112.0/22"
   },
   "host" : [
      "mum-363231"
   ],
   "hostname" : [
      "mum-363231.op-net.com"
   ],
   "ip" : "103.13.113.210",
   "ipv6" : "false",
   "latitude" : "18.9894",
   "location" : "18.9894,73.1074",
   "longitude" : "73.1074",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "LEAPSWITCH NETWORKS PRIVATE LIMITED",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 106,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Found",
   "reverse" : [
      "mum-363231.op-net.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 302,
   "subnet" : "103.13.112.0/22",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

Returning 10 result(s) out of 1,593 in 0.130 second(s)

187.103.69.141:106 (tcp/http) - last seen on 2024-11-07 at 05:22:52 UTC

75.76.217.84:106 (tcp/http) - last seen on 2024-11-07 at 04:39:53 UTC

59.75.38.103:106 (tcp/http) - last seen on 2024-11-07 at 04:30:53 UTC

192.166.218.176:106 (tcp/http) - last seen on 2024-11-07 at 04:14:55 UTC

93.118.140.102:106 (tcp/http) - last seen on 2024-11-07 at 04:14:02 UTC

103.105.146.249:106 (tcp/http) - last seen on 2024-11-07 at 04:05:36 UTC

194.68.225.185:106 (tcp/http) - last seen on 2024-11-07 at 03:29:55 UTC

171.101.139.65:106 (tcp/http) - last seen on 2024-11-07 at 03:21:41 UTC

5.200.72.50:106 (tcp/http) - last seen on 2024-11-07 at 03:20:27 UTC

103.13.113.210:106 (tcp/http) - last seen on 2024-11-07 at 02:20:15 UTC