Cyber Defense Search Engine

IP
103.191.63.67

Network
103.191.63.0/24

Domain(s)
nevacloud.io

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://103.191.63.67:18265/ 302

Reverse DNS
103-191-63-67.nevacloud.io

ASN
AS138115

Organization
PT Deneva

Protocol
http

Source
datascan
Operating System
Microsoft Windows

Product
Apache HTTP Server 2.4.39

HTTP Component(s)
PHP PHP 7.2.18 OpenSSL OpenSSL 1.1.1b

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
5b7a517f5f6d43524d0e75cf28d36117

HTTP Header MD5
27243d004e8a9a79289e55e0c30c0ee3

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

HTTP/1.1 302 Found
Date: Thu, 07 Nov 2024 08:47:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18
X-Powered-By: PHP/7.2.18
Location: http://<ip>:18265/dashboard/
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T08:47:06.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1636538602,
         "component" : [
            {
               "productvendor" : "PHP",
               "productversion" : "7.2.18",
               "product" : "PHP"
            },
            {
               "productversion" : "1.1.1b",
               "productvendor" : "OpenSSL",
               "product" : "OpenSSL"
            }
         ],
         "headermd5" : "27243d004e8a9a79289e55e0c30c0ee3",
         "headermmh3" : -1846471699
      },
      "length" : 260
   },
   "asn" : "AS138115",
   "country" : "ID",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 302 Found\r\nDate: Thu, 07 Nov 2024 08:47:03 GMT\r\nServer: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18\r\nX-Powered-By: PHP/7.2.18\r\nLocation: http://<ip>:18265/dashboard/\r\nContent-Length: 0\r\nConnection: close\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n",
   "datamd5" : "5b7a517f5f6d43524d0e75cf28d36117",
   "datammh3" : 1410676142,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "nevacloud.io"
   ],
   "geolocus" : {
      "asn" : "AS138115",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "ID",
      "countryname" : "Indonesia",
      "domain" : [
         "domainesia.com",
         "lenteraglobal.id"
      ],
      "isineu" : "false",
      "latitude" : "-0.789275",
      "location" : "-0.789275,113.921327",
      "longitude" : "113.921327",
      "netname" : "IDNIC-LGS-ID",
      "organization" : "Route Object for PT Deneva",
      "subnet" : "103.191.63.0/24"
   },
   "host" : [
      "103-191-63-67"
   ],
   "hostname" : [
      "103-191-63-67.nevacloud.io"
   ],
   "ip" : "103.191.63.67",
   "ipv6" : "false",
   "latitude" : "-6.1728",
   "location" : "-6.1728,106.8272",
   "longitude" : "106.8272",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "PT Deneva",
   "os" : "Windows",
   "osbits" : 64,
   "osvendor" : "Microsoft",
   "port" : 18265,
   "product" : "HTTP Server",
   "productvendor" : "Apache",
   "productversion" : "2.4.39",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Found",
   "reverse" : [
      "103-191-63-67.nevacloud.io"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 302,
   "subnet" : "103.191.63.0/24",
   "tld" : [
      "io"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
217.156.50.215

Network
217.156.48.0/22

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://217.156.50.215:18265/ 302

ASN
AS9009

Organization
M247 Europe SRL

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

HTTP Component(s)
Oracle Java Atlassian Confluence

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
1625694c587cd601197fb35f20511ece

HTTP Header MD5
2dc1e159d50343e36aa92b49adbad2ef

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

HTTP/1.1 302 Found
Server: nginx
Date: Thu, 07 Nov 2024 08:46:42 UTC
Cache-Control: no-store
Expires: Thu, 01 Jan 1970 00:00:00 GMT
X-Confluence-Request-Time: 1697032431875
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
Location: /login.action?os_destination=%2Findex.action&permissionViolation=true
Content-Type: text/html;charset=UTF-8
Content-Length: 0
Set-Cookie: JSESSIONID=FD2CA9E2B09E9FEE2EC126FA48BF694B; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T08:46:42.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1636538602,
         "component" : [
            {
               "product" : "Confluence",
               "productvendor" : "Atlassian"
            },
            {
               "product" : "Java",
               "productvendor" : "Oracle"
            }
         ],
         "headermd5" : "2dc1e159d50343e36aa92b49adbad2ef",
         "headermmh3" : 1306944108
      },
      "length" : 620
   },
   "asn" : "AS9009",
   "city" : "Milan",
   "country" : "IT",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 302 Found\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 08:46:42 UTC\r\nCache-Control: no-store\r\nExpires: Thu, 01 Jan 1970 00:00:00 GMT\r\nX-Confluence-Request-Time: 1697032431875\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: SAMEORIGIN\r\nContent-Security-Policy: frame-ancestors 'self'\r\nLocation: /login.action?os_destination=%2Findex.action&permissionViolation=true\r\nContent-Type: text/html;charset=UTF-8\r\nContent-Length: 0\r\nSet-Cookie: JSESSIONID=FD2CA9E2B09E9FEE2EC126FA48BF694B; Path=/; Secure; HttpOnly\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains; preload\r\n\r\n",
   "datamd5" : "1625694c587cd601197fb35f20511ece",
   "datammh3" : 1837928346,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS9009",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "RO",
      "countryname" : "Romania",
      "domain" : [
         "rnc.ro",
         "virtono.com"
      ],
      "isineu" : "true",
      "latitude" : "45.943161",
      "location" : "45.943161,24.96676",
      "longitude" : "24.96676",
      "netname" : "VIRTONO-NETWORKS",
      "organization" : "Virtono Networks SRL",
      "subnet" : "217.156.50.0/24"
   },
   "ip" : "217.156.50.215",
   "ipv6" : "false",
   "latitude" : "45.4722",
   "location" : "45.4722,9.1922",
   "longitude" : "9.1922",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "M247 Europe SRL",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 18265,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Found",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 302,
   "subnet" : "217.156.48.0/22",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
14.1.31.187

Network
14.1.28.0/22

Device

<enterprise field>: device.class

Operating System
FreeBSD FreeBSD

URL

http://14.1.31.187:18265/ 500

ASN
AS63018

Organization
DEDICATED

Protocol
http

Source
datascan
Operating System
FreeBSD FreeBSD

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
cb7a9df6934c23c1d949b2091d581bfe

HTTP Header MD5
c9f5b9a27fd2dbf516b874d2a48c5aee

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e
```
HTTP/1.0 500 ERROR
```

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T08:40:39.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1,
         "headermd5" : "c9f5b9a27fd2dbf516b874d2a48c5aee",
         "headermmh3" : -658172056
      },
      "length" : 22
   },
   "asn" : "AS63018",
   "city" : "Chicago",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.0 500 ERROR\r\n\r\n",
   "datamd5" : "cb7a9df6934c23c1d949b2091d581bfe",
   "datammh3" : 441925311,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS63018",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "SG",
      "countryname" : "Singapore",
      "domain" : [
         "dedicated.com",
         "eoreality.net"
      ],
      "isineu" : "false",
      "latitude" : "1.352083",
      "location" : "1.352083,103.819836",
      "longitude" : "103.819836",
      "netname" : "EOREALITY-AP",
      "organization" : "End of Reality LLC",
      "subnet" : "14.1.28.0/22"
   },
   "ip" : "14.1.31.187",
   "ipv6" : "false",
   "latitude" : "41.8710",
   "location" : "41.8710,-87.6289",
   "longitude" : "-87.6289",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "DEDICATED",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 18265,
   "protocol" : "http",
   "protocolversion" : "1.0",
   "reason" : "ERROR",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 500,
   "subnet" : "14.1.28.0/22",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
112.28.228.59

Network
112.28.0.0/14

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://112.28.228.59:18265/ 702

ASN
AS9808

Organization
China Mobile Communications Group Co., Ltd.

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
388c55cdb6a7cf669a1fd9e0f08f0f75

HTTP Header MD5
f688cac69c3917b259452b17e7564d92

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e
```
HTTP/1.1 702 No BindIP
```

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T08:39:27.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1,
         "headermd5" : "f688cac69c3917b259452b17e7564d92",
         "headermmh3" : 244221043
      },
      "length" : 26
   },
   "asn" : "AS9808",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 702 No BindIP\r\n\r\n",
   "datamd5" : "388c55cdb6a7cf669a1fd9e0f08f0f75",
   "datammh3" : 576907013,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS9808",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinamobile.com"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "CMNET",
      "organization" : "China Mobile Communications Corporation",
      "subnet" : "112.28.0.0/14"
   },
   "ip" : "112.28.228.59",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "China Mobile Communications Group Co., Ltd.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 18265,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "No BindIP",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 702,
   "subnet" : "112.28.0.0/14",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
102.42.207.171

Network
102.40.0.0/13

Domain(s)
tedata.net

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://102.42.207.171:18265/ 302

Reverse DNS
host-102.42.207.171.tedata.net

ASN
AS8452

Organization
TE Data

Protocol
http

Source
datascan
Operating System
Microsoft Windows

Product
Apache HTTP Server 2.4.46

HTTP Component(s)
Python Python 3.7 Apache mod_wsgi 4.7.1

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
2e1707a0dfa0c1d0d04900a205a3dab2

HTTP Header MD5
62ee9259097e740c5d3292d9107bc4ab

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

HTTP/1.1 302 Found
Date: Thu, 07 Nov 2024 08:30:27 GMT
Server: Apache/2.4.46 (Win64) mod_wsgi/4.7.1 Python/3.7
Location: /login/?next=/
Vary: Accept-Language,Cookie
Pragma: no-cache
Cache-Control: no-store
Content-Language: en
Content-Length: 0
Content-Type: text/html; charset=utf-8
Connection: close

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T08:30:28.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1636538602,
         "component" : [
            {
               "productvendor" : "Apache",
               "productversion" : "4.7.1",
               "product" : "mod_wsgi"
            },
            {
               "product" : "Python",
               "productversion" : "3.7",
               "productvendor" : "Python"
            }
         ],
         "headermd5" : "62ee9259097e740c5d3292d9107bc4ab",
         "headermmh3" : 316325860
      },
      "length" : 315
   },
   "asn" : "AS8452",
   "city" : "Giza",
   "country" : "EG",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 302 Found\r\nDate: Thu, 07 Nov 2024 08:30:27 GMT\r\nServer: Apache/2.4.46 (Win64) mod_wsgi/4.7.1 Python/3.7\r\nLocation: /login/?next=/\r\nVary: Accept-Language,Cookie\r\nPragma: no-cache\r\nCache-Control: no-store\r\nContent-Language: en\r\nContent-Length: 0\r\nContent-Type: text/html; charset=utf-8\r\nConnection: close\r\n\r\n",
   "datamd5" : "2e1707a0dfa0c1d0d04900a205a3dab2",
   "datammh3" : 712890582,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "tedata.net"
   ],
   "geolocus" : {
      "asn" : "AS8452",
      "continent" : "AF",
      "continentname" : "Africa",
      "country" : "EG",
      "countryname" : "Egypt",
      "domain" : [
         "te.eg",
         "tedata.net"
      ],
      "isineu" : "false",
      "latitude" : "26.820553",
      "location" : "26.820553,30.802498",
      "longitude" : "30.802498",
      "netname" : "All-new-62",
      "organization" : "Telecom-Egypt-Data",
      "subnet" : "102.42.0.0/16"
   },
   "host" : [
      "host-102"
   ],
   "hostname" : [
      "host-102.42.207.171.tedata.net"
   ],
   "ip" : "102.42.207.171",
   "ipv6" : "false",
   "latitude" : "30.0080",
   "location" : "30.0080,31.2194",
   "longitude" : "31.2194",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TE Data",
   "os" : "Windows",
   "osbits" : 64,
   "osvendor" : "Microsoft",
   "port" : 18265,
   "product" : "HTTP Server",
   "productvendor" : "Apache",
   "productversion" : "2.4.46",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Found",
   "reverse" : [
      "host-102.42.207.171.tedata.net"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 302,
   "subdomains" : [
      "207.171.tedata.net",
      "42.207.171.tedata.net",
      "171.tedata.net"
   ],
   "subnet" : "102.40.0.0/13",
   "tld" : [
      "net"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
156.236.118.55

Network
156.236.118.0/23

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://156.236.118.55:18265/ 407

ASN
AS137443

Organization
ChangLian Network Technology Co., Limited

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
bb0f02aa877588a0faf5a62d8f5c5666

HTTP Header MD5
4bd5a82db187fbf06a2b7f25b880c717

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

HTTP/1.1 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm=""

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T08:29:50.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1,
         "headermd5" : "4bd5a82db187fbf06a2b7f25b880c717",
         "headermmh3" : -208072549
      },
      "length" : 81
   },
   "asn" : "AS137443",
   "country" : "SC",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 407 Proxy Authentication Required\nProxy-Authenticate: Basic realm=\"\"\r\n\r\n",
   "datamd5" : "bb0f02aa877588a0faf5a62d8f5c5666",
   "datammh3" : -1542978609,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS137443",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "HK",
      "countryname" : "Hong Kong",
      "domain" : [
         "cloudinnovation.org"
      ],
      "isineu" : "false",
      "latitude" : "22.396428",
      "location" : "22.396428,114.109497",
      "longitude" : "114.109497",
      "netname" : "Changlian_Network_Technology_co_Limited",
      "organization" : "Shenzhen Panshi Yuntian Network Technology",
      "subnet" : "156.236.118.0/23"
   },
   "ip" : "156.236.118.55",
   "ipv6" : "false",
   "latitude" : "-4.5833",
   "location" : "-4.5833,55.6667",
   "longitude" : "55.6667",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "ChangLian Network Technology Co., Limited",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 18265,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Proxy Authentication Required",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 407,
   "subnet" : "156.236.118.0/23",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
13.40.119.255

Network
13.40.0.0/14

Domain(s)
amazonaws.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://13.40.119.255:18265/ 301

Reverse DNS
ec2-13-40-119-255.eu-west-2.compute.amazonaws.com

ASN
AS16509

Organization
AMAZON-02

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

HTTP Component(s)
Atlassian Confluence Oracle Java

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
08440ae50d5717f865c349d0fb06a7c0

HTTP Header MD5
574d30acde2aa22fc6671638209292e3

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

HTTP/1.1 301 Moved Permanently
Connection: keep-alive
Date: Thu, 07 Nov 2024 08:20:16 GMT
Server: nginx
X-Confluence-Request-Time: 1730967616
Content-Type: text/html;charset=UTF-8
Cache-Control: no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: JSESSIONID=839gwox67ahy7rmtz7rs1xu4u1wisicw; Path=/; Secure; HttpOnly
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
Strict-Transport-Security: max-age=63072000
Location: ./login.action
Content-Length: 0

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T08:20:16.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1636538602,
         "component" : [
            {
               "product" : "Java",
               "productvendor" : "Oracle"
            },
            {
               "productvendor" : "Atlassian",
               "product" : "Confluence"
            }
         ],
         "headermd5" : "574d30acde2aa22fc6671638209292e3",
         "headermmh3" : -490393242
      },
      "length" : 587
   },
   "asn" : "AS16509",
   "city" : "London",
   "country" : "GB",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 301 Moved Permanently\r\nConnection: keep-alive\r\nDate: Thu, 07 Nov 2024 08:20:16 GMT\r\nServer: nginx\r\nX-Confluence-Request-Time: 1730967616\r\nContent-Type: text/html;charset=UTF-8\r\nCache-Control: no-cache, must-revalidate\r\nExpires: Thu, 01 Jan 1970 00:00:00 GMT\r\nSet-Cookie: JSESSIONID=839gwox67ahy7rmtz7rs1xu4u1wisicw; Path=/; Secure; HttpOnly\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: SAMEORIGIN\r\nContent-Security-Policy: frame-ancestors 'self'\r\nStrict-Transport-Security: max-age=63072000\r\nLocation: ./login.action\r\nContent-Length: 0\r\n\r\n",
   "datamd5" : "08440ae50d5717f865c349d0fb06a7c0",
   "datammh3" : 1067787289,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amazonaws.com"
   ],
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "GB",
      "countryname" : "United Kingdom",
      "domain" : [
         "amazon.com",
         "amazonaws.com",
         "aws.com"
      ],
      "isineu" : "false",
      "latitude" : "55.378051",
      "location" : "55.378051,-3.435973",
      "longitude" : "-3.435973",
      "netname" : "AMAZON-LHR",
      "organization" : "Amazon Data Services UK",
      "subnet" : "13.40.0.0/14"
   },
   "host" : [
      "ec2-13-40-119-255"
   ],
   "hostname" : [
      "ec2-13-40-119-255.eu-west-2.compute.amazonaws.com"
   ],
   "ip" : "13.40.119.255",
   "ipv6" : "false",
   "latitude" : "51.5088",
   "location" : "51.5088,-0.0930",
   "longitude" : "-0.0930",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 18265,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Moved Permanently",
   "reverse" : [
      "ec2-13-40-119-255.eu-west-2.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 301,
   "subdomains" : [
      "compute.amazonaws.com",
      "eu-west-2.compute.amazonaws.com"
   ],
   "subnet" : "13.40.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
93.185.152.3

Network
93.185.152.0/22

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://93.185.152.3:18265/ 407

ASN
AS7018

Organization
ATT-INTERNET4

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
f463de9e4679358548c52e4c143b812e

HTTP Header MD5
5d05d97752d578d8a360d2fa5480a66f

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

HTTP/1.1 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm="Please enter username and password"
Date: Thu, 07 Nov 2024 08:10:50 GMT
Content-Length: 0
Connection: close

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T08:10:50.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1,
         "headermd5" : "5d05d97752d578d8a360d2fa5480a66f",
         "headermmh3" : 232636970,
         "realm" : "Please enter username and password"
      },
      "length" : 191
   },
   "asn" : "AS7018",
   "city" : "Jersey City",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 407 Proxy Authentication Required\r\nProxy-Authenticate: Basic realm=\"Please enter username and password\"\r\nDate: Thu, 07 Nov 2024 08:10:50 GMT\r\nContent-Length: 0\r\nConnection: close\r\n\r\n",
   "datamd5" : "f463de9e4679358548c52e4c143b812e",
   "datammh3" : 1210863269,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS54339",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "JP",
      "countryname" : "Japan",
      "domain" : [
         "jymobile.net"
      ],
      "isineu" : "false",
      "latitude" : "36.204824",
      "location" : "36.204824,138.252924",
      "longitude" : "138.252924",
      "netname" : "JYMC",
      "organization" : "JYMC",
      "subnet" : "93.185.152.0/22"
   },
   "ip" : "93.185.152.3",
   "ipv6" : "false",
   "latitude" : "40.7362",
   "location" : "40.7362,-74.0422",
   "longitude" : "-74.0422",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "ATT-INTERNET4",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 18265,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Proxy Authentication Required",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 407,
   "subnet" : "93.185.152.0/22",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
62.204.37.5

Network
62.204.37.0/24

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://62.204.37.5:18265/ 407

ASN
AS198231

Organization
Sixnet Operation Ltd

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
78585a31a9923f851fd7498cc40b6a44

HTTP Header MD5
ec1a9c7961fed7d88fbabb0196599217

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

HTTP/1.1 407 Proxy Authentication Required
proxy-authenticate: Basic
connection: close

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T07:53:16.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1,
         "headermd5" : "ec1a9c7961fed7d88fbabb0196599217",
         "headermmh3" : 1542279371
      },
      "length" : 92
   },
   "asn" : "AS198231",
   "country" : "CY",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 407 Proxy Authentication Required\r\nproxy-authenticate: Basic\r\nconnection: close\r\n\r\n",
   "datamd5" : "78585a31a9923f851fd7498cc40b6a44",
   "datammh3" : 1547380673,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "ip" : "62.204.37.5",
   "ipv6" : "false",
   "latitude" : "35.0077",
   "location" : "35.0077,32.9882",
   "longitude" : "32.9882",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Sixnet Operation Ltd",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 18265,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Proxy Authentication Required",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 407,
   "subnet" : "62.204.37.0/24",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
112.30.177.166

Network
112.28.0.0/14

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://112.30.177.166:18265/ 407

ASN
AS9808

Organization
China Mobile Communications Group Co., Ltd.

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
a38696d7c1c02fade88d08342085bb91

HTTP Header MD5
349c6c877a81bf8fc9335937e1680938

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

HTTP/1.1 407 Unauthorized
Proxy-Authenticate: Basic realm="."
Content-Length: 0

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T07:53:05.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1,
         "headermd5" : "349c6c877a81bf8fc9335937e1680938",
         "headermmh3" : 1796359743,
         "realm" : "."
      },
      "length" : 85
   },
   "asn" : "AS9808",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 407 Unauthorized\r\nProxy-Authenticate: Basic realm=\".\"\r\nContent-Length: 0\r\n\r\n",
   "datamd5" : "a38696d7c1c02fade88d08342085bb91",
   "datammh3" : -988719728,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS9808",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinamobile.com"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "CMNET",
      "organization" : "China Mobile Communications Corporation",
      "subnet" : "112.28.0.0/14"
   },
   "ip" : "112.30.177.166",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "China Mobile Communications Group Co., Ltd.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 18265,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Unauthorized",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 407,
   "subnet" : "112.28.0.0/14",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

Returning 10 result(s) out of 5,696 in 0.198 second(s)

103.191.63.67:18265 (tcp/http) - last seen on 2024-11-07 at 08:47:06 UTC

217.156.50.215:18265 (tcp/http) - last seen on 2024-11-07 at 08:46:42 UTC

14.1.31.187:18265 (tcp/http) - last seen on 2024-11-07 at 08:40:39 UTC

112.28.228.59:18265 (tcp/http) - last seen on 2024-11-07 at 08:39:27 UTC

102.42.207.171:18265 (tcp/http) - last seen on 2024-11-07 at 08:30:28 UTC

156.236.118.55:18265 (tcp/http) - last seen on 2024-11-07 at 08:29:50 UTC

13.40.119.255:18265 (tcp/http) - last seen on 2024-11-07 at 08:20:16 UTC

93.185.152.3:18265 (tcp/http) - last seen on 2024-11-07 at 08:10:50 UTC

62.204.37.5:18265 (tcp/http) - last seen on 2024-11-07 at 07:53:16 UTC

112.30.177.166:18265 (tcp/http) - last seen on 2024-11-07 at 07:53:05 UTC