Cyber Defense Search Engine

datascan ctl threatlist sniffer vulnscan riskscan

1
2
3
4
...
next >

IP
37.104.180.216

Network
37.104.0.0/14

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://37.104.180.216:3269/ 302

ASN
AS25019

Organization
Saudi Telecom Company JSC

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
e93745ea8abf103467e999915a8000be

HTTP Header MD5
ddd52f01ff1a8fcd316f591b36e16519

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

HTTP/1.1 302 Found
Location: /index.php
Content-Length: 0
Connection: close
Date: Wed, 06 Nov 2024 15:50:38 GMT

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:50:56.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1,
         "headermd5" : "ddd52f01ff1a8fcd316f591b36e16519",
         "headermmh3" : -96394461
      },
      "length" : 119
   },
   "asn" : "AS25019",
   "city" : "Riyadh",
   "country" : "SA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 302 Found\r\nLocation: /index.php\r\nContent-Length: 0\r\nConnection: close\r\nDate: Wed, 06 Nov 2024 15:50:38 GMT\r\n\r\n",
   "datamd5" : "e93745ea8abf103467e999915a8000be",
   "datammh3" : -753839963,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS25019",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "SA",
      "countryname" : "Saudi Arabia",
      "domain" : [
         "stc.com.sa"
      ],
      "isineu" : "false",
      "latitude" : "23.885942",
      "location" : "23.885942,45.079162",
      "longitude" : "45.079162",
      "netname" : "SAUDINET_DSL_POOL",
      "organization" : "Saudinet, Saudi Telecom Company ISP",
      "subnet" : "37.104.0.0/16"
   },
   "ip" : "37.104.180.216",
   "ipv6" : "false",
   "latitude" : "24.6869",
   "location" : "24.6869,46.7224",
   "longitude" : "46.7224",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Saudi Telecom Company JSC",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 3269,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Found",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 302,
   "subnet" : "37.104.0.0/14",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
139.64.41.104

Network
139.64.0.0/18

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://139.64.41.104:3269/ 200

ASN
AS25019

Organization
Saudi Telecom Company JSC

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
Boa Boa 0.94.14rc21

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
8ef093f4e247d88cbdbbfacb1e97ff64

HTTP Header MD5
4a29bb07a7fa869a73830842e04c9a43

HTTP Body MD5
8db4ce44aa5fefc35d62383573d57f8e

HTTP/1.1 200 OK
Date: Sun, 19 Dec 2010 18:10:30 GMT
Server: Boa/0.94.14rc21
Accept-Ranges: bytes
Connection: close
Content-Length: 5823
Last-Modified: Mon, 05 Jan 2015 14:23:47 GMT
Content-Type: text/html

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en">
	<head>
		<title></title>
		<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
		<link type="text/css" media="all" rel="stylesheet" rev="stylesheet" href="../css/login.css" />
		<script type="text/javascript" src="../js/astman.js"></script>
		<script type="text/javascript" src="../js/jquery.js"></script>
		<script type="text/javascript" src="../js/oem.js"></script>
		<script type="text/javascript" src="../js/astman.js"></script>
		<script type="text/javascript" src="../js/language.js"></script>
		<script type="text/javascript" src="../js/mypbx.js"></script>
		<script type="text/javascript" src="../js/base64.js"></script>
		<script type="text/javascript" src="../js/md5.js"></script>
		<script type="text/javascript">
		<!--
			//2010.06.02 add by yeastar.hlg
			function onDoLogin(){
				var form1 = document.form1;
				var username = _$("username").value.trim();
				
				if(!ASTGUI.checkRequiredFields(['username']) || _$("secret").value == ""){
					alert(Invalid_name_pwd);
					_$("username").focus();
					return;
				}
				
				if(username == "user" || username == "monitor") {
					ASTGUI.cookies.setCookie("curUrl", "");
					ASTGUI.cookies.setCookie("current", "");
				}
				var md5secret = hex_md5(_$("secret").value);
				var b = new Base64();
				var bpwd = b.encode(md5secret);
				//ASTGUI.cookies.setCookie("loginname", username);
				ASTGUI.cookies.setCookie("password", "");
				ASTGUI.cookies.setCookie("defaultpwd", "bbb");
				ASTGUI.cookies.setCookie("language", _$("language").value);
				ASTGUI.cookies.setCookie("OsVer", "xxxx");
				form1.setAttribute("action", make_request_url(G_SERVER_URL, 1000));
				append_input(form1, "username", username);
				append_input(form1, "secret", bpwd);
				form1.submit();
			}
			function onDoReset(){
				_$('username').value = "";
				_$('secret').value = "";
			}
			function check_login(){
				var mypbxString = getMypbxString();
        		var arrRows = GetCommData(mypbxString, "&remoteip:", ";");
        		if(arrRows && arrRows[0] != ""){
        			_$("statusbar").innerHTML = log_five_error;
        		}
        		arrRows = GetCommData(mypbxString, "&error:", ";");
        		if(arrRows && arrRows[0] != ""){
        			_$("statusbar").innerHTML = Invalid_name_pwd;
        		}
			}
			window.onload = function(){ 
				_$("username").focus();
				var SG_LANGUAGE = ASTGUI.cookies.getCookie('language');
				if(SG_LANGUAGE) {
					_$("language").value = SG_LANGUAGE;
				}else {
					_$("language").value = SG_DEFAULT_LANGUAGE;
				}
				check_login();
				ASTGUI.dialog.hide();
			}
			//end of 2010.06.02 add by yeastar.hlg
		//-->
		</script>
	</head>
	<body onkeydown="if(event.keyCode==13) onDoLogin();" style="margin:0px;">
		<form name="form1" method="post">
			<div class="header">
			<h2 class="title"><span><script>document.write(Login_Title);</script></span></h2>
	            <!--<p align="center" id="ruTip" style="display: none;">&nbsp;&nbsp;<font color="#0000ff" size="3"><script>document.write(explorer_recommended)</script></font></p>-->
			</div>
			<div class="main">
			<div class="middle">
			<fieldset>
			<legend style="display:none"></legend>
			<div class="loginTitlePic">
				<h3 class="loginTitle"><script>document.write(Configuration_Panel);</script></h3>
			</div>
			<table border="0" cellspacing="0" cellpadding="5" class="loginTable">
                        	<tr><td><div id="statusbar" style="color: #f30e0e"></div><td></tr>
                        	<tr><th><script>document.write(Username);</script>:</th></tr>
				<tr><td><input type="text" id="username"  maxlength="32" class="txt username"></td></tr>
				<tr><th><script>document.write(Password);</script>:</th></tr>
				<tr><td><input type="password" id="secret" maxlength="32" class="txt password"></td></tr>
				<tr><th><script>document.write(Language);</script>:</th></tr>
				<tr>
					<td> 
						<select id="language" class="txt language">
							<option value="en">English</option>
							<option value="zh_CN">简体中文(Chinese Simplified)</option>
							<option value="zh_TW">繁體中文(Chinese traditional)</option>
							<option value="pt">Português(Portuguese)</option>
							<option value="es">Español(Spanish)</option>
							<option value="ru">Pусский(Russian)</option>
							<option value="iw">עברית(Hebrew)</option>
							<option value="tr">Türk(Turkish)</option>
							<option value="fr">Française(French)</option>
							<option value="de">Deutsch(German)</option>
							<option value="it">Italiano(Italian)</option>
							<option value="nl">Nederlands(Dutch)</option>
							<option value="pl">Polski(Polish)</option>
							<option value="ro">Român(Romanian)</option>
							<option value="al">Shqiptar(Albanian)</option>
							<option value="kr">한국어(Korean)</option>
							<option value="th">ไทย(Thai)</option>
							<option value="fa">فارسی(Persian)</option>
							<option value="hr">Hrvatska(Croatia)</option>
						</select>
					</td>
				</tr>
				<tr height="10px"><td></td></tr>
				<tr>
				<td align="center">
					<span class='btnLogin' onclick="onDoLogin();" name="B1" id='login_button'><script>document.write(Login);</script></span> 
					<span class='btnLogin' onclick="onDoReset();" id='reset_button'><script>document.write(Reset);</script></span> 
				</td>
				</tr>
                        </table>
			</fieldset>
			</div>
			</div>
			<div class="copyright">
	        	<script>document.write(Index_copyrights);</script>
	        </div>
		</form>
	</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:25:47.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "w3.org"
         ],
         "hostname" : [
            "www.w3.org"
         ],
         "url" : [
            "http://www.w3.org/1999/xhtml",
            "http://www.w3.org/TR/html4/strict.dtd"
         ]
      },
      "http" : {
         "bodymd5" : "8db4ce44aa5fefc35d62383573d57f8e",
         "bodymmh3" : 1822303913,
         "header" : [
            {
               "name" : "Last-Modified",
               "value" : "Mon, 05 Jan 2015 14:23:47 GMT"
            }
         ],
         "headermd5" : "4a29bb07a7fa869a73830842e04c9a43",
         "headermmh3" : -845888478
      },
      "length" : 6038
   },
   "asn" : "AS25019",
   "city" : "Khobar",
   "country" : "SA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nDate: Sun, 19 Dec 2010 18:10:30 GMT\r\nServer: Boa/0.94.14rc21\r\nAccept-Ranges: bytes\r\nConnection: close\r\nContent-Length: 5823\r\nLast-Modified: Mon, 05 Jan 2015 14:23:47 GMT\r\nContent-Type: text/html\r\n\r\n<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01//EN\" \"http://www.w3.org/TR/html4/strict.dtd\">\r\n<html xmlns=\"http://www.w3.org/1999/xhtml\" lang=\"en\">\r\n\t<head>\r\n\t\t<title></title>\r\n\t\t<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\" />\r\n\t\t<link type=\"text/css\" media=\"all\" rel=\"stylesheet\" rev=\"stylesheet\" href=\"../css/login.css\" />\r\n\t\t<script type=\"text/javascript\" src=\"../js/astman.js\"></script>\r\n\t\t<script type=\"text/javascript\" src=\"../js/jquery.js\"></script>\r\n\t\t<script type=\"text/javascript\" src=\"../js/oem.js\"></script>\r\n\t\t<script type=\"text/javascript\" src=\"../js/astman.js\"></script>\r\n\t\t<script type=\"text/javascript\" src=\"../js/language.js\"></script>\r\n\t\t<script type=\"text/javascript\" src=\"../js/mypbx.js\"></script>\r\n\t\t<script type=\"text/javascript\" src=\"../js/base64.js\"></script>\r\n\t\t<script type=\"text/javascript\" src=\"../js/md5.js\"></script>\r\n\t\t<script type=\"text/javascript\">\r\n\t\t<!--\r\n\t\t\t//2010.06.02 add by yeastar.hlg\r\n\t\t\tfunction onDoLogin(){\r\n\t\t\t\tvar form1 = document.form1;\r\n\t\t\t\tvar username = _$(\"username\").value.trim();\r\n\t\t\t\t\r\n\t\t\t\tif(!ASTGUI.checkRequiredFields(['username']) || _$(\"secret\").value == \"\"){\r\n\t\t\t\t\talert(Invalid_name_pwd);\r\n\t\t\t\t\t_$(\"username\").focus();\r\n\t\t\t\t\treturn;\r\n\t\t\t\t}\r\n\t\t\t\t\r\n\t\t\t\tif(username == \"user\" || username == \"monitor\") {\r\n\t\t\t\t\tASTGUI.cookies.setCookie(\"curUrl\", \"\");\r\n\t\t\t\t\tASTGUI.cookies.setCookie(\"current\", \"\");\r\n\t\t\t\t}\r\n\t\t\t\tvar md5secret = hex_md5(_$(\"secret\").value);\r\n\t\t\t\tvar b = new Base64();\r\n\t\t\t\tvar bpwd = b.encode(md5secret);\r\n\t\t\t\t//ASTGUI.cookies.setCookie(\"loginname\", username);\r\n\t\t\t\tASTGUI.cookies.setCookie(\"password\", \"\");\r\n\t\t\t\tASTGUI.cookies.setCookie(\"defaultpwd\", \"bbb\");\r\n\t\t\t\tASTGUI.cookies.setCookie(\"language\", _$(\"language\").value);\r\n\t\t\t\tASTGUI.cookies.setCookie(\"OsVer\", \"xxxx\");\r\n\t\t\t\tform1.setAttribute(\"action\", make_request_url(G_SERVER_URL, 1000));\r\n\t\t\t\tappend_input(form1, \"username\", username);\r\n\t\t\t\tappend_input(form1, \"secret\", bpwd);\r\n\t\t\t\tform1.submit();\r\n\t\t\t}\r\n\t\t\tfunction onDoReset(){\r\n\t\t\t\t_$('username').value = \"\";\r\n\t\t\t\t_$('secret').value = \"\";\r\n\t\t\t}\r\n\t\t\tfunction check_login(){\r\n\t\t\t\tvar mypbxString = getMypbxString();\r\n        \t\tvar arrRows = GetCommData(mypbxString, \"&remoteip:\", \";\");\r\n        \t\tif(arrRows && arrRows[0] != \"\"){\r\n        \t\t\t_$(\"statusbar\").innerHTML = log_five_error;\r\n        \t\t}\r\n        \t\tarrRows = GetCommData(mypbxString, \"&error:\", \";\");\r\n        \t\tif(arrRows && arrRows[0] != \"\"){\r\n        \t\t\t_$(\"statusbar\").innerHTML = Invalid_name_pwd;\r\n        \t\t}\r\n\t\t\t}\r\n\t\t\twindow.onload = function(){ \r\n\t\t\t\t_$(\"username\").focus();\r\n\t\t\t\tvar SG_LANGUAGE = ASTGUI.cookies.getCookie('language');\r\n\t\t\t\tif(SG_LANGUAGE) {\r\n\t\t\t\t\t_$(\"language\").value = SG_LANGUAGE;\r\n\t\t\t\t}else {\r\n\t\t\t\t\t_$(\"language\").value = SG_DEFAULT_LANGUAGE;\r\n\t\t\t\t}\r\n\t\t\t\tcheck_login();\r\n\t\t\t\tASTGUI.dialog.hide();\r\n\t\t\t}\r\n\t\t\t//end of 2010.06.02 add by yeastar.hlg\r\n\t\t//-->\r\n\t\t</script>\r\n\t</head>\r\n\t<body onkeydown=\"if(event.keyCode==13) onDoLogin();\" style=\"margin:0px;\">\r\n\t\t<form name=\"form1\" method=\"post\">\r\n\t\t\t<div class=\"header\">\r\n\t\t\t<h2 class=\"title\"><span><script>document.write(Login_Title);</script></span></h2>\r\n\t            <!--<p align=\"center\" id=\"ruTip\" style=\"display: none;\">&nbsp;&nbsp;<font color=\"#0000ff\" size=\"3\"><script>document.write(explorer_recommended)</script></font></p>-->\r\n\t\t\t</div>\r\n\t\t\t<div class=\"main\">\r\n\t\t\t<div class=\"middle\">\r\n\t\t\t<fieldset>\r\n\t\t\t<legend style=\"display:none\"></legend>\r\n\t\t\t<div class=\"loginTitlePic\">\r\n\t\t\t\t<h3 class=\"loginTitle\"><script>document.write(Configuration_Panel);</script></h3>\r\n\t\t\t</div>\r\n\t\t\t<table border=\"0\" cellspacing=\"0\" cellpadding=\"5\" class=\"loginTable\">\r\n                        \t<tr><td><div id=\"statusbar\" style=\"color: #f30e0e\"></div><td></tr>\r\n                        \t<tr><th><script>document.write(Username);</script>:</th></tr>\r\n\t\t\t\t<tr><td><input type=\"text\" id=\"username\"  maxlength=\"32\" class=\"txt username\"></td></tr>\r\n\t\t\t\t<tr><th><script>document.write(Password);</script>:</th></tr>\r\n\t\t\t\t<tr><td><input type=\"password\" id=\"secret\" maxlength=\"32\" class=\"txt password\"></td></tr>\r\n\t\t\t\t<tr><th><script>document.write(Language);</script>:</th></tr>\r\n\t\t\t\t<tr>\r\n\t\t\t\t\t<td> \r\n\t\t\t\t\t\t<select id=\"language\" class=\"txt language\">\r\n\t\t\t\t\t\t\t<option value=\"en\">English</option>\r\n\t\t\t\t\t\t\t<option value=\"zh_CN\">\u7b80\u4f53\u4e2d\u6587(Chinese Simplified)</option>\r\n\t\t\t\t\t\t\t<option value=\"zh_TW\">\u7e41\u9ad4\u4e2d\u6587(Chinese traditional)</option>\r\n\t\t\t\t\t\t\t<option value=\"pt\">Portugu\u00eas(Portuguese)</option>\r\n\t\t\t\t\t\t\t<option value=\"es\">Espa\u00f1ol(Spanish)</option>\r\n\t\t\t\t\t\t\t<option value=\"ru\">P\u0443\u0441\u0441\u043a\u0438\u0439(Russian)</option>\r\n\t\t\t\t\t\t\t<option value=\"iw\">\u05e2\u05d1\u05e8\u05d9\u05ea(Hebrew)</option>\r\n\t\t\t\t\t\t\t<option value=\"tr\">T\u00fcrk(Turkish)</option>\r\n\t\t\t\t\t\t\t<option value=\"fr\">Fran\u00e7aise(French)</option>\r\n\t\t\t\t\t\t\t<option value=\"de\">Deutsch(German)</option>\r\n\t\t\t\t\t\t\t<option value=\"it\">Italiano(Italian)</option>\r\n\t\t\t\t\t\t\t<option value=\"nl\">Nederlands(Dutch)</option>\r\n\t\t\t\t\t\t\t<option value=\"pl\">Polski(Polish)</option>\r\n\t\t\t\t\t\t\t<option value=\"ro\">Rom\u00e2n(Romanian)</option>\r\n\t\t\t\t\t\t\t<option value=\"al\">Shqiptar(Albanian)</option>\r\n\t\t\t\t\t\t\t<option value=\"kr\">\ud55c\uad6d\uc5b4(Korean)</option>\r\n\t\t\t\t\t\t\t<option value=\"th\">\u0e44\u0e17\u0e22(Thai)</option>\r\n\t\t\t\t\t\t\t<option value=\"fa\">\u0641\u0627\u0631\u0633\u06cc(Persian)</option>\r\n\t\t\t\t\t\t\t<option value=\"hr\">Hrvatska(Croatia)</option>\r\n\t\t\t\t\t\t</select>\r\n\t\t\t\t\t</td>\r\n\t\t\t\t</tr>\r\n\t\t\t\t<tr height=\"10px\"><td></td></tr>\r\n\t\t\t\t<tr>\r\n\t\t\t\t<td align=\"center\">\r\n\t\t\t\t\t<span class='btnLogin' onclick=\"onDoLogin();\" name=\"B1\" id='login_button'><script>document.write(Login);</script></span> \r\n\t\t\t\t\t<span class='btnLogin' onclick=\"onDoReset();\" id='reset_button'><script>document.write(Reset);</script></span> \r\n\t\t\t\t</td>\r\n\t\t\t\t</tr>\r\n                        </table>\r\n\t\t\t</fieldset>\r\n\t\t\t</div>\r\n\t\t\t</div>\r\n\t\t\t<div class=\"copyright\">\r\n\t        \t<script>document.write(Index_copyrights);</script>\r\n\t        </div>\r\n\t\t</form>\r\n\t</body>\r\n</html>\r\n",
   "datamd5" : "8ef093f4e247d88cbdbbfacb1e97ff64",
   "datammh3" : -1052263948,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS25019",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "SA",
      "countryname" : "Saudi Arabia",
      "domain" : [
         "stc.com.sa"
      ],
      "isineu" : "false",
      "latitude" : "23.885942",
      "location" : "23.885942,45.079162",
      "longitude" : "45.079162",
      "netname" : "STC_FBB",
      "organization" : "STC_FBB",
      "subnet" : "139.64.32.0/20"
   },
   "ip" : "139.64.41.104",
   "ipv6" : "false",
   "latitude" : "26.2846",
   "location" : "26.2846,50.2080",
   "longitude" : "50.2080",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Saudi Telecom Company JSC",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 3269,
   "product" : "Boa",
   "productvendor" : "Boa",
   "productversion" : "0.94.14rc21",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "139.64.0.0/18",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
37.106.190.199

Network
37.104.0.0/14

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://37.106.190.199:3269/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

ASN
AS25019

Organization
Saudi Telecom Company JSC

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx 1.22.1

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
9ce87fe0d4e03e4d072f8f2f63d57651

HTTP Header MD5
307329638a66444a5ae1ca27840902b4

HTTP Body MD5
2967effc16868dce058b50942b91d9cb

HTTP/1.1 400 Bad Request
Date: Thu, 07 Nov 2024 00:13:32 GMT
Content-Type: text/html
Content-Length: 255
Connection: close
Server: VVTK-HTTP-Server

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx/1.22.1</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T00:13:25.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "2967effc16868dce058b50942b91d9cb",
         "bodymmh3" : -625078651,
         "headermd5" : "307329638a66444a5ae1ca27840902b4",
         "headermmh3" : -2042360053,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 411
   },
   "asn" : "AS25019",
   "city" : "Riyadh",
   "country" : "SA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nDate: Thu, 07 Nov 2024 00:13:32 GMT\r\nContent-Type: text/html\r\nContent-Length: 255\r\nConnection: close\r\nServer: VVTK-HTTP-Server\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx/1.22.1</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "9ce87fe0d4e03e4d072f8f2f63d57651",
   "datammh3" : -1514339470,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS25019",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "SA",
      "countryname" : "Saudi Arabia",
      "domain" : [
         "stc.com.sa"
      ],
      "isineu" : "false",
      "latitude" : "23.885942",
      "location" : "23.885942,45.079162",
      "longitude" : "45.079162",
      "netname" : "SAUDINET_DSL_POOL",
      "organization" : "DSL HOME Subscribers_Dynamic IPs",
      "subnet" : "37.106.0.0/16"
   },
   "ip" : "37.106.190.199",
   "ipv6" : "false",
   "latitude" : "24.6869",
   "location" : "24.6869,46.7224",
   "longitude" : "46.7224",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Saudi Telecom Company JSC",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 3269,
   "product" : "Nginx",
   "productvendor" : "F5",
   "productversion" : "1.22.1",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "37.104.0.0/14",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
139.64.47.231

Network
139.64.0.0/18

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://139.64.47.231:3269/ 401

HTTP Title
Unauthorized

ASN
AS25019

Organization
Saudi Telecom Company JSC

Protocol
http

Source
datascan
Operating System
Microsoft Windows

HTTP Component(s)
Plex Media Server

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
2de861031040181ee2188040cc83180e

HTTP Header MD5
9ca01530123920eac6307b32e7d89d3b

HTTP Body MD5
58839c8a9d6616ca62adc7b6e3610676

Favicon MD5
0f584138aacfb79aaba7e2539fc4e642

Favicon MMH3
-895890586

HTTP/1.1 401 Unauthorized
X-Plex-Protocol: 1.0
Content-Length: 193
Content-Type: text/html
Connection: close
Cache-Control: no-cache
Date: Wed, 06 Nov 2024 22:54:25 GMT

<html><head><script>window.location = window.location.href.match(/(^.+\/)[^\/]*$/)[1] + 'web/index.html';</script><title>Unauthorized</title></head><body><h1>401 Unauthorized</h1></body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T23:48:33.000Z",
   "app" : {
      "favicon" : {
         "image" : "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",
         "imagemd5" : "0f584138aacfb79aaba7e2539fc4e642",
         "imagemmh3" : -895890586,
         "length" : 5430,
         "url" : "/favicon.ico"
      },
      "http" : {
         "bodymd5" : "58839c8a9d6616ca62adc7b6e3610676",
         "bodymmh3" : 1524593440,
         "component" : [
            {
               "productvendor" : "Plex",
               "product" : "Media Server"
            }
         ],
         "headermd5" : "9ca01530123920eac6307b32e7d89d3b",
         "headermmh3" : -1844857915,
         "title" : "Unauthorized"
      },
      "length" : 371
   },
   "asn" : "AS25019",
   "city" : "Khobar",
   "country" : "SA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 401 Unauthorized\r\nX-Plex-Protocol: 1.0\r\nContent-Length: 193\r\nContent-Type: text/html\r\nConnection: close\r\nCache-Control: no-cache\r\nDate: Wed, 06 Nov 2024 22:54:25 GMT\r\n\r\n<html><head><script>window.location = window.location.href.match(/(^.+\\/)[^\\/]*$/)[1] + 'web/index.html';</script><title>Unauthorized</title></head><body><h1>401 Unauthorized</h1></body></html>",
   "datamd5" : "2de861031040181ee2188040cc83180e",
   "datammh3" : -1584694499,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS25019",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "SA",
      "countryname" : "Saudi Arabia",
      "domain" : [
         "stc.com.sa"
      ],
      "isineu" : "false",
      "latitude" : "23.885942",
      "location" : "23.885942,45.079162",
      "longitude" : "45.079162",
      "netname" : "STC_FBB",
      "organization" : "STC_FBB",
      "subnet" : "139.64.32.0/20"
   },
   "ip" : "139.64.47.231",
   "ipv6" : "false",
   "latitude" : "26.2846",
   "location" : "26.2846,50.2080",
   "longitude" : "50.2080",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Saudi Telecom Company JSC",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 3269,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Unauthorized",
   "seen_date" : "2024-11-06",
   "source" : "datascan",
   "status" : 401,
   "subnet" : "139.64.0.0/18",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
94.98.176.166

Network
94.96.0.0/14

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://94.98.176.166:3269/ 301

ASN
AS25019

Organization
Saudi Telecom Company JSC

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
013e65a36dc555c9b280ebfb9a7fc368

HTTP Header MD5
1927a675e38d04791b795778cafc2c69

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

HTTP/1.1 301 Moved Permanently
Location: https://<ip>:3269:8089/
Content-Length: 0
Connection: close
Date: Wed, 06 Nov 2024 23:10:53 GMT
Server: nginx

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T23:10:54.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1,
         "headermd5" : "1927a675e38d04791b795778cafc2c69",
         "headermmh3" : 378211672
      },
      "length" : 159
   },
   "asn" : "AS25019",
   "city" : "Buraidah",
   "country" : "SA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 301 Moved Permanently\r\nLocation: https://<ip>:3269:8089/\r\nContent-Length: 0\r\nConnection: close\r\nDate: Wed, 06 Nov 2024 23:10:53 GMT\r\nServer: nginx\r\n\r\n",
   "datamd5" : "013e65a36dc555c9b280ebfb9a7fc368",
   "datammh3" : -464341245,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS25019",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "SA",
      "countryname" : "Saudi Arabia",
      "domain" : [
         "stc.com.sa"
      ],
      "isineu" : "false",
      "latitude" : "23.885942",
      "location" : "23.885942,45.079162",
      "longitude" : "45.079162",
      "netname" : "SAUDINET_DSL_POOL",
      "organization" : "DSL HOME Subscribers_Dynamic IPs",
      "subnet" : "94.98.0.0/16"
   },
   "ip" : "94.98.176.166",
   "ipv6" : "false",
   "latitude" : "26.3264",
   "location" : "26.3264,43.9769",
   "longitude" : "43.9769",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Saudi Telecom Company JSC",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 3269,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Moved Permanently",
   "seen_date" : "2024-11-06",
   "source" : "datascan",
   "status" : 301,
   "subnet" : "94.96.0.0/14",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
139.64.47.231

Network
139.64.0.0/18

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://139.64.47.231:3269/ 401

HTTP Title
Unauthorized

ASN
AS25019

Organization
Saudi Telecom Company JSC

Protocol
http

Source
datascan
Operating System
Microsoft Windows

HTTP Component(s)
Plex Media Server

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
2de861031040181ee2188040cc83180e

HTTP Header MD5
9ca01530123920eac6307b32e7d89d3b

HTTP Body MD5
58839c8a9d6616ca62adc7b6e3610676

HTTP/1.1 401 Unauthorized
X-Plex-Protocol: 1.0
Content-Length: 193
Content-Type: text/html
Connection: close
Cache-Control: no-cache
Date: Wed, 06 Nov 2024 22:54:25 GMT

<html><head><script>window.location = window.location.href.match(/(^.+\/)[^\/]*$/)[1] + 'web/index.html';</script><title>Unauthorized</title></head><body><h1>401 Unauthorized</h1></body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T22:54:29.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "58839c8a9d6616ca62adc7b6e3610676",
         "bodymmh3" : 1524593440,
         "component" : [
            {
               "productvendor" : "Plex",
               "product" : "Media Server"
            }
         ],
         "headermd5" : "9ca01530123920eac6307b32e7d89d3b",
         "headermmh3" : -1844857915,
         "title" : "Unauthorized"
      },
      "length" : 371
   },
   "asn" : "AS25019",
   "city" : "Khobar",
   "country" : "SA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 401 Unauthorized\r\nX-Plex-Protocol: 1.0\r\nContent-Length: 193\r\nContent-Type: text/html\r\nConnection: close\r\nCache-Control: no-cache\r\nDate: Wed, 06 Nov 2024 22:54:25 GMT\r\n\r\n<html><head><script>window.location = window.location.href.match(/(^.+\\/)[^\\/]*$/)[1] + 'web/index.html';</script><title>Unauthorized</title></head><body><h1>401 Unauthorized</h1></body></html>",
   "datamd5" : "2de861031040181ee2188040cc83180e",
   "datammh3" : -1584694499,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS25019",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "SA",
      "countryname" : "Saudi Arabia",
      "domain" : [
         "stc.com.sa"
      ],
      "isineu" : "false",
      "latitude" : "23.885942",
      "location" : "23.885942,45.079162",
      "longitude" : "45.079162",
      "netname" : "STC_FBB",
      "organization" : "STC_FBB",
      "subnet" : "139.64.32.0/20"
   },
   "ip" : "139.64.47.231",
   "ipv6" : "false",
   "latitude" : "26.2846",
   "location" : "26.2846,50.2080",
   "longitude" : "50.2080",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Saudi Telecom Company JSC",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 3269,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Unauthorized",
   "seen_date" : "2024-11-06",
   "source" : "datascan",
   "status" : 401,
   "subnet" : "139.64.0.0/18",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
2.88.155.158

Network
2.88.0.0/15

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

ASN
AS25019

Organization
Saudi Telecom Company JSC

Protocol
ftp

Source
datascan
Operating System
Linux Linux Kernel

Product
vsFTPd vsFTPd 3.0.5

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
db78943ca952fc362ca8cd481954f970

220 (vsFTPd 3.0.5)
500 HTTP protocol commands not allowed.

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T09:37:00.000Z",
   "app" : {
      "length" : 61
   },
   "asn" : "AS25019",
   "city" : "Riyadh",
   "country" : "SA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220 (vsFTPd 3.0.5)\r\n500 HTTP protocol commands not allowed.\r\n",
   "datamd5" : "db78943ca952fc362ca8cd481954f970",
   "datammh3" : 808220560,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS25019",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "SA",
      "countryname" : "Saudi Arabia",
      "domain" : [
         "stc.com.sa"
      ],
      "isineu" : "false",
      "latitude" : "23.885942",
      "location" : "23.885942,45.079162",
      "longitude" : "45.079162",
      "netname" : "SAUDINET_DSL_POOL",
      "organization" : "SaudiNet DSL pool_Dynamic IPs",
      "subnet" : "2.88.0.0/16"
   },
   "ip" : "2.88.155.158",
   "ipv6" : "false",
   "latitude" : "24.6869",
   "location" : "24.6869,46.7224",
   "longitude" : "46.7224",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Saudi Telecom Company JSC",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 3269,
   "product" : "vsFTPd",
   "productvendor" : "vsFTPd",
   "productversion" : "3.0.5",
   "protocol" : "ftp",
   "seen_date" : "2024-11-06",
   "source" : "datascan",
   "subnet" : "2.88.0.0/15",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
51.223.127.147

Network
51.223.0.0/17

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://51.223.127.147:3269/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

ASN
AS25019

Organization
Saudi Telecom Company JSC

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0c1820e0d381850a77897bf32978a1f0

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
ea425366a98dfc499c0cbeedb9a4f02a

HTTP/1.1 400 Bad Request
Server: nginx
Date: Wed, 06 Nov 2024 03:20:52 GMT
Content-Type: text/html
Content-Length: 248
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T03:20:52.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
         "bodymmh3" : 1153229498,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : 629314114,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 393
   },
   "asn" : "AS25019",
   "city" : "Al Qa\u0163\u012bf",
   "country" : "SA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Wed, 06 Nov 2024 03:20:52 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
   "datammh3" : 190190724,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS25019",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "SA",
      "countryname" : "Saudi Arabia",
      "domain" : [
         "stc.com.sa"
      ],
      "isineu" : "false",
      "latitude" : "23.885942",
      "location" : "23.885942,45.079162",
      "longitude" : "45.079162",
      "netname" : "STC_FBB",
      "organization" : "Saudinet, Saudi Telecom Company ISP",
      "subnet" : "51.223.96.0/19"
   },
   "ip" : "51.223.127.147",
   "ipv6" : "false",
   "latitude" : "26.5651",
   "location" : "26.5651,50.0118",
   "longitude" : "50.0118",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Saudi Telecom Company JSC",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 3269,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-06",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "51.223.0.0/17",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
167.100.232.217

Network
167.100.128.0/17

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://167.100.232.217:3269/ 200

ASN
AS25019

Organization
Saudi Telecom Company JSC

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
1d1dadd671b5ede1a4e51b6d7b1de1c9

HTTP Header MD5
55ad6875a7c53041631cd6e413113e22

HTTP Body MD5
13b8369f911fb613be01e0f8564c9b79

HTTP/1.1 200 OK
Date: Wed, 06 Nov 2024 05:20:12 GMT
Server: web
X-Frame-Options: SAMEORIGIN
ETag: "0-a6b-1e0"
Content-Length: 480
Content-Type: text/html
Connection: close
Last-Modified: Mon, 20 Aug 2018 08:18:55 GMT

<!doctype html>
<html>
<head>
	<title></title>
	<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
	<meta http-equiv="X-UA-Compatible" content="IE=edge" >
	<meta http-equiv="Pragma" content="no-cache" />
	<meta http-equiv="Cache-Control" content="no-cache, must-revalidate" />
	<meta http-equiv="Expires" content="0" />
</head>
<body>
</body>
<script>
	window.location.href = "/doc/page/login.asp?_" + (new Date()).getTime();
</script>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T02:20:24.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "13b8369f911fb613be01e0f8564c9b79",
         "bodymmh3" : 1400196417,
         "header" : [
            {
               "value" : "0-a6b-1e0",
               "name" : "ETag"
            },
            {
               "value" : "Mon, 20 Aug 2018 08:18:55 GMT",
               "name" : "Last-Modified"
            }
         ],
         "headermd5" : "55ad6875a7c53041631cd6e413113e22",
         "headermmh3" : -1993206285
      },
      "length" : 708
   },
   "asn" : "AS25019",
   "city" : "Dammam",
   "country" : "SA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nDate: Wed, 06 Nov 2024 05:20:12 GMT\r\nServer: web\r\nX-Frame-Options: SAMEORIGIN\r\nETag: \"0-a6b-1e0\"\r\nContent-Length: 480\r\nContent-Type: text/html\r\nConnection: close\r\nLast-Modified: Mon, 20 Aug 2018 08:18:55 GMT\r\n\r\n\ufeff<!doctype html>\r\n<html>\r\n<head>\r\n\t<title></title>\r\n\t<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\" />\r\n\t<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\" >\r\n\t<meta http-equiv=\"Pragma\" content=\"no-cache\" />\r\n\t<meta http-equiv=\"Cache-Control\" content=\"no-cache, must-revalidate\" />\r\n\t<meta http-equiv=\"Expires\" content=\"0\" />\r\n</head>\r\n<body>\r\n</body>\r\n<script>\r\n\twindow.location.href = \"/doc/page/login.asp?_\" + (new Date()).getTime();\r\n</script>\r\n</html>",
   "datamd5" : "1d1dadd671b5ede1a4e51b6d7b1de1c9",
   "datammh3" : -1735387784,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS25019",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "SA",
      "countryname" : "Saudi Arabia",
      "domain" : [
         "stc.com.sa"
      ],
      "isineu" : "false",
      "latitude" : "23.885942",
      "location" : "23.885942,45.079162",
      "longitude" : "45.079162",
      "netname" : "STC_FBB",
      "organization" : "STC_FBB",
      "subnet" : "167.100.224.0/20"
   },
   "ip" : "167.100.232.217",
   "ipv6" : "false",
   "latitude" : "26.4336",
   "location" : "26.4336,50.1116",
   "longitude" : "50.1116",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Saudi Telecom Company JSC",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 3269,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "seen_date" : "2024-11-06",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "167.100.128.0/17",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
141.179.105.243

Network
141.179.0.0/17

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://141.179.105.243:3269/ 302

ASN
AS25019

Organization
Saudi Telecom Company JSC

Protocol
http

Source
datascan
Operating System
Microsoft Windows

Product
Apache HTTP Server 2.4.29

HTTP Component(s)
Python Python 2.7 Apache mod_wsgi 4.5.24

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
fa10a3dc230d4cd2bada8c2f1ecc14a5

HTTP Header MD5
280c300401c715d7afe0f64b5aa92a03

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

HTTP/1.1 302 Found
Date: Tue, 05 Nov 2024 21:30:52 GMT
Server: Apache/2.4.29 (Win64) mod_wsgi/4.5.24 Python/2.7
Content-Length: 0
Content-Language: en
Vary: Accept-Language,Cookie
Location: /login/?next=/
Pragma: no-cache
Cache-Control: no-store
X-Frame-Options: SAMEORIGIN
Content-Type: text/html; charset=utf-8
Connection: close

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-05T21:30:51.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1636538602,
         "component" : [
            {
               "product" : "Python",
               "productversion" : "2.7",
               "productvendor" : "Python"
            },
            {
               "product" : "mod_wsgi",
               "productvendor" : "Apache",
               "productversion" : "4.5.24"
            }
         ],
         "headermd5" : "280c300401c715d7afe0f64b5aa92a03",
         "headermmh3" : -1191660107
      },
      "length" : 345
   },
   "asn" : "AS25019",
   "city" : "Dammam",
   "country" : "SA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 302 Found\r\nDate: Tue, 05 Nov 2024 21:30:52 GMT\r\nServer: Apache/2.4.29 (Win64) mod_wsgi/4.5.24 Python/2.7\r\nContent-Length: 0\r\nContent-Language: en\r\nVary: Accept-Language,Cookie\r\nLocation: /login/?next=/\r\nPragma: no-cache\r\nCache-Control: no-store\r\nX-Frame-Options: SAMEORIGIN\r\nContent-Type: text/html; charset=utf-8\r\nConnection: close\r\n\r\n",
   "datamd5" : "fa10a3dc230d4cd2bada8c2f1ecc14a5",
   "datammh3" : 702530355,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS25019",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "SA",
      "countryname" : "Saudi Arabia",
      "domain" : [
         "stc.com.sa"
      ],
      "isineu" : "false",
      "latitude" : "23.885942",
      "location" : "23.885942,45.079162",
      "longitude" : "45.079162",
      "netname" : "STC_FBB",
      "organization" : "STC_FBB",
      "subnet" : "141.179.96.0/20"
   },
   "ip" : "141.179.105.243",
   "ipv6" : "false",
   "latitude" : "26.4336",
   "location" : "26.4336,50.1116",
   "longitude" : "50.1116",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Saudi Telecom Company JSC",
   "os" : "Windows",
   "osbits" : 64,
   "osvendor" : "Microsoft",
   "port" : 3269,
   "product" : "HTTP Server",
   "productvendor" : "Apache",
   "productversion" : "2.4.29",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Found",
   "seen_date" : "2024-11-05",
   "source" : "datascan",
   "status" : 302,
   "subnet" : "141.179.0.0/17",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

Returning 10 result(s) out of 132 in 0.121 second(s)

37.104.180.216:3269 (tcp/http) - last seen on 2024-11-07 at 03:50:56 UTC

139.64.41.104:3269 (tcp/http) - last seen on 2024-11-07 at 03:25:47 UTC

37.106.190.199:3269 (tcp/http) - last seen on 2024-11-07 at 00:13:25 UTC

139.64.47.231:3269 (tcp/http) - last seen on 2024-11-06 at 23:48:33 UTC

94.98.176.166:3269 (tcp/http) - last seen on 2024-11-06 at 23:10:54 UTC

139.64.47.231:3269 (tcp/http) - last seen on 2024-11-06 at 22:54:29 UTC

2.88.155.158:3269 (tcp/ftp) - last seen on 2024-11-06 at 09:37:00 UTC

51.223.127.147:3269 (tcp/http) - last seen on 2024-11-06 at 03:20:52 UTC

167.100.232.217:3269 (tcp/http) - last seen on 2024-11-06 at 02:20:24 UTC

141.179.105.243:3269 (tcp/http) - last seen on 2024-11-05 at 21:30:51 UTC