Cyber Defense Search Engine

datascan ctl threatlist sniffer vulnscan riskscan

1
2
3
4
...
next >

IP
15.152.37.134

Network
15.152.0.0/16

Domain(s)
amazonaws.com mainoil.gov

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

https://15.152.37.134:33034/ 404

HTTP Title
Error 404--Not Found

Reverse DNS
ec2-15-152-37-134.ap-northeast-3.compute.amazonaws.com

ASN
AS16509

Organization
AMAZON-02

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

Product
Oracle Weblogic Server 10.3.6.0.0

HTTP Component(s)
Oracle Weblogic Server

CPE(s)

<enterprise field>: cpe
Issuer Common Name
exchange.mainoil.gov

Subject Common Name
exchange.mainoil.gov

SHA256 Fingerprint
52687a901a43c44dd0b247e516a8cdd61b60fc969fba35484e9241aee8936b19

Validity Not Before
2024-11-07T06:19:26Z

Validity Not After
2026-11-07T06:19:26Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
e26e7874bcd5613de7a73a09bb31100c

HTTP Header MD5
522c4e821ae16fa1f93f1ac71c0e412a

HTTP Body MD5
693ba5c2587c2994de7843b9c3c9e384

HTTP/1.1 404 Not Found
Connection: close
Date: Thu, 07 Nov 2024 07:13:17 GMT
Server: WebLogic Server 10.3.6.0.0
Content-Type: text/html
Content-Length: 1766

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Draft//EN">
<HTML>
    <HEAD>
        <TITLE>Error 404--Not Found</TITLE>
    </HEAD>
    <BODY bgcolor="white">
        <FONT FACE=Helvetica><BR CLEAR=all>
        <TABLE border=0 cellspacing=5>
            <TR>
                <TD>
                    <BR CLEAR=all>
                    <FONT FACE="Helvetica" COLOR="black" SIZE="3">
                        <H2>Error 404--Not Found</H2>
                    </FONT>
                </TD>
            </TR>
        </TABLE>
        <TABLE border=0 width=100% cellpadding=10>
            <TR>
                <TD VALIGN=top WIDTH=100% BGCOLOR=white>
                    <FONT FACE="Courier New">
                        <FONT FACE="Helvetica" SIZE="3">
                            <H3>From RFC 2068 <i>Hypertext Transfer Protocol -- HTTP/1.1</i>:</H3>
                        </FONT>
                        <FONT FACE="Helvetica" SIZE="3">
                            <H4>10.4.5 404 Not Found</H4>
                        </FONT>
                        <P>
                            <FONT FACE="Courier New">
                                The server has not found anything matching the Request-URI. No indication is given of whether the condition is temporary or permanent.
                        </p>
                        <p>If the server does not wish to make this information available to the client, the status code 403 (Forbidden) can be used instead. The 410 (Gone) status code SHOULD be used if the server knows, through some internally configurable mechanism, that an old resource is permanently unavailable and has no forwarding address.</FONT></P>
                    </FONT>
                </TD>
            </TR>
        </TABLE>
    </BODY>
</HTML>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T07:13:17.000Z",
   "app" : {
      "extract" : {
         "ip" : [
            "10.3.6.0"
         ]
      },
      "http" : {
         "bodymd5" : "693ba5c2587c2994de7843b9c3c9e384",
         "bodymmh3" : -369160404,
         "component" : [
            {
               "product" : "Weblogic Server",
               "productvendor" : "Oracle"
            }
         ],
         "headermd5" : "522c4e821ae16fa1f93f1ac71c0e412a",
         "headermmh3" : -2104083498,
         "title" : "Error 404--Not Found"
      },
      "length" : 1931
   },
   "asn" : "AS16509",
   "city" : "Osaka",
   "country" : "JP",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 404 Not Found\r\nConnection: close\r\nDate: Thu, 07 Nov 2024 07:13:17 GMT\r\nServer: WebLogic Server 10.3.6.0.0\r\nContent-Type: text/html\r\nContent-Length: 1766\r\n\r\n<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.0 Draft//EN\">\n<HTML>\n    <HEAD>\n        <TITLE>Error 404--Not Found</TITLE>\n    </HEAD>\n    <BODY bgcolor=\"white\">\n        <FONT FACE=Helvetica><BR CLEAR=all>\n        <TABLE border=0 cellspacing=5>\n            <TR>\n                <TD>\n                    <BR CLEAR=all>\n                    <FONT FACE=\"Helvetica\" COLOR=\"black\" SIZE=\"3\">\n                        <H2>Error 404--Not Found</H2>\n                    </FONT>\n                </TD>\n            </TR>\n        </TABLE>\n        <TABLE border=0 width=100% cellpadding=10>\n            <TR>\n                <TD VALIGN=top WIDTH=100% BGCOLOR=white>\n                    <FONT FACE=\"Courier New\">\n                        <FONT FACE=\"Helvetica\" SIZE=\"3\">\n                            <H3>From RFC 2068 <i>Hypertext Transfer Protocol -- HTTP/1.1</i>:</H3>\n                        </FONT>\n                        <FONT FACE=\"Helvetica\" SIZE=\"3\">\n                            <H4>10.4.5 404 Not Found</H4>\n                        </FONT>\n                        <P>\n                            <FONT FACE=\"Courier New\">\n                                The server has not found anything matching the Request-URI. No indication is given of whether the condition is temporary or permanent.\n                        </p>\n                        <p>If the server does not wish to make this information available to the client, the status code 403 (Forbidden) can be used instead. The 410 (Gone) status code SHOULD be used if the server knows, through some internally configurable mechanism, that an old resource is permanently unavailable and has no forwarding address.</FONT></P>\n                    </FONT>\n                </TD>\n            </TR>\n        </TABLE>\n    </BODY>\n</HTML>",
   "datamd5" : "e26e7874bcd5613de7a73a09bb31100c",
   "datammh3" : 1679174131,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amazonaws.com",
      "mainoil.gov"
   ],
   "fingerprint" : {
      "md5" : "484d38223ab2be42a1ed4f84faa8c5c7",
      "sha1" : "2c5b9bc664dd2f6d27e17ed68db7e68bde88d3b3",
      "sha256" : "52687a901a43c44dd0b247e516a8cdd61b60fc969fba35484e9241aee8936b19"
   },
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "JP",
      "countryname" : "Japan",
      "domain" : [
         "amazon.com",
         "amazonaws.com",
         "aws.com"
      ],
      "isineu" : "false",
      "latitude" : "36.204824",
      "location" : "36.204824,138.252924",
      "longitude" : "138.252924",
      "netname" : "AMAZON-KIX",
      "organization" : "Amazon Data Services Osaka",
      "subnet" : "15.152.0.0/16"
   },
   "host" : [
      "ec2-15-152-37-134",
      "exchange"
   ],
   "hostname" : [
      "ec2-15-152-37-134.ap-northeast-3.compute.amazonaws.com",
      "exchange.mainoil.gov"
   ],
   "ip" : "15.152.37.134",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "exchange.mainoil.gov"
   },
   "latitude" : "34.6946",
   "location" : "34.6946,135.5021",
   "longitude" : "135.5021",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 33034,
   "product" : "Weblogic Server",
   "productvendor" : "Oracle",
   "productversion" : "10.3.6.0.0",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "Not Found",
   "reverse" : [
      "ec2-15-152-37-134.ap-northeast-3.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-07",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 404,
   "subdomains" : [
      "ap-northeast-3.compute.amazonaws.com",
      "compute.amazonaws.com"
   ],
   "subject" : {
      "commonname" : "exchange.mainoil.gov"
   },
   "subnet" : "15.152.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com",
      "gov"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2026-11-07T06:19:26Z",
      "notbefore" : "2024-11-07T06:19:26Z"
   },
   "version" : "v1",
   "wildcard" : "false"
}

IP
195.214.133.176

Network
195.214.128.0/20

Domain(s)
superonline.net synology.me

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

https://195.214.133.176:33034/ 404

HTTP Title
404 Not Found

Reverse DNS
host-195-214-133-176.reverse.superonline.net

ASN
AS34984

Organization
Superonline Iletisim Hizmetleri A.S.

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

Product
Apache HTTP Server

CPE(s)

<enterprise field>: cpe
Issuer Common Name
R10

Issuer Organization
Let's Encrypt

Subject Common Name
ibrahim.synology.me

Subject Alt Name
*.ibrahim.synology.me ibrahim.synology.me

SHA256 Fingerprint
ccfa4686ab5a5a51469fc92f774386ad074b08a8f4edebf8038f2b3f042043ed

Validity Not Before
2024-09-25T15:52:26Z

Validity Not After
2024-12-24T15:52:25Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
d3c05ced6a988d101069084bf16bdb8a

HTTP Header MD5
76cdaa6fe148c67dca211f49fad8f9c5

HTTP Body MD5
62962daa1b19bbcc2db10b7bfd531ea6

HTTP/1.1 404 Not Found
Date: Thu, 07 Nov 2024 06:29:59 GMT
Server: Apache
Content-Length: 196
Connection: close
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL was not found on this server.</p>
</body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T06:29:59.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "62962daa1b19bbcc2db10b7bfd531ea6",
         "bodymmh3" : -780928015,
         "headermd5" : "76cdaa6fe148c67dca211f49fad8f9c5",
         "headermmh3" : -551242557,
         "title" : "404 Not Found"
      },
      "length" : 360
   },
   "asn" : "AS34984",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Istanbul",
   "country" : "TR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 404 Not Found\r\nDate: Thu, 07 Nov 2024 06:29:59 GMT\r\nServer: Apache\r\nContent-Length: 196\r\nConnection: close\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n<!DOCTYPE HTML PUBLIC \"-//IETF//DTD HTML 2.0//EN\">\n<html><head>\n<title>404 Not Found</title>\n</head><body>\n<h1>Not Found</h1>\n<p>The requested URL was not found on this server.</p>\n</body></html>\n",
   "datamd5" : "d3c05ced6a988d101069084bf16bdb8a",
   "datammh3" : 843908962,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "superonline.net",
      "synology.me"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "c2b616feaf34d95a546880852f199c7e",
      "sha1" : "cdd3eb5f0dd1649e249b84013e8f0d30c3ec3305",
      "sha256" : "ccfa4686ab5a5a51469fc92f774386ad074b08a8f4edebf8038f2b3f042043ed"
   },
   "geolocus" : {
      "asn" : "AS34984",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "TR",
      "countryname" : "Turkey",
      "domain" : [
         "superonline.net",
         "turkcell.com.tr"
      ],
      "isineu" : "false",
      "latitude" : "38.963745",
      "location" : "38.963745,35.243322",
      "longitude" : "35.243322",
      "netname" : "ALFA-Net",
      "organization" : "Tellcom Main Network Statement",
      "subnet" : "195.214.128.0/20"
   },
   "host" : [
      "host-195-214-133-176",
      "ibrahim"
   ],
   "hostname" : [
      "host-195-214-133-176.reverse.superonline.net",
      "ibrahim.synology.me"
   ],
   "ip" : "195.214.133.176",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "R10",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "41.0300",
   "location" : "41.0300,28.9601",
   "longitude" : "28.9601",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Superonline Iletisim Hizmetleri A.S.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 33034,
   "product" : "HTTP Server",
   "productvendor" : "Apache",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "Not Found",
   "reverse" : [
      "host-195-214-133-176.reverse.superonline.net"
   ],
   "seen_date" : "2024-11-07",
   "serial" : "04:20:c8:d0:be:c2:96:d7:33:ee:e6:d1:ff:d9:0a:39:35:c5",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 404,
   "subdomains" : [
      "ibrahim.synology.me",
      "reverse.superonline.net"
   ],
   "subject" : {
      "altname" : [
         "*.ibrahim.synology.me",
         "ibrahim.synology.me"
      ],
      "commonname" : "ibrahim.synology.me"
   },
   "subnet" : "195.214.128.0/20",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "me",
      "net"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2024-12-24T15:52:25Z",
      "notbefore" : "2024-09-25T15:52:26Z"
   },
   "version" : "v3",
   "wildcard" : "true"
}

IP
34.168.155.185

Network
34.168.0.0/13

Domain(s)
bnntest.com googleusercontent.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

https://34.168.155.185:33034/ 404

Reverse DNS
185.155.168.34.bc.googleusercontent.com

ASN
AS396982

Organization
GOOGLE-CLOUD-PLATFORM

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
syed-at-test1 Banyan Private Root CA

Issuer Organization
syed-at-test1

Subject Organization
BanyanOps

Subject Common Name
shield-CN

Subject Alt Name
BanyanService shield-CN gke-usw1-at01.infra.bnntest.com

SHA256 Fingerprint
6602bf0e84a8c0077b86cb5245162f3eeacd61ebce0459ef811d2344e125889a

Validity Not Before
2024-11-04T19:48:00Z

Validity Not After
2025-11-04T19:48:00Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
83d07b842b1ed2327b161b1279847633

HTTP Header MD5
f7430cdb1622717dcc6c0bf53b71e7b3

HTTP Body MD5
595e88012a6521aae3e12cbebe76eb9e

HTTP/1.1 404 Not Found
Content-Type: text/plain; charset=utf-8
X-Content-Type-Options: nosniff
Date: Thu, 07 Nov 2024 05:25:06 GMT
Content-Length: 19
Connection: close

404 page not found

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:25:06.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "595e88012a6521aae3e12cbebe76eb9e",
         "bodymmh3" : -138391155,
         "headermd5" : "f7430cdb1622717dcc6c0bf53b71e7b3",
         "headermmh3" : 1676912488
      },
      "length" : 195
   },
   "asn" : "AS396982",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "The Dalles",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 404 Not Found\r\nContent-Type: text/plain; charset=utf-8\r\nX-Content-Type-Options: nosniff\r\nDate: Thu, 07 Nov 2024 05:25:06 GMT\r\nContent-Length: 19\r\nConnection: close\r\n\r\n404 page not found\n",
   "datamd5" : "83d07b842b1ed2327b161b1279847633",
   "datammh3" : 1090285471,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "bnntest.com",
      "googleusercontent.com"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "3f60a6f467795df42a812e621b18d89f",
      "sha1" : "fc4392133ca0ac81000f35dceb25573296abce5c",
      "sha256" : "6602bf0e84a8c0077b86cb5245162f3eeacd61ebce0459ef811d2344e125889a"
   },
   "geolocus" : {
      "asn" : "AS396982",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "google.com",
         "googleusercontent.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "GOOGL-2",
      "organization" : "Google LLC",
      "subnet" : "34.168.0.0/14"
   },
   "host" : [
      185,
      "gke-usw1-at01"
   ],
   "hostname" : [
      "185.155.168.34.bc.googleusercontent.com",
      "gke-usw1-at01.infra.bnntest.com"
   ],
   "ip" : "34.168.155.185",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "syed-at-test1 Banyan Private Root CA",
      "organization" : "syed-at-test1",
      "organizationalunit" : "Certificate Authority"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "45.6056",
   "location" : "45.6056,-121.1807",
   "longitude" : "-121.1807",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "GOOGLE-CLOUD-PLATFORM",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 33034,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "id-ecPublicKey",
      "length" : 256
   },
   "reason" : "Not Found",
   "reverse" : [
      "185.155.168.34.bc.googleusercontent.com"
   ],
   "seen_date" : "2024-11-07",
   "serial" : "7d:e0:60:d0:97:0e:ae:5a:ff:18:b4:12:9d:f1:d8:39:11:b5:bd:08",
   "signature" : {
      "algorithm" : "sha512WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 404,
   "subdomains" : [
      "155.168.34.bc.googleusercontent.com",
      "168.34.bc.googleusercontent.com",
      "34.bc.googleusercontent.com",
      "bc.googleusercontent.com",
      "infra.bnntest.com"
   ],
   "subject" : {
      "altname" : [
         "BanyanService",
         "shield-CN",
         "gke-usw1-at01.infra.bnntest.com"
      ],
      "city" : "San Francisco",
      "commonname" : "shield-CN",
      "country" : "US",
      "organization" : "BanyanOps",
      "organizationalunit" : "Security"
   },
   "subnet" : "34.168.0.0/13",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2025-11-04T19:48:00Z",
      "notbefore" : "2024-11-04T19:48:00Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
72.52.87.169

Alternative IP(s)
15.197.148.33 3.33.130.190

Network
72.52.86.0/23

Domain(s)
carva.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

https://72.52.87.169:33034/ 404

ASN
AS6939

Organization
HURRICANE

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
carva.com

Issuer Organization
Carva Inc.

Subject Organization
Carva Inc.

Subject Common Name
carva.com

SHA256 Fingerprint
0d3295897fcd354e633189bdba5f02fecb679d4bcef29338d75af3a918650acb

Validity Not Before
2024-11-06T23:40:10Z

Validity Not After
2024-12-06T23:40:10Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
c4965f0089c796d972f950feb474c497

HTTP Header MD5
4aae8d9f5419dc3d630595d46fda89a0

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

HTTP/1.1 404 Not Found
Content Length: 0

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:06:18.000Z",
   "alternativeip" : [
      "15.197.148.33",
      "3.33.130.190"
   ],
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1,
         "headermd5" : "4aae8d9f5419dc3d630595d46fda89a0",
         "headermmh3" : -147424911
      },
      "length" : 45
   },
   "asn" : "AS6939",
   "city" : "Fremont",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 404 Not Found\r\nContent Length: 0\r\n\r\n",
   "datamd5" : "c4965f0089c796d972f950feb474c497",
   "datammh3" : -935872506,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "carva.com"
   ],
   "fingerprint" : {
      "md5" : "c07e1f4e1ff4f2489f169383035c0536",
      "sha1" : "621d95be1ba60266ac512a9cc6b4b5624d1e92e6",
      "sha256" : "0d3295897fcd354e633189bdba5f02fecb679d4bcef29338d75af3a918650acb"
   },
   "geolocus" : {
      "asn" : "AS6939",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "he.net"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "HURRICANE-8",
      "organization" : "Hurricane Electric LLC",
      "subnet" : "72.52.86.0/23"
   },
   "hostname" : [
      "carva.com"
   ],
   "ip" : "72.52.87.169",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Odenville",
      "commonname" : "carva.com",
      "country" : "US",
      "organization" : "Carva Inc."
   },
   "latitude" : "37.5625",
   "location" : "37.5625,-122.0004",
   "longitude" : "-122.0004",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "HURRICANE",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 33034,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "Not Found",
   "seen_date" : "2024-11-07",
   "serial" : "7c:39:b9:74:9f:a9:0c:37:a1:46:cf:d4:3b:90:8a:23:53:31:58:7f",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 404,
   "subject" : {
      "city" : "Odenville",
      "commonname" : "carva.com",
      "country" : "US",
      "organization" : "Carva Inc."
   },
   "subnet" : "72.52.86.0/23",
   "tld" : [
      "com"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2024-12-06T23:40:10Z",
      "notbefore" : "2024-11-06T23:40:10Z"
   },
   "version" : "v1",
   "wildcard" : "false"
}

IP
65.49.2.17

Alternative IP(s)
15.197.148.33 3.33.130.190

Network
65.49.0.0/22

Domain(s)
carva.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

https://65.49.2.17:33034/ 404

ASN
AS6939

Organization
HURRICANE

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
carva.com

Issuer Organization
Carva Inc.

Subject Organization
Carva Inc.

Subject Common Name
carva.com

SHA256 Fingerprint
0d3295897fcd354e633189bdba5f02fecb679d4bcef29338d75af3a918650acb

Validity Not Before
2024-11-06T23:40:10Z

Validity Not After
2024-12-06T23:40:10Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
c4965f0089c796d972f950feb474c497

HTTP Header MD5
4aae8d9f5419dc3d630595d46fda89a0

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

HTTP/1.1 404 Not Found
Content Length: 0

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T04:57:33.000Z",
   "alternativeip" : [
      "15.197.148.33",
      "3.33.130.190"
   ],
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1,
         "headermd5" : "4aae8d9f5419dc3d630595d46fda89a0",
         "headermmh3" : -147424911
      },
      "length" : 45
   },
   "asn" : "AS6939",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 404 Not Found\r\nContent Length: 0\r\n\r\n",
   "datamd5" : "c4965f0089c796d972f950feb474c497",
   "datammh3" : -935872506,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "carva.com"
   ],
   "fingerprint" : {
      "md5" : "c07e1f4e1ff4f2489f169383035c0536",
      "sha1" : "621d95be1ba60266ac512a9cc6b4b5624d1e92e6",
      "sha256" : "0d3295897fcd354e633189bdba5f02fecb679d4bcef29338d75af3a918650acb"
   },
   "geolocus" : {
      "asn" : "AS6939",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "he.net"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "HURRICANE-9",
      "organization" : "Hurricane Electric LLC",
      "subnet" : "65.49.0.0/22"
   },
   "hostname" : [
      "carva.com"
   ],
   "ip" : "65.49.2.17",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Odenville",
      "commonname" : "carva.com",
      "country" : "US",
      "organization" : "Carva Inc."
   },
   "latitude" : "37.7510",
   "location" : "37.7510,-97.8220",
   "longitude" : "-97.8220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "HURRICANE",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 33034,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "Not Found",
   "seen_date" : "2024-11-07",
   "serial" : "7c:39:b9:74:9f:a9:0c:37:a1:46:cf:d4:3b:90:8a:23:53:31:58:7f",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 404,
   "subject" : {
      "city" : "Odenville",
      "commonname" : "carva.com",
      "country" : "US",
      "organization" : "Carva Inc."
   },
   "subnet" : "65.49.0.0/22",
   "tld" : [
      "com"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2024-12-06T23:40:10Z",
      "notbefore" : "2024-11-06T23:40:10Z"
   },
   "version" : "v1",
   "wildcard" : "false"
}

IP
35.227.136.249

Network
35.224.0.0/14

Domain(s)
banyanops.com googleusercontent.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

https://35.227.136.249:33034/ 404

Reverse DNS
249.136.227.35.bc.googleusercontent.com

ASN
AS396982

Organization
GOOGLE-CLOUD-PLATFORM

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
iselab Banyan Private Root CA

Issuer Organization
iselab

Subject Organization
BanyanOps

Subject Common Name
shield-CN

Subject Alt Name
BanyanService shield-CN gkp-usw1-at01.infra.banyanops.com

SHA256 Fingerprint
eca1a144f53f229cd9b609ebfc830e67e8de6b826dc87a0b995107de692cdc04

Validity Not Before
2024-10-26T10:18:00Z

Validity Not After
2025-10-26T10:18:00Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
83d07b842b1ed2327b161b1279847633

HTTP Header MD5
f7430cdb1622717dcc6c0bf53b71e7b3

HTTP Body MD5
595e88012a6521aae3e12cbebe76eb9e

HTTP/1.1 404 Not Found
Content-Type: text/plain; charset=utf-8
X-Content-Type-Options: nosniff
Date: Thu, 07 Nov 2024 04:14:31 GMT
Content-Length: 19
Connection: close

404 page not found

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T04:14:31.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "595e88012a6521aae3e12cbebe76eb9e",
         "bodymmh3" : -138391155,
         "headermd5" : "f7430cdb1622717dcc6c0bf53b71e7b3",
         "headermmh3" : -282791113
      },
      "length" : 195
   },
   "asn" : "AS396982",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "The Dalles",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 404 Not Found\r\nContent-Type: text/plain; charset=utf-8\r\nX-Content-Type-Options: nosniff\r\nDate: Thu, 07 Nov 2024 04:14:31 GMT\r\nContent-Length: 19\r\nConnection: close\r\n\r\n404 page not found\n",
   "datamd5" : "83d07b842b1ed2327b161b1279847633",
   "datammh3" : 1090285471,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "banyanops.com",
      "googleusercontent.com"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "c3fdc3459c2dbd3ca42d929b2698540c",
      "sha1" : "282b9feb324fc6406a5f2b2f9dd6167eadc7276a",
      "sha256" : "eca1a144f53f229cd9b609ebfc830e67e8de6b826dc87a0b995107de692cdc04"
   },
   "geolocus" : {
      "asn" : "AS396982",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "google.com",
         "googleusercontent.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "GOOGLE-CLOUD",
      "organization" : "Google LLC",
      "subnet" : "35.224.0.0/14"
   },
   "host" : [
      249,
      "gkp-usw1-at01"
   ],
   "hostname" : [
      "249.136.227.35.bc.googleusercontent.com",
      "gkp-usw1-at01.infra.banyanops.com"
   ],
   "ip" : "35.227.136.249",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "iselab Banyan Private Root CA",
      "organization" : "iselab",
      "organizationalunit" : "Certificate Authority"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "45.6056",
   "location" : "45.6056,-121.1807",
   "longitude" : "-121.1807",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "GOOGLE-CLOUD-PLATFORM",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 33034,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "id-ecPublicKey",
      "length" : 256
   },
   "reason" : "Not Found",
   "reverse" : [
      "249.136.227.35.bc.googleusercontent.com"
   ],
   "seen_date" : "2024-11-07",
   "serial" : "19:db:67:ae:2f:ea:7e:ca:ad:06:90:00:e0:9d:97:0f:5a:4f:ee:ca",
   "signature" : {
      "algorithm" : "sha512WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 404,
   "subdomains" : [
      "136.227.35.bc.googleusercontent.com",
      "227.35.bc.googleusercontent.com",
      "35.bc.googleusercontent.com",
      "bc.googleusercontent.com",
      "infra.banyanops.com"
   ],
   "subject" : {
      "altname" : [
         "BanyanService",
         "shield-CN",
         "gkp-usw1-at01.infra.banyanops.com"
      ],
      "city" : "San Francisco",
      "commonname" : "shield-CN",
      "country" : "US",
      "organization" : "BanyanOps",
      "organizationalunit" : "Security"
   },
   "subnet" : "35.224.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2025-10-26T10:18:00Z",
      "notbefore" : "2024-10-26T10:18:00Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
220.85.177.216

Network
220.85.128.0/18

Domain(s)
synology.me

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

https://220.85.177.216:33034/ 404

HTTP Title
404 Not Found

ASN
AS4766

Organization
Korea Telecom

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

Product
Apache HTTP Server

CPE(s)

<enterprise field>: cpe
Issuer Common Name
R10

Issuer Organization
Let's Encrypt

Subject Common Name
adamcho.synology.me

Subject Alt Name
*.adamcho.synology.me adamcho.synology.me

SHA256 Fingerprint
88a3bf47378e104a9c7fcabb252af5bc7d26d03e3a0c9f3688c1d901caae8b9f

Validity Not Before
2024-10-17T12:51:40Z

Validity Not After
2025-01-15T12:51:39Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
d3c05ced6a988d101069084bf16bdb8a

HTTP Header MD5
76cdaa6fe148c67dca211f49fad8f9c5

HTTP Body MD5
62962daa1b19bbcc2db10b7bfd531ea6

HTTP/1.1 404 Not Found
Date: Thu, 07 Nov 2024 03:00:30 GMT
Server: Apache
Content-Length: 196
Connection: close
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL was not found on this server.</p>
</body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:00:30.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "62962daa1b19bbcc2db10b7bfd531ea6",
         "bodymmh3" : -780928015,
         "headermd5" : "76cdaa6fe148c67dca211f49fad8f9c5",
         "headermmh3" : -1360315003,
         "title" : "404 Not Found"
      },
      "length" : 360
   },
   "asn" : "AS4766",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Songpa-gu",
   "country" : "KR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 404 Not Found\r\nDate: Thu, 07 Nov 2024 03:00:30 GMT\r\nServer: Apache\r\nContent-Length: 196\r\nConnection: close\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n<!DOCTYPE HTML PUBLIC \"-//IETF//DTD HTML 2.0//EN\">\n<html><head>\n<title>404 Not Found</title>\n</head><body>\n<h1>Not Found</h1>\n<p>The requested URL was not found on this server.</p>\n</body></html>\n",
   "datamd5" : "d3c05ced6a988d101069084bf16bdb8a",
   "datammh3" : 843908962,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "synology.me"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "3d22cabdbb94e125941a68319880e4a9",
      "sha1" : "07e12d0e67951b0397c4e5d3e68ab7375d0ca8b2",
      "sha256" : "88a3bf47378e104a9c7fcabb252af5bc7d26d03e3a0c9f3688c1d901caae8b9f"
   },
   "geolocus" : {
      "asn" : "AS4766",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "KR",
      "countryname" : "South Korea",
      "domain" : [
         "kt.com",
         "nic.or.kr"
      ],
      "isineu" : "false",
      "latitude" : "35.907757",
      "location" : "35.907757,127.766922",
      "longitude" : "127.766922",
      "netname" : "KORNET",
      "organization" : "Korea Telecom",
      "subnet" : "220.85.128.0/18"
   },
   "host" : [
      "adamcho"
   ],
   "hostname" : [
      "adamcho.synology.me"
   ],
   "ip" : "220.85.177.216",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "R10",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "37.5014",
   "location" : "37.5014,127.0789",
   "longitude" : "127.0789",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Korea Telecom",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 33034,
   "product" : "HTTP Server",
   "productvendor" : "Apache",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "Not Found",
   "seen_date" : "2024-11-07",
   "serial" : "03:b2:11:b3:c6:48:1b:48:7e:f9:7b:de:b0:f7:11:ca:49:6c",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 404,
   "subdomains" : [
      "adamcho.synology.me"
   ],
   "subject" : {
      "altname" : [
         "*.adamcho.synology.me",
         "adamcho.synology.me"
      ],
      "commonname" : "adamcho.synology.me"
   },
   "subnet" : "220.85.128.0/18",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "me"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2025-01-15T12:51:39Z",
      "notbefore" : "2024-10-17T12:51:40Z"
   },
   "version" : "v3",
   "wildcard" : "true"
}

IP
13.40.76.11

Network
13.40.0.0/14

Domain(s)
admin-brightenergy.com amazonaws.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

https://13.40.76.11:33034/ 404

HTTP Title
Error 404--Not Found

Reverse DNS
ec2-13-40-76-11.eu-west-2.compute.amazonaws.com

ASN
AS16509

Organization
AMAZON-02

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

Product
Oracle Weblogic Server 10.3.6.0.0

HTTP Component(s)
Oracle Weblogic Server

CPE(s)

<enterprise field>: cpe
Issuer Common Name
hydro.admin-brightenergy.com

Subject Common Name
hydro.admin-brightenergy.com

SHA256 Fingerprint
1a62c116c073f047978c7100d81f4cd73e85bc706960d54f29dbd339f7c0316b

Validity Not Before
2024-11-07T02:44:47Z

Validity Not After
2026-11-07T02:44:47Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
e26e7874bcd5613de7a73a09bb31100c

HTTP Header MD5
522c4e821ae16fa1f93f1ac71c0e412a

HTTP Body MD5
693ba5c2587c2994de7843b9c3c9e384

HTTP/1.1 404 Not Found
Connection: close
Date: Thu, 07 Nov 2024 02:45:18 GMT
Server: WebLogic Server 10.3.6.0.0
Content-Type: text/html
Content-Length: 1766

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Draft//EN">
<HTML>
    <HEAD>
        <TITLE>Error 404--Not Found</TITLE>
    </HEAD>
    <BODY bgcolor="white">
        <FONT FACE=Helvetica><BR CLEAR=all>
        <TABLE border=0 cellspacing=5>
            <TR>
                <TD>
                    <BR CLEAR=all>
                    <FONT FACE="Helvetica" COLOR="black" SIZE="3">
                        <H2>Error 404--Not Found</H2>
                    </FONT>
                </TD>
            </TR>
        </TABLE>
        <TABLE border=0 width=100% cellpadding=10>
            <TR>
                <TD VALIGN=top WIDTH=100% BGCOLOR=white>
                    <FONT FACE="Courier New">
                        <FONT FACE="Helvetica" SIZE="3">
                            <H3>From RFC 2068 <i>Hypertext Transfer Protocol -- HTTP/1.1</i>:</H3>
                        </FONT>
                        <FONT FACE="Helvetica" SIZE="3">
                            <H4>10.4.5 404 Not Found</H4>
                        </FONT>
                        <P>
                            <FONT FACE="Courier New">
                                The server has not found anything matching the Request-URI. No indication is given of whether the condition is temporary or permanent.
                        </p>
                        <p>If the server does not wish to make this information available to the client, the status code 403 (Forbidden) can be used instead. The 410 (Gone) status code SHOULD be used if the server knows, through some internally configurable mechanism, that an old resource is permanently unavailable and has no forwarding address.</FONT></P>
                    </FONT>
                </TD>
            </TR>
        </TABLE>
    </BODY>
</HTML>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T02:45:18.000Z",
   "app" : {
      "extract" : {
         "ip" : [
            "10.3.6.0"
         ]
      },
      "http" : {
         "bodymd5" : "693ba5c2587c2994de7843b9c3c9e384",
         "bodymmh3" : -369160404,
         "component" : [
            {
               "product" : "Weblogic Server",
               "productvendor" : "Oracle"
            }
         ],
         "headermd5" : "522c4e821ae16fa1f93f1ac71c0e412a",
         "headermmh3" : -1539774876,
         "title" : "Error 404--Not Found"
      },
      "length" : 1931
   },
   "asn" : "AS16509",
   "city" : "London",
   "country" : "GB",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 404 Not Found\r\nConnection: close\r\nDate: Thu, 07 Nov 2024 02:45:18 GMT\r\nServer: WebLogic Server 10.3.6.0.0\r\nContent-Type: text/html\r\nContent-Length: 1766\r\n\r\n<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.0 Draft//EN\">\n<HTML>\n    <HEAD>\n        <TITLE>Error 404--Not Found</TITLE>\n    </HEAD>\n    <BODY bgcolor=\"white\">\n        <FONT FACE=Helvetica><BR CLEAR=all>\n        <TABLE border=0 cellspacing=5>\n            <TR>\n                <TD>\n                    <BR CLEAR=all>\n                    <FONT FACE=\"Helvetica\" COLOR=\"black\" SIZE=\"3\">\n                        <H2>Error 404--Not Found</H2>\n                    </FONT>\n                </TD>\n            </TR>\n        </TABLE>\n        <TABLE border=0 width=100% cellpadding=10>\n            <TR>\n                <TD VALIGN=top WIDTH=100% BGCOLOR=white>\n                    <FONT FACE=\"Courier New\">\n                        <FONT FACE=\"Helvetica\" SIZE=\"3\">\n                            <H3>From RFC 2068 <i>Hypertext Transfer Protocol -- HTTP/1.1</i>:</H3>\n                        </FONT>\n                        <FONT FACE=\"Helvetica\" SIZE=\"3\">\n                            <H4>10.4.5 404 Not Found</H4>\n                        </FONT>\n                        <P>\n                            <FONT FACE=\"Courier New\">\n                                The server has not found anything matching the Request-URI. No indication is given of whether the condition is temporary or permanent.\n                        </p>\n                        <p>If the server does not wish to make this information available to the client, the status code 403 (Forbidden) can be used instead. The 410 (Gone) status code SHOULD be used if the server knows, through some internally configurable mechanism, that an old resource is permanently unavailable and has no forwarding address.</FONT></P>\n                    </FONT>\n                </TD>\n            </TR>\n        </TABLE>\n    </BODY>\n</HTML>",
   "datamd5" : "e26e7874bcd5613de7a73a09bb31100c",
   "datammh3" : 1679174131,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "admin-brightenergy.com",
      "amazonaws.com"
   ],
   "fingerprint" : {
      "md5" : "d0e36aeda4257d360f448b56e50904de",
      "sha1" : "13c0ea1ed57795a7649ccd80ce7a166a941ad09e",
      "sha256" : "1a62c116c073f047978c7100d81f4cd73e85bc706960d54f29dbd339f7c0316b"
   },
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "GB",
      "countryname" : "United Kingdom",
      "domain" : [
         "amazon.com",
         "amazonaws.com",
         "aws.com"
      ],
      "isineu" : "false",
      "latitude" : "55.378051",
      "location" : "55.378051,-3.435973",
      "longitude" : "-3.435973",
      "netname" : "AMAZON-LHR",
      "organization" : "Amazon Data Services UK",
      "subnet" : "13.40.0.0/14"
   },
   "host" : [
      "ec2-13-40-76-11",
      "hydro"
   ],
   "hostname" : [
      "ec2-13-40-76-11.eu-west-2.compute.amazonaws.com",
      "hydro.admin-brightenergy.com"
   ],
   "ip" : "13.40.76.11",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "hydro.admin-brightenergy.com"
   },
   "latitude" : "51.5088",
   "location" : "51.5088,-0.0930",
   "longitude" : "-0.0930",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 33034,
   "product" : "Weblogic Server",
   "productvendor" : "Oracle",
   "productversion" : "10.3.6.0.0",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "Not Found",
   "reverse" : [
      "ec2-13-40-76-11.eu-west-2.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-07",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 404,
   "subdomains" : [
      "compute.amazonaws.com",
      "eu-west-2.compute.amazonaws.com"
   ],
   "subject" : {
      "commonname" : "hydro.admin-brightenergy.com"
   },
   "subnet" : "13.40.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2026-11-07T02:44:47Z",
      "notbefore" : "2024-11-07T02:44:47Z"
   },
   "version" : "v1",
   "wildcard" : "false"
}

IP
15.168.14.91

Network
15.168.0.0/16

Domain(s)
amazonaws.com city-oil.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

https://15.168.14.91:33034/ 404

HTTP Title
Error 404--Not Found

Reverse DNS
ec2-15-168-14-91.ap-northeast-3.compute.amazonaws.com

ASN
AS16509

Organization
AMAZON-02

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

Product
Oracle Weblogic Server 10.3.6.0.0

HTTP Component(s)
Oracle Weblogic Server

CPE(s)

<enterprise field>: cpe
Issuer Common Name
kace.city-oil.com

Subject Common Name
kace.city-oil.com

SHA256 Fingerprint
f38b11a9670b7cbc3a8403efde35782ba89ad26fc712ce23397d3200115fb778

Validity Not Before
2024-11-07T02:35:44Z

Validity Not After
2026-11-07T02:35:44Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
e26e7874bcd5613de7a73a09bb31100c

HTTP Header MD5
522c4e821ae16fa1f93f1ac71c0e412a

HTTP Body MD5
693ba5c2587c2994de7843b9c3c9e384

HTTP/1.1 404 Not Found
Connection: close
Date: Thu, 07 Nov 2024 02:44:32 GMT
Server: WebLogic Server 10.3.6.0.0
Content-Type: text/html
Content-Length: 1766

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Draft//EN">
<HTML>
    <HEAD>
        <TITLE>Error 404--Not Found</TITLE>
    </HEAD>
    <BODY bgcolor="white">
        <FONT FACE=Helvetica><BR CLEAR=all>
        <TABLE border=0 cellspacing=5>
            <TR>
                <TD>
                    <BR CLEAR=all>
                    <FONT FACE="Helvetica" COLOR="black" SIZE="3">
                        <H2>Error 404--Not Found</H2>
                    </FONT>
                </TD>
            </TR>
        </TABLE>
        <TABLE border=0 width=100% cellpadding=10>
            <TR>
                <TD VALIGN=top WIDTH=100% BGCOLOR=white>
                    <FONT FACE="Courier New">
                        <FONT FACE="Helvetica" SIZE="3">
                            <H3>From RFC 2068 <i>Hypertext Transfer Protocol -- HTTP/1.1</i>:</H3>
                        </FONT>
                        <FONT FACE="Helvetica" SIZE="3">
                            <H4>10.4.5 404 Not Found</H4>
                        </FONT>
                        <P>
                            <FONT FACE="Courier New">
                                The server has not found anything matching the Request-URI. No indication is given of whether the condition is temporary or permanent.
                        </p>
                        <p>If the server does not wish to make this information available to the client, the status code 403 (Forbidden) can be used instead. The 410 (Gone) status code SHOULD be used if the server knows, through some internally configurable mechanism, that an old resource is permanently unavailable and has no forwarding address.</FONT></P>
                    </FONT>
                </TD>
            </TR>
        </TABLE>
    </BODY>
</HTML>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T02:44:32.000Z",
   "app" : {
      "extract" : {
         "ip" : [
            "10.3.6.0"
         ]
      },
      "http" : {
         "bodymd5" : "693ba5c2587c2994de7843b9c3c9e384",
         "bodymmh3" : -369160404,
         "component" : [
            {
               "productvendor" : "Oracle",
               "product" : "Weblogic Server"
            }
         ],
         "headermd5" : "522c4e821ae16fa1f93f1ac71c0e412a",
         "headermmh3" : 2107510303,
         "title" : "Error 404--Not Found"
      },
      "length" : 1931
   },
   "asn" : "AS16509",
   "city" : "Osaka",
   "country" : "JP",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 404 Not Found\r\nConnection: close\r\nDate: Thu, 07 Nov 2024 02:44:32 GMT\r\nServer: WebLogic Server 10.3.6.0.0\r\nContent-Type: text/html\r\nContent-Length: 1766\r\n\r\n<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.0 Draft//EN\">\n<HTML>\n    <HEAD>\n        <TITLE>Error 404--Not Found</TITLE>\n    </HEAD>\n    <BODY bgcolor=\"white\">\n        <FONT FACE=Helvetica><BR CLEAR=all>\n        <TABLE border=0 cellspacing=5>\n            <TR>\n                <TD>\n                    <BR CLEAR=all>\n                    <FONT FACE=\"Helvetica\" COLOR=\"black\" SIZE=\"3\">\n                        <H2>Error 404--Not Found</H2>\n                    </FONT>\n                </TD>\n            </TR>\n        </TABLE>\n        <TABLE border=0 width=100% cellpadding=10>\n            <TR>\n                <TD VALIGN=top WIDTH=100% BGCOLOR=white>\n                    <FONT FACE=\"Courier New\">\n                        <FONT FACE=\"Helvetica\" SIZE=\"3\">\n                            <H3>From RFC 2068 <i>Hypertext Transfer Protocol -- HTTP/1.1</i>:</H3>\n                        </FONT>\n                        <FONT FACE=\"Helvetica\" SIZE=\"3\">\n                            <H4>10.4.5 404 Not Found</H4>\n                        </FONT>\n                        <P>\n                            <FONT FACE=\"Courier New\">\n                                The server has not found anything matching the Request-URI. No indication is given of whether the condition is temporary or permanent.\n                        </p>\n                        <p>If the server does not wish to make this information available to the client, the status code 403 (Forbidden) can be used instead. The 410 (Gone) status code SHOULD be used if the server knows, through some internally configurable mechanism, that an old resource is permanently unavailable and has no forwarding address.</FONT></P>\n                    </FONT>\n                </TD>\n            </TR>\n        </TABLE>\n    </BODY>\n</HTML>",
   "datamd5" : "e26e7874bcd5613de7a73a09bb31100c",
   "datammh3" : 1679174131,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amazonaws.com",
      "city-oil.com"
   ],
   "fingerprint" : {
      "md5" : "1a86165ffa21741b40ae152fd7b7ceda",
      "sha1" : "48cdb2f9b986d11ba7bd79550385a160bf7437f6",
      "sha256" : "f38b11a9670b7cbc3a8403efde35782ba89ad26fc712ce23397d3200115fb778"
   },
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "JP",
      "countryname" : "Japan",
      "domain" : [
         "amazon.com",
         "amazonaws.com"
      ],
      "isineu" : "false",
      "latitude" : "36.204824",
      "location" : "36.204824,138.252924",
      "longitude" : "138.252924",
      "netname" : "AMAZON-KIX",
      "organization" : "Amazon Data Services Osaka",
      "subnet" : "15.168.0.0/16"
   },
   "host" : [
      "ec2-15-168-14-91",
      "kace"
   ],
   "hostname" : [
      "ec2-15-168-14-91.ap-northeast-3.compute.amazonaws.com",
      "kace.city-oil.com"
   ],
   "ip" : "15.168.14.91",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "kace.city-oil.com"
   },
   "latitude" : "34.6946",
   "location" : "34.6946,135.5021",
   "longitude" : "135.5021",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 33034,
   "product" : "Weblogic Server",
   "productvendor" : "Oracle",
   "productversion" : "10.3.6.0.0",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "Not Found",
   "reverse" : [
      "ec2-15-168-14-91.ap-northeast-3.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-07",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 404,
   "subdomains" : [
      "ap-northeast-3.compute.amazonaws.com",
      "compute.amazonaws.com"
   ],
   "subject" : {
      "commonname" : "kace.city-oil.com"
   },
   "subnet" : "15.168.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2026-11-07T02:35:44Z",
      "notbefore" : "2024-11-07T02:35:44Z"
   },
   "version" : "v1",
   "wildcard" : "false"
}

IP
207.148.5.119

Network
207.148.0.0/19

Domain(s)
vultrusercontent.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

https://207.148.5.119:33034/ 404

Reverse DNS
207.148.5.119.vultrusercontent.com

ASN
AS20473

Organization
AS-VULTR

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
usg60_4CB6488CB493

Subject Common Name
usg60_4CB6488CB493

Subject Alt Name
usg60_4CB6488CB493 usg60_4CB6488CB493

SHA256 Fingerprint
89f56ccf37fed8565ec2eb20299f98b1a4dbc465f3b173eab5c23c8d12ddb864

Validity Not Before
2024-04-23T20:45:26Z

Validity Not After
2034-04-21T20:45:26Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
76518d912cff076292b208597042a7fe

HTTP Header MD5
e69912c1df46c4a7b79604af7810a873

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

HTTP/1.1 404 Not Found
Content-Length: 0
Connection: close

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T02:17:52.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1,
         "headermd5" : "e69912c1df46c4a7b79604af7810a873",
         "headermmh3" : -1341215179
      },
      "length" : 64
   },
   "asn" : "AS20473",
   "basicconstraints" : "critical",
   "ca" : "true",
   "city" : "Dallas",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 404 Not Found\r\nContent-Length: 0\r\nConnection: close\r\n\r\n",
   "datamd5" : "76518d912cff076292b208597042a7fe",
   "datammh3" : -1603471701,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "vultrusercontent.com"
   ],
   "fingerprint" : {
      "md5" : "1db38efa9ae82037a861c2138297afca",
      "sha1" : "3d106a3c1211044073fc5ea1082ede8373693f1e",
      "sha256" : "89f56ccf37fed8565ec2eb20299f98b1a4dbc465f3b173eab5c23c8d12ddb864"
   },
   "geolocus" : {
      "asn" : "AS20473",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "constant.com",
         "vultr.com",
         "yogidreamer.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "NET-207-148-0-0-23",
      "organization" : "Vultr Holdings, LLC",
      "subnet" : "207.148.0.0/19"
   },
   "host" : [
      207
   ],
   "hostname" : [
      "207.148.5.119.vultrusercontent.com"
   ],
   "ip" : "207.148.5.119",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "usg60_4CB6488CB493"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment",
      "dataEncipherment",
      "keyCertSign"
   ],
   "latitude" : "32.7889",
   "location" : "32.7889,-96.8021",
   "longitude" : "-96.8021",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AS-VULTR",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 33034,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "Not Found",
   "reverse" : [
      "207.148.5.119.vultrusercontent.com"
   ],
   "seen_date" : "2024-11-07",
   "serial" : "28:94:b9:77:8a:dd:1c:69:ef:74:fc:c2:f0:db:e2:b9:bd:f9:6d:4d",
   "signature" : {
      "algorithm" : "sha1WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 404,
   "subdomains" : [
      "119.vultrusercontent.com",
      "148.5.119.vultrusercontent.com",
      "5.119.vultrusercontent.com"
   ],
   "subject" : {
      "altname" : [
         "usg60_4CB6488CB493",
         "usg60_4CB6488CB493"
      ],
      "commonname" : "usg60_4CB6488CB493"
   },
   "subnet" : "207.148.0.0/19",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2034-04-21T20:45:26Z",
      "notbefore" : "2024-04-23T20:45:26Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

Returning 10 result(s) out of 974 in 0.241 second(s)

15.152.37.134:33034 (tcp/http/tls) - last seen on 2024-11-07 at 07:13:17 UTC

195.214.133.176:33034 (tcp/http/tls) - last seen on 2024-11-07 at 06:29:59 UTC

34.168.155.185:33034 (tcp/http/tls) - last seen on 2024-11-07 at 05:25:06 UTC

72.52.87.169:33034 (tcp/http/tls) - last seen on 2024-11-07 at 05:06:18 UTC

65.49.2.17:33034 (tcp/http/tls) - last seen on 2024-11-07 at 04:57:33 UTC

35.227.136.249:33034 (tcp/http/tls) - last seen on 2024-11-07 at 04:14:31 UTC

220.85.177.216:33034 (tcp/http/tls) - last seen on 2024-11-07 at 03:00:30 UTC

13.40.76.11:33034 (tcp/http/tls) - last seen on 2024-11-07 at 02:45:18 UTC

15.168.14.91:33034 (tcp/http/tls) - last seen on 2024-11-07 at 02:44:32 UTC

207.148.5.119:33034 (tcp/http/tls) - last seen on 2024-11-07 at 02:17:52 UTC