Cyber Defense Search Engine

IP
175.136.123.82

Network
175.136.0.0/13

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://175.136.123.82:4369/ 401

HTTP Title
401 Unauthorized

ASN
AS4788

Organization
TM TECHNOLOGY SERVICES SDN. BHD.

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
b8eac397171942f7b4e8e58a032ba7fc

HTTP Header MD5
6b522c75c7c03567fc320273c5dbdb34

HTTP Body MD5
533ab2b91ce06fe22cdad0af3258d773

HTTP/1.1 401 Unauthorized
Server: 5a972f4e-cfa9-df99-cedc-8289b4418071
Date: Thu, 07 Nov 2024 05:15:56 GMT
Cache-Control: no-cache,no-store
WWW-Authenticate: Basic realm=""
Content-Type: text/html; charset=%s
Connection: close

<HTML>
<HEAD><TITLE>401 Unauthorized</TITLE></HEAD>
<BODY BGCOLOR="#cc9999" TEXT="#000000" LINK="#2020ff" VLINK="#4040cc">
<H4>401 Unauthorized</H4>
Authorization required.
<HR>
<ADDRESS><A HREF="http://www.acme.com/software/mini_httpd/">5a972f4e-cfa9-df99-cedc-8289b4418071</A></ADDRESS>
</BODY>
</HTML>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:53:51.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "acme.com"
         ],
         "hostname" : [
            "www.acme.com"
         ],
         "url" : [
            "http://www.acme.com/software/mini_httpd/"
         ]
      },
      "http" : {
         "bodymd5" : "533ab2b91ce06fe22cdad0af3258d773",
         "bodymmh3" : 1824291282,
         "headermd5" : "6b522c75c7c03567fc320273c5dbdb34",
         "headermmh3" : -1324237078,
         "title" : "401 Unauthorized"
      },
      "length" : 541
   },
   "asn" : "AS4788",
   "city" : "Kuala Lumpur",
   "country" : "MY",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 401 Unauthorized\r\nServer: 5a972f4e-cfa9-df99-cedc-8289b4418071\r\nDate: Thu, 07 Nov 2024 05:15:56 GMT\r\nCache-Control: no-cache,no-store\r\nWWW-Authenticate: Basic realm=\"\"\r\nContent-Type: text/html; charset=%s\r\nConnection: close\r\n\r\n<HTML>\n<HEAD><TITLE>401 Unauthorized</TITLE></HEAD>\n<BODY BGCOLOR=\"#cc9999\" TEXT=\"#000000\" LINK=\"#2020ff\" VLINK=\"#4040cc\">\n<H4>401 Unauthorized</H4>\nAuthorization required.\n<HR>\n<ADDRESS><A HREF=\"http://www.acme.com/software/mini_httpd/\">5a972f4e-cfa9-df99-cedc-8289b4418071</A></ADDRESS>\n</BODY>\n</HTML>\n",
   "datamd5" : "b8eac397171942f7b4e8e58a032ba7fc",
   "datammh3" : -2123863284,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4788",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "MY",
      "countryname" : "Malaysia",
      "domain" : [
         "tm.com.my",
         "tm.net.my"
      ],
      "isineu" : "false",
      "latitude" : "4.210484",
      "location" : "4.210484,101.975766",
      "longitude" : "101.975766",
      "netname" : "ADSL-STREAMYX",
      "organization" : "Telekom Malaysia Berhad",
      "subnet" : "175.136.0.0/17"
   },
   "ip" : "175.136.123.82",
   "ipv6" : "false",
   "latitude" : "3.1412",
   "location" : "3.1412,101.6850",
   "longitude" : "101.6850",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TM TECHNOLOGY SERVICES SDN. BHD.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4369,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Unauthorized",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 401,
   "subnet" : "175.136.0.0/13",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
202.5.60.122

Network
202.5.48.0/20

Device

<enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

URL

http://202.5.60.122:4369/ 401

HTTP Title
401 Unauthorized

ASN
AS45326

Organization
Broad Band Telecom Services Ltd

Protocol
http

Source
datascan
Product
HTTPsrv HTTPsrv

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0fb662265519271314c0a09a1c1d8998

HTTP Header MD5
750115d7da324e9816c3680d8b740992

HTTP Body MD5
f3ab2994760c2119eedb27d6ccba55d3

HTTP/1.1 401 Unauthorized
Server: httpsrv
Date: Sat, 02 Nov 2024 22:27:05 GMT
Cache-Control: no-cache,no-store
WWW-Authenticate: Basic realm="NVR-3685"
Content-Type: text/html; charset=%s
Connection: close

<HTML>
<HEAD><TITLE>401 Unauthorized</TITLE></HEAD>
<BODY BGCOLOR="#cc9999" TEXT="#000000" LINK="#2020ff" VLINK="#4040cc">
<H4>401 Unauthorized</H4>
Authorization required.
<HR>
<ADDRESS><A HREF="http://">httpsrv</A></ADDRESS>
</BODY>
</HTML>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T00:13:25.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "f3ab2994760c2119eedb27d6ccba55d3",
         "bodymmh3" : -1433447945,
         "headermd5" : "750115d7da324e9816c3680d8b740992",
         "headermmh3" : 1977951040,
         "realm" : "NVR-3685",
         "title" : "401 Unauthorized"
      },
      "length" : 458
   },
   "asn" : "AS45326",
   "city" : "Khulna",
   "country" : "BD",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 401 Unauthorized\r\nServer: httpsrv\r\nDate: Sat, 02 Nov 2024 22:27:05 GMT\r\nCache-Control: no-cache,no-store\r\nWWW-Authenticate: Basic realm=\"NVR-3685\"\r\nContent-Type: text/html; charset=%s\r\nConnection: close\r\n\r\n<HTML>\n<HEAD><TITLE>401 Unauthorized</TITLE></HEAD>\n<BODY BGCOLOR=\"#cc9999\" TEXT=\"#000000\" LINK=\"#2020ff\" VLINK=\"#4040cc\">\n<H4>401 Unauthorized</H4>\nAuthorization required.\n<HR>\n<ADDRESS><A HREF=\"http://\">httpsrv</A></ADDRESS>\n</BODY>\n</HTML>\n",
   "datamd5" : "0fb662265519271314c0a09a1c1d8998",
   "datammh3" : 606563775,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "geolocus" : {
      "asn" : "AS45326",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "BD",
      "countryname" : "Bangladesh",
      "domain" : [
         "bbts.net"
      ],
      "isineu" : "false",
      "latitude" : "23.684994",
      "location" : "23.684994,90.356331",
      "longitude" : "90.356331",
      "netname" : "BBTS-BD-BD",
      "organization" : "BBTS-NEW-BLOCK",
      "subnet" : "202.5.48.0/20"
   },
   "ip" : "202.5.60.122",
   "ipv6" : "false",
   "latitude" : "22.8760",
   "location" : "22.8760,89.5475",
   "longitude" : "89.5475",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Broad Band Telecom Services Ltd",
   "port" : 4369,
   "product" : "HTTPsrv",
   "productvendor" : "HTTPsrv",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Unauthorized",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 401,
   "subnet" : "202.5.48.0/20",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
121.122.199.64

Network
121.120.0.0/14

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://121.122.199.64:4369/ 401

HTTP Title
401 Unauthorized

ASN
AS9534

Organization
Binariang Berhad

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
15a0149e0cdace67c8e2e9dac12bef92

HTTP Header MD5
29eef23d47145c956f8d5c0a449d71f0

HTTP Body MD5
41535be34168c57a9b75b30f18ad8f2e

HTTP/1.1 401 Unauthorized
Server: 1007d0aa-27a3-b46-9f74-24cba92e3bb0
Date: Wed, 06 Nov 2024 18:31:19 GMT
Cache-Control: no-cache,no-store
WWW-Authenticate: Basic realm=""
Content-Type: text/html; charset=%s
Connection: close

<HTML>
<HEAD><TITLE>401 Unauthorized</TITLE></HEAD>
<BODY BGCOLOR="#cc9999" TEXT="#000000" LINK="#2020ff" VLINK="#4040cc">
<H4>401 Unauthorized</H4>
Authorization required.
<HR>
<ADDRESS><A HREF="http://www.acme.com/software/mini_httpd/">1007d0aa-27a3-b46-9f74-24cba92e3bb0</A></ADDRESS>
</BODY>
</HTML>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T18:31:19.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "acme.com"
         ],
         "hostname" : [
            "www.acme.com"
         ],
         "url" : [
            "http://www.acme.com/software/mini_httpd/"
         ]
      },
      "http" : {
         "bodymd5" : "41535be34168c57a9b75b30f18ad8f2e",
         "bodymmh3" : 610691466,
         "headermd5" : "29eef23d47145c956f8d5c0a449d71f0",
         "headermmh3" : 1198642101,
         "title" : "401 Unauthorized"
      },
      "length" : 539
   },
   "asn" : "AS9534",
   "city" : "Sepang",
   "country" : "MY",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 401 Unauthorized\r\nServer: 1007d0aa-27a3-b46-9f74-24cba92e3bb0\r\nDate: Wed, 06 Nov 2024 18:31:19 GMT\r\nCache-Control: no-cache,no-store\r\nWWW-Authenticate: Basic realm=\"\"\r\nContent-Type: text/html; charset=%s\r\nConnection: close\r\n\r\n<HTML>\n<HEAD><TITLE>401 Unauthorized</TITLE></HEAD>\n<BODY BGCOLOR=\"#cc9999\" TEXT=\"#000000\" LINK=\"#2020ff\" VLINK=\"#4040cc\">\n<H4>401 Unauthorized</H4>\nAuthorization required.\n<HR>\n<ADDRESS><A HREF=\"http://www.acme.com/software/mini_httpd/\">1007d0aa-27a3-b46-9f74-24cba92e3bb0</A></ADDRESS>\n</BODY>\n</HTML>\n",
   "datamd5" : "15a0149e0cdace67c8e2e9dac12bef92",
   "datammh3" : 64153238,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS9534",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "MY",
      "countryname" : "Malaysia",
      "domain" : [
         "maxis.com.my"
      ],
      "isineu" : "false",
      "latitude" : "4.210484",
      "location" : "4.210484,101.975766",
      "longitude" : "101.975766",
      "netname" : "MAXISNET-ADSL",
      "organization" : "Maxis Broadband Sdn.Bhd",
      "subnet" : "121.122.128.0/17"
   },
   "ip" : "121.122.199.64",
   "ipv6" : "false",
   "latitude" : "2.8244",
   "location" : "2.8244,101.6841",
   "longitude" : "101.6841",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Binariang Berhad",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4369,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Unauthorized",
   "seen_date" : "2024-11-06",
   "source" : "datascan",
   "status" : 401,
   "subnet" : "121.120.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
116.110.203.53

Network
116.110.192.0/19

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://116.110.203.53:4369/ 401

HTTP Title
401 Unauthorized

ASN
AS24086

Organization
Viettel Corporation

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
72b97d5935625f6ee08baafa1bda289e

HTTP Header MD5
d484fdb88a6a962d365fb27993121650

HTTP Body MD5
70574d4b6dd6dd35cdf2ee59ec9369f9

HTTP/1.1 401 Unauthorized
Server: 7fd1a46f-d5ca-af76-f547-264c3d6a9569
Date: Wed, 06 Nov 2024 17:39:15 GMT
Cache-Control: no-cache,no-store
WWW-Authenticate: Basic realm=""
Content-Type: text/html; charset=%s
Connection: close

<HTML>
<HEAD><TITLE>401 Unauthorized</TITLE></HEAD>
<BODY BGCOLOR="#cc9999" TEXT="#000000" LINK="#2020ff" VLINK="#4040cc">
<H4>401 Unauthorized</H4>
Authorization required.
<HR>
<ADDRESS><A HREF="http://www.acme.com/software/mini_httpd/">7fd1a46f-d5ca-af76-f547-264c3d6a9569</A></ADDRESS>
</BODY>
</HTML>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T17:39:17.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "acme.com"
         ],
         "hostname" : [
            "www.acme.com"
         ],
         "url" : [
            "http://www.acme.com/software/mini_httpd/"
         ]
      },
      "http" : {
         "bodymd5" : "70574d4b6dd6dd35cdf2ee59ec9369f9",
         "bodymmh3" : -1612628428,
         "headermd5" : "d484fdb88a6a962d365fb27993121650",
         "headermmh3" : 2047676529,
         "title" : "401 Unauthorized"
      },
      "length" : 541
   },
   "asn" : "AS24086",
   "city" : "Ph\u00fa Ninh",
   "country" : "VN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 401 Unauthorized\r\nServer: 7fd1a46f-d5ca-af76-f547-264c3d6a9569\r\nDate: Wed, 06 Nov 2024 17:39:15 GMT\r\nCache-Control: no-cache,no-store\r\nWWW-Authenticate: Basic realm=\"\"\r\nContent-Type: text/html; charset=%s\r\nConnection: close\r\n\r\n<HTML>\n<HEAD><TITLE>401 Unauthorized</TITLE></HEAD>\n<BODY BGCOLOR=\"#cc9999\" TEXT=\"#000000\" LINK=\"#2020ff\" VLINK=\"#4040cc\">\n<H4>401 Unauthorized</H4>\nAuthorization required.\n<HR>\n<ADDRESS><A HREF=\"http://www.acme.com/software/mini_httpd/\">7fd1a46f-d5ca-af76-f547-264c3d6a9569</A></ADDRESS>\n</BODY>\n</HTML>\n",
   "datamd5" : "72b97d5935625f6ee08baafa1bda289e",
   "datammh3" : -1579292558,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS24086",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "VN",
      "countryname" : "Vietnam",
      "domain" : [
         "viettel.com.vn",
         "vnnic.vn"
      ],
      "isineu" : "false",
      "latitude" : "14.058324",
      "location" : "14.058324,108.277199",
      "longitude" : "108.277199",
      "netname" : "VIETTEL-VN",
      "organization" : "VIETTEL-VN",
      "subnet" : "116.110.192.0/19"
   },
   "ip" : "116.110.203.53",
   "ipv6" : "false",
   "latitude" : "15.5573",
   "location" : "15.5573,108.4211",
   "longitude" : "108.4211",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Viettel Corporation",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4369,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Unauthorized",
   "seen_date" : "2024-11-06",
   "source" : "datascan",
   "status" : 401,
   "subnet" : "116.110.192.0/19",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
175.138.93.82

Network
175.136.0.0/13

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://175.138.93.82:4369/ 401

HTTP Title
401 Unauthorized

ASN
AS4788

Organization
TM TECHNOLOGY SERVICES SDN. BHD.

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
557e3da5a27b7beba3a93bae7667e5f4

HTTP Header MD5
2b743354151ea0fb1e32bb3932bbbd66

HTTP Body MD5
f6e679a327c72cd00d285243fee9ef8c

HTTP/1.1 401 Unauthorized
Server: eb782329-9ffc-7776-3b1d-48a42ac7a426
Date: Wed, 06 Nov 2024 23:28:13 GMT
Cache-Control: no-cache,no-store
WWW-Authenticate: Basic realm=""
Content-Type: text/html; charset=%s
Connection: close

<HTML>
<HEAD><TITLE>401 Unauthorized</TITLE></HEAD>
<BODY BGCOLOR="#cc9999" TEXT="#000000" LINK="#2020ff" VLINK="#4040cc">
<H4>401 Unauthorized</H4>
Authorization required.
<HR>
<ADDRESS><A HREF="http://www.acme.com/software/mini_httpd/">eb782329-9ffc-7776-3b1d-48a42ac7a426</A></ADDRESS>
</BODY>
</HTML>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T15:11:39.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "acme.com"
         ],
         "hostname" : [
            "www.acme.com"
         ],
         "url" : [
            "http://www.acme.com/software/mini_httpd/"
         ]
      },
      "http" : {
         "bodymd5" : "f6e679a327c72cd00d285243fee9ef8c",
         "bodymmh3" : 1458255093,
         "headermd5" : "2b743354151ea0fb1e32bb3932bbbd66",
         "headermmh3" : -773381678,
         "title" : "401 Unauthorized"
      },
      "length" : 541
   },
   "asn" : "AS4788",
   "city" : "Kuala Lumpur",
   "country" : "MY",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 401 Unauthorized\r\nServer: eb782329-9ffc-7776-3b1d-48a42ac7a426\r\nDate: Wed, 06 Nov 2024 23:28:13 GMT\r\nCache-Control: no-cache,no-store\r\nWWW-Authenticate: Basic realm=\"\"\r\nContent-Type: text/html; charset=%s\r\nConnection: close\r\n\r\n<HTML>\n<HEAD><TITLE>401 Unauthorized</TITLE></HEAD>\n<BODY BGCOLOR=\"#cc9999\" TEXT=\"#000000\" LINK=\"#2020ff\" VLINK=\"#4040cc\">\n<H4>401 Unauthorized</H4>\nAuthorization required.\n<HR>\n<ADDRESS><A HREF=\"http://www.acme.com/software/mini_httpd/\">eb782329-9ffc-7776-3b1d-48a42ac7a426</A></ADDRESS>\n</BODY>\n</HTML>\n",
   "datamd5" : "557e3da5a27b7beba3a93bae7667e5f4",
   "datammh3" : 1475857193,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4788",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "MY",
      "countryname" : "Malaysia",
      "domain" : [
         "tm.com.my",
         "tm.net.my"
      ],
      "isineu" : "false",
      "latitude" : "4.210484",
      "location" : "4.210484,101.975766",
      "longitude" : "101.975766",
      "netname" : "ADSL-STREAMYX",
      "organization" : "Telekom Malaysia Berhad",
      "subnet" : "175.138.64.0/18"
   },
   "ip" : "175.138.93.82",
   "ipv6" : "false",
   "latitude" : "3.1412",
   "location" : "3.1412,101.6850",
   "longitude" : "101.6850",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TM TECHNOLOGY SERVICES SDN. BHD.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4369,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Unauthorized",
   "seen_date" : "2024-11-06",
   "source" : "datascan",
   "status" : 401,
   "subnet" : "175.136.0.0/13",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
90.149.118.207

Network
90.149.0.0/16

Domain(s)
nuro.jp

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://90.149.118.207:4369/ 401

HTTP Title
401 Unauthorized

Reverse DNS
fp5a9576cf.knge120.ap.nuro.jp

ASN
AS2527

Organization
Sony Network Communications Inc.

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
Boa Boa 0.94.14rc21

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
7e225ceaf6ec2b932771520de81cbe3e

HTTP Header MD5
8e6a4a889f88f35e1aaab606dab5c5df

HTTP Body MD5
aa1b750b9af697553e43cc602c751bb0

HTTP/1.1 401 Unauthorized
Date: Wed, 06 Nov 2024 23:45:49 GMT
Server: Boa/0.94.14rc21
Accept-Ranges: bytes
Connection: close
WWW-Authenticate: Basic realm="streaming_server"
Content-Type: text/html; charset=ISO-8859-1

<HTML><HEAD><TITLE>401 Unauthorized</TITLE></HEAD>
<BODY><H1>401 Unauthorized</H1>
Your client does not have permission to get URL / from this server.
</BODY></HTML>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T14:45:49.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "aa1b750b9af697553e43cc602c751bb0",
         "bodymmh3" : 1770418439,
         "headermd5" : "8e6a4a889f88f35e1aaab606dab5c5df",
         "headermmh3" : 253047902,
         "realm" : "streaming_server",
         "title" : "401 Unauthorized"
      },
      "length" : 393
   },
   "asn" : "AS2527",
   "city" : "Higashimuk\u014djima",
   "country" : "JP",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 401 Unauthorized\r\nDate: Wed, 06 Nov 2024 23:45:49 GMT\r\nServer: Boa/0.94.14rc21\r\nAccept-Ranges: bytes\r\nConnection: close\r\nWWW-Authenticate: Basic realm=\"streaming_server\"\r\nContent-Type: text/html; charset=ISO-8859-1\r\n\r\n<HTML><HEAD><TITLE>401 Unauthorized</TITLE></HEAD>\n<BODY><H1>401 Unauthorized</H1>\nYour client does not have permission to get URL / from this server.\n</BODY></HTML>\n",
   "datamd5" : "7e225ceaf6ec2b932771520de81cbe3e",
   "datammh3" : 1515834905,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "nuro.jp"
   ],
   "host" : [
      "fp5a9576cf"
   ],
   "hostname" : [
      "fp5a9576cf.knge120.ap.nuro.jp"
   ],
   "ip" : "90.149.118.207",
   "ipv6" : "false",
   "latitude" : "35.7357",
   "location" : "35.7357,139.8253",
   "longitude" : "139.8253",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Sony Network Communications Inc.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4369,
   "product" : "Boa",
   "productvendor" : "Boa",
   "productversion" : "0.94.14rc21",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Unauthorized",
   "reverse" : [
      "fp5a9576cf.knge120.ap.nuro.jp"
   ],
   "seen_date" : "2024-11-06",
   "source" : "datascan",
   "status" : 401,
   "subdomains" : [
      "ap.nuro.jp",
      "knge120.ap.nuro.jp"
   ],
   "subnet" : "90.149.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "jp"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
123.176.4.49

Network
123.176.0.0/19

Domain(s)
dhivehinet.net.mv

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://123.176.4.49:4369/ 401

HTTP Title
401 - Unauthorized: Access is denied due to invalid credentials.

Reverse DNS
bb123-176-4-49.dhivehinet.net.mv

ASN
AS7642

Organization
DHIVEHI RAAJJEYGE GULHUN PLC

Protocol
http

Source
datascan
Operating System
Microsoft Windows

Product
Microsoft IIS 8.5

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
6b0ae9288c3c8917fd73e4eeec31776e

HTTP Header MD5
faf233099d2a2a8db734a5498a4fd9a0

HTTP Body MD5
6f5625f65928d28b9ba3770d99a016b5

HTTP/1.1 401 Unauthorized
Content-Type: text/html
Server: Microsoft-IIS/8.5
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
Date: Wed, 06 Nov 2024 18:31:30 GMT
Connection: close
Content-Length: 1293

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"/>
<title>401 - Unauthorized: Access is denied due to invalid credentials.</title>
<style type="text/css">
<!--
body{margin:0;font-size:.7em;font-family:Verdana, Arial, Helvetica, sans-serif;background:#EEEEEE;}
fieldset{padding:0 15px 10px 15px;} 
h1{font-size:2.4em;margin:0;color:#FFF;}
h2{font-size:1.7em;margin:0;color:#CC0000;} 
h3{font-size:1.2em;margin:10px 0 0 0;color:#000000;} 
#header{width:96%;margin:0 0 0 0;padding:6px 2% 6px 2%;font-family:"trebuchet MS", Verdana, sans-serif;color:#FFF;
background-color:#555555;}
#content{margin:0 0 0 2%;position:relative;}
.content-container{background:#FFF;width:96%;margin-top:8px;padding:10px;position:relative;}
-->
</style>
</head>
<body>
<div id="header"><h1>Server Error</h1></div>
<div id="content">
 <div class="content-container"><fieldset>
  <h2>401 - Unauthorized: Access is denied due to invalid credentials.</h2>
  <h3>You do not have permission to view this directory or page using the credentials that you supplied.</h3>
 </fieldset></div>
</div>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T06:26:18.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "w3.org"
         ],
         "hostname" : [
            "www.w3.org"
         ],
         "url" : [
            "http://www.w3.org/1999/xhtml",
            "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"
         ]
      },
      "http" : {
         "bodymd5" : "6f5625f65928d28b9ba3770d99a016b5",
         "bodymmh3" : -128934285,
         "headermd5" : "faf233099d2a2a8db734a5498a4fd9a0",
         "headermmh3" : 903064427,
         "title" : "401 - Unauthorized: Access is denied due to invalid credentials."
      },
      "length" : 1505
   },
   "asn" : "AS7642",
   "city" : "Mal\u00e9",
   "country" : "MV",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 401 Unauthorized\r\nContent-Type: text/html\r\nServer: Microsoft-IIS/8.5\r\nWWW-Authenticate: Negotiate\r\nWWW-Authenticate: NTLM\r\nDate: Wed, 06 Nov 2024 18:31:30 GMT\r\nConnection: close\r\nContent-Length: 1293\r\n\r\n<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Strict//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd\">\r\n<html xmlns=\"http://www.w3.org/1999/xhtml\">\r\n<head>\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-1\"/>\r\n<title>401 - Unauthorized: Access is denied due to invalid credentials.</title>\r\n<style type=\"text/css\">\r\n<!--\r\nbody{margin:0;font-size:.7em;font-family:Verdana, Arial, Helvetica, sans-serif;background:#EEEEEE;}\r\nfieldset{padding:0 15px 10px 15px;} \r\nh1{font-size:2.4em;margin:0;color:#FFF;}\r\nh2{font-size:1.7em;margin:0;color:#CC0000;} \r\nh3{font-size:1.2em;margin:10px 0 0 0;color:#000000;} \r\n#header{width:96%;margin:0 0 0 0;padding:6px 2% 6px 2%;font-family:\"trebuchet MS\", Verdana, sans-serif;color:#FFF;\r\nbackground-color:#555555;}\r\n#content{margin:0 0 0 2%;position:relative;}\r\n.content-container{background:#FFF;width:96%;margin-top:8px;padding:10px;position:relative;}\r\n-->\r\n</style>\r\n</head>\r\n<body>\r\n<div id=\"header\"><h1>Server Error</h1></div>\r\n<div id=\"content\">\r\n <div class=\"content-container\"><fieldset>\r\n  <h2>401 - Unauthorized: Access is denied due to invalid credentials.</h2>\r\n  <h3>You do not have permission to view this directory or page using the credentials that you supplied.</h3>\r\n </fieldset></div>\r\n</div>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "6b0ae9288c3c8917fd73e4eeec31776e",
   "datammh3" : 727068394,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "dhivehinet.net.mv"
   ],
   "geolocus" : {
      "asn" : "AS7642",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "MV",
      "countryname" : "Maldives",
      "domain" : [
         "dhiraagu.com.mv",
         "dhivehinet.net.mv"
      ],
      "isineu" : "false",
      "latitude" : "3.202778",
      "location" : "3.202778,73.22068",
      "longitude" : "73.22068",
      "netname" : "DHIVEHINET-CACHE-FARM",
      "organization" : "Dhiraagu Pvt.Ltd.",
      "subnet" : "123.176.0.0/19"
   },
   "host" : [
      "bb123-176-4-49"
   ],
   "hostname" : [
      "bb123-176-4-49.dhivehinet.net.mv"
   ],
   "ip" : "123.176.4.49",
   "ipv6" : "false",
   "latitude" : "4.1772",
   "location" : "4.1772,73.5107",
   "longitude" : "73.5107",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "DHIVEHI RAAJJEYGE GULHUN PLC",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "osversion" : [
      "Server 2012",
      "8.1"
   ],
   "port" : 4369,
   "product" : "IIS",
   "productvendor" : "Microsoft",
   "productversion" : "8.5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Unauthorized",
   "reverse" : [
      "bb123-176-4-49.dhivehinet.net.mv"
   ],
   "seen_date" : "2024-11-06",
   "source" : "datascan",
   "status" : 401,
   "subnet" : "123.176.0.0/19",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "net.mv"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
175.140.37.252

Network
175.136.0.0/13

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://175.140.37.252:4369/ 401

HTTP Title
401 Unauthorized

ASN
AS4788

Organization
TM TECHNOLOGY SERVICES SDN. BHD.

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
d5d6ee65fc8878089012bb620e77975f

HTTP Header MD5
59ed6298e666f0a50b1ba882210666c3

HTTP Body MD5
9ff3c6136f447df4462a49b691fc2520

HTTP/1.1 401 Unauthorized
Server: e645846-efdf-4500-467f-ef6cc6504254
Date: Wed, 06 Nov 2024 06:19:16 GMT
Cache-Control: no-cache,no-store
WWW-Authenticate: Basic realm=""
Content-Type: text/html; charset=%s
Connection: close

<HTML>
<HEAD><TITLE>401 Unauthorized</TITLE></HEAD>
<BODY BGCOLOR="#cc9999" TEXT="#000000" LINK="#2020ff" VLINK="#4040cc">
<H4>401 Unauthorized</H4>
Authorization required.
<HR>
<ADDRESS><A HREF="http://www.acme.com/software/mini_httpd/">e645846-efdf-4500-467f-ef6cc6504254</A></ADDRESS>
</BODY>
</HTML>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T06:19:17.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "acme.com"
         ],
         "hostname" : [
            "www.acme.com"
         ],
         "url" : [
            "http://www.acme.com/software/mini_httpd/"
         ]
      },
      "http" : {
         "bodymd5" : "9ff3c6136f447df4462a49b691fc2520",
         "bodymmh3" : 285016604,
         "headermd5" : "59ed6298e666f0a50b1ba882210666c3",
         "headermmh3" : 1260925332,
         "title" : "401 Unauthorized"
      },
      "length" : 539
   },
   "asn" : "AS4788",
   "city" : "Kuala Lumpur",
   "country" : "MY",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 401 Unauthorized\r\nServer: e645846-efdf-4500-467f-ef6cc6504254\r\nDate: Wed, 06 Nov 2024 06:19:16 GMT\r\nCache-Control: no-cache,no-store\r\nWWW-Authenticate: Basic realm=\"\"\r\nContent-Type: text/html; charset=%s\r\nConnection: close\r\n\r\n<HTML>\n<HEAD><TITLE>401 Unauthorized</TITLE></HEAD>\n<BODY BGCOLOR=\"#cc9999\" TEXT=\"#000000\" LINK=\"#2020ff\" VLINK=\"#4040cc\">\n<H4>401 Unauthorized</H4>\nAuthorization required.\n<HR>\n<ADDRESS><A HREF=\"http://www.acme.com/software/mini_httpd/\">e645846-efdf-4500-467f-ef6cc6504254</A></ADDRESS>\n</BODY>\n</HTML>\n",
   "datamd5" : "d5d6ee65fc8878089012bb620e77975f",
   "datammh3" : 296296825,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4788",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "MY",
      "countryname" : "Malaysia",
      "domain" : [
         "tm.com.my",
         "tm.net.my"
      ],
      "isineu" : "false",
      "latitude" : "4.210484",
      "location" : "4.210484,101.975766",
      "longitude" : "101.975766",
      "netname" : "ADSL-STREAMYX",
      "organization" : "TM TECHNOLOGY SERVICES SDN BHD",
      "subnet" : "175.140.32.0/19"
   },
   "ip" : "175.140.37.252",
   "ipv6" : "false",
   "latitude" : "3.1412",
   "location" : "3.1412,101.6850",
   "longitude" : "101.6850",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TM TECHNOLOGY SERVICES SDN. BHD.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4369,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Unauthorized",
   "seen_date" : "2024-11-06",
   "source" : "datascan",
   "status" : 401,
   "subnet" : "175.136.0.0/13",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
90.180.168.139

Network
90.180.0.0/14

Domain(s)
o2.cz

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://90.180.168.139:4369/ 401

HTTP Title
401 Unauthorized

Reverse DNS
90-180-168-139.rcn.o2.cz

ASN
AS5610

Organization
O2 Czech Republic, a.s.

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
82317dc5eb6d85a814dd8aed0fa384c6

HTTP Header MD5
69637ea3e951a6651b80cc5d3cc483e2

HTTP Body MD5
dbcd235dfe58c1ff4cd932d7e7b8f2de

HTTP/1.1 401 Unauthorized
WWW-Authenticate: Digest realm="Wisenet NVR", charset="UTF-8", algorithm=MD5, nonce="672aed4a:ED6DF5FB7DAAEBA64F1A485688137518", qop="auth"
Content-Type: text/html
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-UA-Compatible: requiresActiveX=true
Content-Length: 347
Connection: close
Date: Wed, 06 Nov 2024 04:15:06 GMT

<?xml version="1.0" encoding="iso-8859-1"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
         "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
 <head>
  <title>401 Unauthorized</title>
 </head>
 <body>
  <h1>401 Unauthorized</h1>
 </body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T04:15:06.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "w3.org"
         ],
         "hostname" : [
            "www.w3.org"
         ],
         "url" : [
            "http://www.w3.org/1999/xhtml",
            "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"
         ]
      },
      "http" : {
         "bodymd5" : "dbcd235dfe58c1ff4cd932d7e7b8f2de",
         "bodymmh3" : -163653703,
         "headermd5" : "69637ea3e951a6651b80cc5d3cc483e2",
         "headermmh3" : 1187132380,
         "realm" : "Wisenet NVR",
         "title" : "401 Unauthorized"
      },
      "length" : 753
   },
   "asn" : "AS5610",
   "city" : "Mari\u00e1nsk\u00e9 L\u00e1zn\u011b",
   "country" : "CZ",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 401 Unauthorized\r\nWWW-Authenticate: Digest realm=\"Wisenet NVR\", charset=\"UTF-8\", algorithm=MD5, nonce=\"672aed4a:ED6DF5FB7DAAEBA64F1A485688137518\", qop=\"auth\"\r\nContent-Type: text/html\r\nX-Frame-Options: SAMEORIGIN\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nX-UA-Compatible: requiresActiveX=true\r\nContent-Length: 347\r\nConnection: close\r\nDate: Wed, 06 Nov 2024 04:15:06 GMT\r\n\r\n<?xml version=\"1.0\" encoding=\"iso-8859-1\"?>\n<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\"\n         \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">\n<html xmlns=\"http://www.w3.org/1999/xhtml\" xml:lang=\"en\" lang=\"en\">\n <head>\n  <title>401 Unauthorized</title>\n </head>\n <body>\n  <h1>401 Unauthorized</h1>\n </body>\n</html>\n",
   "datamd5" : "82317dc5eb6d85a814dd8aed0fa384c6",
   "datammh3" : 1876137759,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "o2.cz"
   ],
   "geolocus" : {
      "asn" : "AS5610",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "CZ",
      "countryname" : "Czech Republic",
      "domain" : [
         "iol.cz",
         "o2.cz"
      ],
      "isineu" : "true",
      "latitude" : "49.817492",
      "location" : "49.817492,15.472962",
      "longitude" : "15.472962",
      "netname" : "CZ-CZNET-20061017",
      "organization" : "O2 Czech Republic, a.s.",
      "subnet" : "90.180.0.0/14"
   },
   "host" : [
      "90-180-168-139"
   ],
   "hostname" : [
      "90-180-168-139.rcn.o2.cz"
   ],
   "ip" : "90.180.168.139",
   "ipv6" : "false",
   "latitude" : "49.9608",
   "location" : "49.9608,12.7015",
   "longitude" : "12.7015",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "O2 Czech Republic, a.s.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4369,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Unauthorized",
   "reverse" : [
      "90-180-168-139.rcn.o2.cz"
   ],
   "seen_date" : "2024-11-06",
   "source" : "datascan",
   "status" : 401,
   "subdomains" : [
      "rcn.o2.cz"
   ],
   "subnet" : "90.180.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "cz"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
176.45.24.71

Network
176.44.0.0/15

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

ASN
AS25019

Organization
Saudi Telecom Company JSC

Protocol
winrm

Source
datascan
Operating System
Microsoft Windows

Product
Microsoft HTTPAPI 2.0

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
237f6d104e9a28cabef732c942b46274

HTTP Header MD5
f635c1b0f4421513da954467eb5f8a3f

HTTP Body MD5
6f4eef9a510d3a0bba642140b4658278

HTTP/1.1 401 Access Denied
Allow: GET, POST
Content-Length: 2232
Content-Type: text/html
Accept-Ranges: bytes
Server: Microsoft-HTTPAPI/2.0
Set-Cookie: GWSID=3046100247A646E5B63B43EEB0A5C125; expires=Wed, 05 Nov 2025 00:00:00 UTC; path=/;HttpOnly
Set-Cookie: fmxs_userid=;Path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT;HttpOnly
Set-Cookie: fmxs_accesskey=;Path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT;HttpOnly
X-Content-Type-Options: nosniff
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type, Depth, User-Agent, X-File-Size, X-Requested-With, If-Modified-Since, X-File-Name, Cache-Control
P3P: CP='IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT'
Content-Security-Policy: connect-src 'self' ws: wss: http: https:; child-src 'self'; style-src 'self' 'sha256-47XaZds7UlsDQ+atdqJAp+3rZKSWalqaCa4r84a3K50='; default-src 'none'; script-src 'self' blob: 'unsafe-inline'; form-action 'self'; font-src 'self' data:; media-src 'self' data:; object-src 'none'; img-src 'self' data: blob:; frame-ancestors 'self'; frame-src 'self' https://www.google.com/ https://*.duosecurity.com/; worker-src 'self' data: blob:
Access-Control-Allow-Credentials: true
Referrer-Policy: same-origin
Access-Control-Allow-Methods: GET, POST
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=10080;
Feature-Policy: geolocation 'none'
WWW-Authenticate: Basic realm="Secure Area"
Date: Tue, 05 Nov 2024 13:30:56 GMT
Connection: close

<!DOCTYPE HTML PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
    <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
    <meta name="thinfinity-header" data-name="Content-Security-Policy" data-value="frame-ancestors 'self'; default-src 'none'; frame-src 'self';  script-src 'self' blob: ;form-action 'self'; style-src 'self' 'sha256-47XaZds7UlsDQ+atdqJAp+3rZKSWalqaCa4r84a3K50=' ;base-uri 'self'; img-src 'self' data: blob:; font-src 'self' data:; object-src 'none'; connect-src 'self'; media-src 'self' data:;" />
    <meta name="thinfinity-header" data-name="X-Content-Type-Options" data-value="nosniff" />
    <meta name="thinfinity-header" data-name="X-XSS-Protection" data-value="1; mode=block" />
    <meta name="thinfinity-header" data-name="Referrer-Policy" data-value="same-origin" />
    <meta name="thinfinity-header" data-name="Feature-Policy" data-value="geolocation 'none'" />
    <title>401 - Unauthorized: Access is denied due to invalid credentials.</title>
    <style type="text/css">
        body{margin:0;font-size:.7em;font-family:Verdana,Arial,Helvetica,sans-serif;background:#eee}fieldset{padding:0 15px 10px 15px}.divbuttons{margin-top:-25px!important}
        h1{font-size:1.4em;margin:0;color:#fff}h2{display:none;font-size:1.7em;margin:0;color:#c00}h3{font-size:1.2em;margin:10px 0 0 0;color:#000}
        #header{display:none;width:96%;margin:0;padding:6px 2% 6px 2%;font-family:"trebuchet MS",Verdana,sans-serif;color:#fff;background-color:#555}
        #content{margin:0;position:relative}.content-container{background:#fff;width:96%;margin-top:8px;padding:10px;position:relative}
    </style>
</head>
<body>
    <div id="header"><h1>Server Error</h1></div>
    <div id="content">
        <div class="content-container">
            <fieldset>
                <h2>401 - Unauthorized: Access is denied due to invalid credentials.</h2>
                <span class="error_message">You do not have permission to view this directory or page using the credentials that you supplied.</span>
            </fieldset>
        </div>
    </div>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-05T13:40:51.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "google.com",
            "w3.org"
         ],
         "hostname" : [
            "www.google.com",
            "www.w3.org"
         ],
         "url" : [
            "http://www.w3.org/1999/xhtml",
            "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd",
            "https://www.google.com/"
         ]
      },
      "http" : {
         "bodymd5" : "6f4eef9a510d3a0bba642140b4658278",
         "bodymmh3" : 1431924284,
         "headermd5" : "f635c1b0f4421513da954467eb5f8a3f",
         "headermmh3" : 1422438598,
         "realm" : "Secure Area",
         "title" : "401 - Unauthorized: Access is denied due to invalid credentials."
      },
      "length" : 3744
   },
   "asn" : "AS25019",
   "city" : "Riyadh",
   "country" : "SA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 401 Access Denied\r\nAllow: GET, POST\r\nContent-Length: 2232\r\nContent-Type: text/html\r\nAccept-Ranges: bytes\r\nServer: Microsoft-HTTPAPI/2.0\r\nSet-Cookie: GWSID=3046100247A646E5B63B43EEB0A5C125; expires=Wed, 05 Nov 2025 00:00:00 UTC; path=/;HttpOnly\r\nSet-Cookie: fmxs_userid=;Path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT;HttpOnly\r\nSet-Cookie: fmxs_accesskey=;Path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT;HttpOnly\r\nX-Content-Type-Options: nosniff\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Headers: Content-Type, Depth, User-Agent, X-File-Size, X-Requested-With, If-Modified-Since, X-File-Name, Cache-Control\r\nP3P: CP='IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT'\r\nContent-Security-Policy: connect-src 'self' ws: wss: http: https:; child-src 'self'; style-src 'self' 'sha256-47XaZds7UlsDQ+atdqJAp+3rZKSWalqaCa4r84a3K50='; default-src 'none'; script-src 'self' blob: 'unsafe-inline'; form-action 'self'; font-src 'self' data:; media-src 'self' data:; object-src 'none'; img-src 'self' data: blob:; frame-ancestors 'self'; frame-src 'self' https://www.google.com/ https://*.duosecurity.com/; worker-src 'self' data: blob:\r\nAccess-Control-Allow-Credentials: true\r\nReferrer-Policy: same-origin\r\nAccess-Control-Allow-Methods: GET, POST\r\nX-Frame-Options: SAMEORIGIN\r\nX-XSS-Protection: 1; mode=block\r\nStrict-Transport-Security: max-age=10080;\r\nFeature-Policy: geolocation 'none'\r\nWWW-Authenticate: Basic realm=\"Secure Area\"\r\nDate: Tue, 05 Nov 2024 13:30:56 GMT\r\nConnection: close\r\n\r\n<!DOCTYPE HTML PUBLIC \"-//W3C//DTD XHTML 1.0 Strict//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd\">\r\n<html xmlns=\"http://www.w3.org/1999/xhtml\">\r\n<head>\r\n    <meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-1\" />\r\n    <meta name=\"thinfinity-header\" data-name=\"Content-Security-Policy\" data-value=\"frame-ancestors 'self'; default-src 'none'; frame-src 'self';  script-src 'self' blob: ;form-action 'self'; style-src 'self' 'sha256-47XaZds7UlsDQ+atdqJAp+3rZKSWalqaCa4r84a3K50=' ;base-uri 'self'; img-src 'self' data: blob:; font-src 'self' data:; object-src 'none'; connect-src 'self'; media-src 'self' data:;\" />\r\n    <meta name=\"thinfinity-header\" data-name=\"X-Content-Type-Options\" data-value=\"nosniff\" />\r\n    <meta name=\"thinfinity-header\" data-name=\"X-XSS-Protection\" data-value=\"1; mode=block\" />\r\n    <meta name=\"thinfinity-header\" data-name=\"Referrer-Policy\" data-value=\"same-origin\" />\r\n    <meta name=\"thinfinity-header\" data-name=\"Feature-Policy\" data-value=\"geolocation 'none'\" />\r\n    <title>401 - Unauthorized: Access is denied due to invalid credentials.</title>\r\n    <style type=\"text/css\">\r\n        body{margin:0;font-size:.7em;font-family:Verdana,Arial,Helvetica,sans-serif;background:#eee}fieldset{padding:0 15px 10px 15px}.divbuttons{margin-top:-25px!important}\r\n        h1{font-size:1.4em;margin:0;color:#fff}h2{display:none;font-size:1.7em;margin:0;color:#c00}h3{font-size:1.2em;margin:10px 0 0 0;color:#000}\r\n        #header{display:none;width:96%;margin:0;padding:6px 2% 6px 2%;font-family:\"trebuchet MS\",Verdana,sans-serif;color:#fff;background-color:#555}\r\n        #content{margin:0;position:relative}.content-container{background:#fff;width:96%;margin-top:8px;padding:10px;position:relative}\r\n    </style>\r\n</head>\r\n<body>\r\n    <div id=\"header\"><h1>Server Error</h1></div>\r\n    <div id=\"content\">\r\n        <div class=\"content-container\">\r\n            <fieldset>\r\n                <h2>401 - Unauthorized: Access is denied due to invalid credentials.</h2>\r\n                <span class=\"error_message\">You do not have permission to view this directory or page using the credentials that you supplied.</span>\r\n            </fieldset>\r\n        </div>\r\n    </div>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "237f6d104e9a28cabef732c942b46274",
   "datammh3" : 893386710,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS25019",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "SA",
      "countryname" : "Saudi Arabia",
      "domain" : [
         "stc.com.sa"
      ],
      "isineu" : "false",
      "latitude" : "23.885942",
      "location" : "23.885942,45.079162",
      "longitude" : "45.079162",
      "netname" : "SAUDINET_DSL_POOL",
      "organization" : "Saudinet, Saudi Telecom Company ISP",
      "subnet" : "176.45.0.0/16"
   },
   "ip" : "176.45.24.71",
   "ipv6" : "false",
   "latitude" : "24.6869",
   "location" : "24.6869,46.7224",
   "longitude" : "46.7224",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Saudi Telecom Company JSC",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 4369,
   "product" : "HTTPAPI",
   "productvendor" : "Microsoft",
   "productversion" : "2.0",
   "protocol" : "winrm",
   "protocolversion" : "1.1",
   "reason" : "Access Denied",
   "seen_date" : "2024-11-05",
   "source" : "datascan",
   "status" : 401,
   "subnet" : "176.44.0.0/15",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp"
}

Returning 10 result(s) out of 127 in 0.111 second(s)

175.136.123.82:4369 (tcp/http) - last seen on 2024-11-07 at 03:53:51 UTC

202.5.60.122:4369 (tcp/http) - last seen on 2024-11-07 at 00:13:25 UTC

121.122.199.64:4369 (tcp/http) - last seen on 2024-11-06 at 18:31:19 UTC

116.110.203.53:4369 (tcp/http) - last seen on 2024-11-06 at 17:39:17 UTC

175.138.93.82:4369 (tcp/http) - last seen on 2024-11-06 at 15:11:39 UTC

90.149.118.207:4369 (tcp/http) - last seen on 2024-11-06 at 14:45:49 UTC

123.176.4.49:4369 (tcp/http) - last seen on 2024-11-06 at 06:26:18 UTC

175.140.37.252:4369 (tcp/http) - last seen on 2024-11-06 at 06:19:17 UTC

90.180.168.139:4369 (tcp/http) - last seen on 2024-11-06 at 04:15:06 UTC

176.45.24.71:4369 (tcp/winrm) - last seen on 2024-11-05 at 13:40:51 UTC