Cyber Defense Search Engine

datascan ctl threatlist sniffer vulnscan riskscan

1
2
3
4
...
next >

IP
50.193.98.7

Network
50.192.0.0/13

Domain(s)
comcastbusiness.net

Device

<enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

Operating System
Linux Linux Kernel

Reverse DNS
50-193-98-7-static.hfc.comcastbusiness.net

ASN
AS7922

Organization
COMCAST-7922

Protocol
undefined Cert not expired undefined

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Fireware web CA

Issuer Organization
WatchGuard

Subject Organization
WatchGuard

Subject Common Name
Fireware web CA

SHA256 Fingerprint
66148ad8f782231aaa3696ef137c98a7367e41b84f22e7cdfc923711eed0dbf0

Validity Not Before
2017-10-17T07:40:37Z

Validity Not After
2027-11-14T07:40:37Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
3c768c4828bc7cf16f444a4228eaa0b3
```
<nodata>
```

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T08:42:17.000Z",
   "app" : {
      "length" : 8
   },
   "asn" : "AS7922",
   "ca" : "true",
   "city" : "Dolton",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "<nodata>",
   "datamd5" : "3c768c4828bc7cf16f444a4228eaa0b3",
   "datammh3" : -969888823,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "domain" : [
      "comcastbusiness.net"
   ],
   "fingerprint" : {
      "md5" : "10a9739e623da3cbf4ce835d8220dc6b",
      "sha1" : "d3af4d4cceda79429772c8c04c325a16b75a9a4d",
      "sha256" : "66148ad8f782231aaa3696ef137c98a7367e41b84f22e7cdfc923711eed0dbf0"
   },
   "geolocus" : {
      "asn" : "AS7922",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "comcast.com",
         "comcast.net",
         "comcastbusiness.net"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "LLEWELYNSCHL",
      "organization" : "Comcast Cable Communications, LLC",
      "subnet" : "50.192.0.0/13"
   },
   "host" : [
      "50-193-98-7-static"
   ],
   "hostname" : [
      "50-193-98-7-static.hfc.comcastbusiness.net"
   ],
   "ip" : "50.193.98.7",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "Fireware web CA",
      "organization" : "WatchGuard",
      "organizationalunit" : "Fireware"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment",
      "keyCertSign",
      "cRLSign"
   ],
   "latitude" : "41.6389",
   "location" : "41.6389,-87.5996",
   "longitude" : "-87.5996",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "COMCAST-7922",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4443,
   "protocol" : "undefined",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "50-193-98-7-static.hfc.comcastbusiness.net"
   ],
   "seen_date" : "2024-11-07",
   "serial" : "5a:0d:40:f5",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subdomains" : [
      "hfc.comcastbusiness.net"
   ],
   "subject" : {
      "commonname" : "Fireware web CA",
      "organization" : "WatchGuard",
      "organizationalunit" : "Fireware"
   },
   "subnet" : "50.192.0.0/13",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "net"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2027-11-14T07:40:37Z",
      "notbefore" : "2017-10-17T07:40:37Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
173.160.138.36

Network
173.160.128.0/17

Domain(s)
comcastbusiness.net

Device

<enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

Operating System
Linux Linux Kernel

URL

https://173.160.138.36:4443/ 200

HTTP Title
Fireware XTM User Authentication

Reverse DNS
173-160-138-36-washington.hfc.comcastbusiness.net

ASN
AS7922

Organization
COMCAST-7922

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Fireware web CA

Issuer Organization
WatchGuard

Subject Organization
WatchGuard

Subject Common Name
Fireware web CA

SHA256 Fingerprint
29bc3387894ea26de8ae5071c94bdc67eaf6388bb4f22a45482a2216ec1effc6

Validity Not Before
2019-03-31T03:23:20Z

Validity Not After
2029-04-27T03:23:20Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
156bbeabd06ac78c60882cee95f276cb

HTTP Header MD5
c881e4f9f9f1ec7b1c127e4fc193b68f

HTTP Body MD5
b24d2790652e876e8e81d00a49e7762a

HTTP/1.1 200 OK
Date: Thu, 07 Nov 2024 08:41:56 GMT
Content-Type: text/html
Content-Length: 727
Last-Modified: Fri, 31 May 2019 23:25:14 GMT
Connection: close
ETag: "5cf1b7da-2d7"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
X-Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
X-Webkit-CSP: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
Accept-Ranges: bytes

<html>
<head>
	<title>Fireware XTM User Authentication</title>
    <noscript>
        The Fireware XTM User Authentication web page requires that JavaScript
        be enabled in your Web Browser. 
        
        Please retry after enabling JavaScript in your browser. You can use
        the browser's Back button to return to the page you were previously
        viewing.
    </noscript>
</head>
<body>
	<script>
        var newloc = "/wgcgi.cgi?action=sslvpn_web_logon&fw_logon_type=status";
        var search = window.location.search;
        if (search.length > 1) {
            search = search.substring(1);
            newloc += "&" + search;
        }
        window.location = newloc;
    </script>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T08:41:57.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "b24d2790652e876e8e81d00a49e7762a",
         "bodymmh3" : 848362218,
         "header" : [
            {
               "name" : "Last-Modified",
               "value" : "Fri, 31 May 2019 23:25:14 GMT"
            },
            {
               "value" : "5cf1b7da-2d7",
               "name" : "ETag"
            }
         ],
         "headermd5" : "c881e4f9f9f1ec7b1c127e4fc193b68f",
         "headermmh3" : -144535528,
         "title" : "Fireware XTM User Authentication"
      },
      "length" : 1795
   },
   "asn" : "AS7922",
   "ca" : "true",
   "city" : "Seattle",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nDate: Thu, 07 Nov 2024 08:41:56 GMT\r\nContent-Type: text/html\r\nContent-Length: 727\r\nLast-Modified: Fri, 31 May 2019 23:25:14 GMT\r\nConnection: close\r\nETag: \"5cf1b7da-2d7\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nStrict-Transport-Security: max-age=31536000\r\nContent-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'\r\nX-Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'\r\nX-Webkit-CSP: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'\r\nAccept-Ranges: bytes\r\n\r\n<html>\n<head>\n\t<title>Fireware XTM User Authentication</title>\n    <noscript>\n        The Fireware XTM User Authentication web page requires that JavaScript\n        be enabled in your Web Browser. \n        \n        Please retry after enabling JavaScript in your browser. You can use\n        the browser's Back button to return to the page you were previously\n        viewing.\n    </noscript>\n</head>\n<body>\n\t<script>\n        var newloc = \"/wgcgi.cgi?action=sslvpn_web_logon&fw_logon_type=status\";\n        var search = window.location.search;\n        if (search.length > 1) {\n            search = search.substring(1);\n            newloc += \"&\" + search;\n        }\n        window.location = newloc;\n    </script>\n</body>\n</html>\n",
   "datamd5" : "156bbeabd06ac78c60882cee95f276cb",
   "datammh3" : 518824530,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "domain" : [
      "comcastbusiness.net"
   ],
   "fingerprint" : {
      "md5" : "9f226d9c39fb0c04c5d925b351d7fc78",
      "sha1" : "822a32c03add12b54356f4983db63c4658303b96",
      "sha256" : "29bc3387894ea26de8ae5071c94bdc67eaf6388bb4f22a45482a2216ec1effc6"
   },
   "geolocus" : {
      "asn" : "AS7922",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "comcast.com",
         "comcast.net",
         "comcastbusiness.net"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "PARKER--WAICHMAN-AND-ALONSO",
      "organization" : "Comcast Cable Communications, LLC",
      "subnet" : "173.160.0.0/13"
   },
   "host" : [
      "173-160-138-36-washington"
   ],
   "hostname" : [
      "173-160-138-36-washington.hfc.comcastbusiness.net"
   ],
   "ip" : "173.160.138.36",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "Fireware web CA",
      "organization" : "WatchGuard",
      "organizationalunit" : "Fireware"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment",
      "keyCertSign",
      "cRLSign"
   ],
   "latitude" : "47.6859",
   "location" : "47.6859,-122.2994",
   "longitude" : "-122.2994",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "COMCAST-7922",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4443,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "OK",
   "reverse" : [
      "173-160-138-36-washington.hfc.comcastbusiness.net"
   ],
   "seen_date" : "2024-11-07",
   "serial" : "5c:c7:bf:a6",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "hfc.comcastbusiness.net"
   ],
   "subject" : {
      "commonname" : "Fireware web CA",
      "organization" : "WatchGuard",
      "organizationalunit" : "Fireware"
   },
   "subnet" : "173.160.128.0/17",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "net"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2029-04-27T03:23:20Z",
      "notbefore" : "2019-03-31T03:23:20Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
96.64.5.194

Network
96.64.0.0/11

Device

<enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

Operating System
Linux Linux Kernel

ASN
AS7922

Organization
COMCAST-7922

Protocol
undefined Cert not expired undefined

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Fireware web CA

Issuer Organization
WatchGuard

Subject Organization
WatchGuard

Subject Common Name
Fireware web CA

SHA256 Fingerprint
0e8783bf0596fa87d2dfd03df17e03181b377a531905aa71d351928fea24b849

Validity Not Before
2017-10-03T00:49:35Z

Validity Not After
2027-10-31T00:49:35Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
3c768c4828bc7cf16f444a4228eaa0b3
```
<nodata>
```

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T08:00:39.000Z",
   "app" : {
      "length" : 8
   },
   "asn" : "AS7922",
   "ca" : "true",
   "city" : "Detroit",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "<nodata>",
   "datamd5" : "3c768c4828bc7cf16f444a4228eaa0b3",
   "datammh3" : -969888823,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "fingerprint" : {
      "md5" : "345b1c47130c831d7d1dad615f9d2118",
      "sha1" : "2f756189d82c57f9299d674e68670df0e09b3cb3",
      "sha256" : "0e8783bf0596fa87d2dfd03df17e03181b377a531905aa71d351928fea24b849"
   },
   "geolocus" : {
      "asn" : "AS7922",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "comcast.com",
         "comcast.net"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "MICHIGAN-CCCS-35",
      "organization" : "Comcast Cable Communications, LLC",
      "subnet" : "96.64.0.0/12"
   },
   "ip" : "96.64.5.194",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "Fireware web CA",
      "organization" : "WatchGuard",
      "organizationalunit" : "Fireware"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment",
      "keyCertSign",
      "cRLSign"
   ],
   "latitude" : "42.4257",
   "location" : "42.4257,-83.1522",
   "longitude" : "-83.1522",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "COMCAST-7922",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4443,
   "protocol" : "undefined",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "seen_date" : "2024-11-07",
   "serial" : "59:fa:6b:9c",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "commonname" : "Fireware web CA",
      "organization" : "WatchGuard",
      "organizationalunit" : "Fireware"
   },
   "subnet" : "96.64.0.0/11",
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2027-10-31T00:49:35Z",
      "notbefore" : "2017-10-03T00:49:35Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
50.193.98.7

Network
50.192.0.0/13

Domain(s)
comcastbusiness.net

Device

<enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

Operating System
Linux Linux Kernel

URL

https://50.193.98.7:4443/ 200

HTTP Title
Fireware XTM User Authentication

Reverse DNS
50-193-98-7-static.hfc.comcastbusiness.net

ASN
AS7922

Organization
COMCAST-7922

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Fireware web CA

Issuer Organization
WatchGuard

Subject Organization
WatchGuard

Subject Common Name
Fireware web CA

SHA256 Fingerprint
66148ad8f782231aaa3696ef137c98a7367e41b84f22e7cdfc923711eed0dbf0

Validity Not Before
2017-10-17T07:40:37Z

Validity Not After
2027-11-14T07:40:37Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
156bbeabd06ac78c60882cee95f276cb

HTTP Header MD5
c881e4f9f9f1ec7b1c127e4fc193b68f

HTTP Body MD5
b24d2790652e876e8e81d00a49e7762a

HTTP/1.1 200 OK
Date: Thu, 07 Nov 2024 07:58:48 GMT
Content-Type: text/html
Content-Length: 727
Last-Modified: Fri, 02 Apr 2021 04:37:41 GMT
Connection: close
ETag: "60669f95-2d7"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
X-Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
X-Webkit-CSP: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
Accept-Ranges: bytes

<html>
<head>
	<title>Fireware XTM User Authentication</title>
    <noscript>
        The Fireware XTM User Authentication web page requires that JavaScript
        be enabled in your Web Browser. 
        
        Please retry after enabling JavaScript in your browser. You can use
        the browser's Back button to return to the page you were previously
        viewing.
    </noscript>
</head>
<body>
	<script>
        var newloc = "/wgcgi.cgi?action=sslvpn_web_logon&fw_logon_type=status";
        var search = window.location.search;
        if (search.length > 1) {
            search = search.substring(1);
            newloc += "&" + search;
        }
        window.location = newloc;
    </script>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T07:58:49.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "b24d2790652e876e8e81d00a49e7762a",
         "bodymmh3" : 848362218,
         "header" : [
            {
               "value" : "Fri, 02 Apr 2021 04:37:41 GMT",
               "name" : "Last-Modified"
            },
            {
               "name" : "ETag",
               "value" : "60669f95-2d7"
            }
         ],
         "headermd5" : "c881e4f9f9f1ec7b1c127e4fc193b68f",
         "headermmh3" : 981404517,
         "title" : "Fireware XTM User Authentication"
      },
      "length" : 1795
   },
   "asn" : "AS7922",
   "ca" : "true",
   "city" : "Dolton",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nDate: Thu, 07 Nov 2024 07:58:48 GMT\r\nContent-Type: text/html\r\nContent-Length: 727\r\nLast-Modified: Fri, 02 Apr 2021 04:37:41 GMT\r\nConnection: close\r\nETag: \"60669f95-2d7\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nStrict-Transport-Security: max-age=31536000\r\nContent-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'\r\nX-Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'\r\nX-Webkit-CSP: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'\r\nAccept-Ranges: bytes\r\n\r\n<html>\n<head>\n\t<title>Fireware XTM User Authentication</title>\n    <noscript>\n        The Fireware XTM User Authentication web page requires that JavaScript\n        be enabled in your Web Browser. \n        \n        Please retry after enabling JavaScript in your browser. You can use\n        the browser's Back button to return to the page you were previously\n        viewing.\n    </noscript>\n</head>\n<body>\n\t<script>\n        var newloc = \"/wgcgi.cgi?action=sslvpn_web_logon&fw_logon_type=status\";\n        var search = window.location.search;\n        if (search.length > 1) {\n            search = search.substring(1);\n            newloc += \"&\" + search;\n        }\n        window.location = newloc;\n    </script>\n</body>\n</html>\n",
   "datamd5" : "156bbeabd06ac78c60882cee95f276cb",
   "datammh3" : 518824530,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "domain" : [
      "comcastbusiness.net"
   ],
   "fingerprint" : {
      "md5" : "10a9739e623da3cbf4ce835d8220dc6b",
      "sha1" : "d3af4d4cceda79429772c8c04c325a16b75a9a4d",
      "sha256" : "66148ad8f782231aaa3696ef137c98a7367e41b84f22e7cdfc923711eed0dbf0"
   },
   "geolocus" : {
      "asn" : "AS7922",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "comcast.com",
         "comcast.net",
         "comcastbusiness.net"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "LLEWELYNSCHL",
      "organization" : "Comcast Cable Communications, LLC",
      "subnet" : "50.192.0.0/13"
   },
   "host" : [
      "50-193-98-7-static"
   ],
   "hostname" : [
      "50-193-98-7-static.hfc.comcastbusiness.net"
   ],
   "ip" : "50.193.98.7",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "Fireware web CA",
      "organization" : "WatchGuard",
      "organizationalunit" : "Fireware"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment",
      "keyCertSign",
      "cRLSign"
   ],
   "latitude" : "41.6389",
   "location" : "41.6389,-87.5996",
   "longitude" : "-87.5996",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "COMCAST-7922",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4443,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "OK",
   "reverse" : [
      "50-193-98-7-static.hfc.comcastbusiness.net"
   ],
   "seen_date" : "2024-11-07",
   "serial" : "5a:0d:40:f5",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "hfc.comcastbusiness.net"
   ],
   "subject" : {
      "commonname" : "Fireware web CA",
      "organization" : "WatchGuard",
      "organizationalunit" : "Fireware"
   },
   "subnet" : "50.192.0.0/13",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "net"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2027-11-14T07:40:37Z",
      "notbefore" : "2017-10-17T07:40:37Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
96.86.38.181

Network
96.64.0.0/11

Device

<enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

Operating System
Linux Linux Kernel

URL

https://96.86.38.181:4443/ 200

HTTP Title
Fireware XTM User Authentication

ASN
AS7922

Organization
COMCAST-7922

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Fireware web CA

Issuer Organization
WatchGuard

Subject Organization
WatchGuard

Subject Common Name
Fireware web CA

SHA256 Fingerprint
57fb1b792f3f30f64b3cdb4efdc68cfd3fe4b25dedb34a1c311ca30cfc564094

Validity Not Before
2019-08-27T15:20:00Z

Validity Not After
2029-09-23T15:20:00Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
156bbeabd06ac78c60882cee95f276cb

HTTP Header MD5
c881e4f9f9f1ec7b1c127e4fc193b68f

HTTP Body MD5
b24d2790652e876e8e81d00a49e7762a

HTTP/1.1 200 OK
Date: Thu, 07 Nov 2024 07:57:00 GMT
Content-Type: text/html
Content-Length: 727
Last-Modified: Tue, 17 Oct 2023 18:08:46 GMT
Connection: close
ETag: "652ecdae-2d7"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
X-Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
X-Webkit-CSP: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
Accept-Ranges: bytes

<html>
<head>
	<title>Fireware XTM User Authentication</title>
    <noscript>
        The Fireware XTM User Authentication web page requires that JavaScript
        be enabled in your Web Browser. 
        
        Please retry after enabling JavaScript in your browser. You can use
        the browser's Back button to return to the page you were previously
        viewing.
    </noscript>
</head>
<body>
	<script>
        var newloc = "/wgcgi.cgi?action=sslvpn_web_logon&fw_logon_type=status";
        var search = window.location.search;
        if (search.length > 1) {
            search = search.substring(1);
            newloc += "&" + search;
        }
        window.location = newloc;
    </script>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T07:57:01.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "b24d2790652e876e8e81d00a49e7762a",
         "bodymmh3" : 848362218,
         "header" : [
            {
               "name" : "Last-Modified",
               "value" : "Tue, 17 Oct 2023 18:08:46 GMT"
            },
            {
               "name" : "ETag",
               "value" : "652ecdae-2d7"
            }
         ],
         "headermd5" : "c881e4f9f9f1ec7b1c127e4fc193b68f",
         "headermmh3" : 809880651,
         "title" : "Fireware XTM User Authentication"
      },
      "length" : 1795
   },
   "asn" : "AS7922",
   "ca" : "true",
   "city" : "Washington",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nDate: Thu, 07 Nov 2024 07:57:00 GMT\r\nContent-Type: text/html\r\nContent-Length: 727\r\nLast-Modified: Tue, 17 Oct 2023 18:08:46 GMT\r\nConnection: close\r\nETag: \"652ecdae-2d7\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nStrict-Transport-Security: max-age=31536000\r\nContent-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'\r\nX-Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'\r\nX-Webkit-CSP: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'\r\nAccept-Ranges: bytes\r\n\r\n<html>\n<head>\n\t<title>Fireware XTM User Authentication</title>\n    <noscript>\n        The Fireware XTM User Authentication web page requires that JavaScript\n        be enabled in your Web Browser. \n        \n        Please retry after enabling JavaScript in your browser. You can use\n        the browser's Back button to return to the page you were previously\n        viewing.\n    </noscript>\n</head>\n<body>\n\t<script>\n        var newloc = \"/wgcgi.cgi?action=sslvpn_web_logon&fw_logon_type=status\";\n        var search = window.location.search;\n        if (search.length > 1) {\n            search = search.substring(1);\n            newloc += \"&\" + search;\n        }\n        window.location = newloc;\n    </script>\n</body>\n</html>\n",
   "datamd5" : "156bbeabd06ac78c60882cee95f276cb",
   "datammh3" : 518824530,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "fingerprint" : {
      "md5" : "ebe906c8e2dd2ca1aa20b2518dac94b1",
      "sha1" : "2e9b73459b6f80853846b2c1b6ba58d7dd8e913c",
      "sha256" : "57fb1b792f3f30f64b3cdb4efdc68cfd3fe4b25dedb34a1c311ca30cfc564094"
   },
   "geolocus" : {
      "asn" : "AS7922",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "comcast.com",
         "comcast.net",
         "comcastbusiness.net"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "CENTRAL-PA-CCCS-13",
      "organization" : "Comcast Cable Communications, LLC",
      "subnet" : "96.80.0.0/13"
   },
   "ip" : "96.86.38.181",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "Fireware web CA",
      "organization" : "WatchGuard",
      "organizationalunit" : "Fireware"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment",
      "keyCertSign",
      "cRLSign"
   ],
   "latitude" : "38.8606",
   "location" : "38.8606,-76.9776",
   "longitude" : "-76.9776",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "COMCAST-7922",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4443,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "OK",
   "seen_date" : "2024-11-07",
   "serial" : "5d:8c:d7:1e",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 200,
   "subject" : {
      "commonname" : "Fireware web CA",
      "organization" : "WatchGuard",
      "organizationalunit" : "Fireware"
   },
   "subnet" : "96.64.0.0/11",
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2029-09-23T15:20:00Z",
      "notbefore" : "2019-08-27T15:20:00Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
96.64.5.194

Network
96.64.0.0/11

Device

<enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

Operating System
Linux Linux Kernel

URL

https://96.64.5.194:4443/ 200

HTTP Title
Fireware XTM User Authentication

ASN
AS7922

Organization
COMCAST-7922

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Fireware web CA

Issuer Organization
WatchGuard

Subject Organization
WatchGuard

Subject Common Name
Fireware web CA

SHA256 Fingerprint
0e8783bf0596fa87d2dfd03df17e03181b377a531905aa71d351928fea24b849

Validity Not Before
2017-10-03T00:49:35Z

Validity Not After
2027-10-31T00:49:35Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
156bbeabd06ac78c60882cee95f276cb

HTTP Header MD5
c881e4f9f9f1ec7b1c127e4fc193b68f

HTTP Body MD5
b24d2790652e876e8e81d00a49e7762a

HTTP/1.1 200 OK
Date: Thu, 07 Nov 2024 07:29:46 GMT
Content-Type: text/html
Content-Length: 727
Last-Modified: Fri, 18 May 2018 19:44:54 GMT
Connection: close
ETag: "5aff2d36-2d7"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
X-Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
X-Webkit-CSP: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
Accept-Ranges: bytes

<html>
<head>
	<title>Fireware XTM User Authentication</title>
    <noscript>
        The Fireware XTM User Authentication web page requires that JavaScript
        be enabled in your Web Browser. 
        
        Please retry after enabling JavaScript in your browser. You can use
        the browser's Back button to return to the page you were previously
        viewing.
    </noscript>
</head>
<body>
	<script>
        var newloc = "/wgcgi.cgi?action=sslvpn_web_logon&fw_logon_type=status";
        var search = window.location.search;
        if (search.length > 1) {
            search = search.substring(1);
            newloc += "&" + search;
        }
        window.location = newloc;
    </script>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T07:29:46.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "b24d2790652e876e8e81d00a49e7762a",
         "bodymmh3" : 848362218,
         "header" : [
            {
               "value" : "Fri, 18 May 2018 19:44:54 GMT",
               "name" : "Last-Modified"
            },
            {
               "value" : "5aff2d36-2d7",
               "name" : "ETag"
            }
         ],
         "headermd5" : "c881e4f9f9f1ec7b1c127e4fc193b68f",
         "headermmh3" : -941093127,
         "title" : "Fireware XTM User Authentication"
      },
      "length" : 1795
   },
   "asn" : "AS7922",
   "ca" : "true",
   "city" : "Detroit",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nDate: Thu, 07 Nov 2024 07:29:46 GMT\r\nContent-Type: text/html\r\nContent-Length: 727\r\nLast-Modified: Fri, 18 May 2018 19:44:54 GMT\r\nConnection: close\r\nETag: \"5aff2d36-2d7\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nStrict-Transport-Security: max-age=31536000\r\nContent-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'\r\nX-Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'\r\nX-Webkit-CSP: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'\r\nAccept-Ranges: bytes\r\n\r\n<html>\n<head>\n\t<title>Fireware XTM User Authentication</title>\n    <noscript>\n        The Fireware XTM User Authentication web page requires that JavaScript\n        be enabled in your Web Browser. \n        \n        Please retry after enabling JavaScript in your browser. You can use\n        the browser's Back button to return to the page you were previously\n        viewing.\n    </noscript>\n</head>\n<body>\n\t<script>\n        var newloc = \"/wgcgi.cgi?action=sslvpn_web_logon&fw_logon_type=status\";\n        var search = window.location.search;\n        if (search.length > 1) {\n            search = search.substring(1);\n            newloc += \"&\" + search;\n        }\n        window.location = newloc;\n    </script>\n</body>\n</html>\n",
   "datamd5" : "156bbeabd06ac78c60882cee95f276cb",
   "datammh3" : 518824530,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "fingerprint" : {
      "md5" : "345b1c47130c831d7d1dad615f9d2118",
      "sha1" : "2f756189d82c57f9299d674e68670df0e09b3cb3",
      "sha256" : "0e8783bf0596fa87d2dfd03df17e03181b377a531905aa71d351928fea24b849"
   },
   "geolocus" : {
      "asn" : "AS7922",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "comcast.com",
         "comcast.net"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "MICHIGAN-CCCS-35",
      "organization" : "Comcast Cable Communications, LLC",
      "subnet" : "96.64.0.0/12"
   },
   "ip" : "96.64.5.194",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "Fireware web CA",
      "organization" : "WatchGuard",
      "organizationalunit" : "Fireware"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment",
      "keyCertSign",
      "cRLSign"
   ],
   "latitude" : "42.4257",
   "location" : "42.4257,-83.1522",
   "longitude" : "-83.1522",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "COMCAST-7922",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4443,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "OK",
   "seen_date" : "2024-11-07",
   "serial" : "59:fa:6b:9c",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 200,
   "subject" : {
      "commonname" : "Fireware web CA",
      "organization" : "WatchGuard",
      "organizationalunit" : "Fireware"
   },
   "subnet" : "96.64.0.0/11",
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2027-10-31T00:49:35Z",
      "notbefore" : "2017-10-03T00:49:35Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
50.168.95.58

Network
50.168.64.0/19

Domain(s)
comcastbusiness.net

Device

<enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

Operating System
Linux Linux Kernel

Reverse DNS
c-50-168-95-58.unallocated.comcastbusiness.net

ASN
AS7922

Organization
COMCAST-7922

Protocol
undefined Cert not expired undefined

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Fireware web CA

Issuer Organization
WatchGuard

Subject Organization
WatchGuard

Subject Common Name
Fireware web CA

SHA256 Fingerprint
414313683f9e1617054bc613bd2dd71db3ea771ebb1fc934a75d4f9bd5fe1e13

Validity Not Before
2022-04-23T01:38:25Z

Validity Not After
2032-05-20T01:38:25Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
3c768c4828bc7cf16f444a4228eaa0b3
```
<nodata>
```

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T06:52:56.000Z",
   "app" : {
      "length" : 8
   },
   "asn" : "AS7922",
   "ca" : "true",
   "city" : "Salt Lake City",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "<nodata>",
   "datamd5" : "3c768c4828bc7cf16f444a4228eaa0b3",
   "datammh3" : -969888823,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "domain" : [
      "comcastbusiness.net"
   ],
   "fingerprint" : {
      "md5" : "8faaa30bc8391a1e44db5992f60b60b5",
      "sha1" : "630e50d232304ba1c5ba0394d04bf64c6fdef4ff",
      "sha256" : "414313683f9e1617054bc613bd2dd71db3ea771ebb1fc934a75d4f9bd5fe1e13"
   },
   "geolocus" : {
      "asn" : "AS7922",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "comcast.com",
         "comcast.net"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "UTAH-CCS-1",
      "organization" : "Comcast Cable Communications, LLC",
      "subnet" : "50.168.80.0/20"
   },
   "host" : [
      "c-50-168-95-58"
   ],
   "hostname" : [
      "c-50-168-95-58.unallocated.comcastbusiness.net"
   ],
   "ip" : "50.168.95.58",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "Fireware web CA",
      "organization" : "WatchGuard",
      "organizationalunit" : "Fireware"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment",
      "keyCertSign",
      "cRLSign"
   ],
   "latitude" : "40.7406",
   "location" : "40.7406,-111.8230",
   "longitude" : "-111.8230",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "COMCAST-7922",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4443,
   "protocol" : "undefined",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "c-50-168-95-58.unallocated.comcastbusiness.net"
   ],
   "seen_date" : "2024-11-07",
   "serial" : "62:8a:e5:90",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subdomains" : [
      "unallocated.comcastbusiness.net"
   ],
   "subject" : {
      "commonname" : "Fireware web CA",
      "organization" : "WatchGuard",
      "organizationalunit" : "Fireware"
   },
   "subnet" : "50.168.64.0/19",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "net"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2032-05-20T01:38:25Z",
      "notbefore" : "2022-04-23T01:38:25Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
50.73.105.34

Network
50.73.0.0/16

Domain(s)
comcastbusiness.net

Device

<enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

Operating System
Linux Linux Kernel

Reverse DNS
50-73-105-34-ip-static.hfc.comcastbusiness.net

ASN
AS7922

Organization
COMCAST-7922

Protocol
undefined Cert not expired undefined

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Fireware web CA

Issuer Organization
WatchGuard

Subject Organization
WatchGuard

Subject Common Name
Fireware web CA

SHA256 Fingerprint
046f77abb3d3020e74dbca2f116762704b82476aa143e0e186427b53244aaaab

Validity Not Before
2022-06-13T13:35:23Z

Validity Not After
2032-07-10T13:35:23Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
3c768c4828bc7cf16f444a4228eaa0b3
```
<nodata>
```

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T06:46:22.000Z",
   "app" : {
      "length" : 8
   },
   "asn" : "AS7922",
   "ca" : "true",
   "city" : "Downers Grove",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "<nodata>",
   "datamd5" : "3c768c4828bc7cf16f444a4228eaa0b3",
   "datammh3" : -969888823,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "domain" : [
      "comcastbusiness.net"
   ],
   "fingerprint" : {
      "md5" : "d58bc8f20d37fdfc8c68c8d5044240f5",
      "sha1" : "c0edb66e12f2ecbd3676cb6e8ebd159dd1fb0815",
      "sha256" : "046f77abb3d3020e74dbca2f116762704b82476aa143e0e186427b53244aaaab"
   },
   "geolocus" : {
      "asn" : "AS7922",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "comcast.com",
         "comcast.net",
         "safemedia.com",
         "safemediacorp.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "SAFEMEDICORP2",
      "organization" : "Comcast Cable Communications, LLC",
      "subnet" : "50.73.0.0/16"
   },
   "host" : [
      "50-73-105-34-ip-static"
   ],
   "hostname" : [
      "50-73-105-34-ip-static.hfc.comcastbusiness.net"
   ],
   "ip" : "50.73.105.34",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "Fireware web CA",
      "organization" : "WatchGuard",
      "organizationalunit" : "Fireware"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment",
      "keyCertSign",
      "cRLSign"
   ],
   "latitude" : "41.7609",
   "location" : "41.7609,-88.0151",
   "longitude" : "-88.0151",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "COMCAST-7922",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4443,
   "protocol" : "undefined",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "50-73-105-34-ip-static.hfc.comcastbusiness.net"
   ],
   "seen_date" : "2024-11-07",
   "serial" : "62:ce:ca:1a",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subdomains" : [
      "hfc.comcastbusiness.net"
   ],
   "subject" : {
      "commonname" : "Fireware web CA",
      "organization" : "WatchGuard",
      "organizationalunit" : "Fireware"
   },
   "subnet" : "50.73.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "net"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2032-07-10T13:35:23Z",
      "notbefore" : "2022-06-13T13:35:23Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
96.87.18.5

Network
96.64.0.0/11

Device

<enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

Operating System
Linux Linux Kernel

ASN
AS7922

Organization
COMCAST-7922

Protocol
undefined Cert not expired undefined

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Fireware web CA

Issuer Organization
WatchGuard

Subject Organization
WatchGuard

Subject Common Name
Fireware web CA

SHA256 Fingerprint
35e0bee1f53c0b8d245e2bb61f702ce7c6ba52953aa310d3982e02261b57c7ad

Validity Not Before
2022-03-16T17:35:47Z

Validity Not After
2032-04-12T17:35:47Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
3c768c4828bc7cf16f444a4228eaa0b3
```
<nodata>
```

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T06:42:28.000Z",
   "app" : {
      "length" : 8
   },
   "asn" : "AS7922",
   "ca" : "true",
   "city" : "Savannah",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "<nodata>",
   "datamd5" : "3c768c4828bc7cf16f444a4228eaa0b3",
   "datammh3" : -969888823,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "fingerprint" : {
      "md5" : "1c60924d428641d22bf822bb16ffeb56",
      "sha1" : "bf1d3718c4a5b1dee3a69630ecc540b298f32eba",
      "sha256" : "35e0bee1f53c0b8d245e2bb61f702ce7c6ba52953aa310d3982e02261b57c7ad"
   },
   "geolocus" : {
      "asn" : "AS7922",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "comcast.com",
         "comcast.net",
         "comcastbusiness.net"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "CENTRAL-PA-CCCS-13",
      "organization" : "Comcast Cable Communications, LLC",
      "subnet" : "96.80.0.0/13"
   },
   "ip" : "96.87.18.5",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "Fireware web CA",
      "organization" : "WatchGuard",
      "organizationalunit" : "Fireware"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment",
      "keyCertSign",
      "cRLSign"
   ],
   "latitude" : "32.0388",
   "location" : "32.0388,-81.1219",
   "longitude" : "-81.1219",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "COMCAST-7922",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4443,
   "protocol" : "undefined",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "seen_date" : "2024-11-07",
   "serial" : "62:59:ac:f3",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "commonname" : "Fireware web CA",
      "organization" : "WatchGuard",
      "organizationalunit" : "Fireware"
   },
   "subnet" : "96.64.0.0/11",
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2032-04-12T17:35:47Z",
      "notbefore" : "2022-03-16T17:35:47Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
50.168.95.58

Network
50.168.64.0/19

Domain(s)
comcastbusiness.net

Device

<enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

Operating System
Linux Linux Kernel

URL

https://50.168.95.58:4443/ 200

HTTP Title
Fireware XTM User Authentication

Reverse DNS
c-50-168-95-58.unallocated.comcastbusiness.net

ASN
AS7922

Organization
COMCAST-7922

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Fireware web CA

Issuer Organization
WatchGuard

Subject Organization
WatchGuard

Subject Common Name
Fireware web CA

SHA256 Fingerprint
414313683f9e1617054bc613bd2dd71db3ea771ebb1fc934a75d4f9bd5fe1e13

Validity Not Before
2022-04-23T01:38:25Z

Validity Not After
2032-05-20T01:38:25Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
156bbeabd06ac78c60882cee95f276cb

HTTP Header MD5
c881e4f9f9f1ec7b1c127e4fc193b68f

HTTP Body MD5
b24d2790652e876e8e81d00a49e7762a

HTTP/1.1 200 OK
Date: Thu, 07 Nov 2024 06:40:14 GMT
Content-Type: text/html
Content-Length: 727
Last-Modified: Fri, 29 Mar 2024 03:37:17 GMT
Connection: close
ETag: "6606376d-2d7"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
X-Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
X-Webkit-CSP: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
Accept-Ranges: bytes

<html>
<head>
	<title>Fireware XTM User Authentication</title>
    <noscript>
        The Fireware XTM User Authentication web page requires that JavaScript
        be enabled in your Web Browser. 
        
        Please retry after enabling JavaScript in your browser. You can use
        the browser's Back button to return to the page you were previously
        viewing.
    </noscript>
</head>
<body>
	<script>
        var newloc = "/wgcgi.cgi?action=sslvpn_web_logon&fw_logon_type=status";
        var search = window.location.search;
        if (search.length > 1) {
            search = search.substring(1);
            newloc += "&" + search;
        }
        window.location = newloc;
    </script>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T06:40:14.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "b24d2790652e876e8e81d00a49e7762a",
         "bodymmh3" : 848362218,
         "header" : [
            {
               "name" : "Last-Modified",
               "value" : "Fri, 29 Mar 2024 03:37:17 GMT"
            },
            {
               "value" : "6606376d-2d7",
               "name" : "ETag"
            }
         ],
         "headermd5" : "c881e4f9f9f1ec7b1c127e4fc193b68f",
         "headermmh3" : 1103204275,
         "title" : "Fireware XTM User Authentication"
      },
      "length" : 1795
   },
   "asn" : "AS7922",
   "ca" : "true",
   "city" : "Salt Lake City",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nDate: Thu, 07 Nov 2024 06:40:14 GMT\r\nContent-Type: text/html\r\nContent-Length: 727\r\nLast-Modified: Fri, 29 Mar 2024 03:37:17 GMT\r\nConnection: close\r\nETag: \"6606376d-2d7\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nStrict-Transport-Security: max-age=31536000\r\nContent-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'\r\nX-Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'\r\nX-Webkit-CSP: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'\r\nAccept-Ranges: bytes\r\n\r\n<html>\n<head>\n\t<title>Fireware XTM User Authentication</title>\n    <noscript>\n        The Fireware XTM User Authentication web page requires that JavaScript\n        be enabled in your Web Browser. \n        \n        Please retry after enabling JavaScript in your browser. You can use\n        the browser's Back button to return to the page you were previously\n        viewing.\n    </noscript>\n</head>\n<body>\n\t<script>\n        var newloc = \"/wgcgi.cgi?action=sslvpn_web_logon&fw_logon_type=status\";\n        var search = window.location.search;\n        if (search.length > 1) {\n            search = search.substring(1);\n            newloc += \"&\" + search;\n        }\n        window.location = newloc;\n    </script>\n</body>\n</html>\n",
   "datamd5" : "156bbeabd06ac78c60882cee95f276cb",
   "datammh3" : 518824530,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "domain" : [
      "comcastbusiness.net"
   ],
   "fingerprint" : {
      "md5" : "8faaa30bc8391a1e44db5992f60b60b5",
      "sha1" : "630e50d232304ba1c5ba0394d04bf64c6fdef4ff",
      "sha256" : "414313683f9e1617054bc613bd2dd71db3ea771ebb1fc934a75d4f9bd5fe1e13"
   },
   "geolocus" : {
      "asn" : "AS7922",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "comcast.com",
         "comcast.net"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "UTAH-CCS-1",
      "organization" : "Comcast Cable Communications, LLC",
      "subnet" : "50.168.80.0/20"
   },
   "host" : [
      "c-50-168-95-58"
   ],
   "hostname" : [
      "c-50-168-95-58.unallocated.comcastbusiness.net"
   ],
   "ip" : "50.168.95.58",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "Fireware web CA",
      "organization" : "WatchGuard",
      "organizationalunit" : "Fireware"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment",
      "keyCertSign",
      "cRLSign"
   ],
   "latitude" : "40.7406",
   "location" : "40.7406,-111.8230",
   "longitude" : "-111.8230",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "COMCAST-7922",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 4443,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "OK",
   "reverse" : [
      "c-50-168-95-58.unallocated.comcastbusiness.net"
   ],
   "seen_date" : "2024-11-07",
   "serial" : "62:8a:e5:90",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "unallocated.comcastbusiness.net"
   ],
   "subject" : {
      "commonname" : "Fireware web CA",
      "organization" : "WatchGuard",
      "organizationalunit" : "Fireware"
   },
   "subnet" : "50.168.64.0/19",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "net"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2032-05-20T01:38:25Z",
      "notbefore" : "2022-04-23T01:38:25Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

Returning 10 result(s) out of 3,468 in 0.515 second(s)

50.193.98.7:4443 (tcp/undefined/tls) - last seen on 2024-11-07 at 08:42:17 UTC

173.160.138.36:4443 (tcp/http/tls) - last seen on 2024-11-07 at 08:41:57 UTC

96.64.5.194:4443 (tcp/undefined/tls) - last seen on 2024-11-07 at 08:00:39 UTC

50.193.98.7:4443 (tcp/http/tls) - last seen on 2024-11-07 at 07:58:49 UTC

96.86.38.181:4443 (tcp/http/tls) - last seen on 2024-11-07 at 07:57:01 UTC

96.64.5.194:4443 (tcp/http/tls) - last seen on 2024-11-07 at 07:29:46 UTC

50.168.95.58:4443 (tcp/undefined/tls) - last seen on 2024-11-07 at 06:52:56 UTC

50.73.105.34:4443 (tcp/undefined/tls) - last seen on 2024-11-07 at 06:46:22 UTC

96.87.18.5:4443 (tcp/undefined/tls) - last seen on 2024-11-07 at 06:42:28 UTC

50.168.95.58:4443 (tcp/http/tls) - last seen on 2024-11-07 at 06:40:14 UTC