Cyber Defense Search Engine

IP
35.93.153.42

Network
35.80.0.0/12

Domain(s)
amazonaws.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://35.93.153.42:3780/ 200

HTTP Title
Ray Dashboard

Reverse DNS
ec2-35-93-153-42.us-west-2.compute.amazonaws.com

ASN
AS16509

Organization
AMAZON-02

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
f877fb142569cd4e3d1a157ce28b1a00

HTTP Header MD5
9eae81c07eb3b6a669f5e5feb9ff8fc4

HTTP Body MD5
d8a4f9e0ac5057437828492f30c1d1ad

Favicon MD5
2b86aa50c3a66bb77ff07c42cc051dcc

Favicon MMH3
-1216248324

HTTP/1.1 200 OK
Connection: close
Date: Thu, 21 Nov 2024 08:34:06 GMT
Server: Python/3.11 aiohttp/3.9.5
Content-Type: application/json; charset=utf-8
Content-Length: 446

<!doctype html><html lang="en"><head><meta charset="utf-8"/><link rel="shortcut icon" href="./favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><title>Ray Dashboard</title><script defer="defer" src="./static/js/main.8c11aab8.js"></script><link href="./static/css/main.388a904b.css" rel="stylesheet"></head><body><noscript>You need to enable JavaScript to run this app.</noscript><div id="root"></div></body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:41:05.000Z",
   "app" : {
      "favicon" : {
         "image" : "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",
         "imagemd5" : "2b86aa50c3a66bb77ff07c42cc051dcc",
         "imagemmh3" : -1216248324,
         "length" : 1078,
         "url" : "/favicon.ico"
      },
      "http" : {
         "bodymd5" : "d8a4f9e0ac5057437828492f30c1d1ad",
         "bodymmh3" : 1173419914,
         "headermd5" : "9eae81c07eb3b6a669f5e5feb9ff8fc4",
         "headermmh3" : 432171948,
         "title" : "Ray Dashboard"
      },
      "length" : 624
   },
   "asn" : "AS16509",
   "city" : "Boardman",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nConnection: close\r\nDate: Thu, 21 Nov 2024 08:34:06 GMT\r\nServer: Python/3.11 aiohttp/3.9.5\r\nContent-Type: application/json; charset=utf-8\r\nContent-Length: 446\r\n\r\n<!doctype html><html lang=\"en\"><head><meta charset=\"utf-8\"/><link rel=\"shortcut icon\" href=\"./favicon.ico\"/><meta name=\"viewport\" content=\"width=device-width,initial-scale=1\"/><title>Ray Dashboard</title><script defer=\"defer\" src=\"./static/js/main.8c11aab8.js\"></script><link href=\"./static/css/main.388a904b.css\" rel=\"stylesheet\"></head><body><noscript>You need to enable JavaScript to run this app.</noscript><div id=\"root\"></div></body></html>",
   "datamd5" : "f877fb142569cd4e3d1a157ce28b1a00",
   "datammh3" : -196754178,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amazonaws.com"
   ],
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "amazon.com",
         "amazonaws.com",
         "aws.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "AMAZON-ZPDX",
      "organization" : "Amazon.com, Inc.",
      "subnet" : "35.80.0.0/12"
   },
   "host" : [
      "ec2-35-93-153-42"
   ],
   "hostname" : [
      "ec2-35-93-153-42.us-west-2.compute.amazonaws.com"
   ],
   "ip" : "35.93.153.42",
   "ipv6" : "false",
   "latitude" : "45.8491",
   "location" : "45.8491,-119.7143",
   "longitude" : "-119.7143",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 3780,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "ec2-35-93-153-42.us-west-2.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "compute.amazonaws.com",
      "us-west-2.compute.amazonaws.com"
   ],
   "subnet" : "35.80.0.0/12",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
59.75.40.57

Network
59.64.0.0/12

Device

<enterprise field>: device.class

URL

http://59.75.40.57:3780/ 302

ASN
AS4538

Organization
China Education and Research Network Center

Protocol
http

Source
datascan

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
96d7aced4477a5334c7de4616620bcc7

HTTP Header MD5
17494da67b263d49a356f29516833bab

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e

HTTP/1.1 302 Moved Temporarily
Server: DrcomServer1.0
Location: http://192.168.254.3
Cache-Control: no-cache
Content-Length: 0
Connection: close

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:36:30.000Z",
   "app" : {
      "extract" : {
         "ip" : [
            "192.168.254.3"
         ],
         "url" : [
            "http://192.168.254.3"
         ]
      },
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1,
         "headermd5" : "17494da67b263d49a356f29516833bab",
         "headermmh3" : 1664562682
      },
      "length" : 153
   },
   "asn" : "AS4538",
   "country" : "CN",
   "data" : "HTTP/1.1 302 Moved Temporarily\r\nServer: DrcomServer1.0\r\nLocation: http://192.168.254.3\r\nCache-Control: no-cache\r\nContent-Length: 0\r\nConnection: close\r\n\r\n",
   "datamd5" : "96d7aced4477a5334c7de4616620bcc7",
   "datammh3" : 1446480259,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4538",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "cernet.edu.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "XAR-CERNET",
      "organization" : "China Education and Research Network",
      "subnet" : "59.75.40.0/26"
   },
   "ip" : "59.75.40.57",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "China Education and Research Network Center",
   "port" : 3780,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Moved Temporarily",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 302,
   "subnet" : "59.64.0.0/12",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
65.111.1.229

Network
65.111.0.0/19

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://65.111.1.229:3780/ 407

ASN
AS200373

Organization
3xK Tech GmbH

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
beff904528226673ee6dbdb9e7fe6002

HTTP Header MD5
4bd5a82db187fbf06a2b7f25b880c717

HTTP Body MD5
917a0ae17b6e9db13c448d39f37c69ca

HTTP/1.1 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm=""

Proxy Authentication Required

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:36:19.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "917a0ae17b6e9db13c448d39f37c69ca",
         "bodymmh3" : -1539650452,
         "headermd5" : "4bd5a82db187fbf06a2b7f25b880c717",
         "headermmh3" : 372433470
      },
      "length" : 111
   },
   "asn" : "AS200373",
   "city" : "Ashburn",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 407 Proxy Authentication Required\r\nProxy-Authenticate: Basic realm=\"\"\r\n\r\nProxy Authentication Required",
   "datamd5" : "beff904528226673ee6dbdb9e7fe6002",
   "datammh3" : 501879459,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "ip" : "65.111.1.229",
   "ipv6" : "false",
   "latitude" : "39.0469",
   "location" : "39.0469,-77.4903",
   "longitude" : "-77.4903",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "3xK Tech GmbH",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 3780,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Proxy Authentication Required",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 407,
   "subnet" : "65.111.0.0/19",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
45.3.44.154

Network
45.3.32.0/20

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://45.3.44.154:3780/ 407

ASN
AS200373

Organization
3xK Tech GmbH

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
beff904528226673ee6dbdb9e7fe6002

HTTP Header MD5
4bd5a82db187fbf06a2b7f25b880c717

HTTP Body MD5
917a0ae17b6e9db13c448d39f37c69ca

HTTP/1.1 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm=""

Proxy Authentication Required

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:35:36.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "917a0ae17b6e9db13c448d39f37c69ca",
         "bodymmh3" : -1539650452,
         "headermd5" : "4bd5a82db187fbf06a2b7f25b880c717",
         "headermmh3" : 372433470
      },
      "length" : 111
   },
   "asn" : "AS200373",
   "city" : "London",
   "country" : "GB",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 407 Proxy Authentication Required\r\nProxy-Authenticate: Basic realm=\"\"\r\n\r\nProxy Authentication Required",
   "datamd5" : "beff904528226673ee6dbdb9e7fe6002",
   "datammh3" : 501879459,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS55933",
      "continent" : "OC",
      "continentname" : "Oceania",
      "country" : "AU",
      "countryname" : "Australia",
      "domain" : [
         "apnic.net"
      ],
      "isineu" : "false",
      "latitude" : "-25.274398",
      "location" : "-25.274398,133.775136",
      "longitude" : "133.775136",
      "netname" : "IANA-NETBLOCK-45",
      "organization" : "This network range is not fully allocated to APNIC.",
      "subnet" : "45.0.0.0/8"
   },
   "ip" : "45.3.44.154",
   "ipv6" : "false",
   "latitude" : "51.5088",
   "location" : "51.5088,-0.0930",
   "longitude" : "-0.0930",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "3xK Tech GmbH",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 3780,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Proxy Authentication Required",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 407,
   "subnet" : "45.3.32.0/20",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
37.81.89.56

Network
37.80.0.0/12

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

ASN
AS3320

Organization
Deutsche Telekom AG

Protocol
unknown

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
68b329da9893e34099c7d8ad5cb9c940

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:35:30.000Z",
   "app" : {
      "length" : 1
   },
   "asn" : "AS3320",
   "city" : "Kettig",
   "country" : "DE",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "\n",
   "datamd5" : "68b329da9893e34099c7d8ad5cb9c940",
   "datammh3" : -1840324437,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS3320",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "DE",
      "countryname" : "Germany",
      "domain" : [
         "telekom.de"
      ],
      "isineu" : "true",
      "latitude" : "51.165691",
      "location" : "51.165691,10.451526",
      "longitude" : "10.451526",
      "netname" : "TDMOBILE-2",
      "organization" : "Telekom Deutschland GmbH",
      "subnet" : "37.80.0.0/13"
   },
   "ip" : "37.81.89.56",
   "ipv6" : "false",
   "latitude" : "50.4007",
   "location" : "50.4007,7.4688",
   "longitude" : "7.4688",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Deutsche Telekom AG",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 3780,
   "protocol" : "unknown",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subnet" : "37.80.0.0/12",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
36.150.76.85

Network
36.150.0.0/15

Device

<enterprise field>: device.class

Operating System
Linux Linux CentOS

URL

http://36.150.76.85:3780/ 200

HTTP Title
Welcome to This Page

ASN
AS56046

Organization
China Mobile communications corporation

Protocol
http

Source
datascan
Operating System
Linux Linux CentOS

Product
Apache HTTP Server 2.4.6

HTTP Component(s)
OpenSSL OpenSSL 1.0.2k PHP PHP 5.4.16

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
effdab47034f9427deba3f14fdd40ed4

HTTP Header MD5
c9f4e58cd7cbde1eafc8e426bde7e91c

HTTP Body MD5
0d67ac91d6ed4369f1b55682742dbea4

HTTP/1.1 200 OK
Connection: close
Content-Type: text/html
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16
Content-length: 148

<htm>
    <title>Welcome to This Page</title>
    <body>
        <h1>Welcome to This Page, Your Ipaddr Is <srcip></h1>
    </body>
</htm>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:35:29.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "0d67ac91d6ed4369f1b55682742dbea4",
         "bodymmh3" : 1091654428,
         "component" : [
            {
               "productvendor" : "OpenSSL",
               "product" : "OpenSSL",
               "productversion" : "1.0.2k"
            },
            {
               "productvendor" : "PHP",
               "product" : "PHP",
               "productversion" : "5.4.16"
            }
         ],
         "headermd5" : "c9f4e58cd7cbde1eafc8e426bde7e91c",
         "headermmh3" : -1326939870,
         "title" : "Welcome to This Page"
      },
      "length" : 288
   },
   "asn" : "AS56046",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nConnection: close\r\nContent-Type: text/html\r\nServer: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16\r\nContent-length: 148\r\n\r\n<htm>\r\n    <title>Welcome to This Page</title>\r\n    <body>\r\n        <h1>Welcome to This Page, Your Ipaddr Is <srcip></h1>\r\n    </body>\r\n</htm>",
   "datamd5" : "effdab47034f9427deba3f14fdd40ed4",
   "datammh3" : 260619748,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS56046",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinamobile.com"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "CMNET",
      "organization" : "China Mobile Communications Corporation",
      "subnet" : "36.150.0.0/15"
   },
   "ip" : "36.150.76.85",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "China Mobile communications corporation",
   "os" : "Linux",
   "osdistribution" : "CentOS",
   "osvendor" : "Linux",
   "port" : 3780,
   "product" : "HTTP Server",
   "productvendor" : "Apache",
   "productversion" : "2.4.6",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "36.150.0.0/15",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
65.111.15.191

Network
65.111.0.0/19

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://65.111.15.191:3780/ 407

ASN
AS200373

Organization
3xK Tech GmbH

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
beff904528226673ee6dbdb9e7fe6002

HTTP Header MD5
4bd5a82db187fbf06a2b7f25b880c717

HTTP Body MD5
917a0ae17b6e9db13c448d39f37c69ca

HTTP/1.1 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm=""

Proxy Authentication Required

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:35:22.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "917a0ae17b6e9db13c448d39f37c69ca",
         "bodymmh3" : -1539650452,
         "headermd5" : "4bd5a82db187fbf06a2b7f25b880c717",
         "headermmh3" : 372433470
      },
      "length" : 111
   },
   "asn" : "AS200373",
   "city" : "Ashburn",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 407 Proxy Authentication Required\r\nProxy-Authenticate: Basic realm=\"\"\r\n\r\nProxy Authentication Required",
   "datamd5" : "beff904528226673ee6dbdb9e7fe6002",
   "datammh3" : 501879459,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "ip" : "65.111.15.191",
   "ipv6" : "false",
   "latitude" : "39.0469",
   "location" : "39.0469,-77.4903",
   "longitude" : "-77.4903",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "3xK Tech GmbH",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 3780,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Proxy Authentication Required",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 407,
   "subnet" : "65.111.0.0/19",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
189.130.62.88

Network
189.130.0.0/15

Domain(s)
prod-infinitum.com.mx

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://189.130.62.88:3780/ 200

HTTP Title
IIS Windows Server

Reverse DNS
dsl-189-130-62-88-dyn.prod-infinitum.com.mx

ASN
AS8151

Organization
UNINET

Protocol
http

Source
datascan
Operating System
Microsoft Windows

Product
Microsoft IIS 10.0

HTTP Component(s)
Microsoft ASP.NET Microsoft IIS

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0ca775a6b65f845f5163e490398a9acf

HTTP Header MD5
c45e463ffd89b34a781c977b38f3ecbc

HTTP Body MD5
654ae82705924352d2363b1d797997ce

HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Wed, 30 Nov 2022 22:58:39 GMT
Accept-Ranges: bytes
ETag: "bb292f49f5d91:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Thu, 21 Nov 2024 08:30:56 GMT
Connection: close
Content-Length: 703

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
<title>IIS Windows Server</title>
<style type="text/css">
<!--
body {
	color:#000000;
	background-color:#0072C6;
	margin:0;
}

#container {
	margin-left:auto;
	margin-right:auto;
	text-align:center;
	}

a img {
	border:none;
}

-->
</style>
</head>
<body>
<div id="container">
<a href="http://go.microsoft.com/fwlink/?linkid=66138&amp;clcid=0x409"><img src="iisstart.png" alt="IIS" width="960" height="600" /></a>
</div>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:35:20.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "w3.org",
            "microsoft.com"
         ],
         "hostname" : [
            "go.microsoft.com",
            "www.w3.org"
         ],
         "url" : [
            "http://go.microsoft.com/fwlink/?linkid=66138&amp;clcid=0x409",
            "http://www.w3.org/1999/xhtml",
            "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"
         ]
      },
      "http" : {
         "bodymd5" : "654ae82705924352d2363b1d797997ce",
         "bodymmh3" : 703707298,
         "component" : [
            {
               "productvendor" : "Microsoft",
               "product" : "IIS"
            },
            {
               "productvendor" : "Microsoft",
               "product" : "ASP.NET"
            }
         ],
         "header" : [
            {
               "name" : "Last-Modified",
               "value" : "Wed, 30 Nov 2022 22:58:39 GMT"
            },
            {
               "name" : "ETag",
               "value" : "bb292f49f5d91:0"
            }
         ],
         "headermd5" : "c45e463ffd89b34a781c977b38f3ecbc",
         "headermmh3" : -1367846120,
         "title" : "IIS Windows Server"
      },
      "length" : 968
   },
   "asn" : "AS8151",
   "city" : "Cuauht\u00e9moc",
   "country" : "MX",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nContent-Type: text/html\r\nLast-Modified: Wed, 30 Nov 2022 22:58:39 GMT\r\nAccept-Ranges: bytes\r\nETag: \"bb292f49f5d91:0\"\r\nServer: Microsoft-IIS/10.0\r\nX-Powered-By: ASP.NET\r\nDate: Thu, 21 Nov 2024 08:30:56 GMT\r\nConnection: close\r\nContent-Length: 703\r\n\r\n<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Strict//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd\">\r\n<html xmlns=\"http://www.w3.org/1999/xhtml\">\r\n<head>\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-1\" />\r\n<title>IIS Windows Server</title>\r\n<style type=\"text/css\">\r\n<!--\r\nbody {\r\n\tcolor:#000000;\r\n\tbackground-color:#0072C6;\r\n\tmargin:0;\r\n}\r\n\r\n#container {\r\n\tmargin-left:auto;\r\n\tmargin-right:auto;\r\n\ttext-align:center;\r\n\t}\r\n\r\na img {\r\n\tborder:none;\r\n}\r\n\r\n-->\r\n</style>\r\n</head>\r\n<body>\r\n<div id=\"container\">\r\n<a href=\"http://go.microsoft.com/fwlink/?linkid=66138&amp;clcid=0x409\"><img src=\"iisstart.png\" alt=\"IIS\" width=\"960\" height=\"600\" /></a>\r\n</div>\r\n</body>\r\n</html>",
   "datamd5" : "0ca775a6b65f845f5163e490398a9acf",
   "datammh3" : 1065540519,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "prod-infinitum.com.mx"
   ],
   "geolocus" : {
      "asn" : "AS8151",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "MX",
      "countryname" : "Mexico",
      "domain" : [
         "prod-infinitum.com.mx",
         "reduno.com.mx",
         "uninet.net.mx"
      ],
      "isineu" : "false",
      "latitude" : "23.634501",
      "location" : "23.634501,-102.552784",
      "longitude" : "-102.552784",
      "netname" : "MX-GDUN-LACNIC",
      "organization" : "Gestion de direccionamiento UniNet",
      "subnet" : "189.130.0.0/15"
   },
   "host" : [
      "dsl-189-130-62-88-dyn"
   ],
   "hostname" : [
      "dsl-189-130-62-88-dyn.prod-infinitum.com.mx"
   ],
   "ip" : "189.130.62.88",
   "ipv6" : "false",
   "latitude" : "19.4105",
   "location" : "19.4105,-99.1326",
   "longitude" : "-99.1326",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "UNINET",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "osversion" : [
      "Server 2016",
      10
   ],
   "port" : 3780,
   "product" : "IIS",
   "productvendor" : "Microsoft",
   "productversion" : "10.0",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "dsl-189-130-62-88-dyn.prod-infinitum.com.mx"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "189.130.0.0/15",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com.mx"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
65.111.29.225

Network
65.111.0.0/19

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://65.111.29.225:3780/ 407

ASN
AS200373

Organization
3xK Tech GmbH

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
beff904528226673ee6dbdb9e7fe6002

HTTP Header MD5
4bd5a82db187fbf06a2b7f25b880c717

HTTP Body MD5
917a0ae17b6e9db13c448d39f37c69ca

HTTP/1.1 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm=""

Proxy Authentication Required

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:34:58.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "917a0ae17b6e9db13c448d39f37c69ca",
         "bodymmh3" : -1539650452,
         "headermd5" : "4bd5a82db187fbf06a2b7f25b880c717",
         "headermmh3" : 372433470
      },
      "length" : 111
   },
   "asn" : "AS200373",
   "city" : "Ashburn",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 407 Proxy Authentication Required\r\nProxy-Authenticate: Basic realm=\"\"\r\n\r\nProxy Authentication Required",
   "datamd5" : "beff904528226673ee6dbdb9e7fe6002",
   "datammh3" : 501879459,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "ip" : "65.111.29.225",
   "ipv6" : "false",
   "latitude" : "39.0469",
   "location" : "39.0469,-77.4903",
   "longitude" : "-77.4903",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "3xK Tech GmbH",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 3780,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Proxy Authentication Required",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 407,
   "subnet" : "65.111.0.0/19",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
89.28.118.46

Network
89.28.0.0/17

Domain(s)
starnet.md

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://89.28.118.46:3780/ 400

Reverse DNS
89-28-118-46.starnet.md

ASN
AS31252

Organization
StarNet Solutii SRL

Protocol
http

Source
datascan
Operating System
Microsoft Windows

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
2225289e6a6d4ccc44ec3bf379b3ef6d

HTTP Header MD5
52940b1bd2b33c864453c0ba0f471fe1

HTTP Body MD5
aafa1753cf7c9ec4007a52d13c41571e

HTTP/1.1 400 ERROR
Connection: keep-alive
Content-Length: 15
Content-Type: text/html

invalid request

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:34:31.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "aafa1753cf7c9ec4007a52d13c41571e",
         "bodymmh3" : 1593961120,
         "headermd5" : "52940b1bd2b33c864453c0ba0f471fe1",
         "headermmh3" : 1054350026
      },
      "length" : 106
   },
   "asn" : "AS31252",
   "city" : "Chisinau",
   "country" : "MD",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 ERROR\r\nConnection: keep-alive\r\nContent-Length: 15\r\nContent-Type: text/html\r\n\r\ninvalid request",
   "datamd5" : "2225289e6a6d4ccc44ec3bf379b3ef6d",
   "datammh3" : -286403791,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "starnet.md"
   ],
   "geolocus" : {
      "asn" : "AS31252",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "MD",
      "countryname" : "Moldova",
      "domain" : [
         "starnet.md"
      ],
      "isineu" : "false",
      "latitude" : "47.411631",
      "location" : "47.411631,28.369885",
      "longitude" : "28.369885",
      "netname" : "MD-SNS-20060629",
      "organization" : "StarNet Solutii SRL",
      "subnet" : "89.28.0.0/17"
   },
   "host" : [
      "89-28-118-46"
   ],
   "hostname" : [
      "89-28-118-46.starnet.md"
   ],
   "ip" : "89.28.118.46",
   "ipv6" : "false",
   "latitude" : "47.0042",
   "location" : "47.0042,28.8574",
   "longitude" : "28.8574",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "StarNet Solutii SRL",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 3780,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "ERROR",
   "reverse" : [
      "89-28-118-46.starnet.md"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "89.28.0.0/17",
   "tld" : [
      "md"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

Returning 10 result(s) out of 36,026 in 0.036 second(s)

35.93.153.42:3780 (tcp/http) - last seen on 2024-11-21 at 08:41:05 UTC

59.75.40.57:3780 (tcp/http) - last seen on 2024-11-21 at 08:36:30 UTC

65.111.1.229:3780 (tcp/http) - last seen on 2024-11-21 at 08:36:19 UTC

45.3.44.154:3780 (tcp/http) - last seen on 2024-11-21 at 08:35:36 UTC

37.81.89.56:3780 (tcp/unknown) - last seen on 2024-11-21 at 08:35:30 UTC

36.150.76.85:3780 (tcp/http) - last seen on 2024-11-21 at 08:35:29 UTC

65.111.15.191:3780 (tcp/http) - last seen on 2024-11-21 at 08:35:22 UTC

189.130.62.88:3780 (tcp/http) - last seen on 2024-11-21 at 08:35:20 UTC

65.111.29.225:3780 (tcp/http) - last seen on 2024-11-21 at 08:34:58 UTC

89.28.118.46:3780 (tcp/http) - last seen on 2024-11-21 at 08:34:31 UTC