185.212.107.105:8013 (tcp/http/tls) - last seen on 2024-11-21 at 08:30:25 UTC
-
- IP
- 185.212.107.105
- Alternative IP(s)
- 161.69.90.114
- Network
- 185.212.107.0/24
- Domain(s)
- saasprotection.com
- Device
-
<enterprise field>: device.class
- Operating System
- Linux Linux Kernel
- URL
-
https://185.212.107.105:8013/ 401
- ASN
- AS203724
- Organization
- Musarubra Germany GmbH
- Protocol
- http Cert not expired http
- Source
- datascan
-
- Operating System
- Linux Linux Kernel
-
- Issuer Common Name
- Sectigo RSA Organization Validation Secure Server CA
- Issuer Organization
- Sectigo Limited
- Subject Organization
- Musarubra US LLC
- Subject Common Name
- *.saasprotection.com
- Subject Alt Name
- *.saasprotection.com saasprotection.com
- SHA256 Fingerprint
- 3f352a76e814729f1ba407753b24adacd0ab2108e0d62f7ec6ecf454e87e3580
- Validity Not Before
- 2024-06-12T00:00:00Z
- Validity Not After
- 2025-06-12T23:59:59Z
This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.
-
- Data MD5
- 01200a30540bb18b15c1f0fbccf228ae
- HTTP Header MD5
- fb50ae9fb29cb220a9d263843a6fe0ec
- HTTP Body MD5
- 7df3693b9d48e0910e4d93e6ac27eb17
-
HTTP/1.1 401 authenticationrequired date: Thu, 21 Nov 2024 08:30:25 GMT content-type: text/html cache-control: no-cache content-length: 1611 x-frame-options: deny www-authenticate: Basic realm="Skyhigh Security Cloud" strict-transport-security: max-age=31536000 connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd"> <html> <head> <meta http-equiv="Content-Type" content="text/html;charset=utf-8"> <script src="/mwg-internal/de5fs23hu73ds/files/javascript/sw.js" type="text/javascript" ></script> <title>Blocked Request: http://<ip>:8013/</title> <style type="text/css"> body { padding: 5px } p { margin: 1em 0; font-family: Tahoma,Sans; font-size: 12px; color: #333 } li { margin: 1em 0; font-family: Tahoma,Sans; font-size: 12px; color: #333 } </style> </head> <body> <h1 style="margin: 0 0 45px 0; font-family: Tahoma,Sans; font-size: 24px; font-weight: bold; color: #6569FE;">Skyhigh Security</h1> <!--Contents--> <!-- FileName: authenticationrequired.html Language: [en] --> <!--Title--> <h1 style="margin: 0 0 45px 0; font-family: Tahoma,Sans; font-size: 20px; font-weight: bold; color: #6569FE;">Authentication Required</h1> <span style="margin: 0 0 45px 0; font-family: Tahoma,Sans; font-size: 16px; font-weight: bold; color: #000000;"> You must be authenticated to access this URL.<br /><br /> </span> <!--/Content--> <span style="margin: 0 0 45px 0; font-family: Tahoma,Sans; font-size: 12px; font-weight: normal; color: #000000;"> <b>URL: </b><script type="text/javascript">break_line("http://<ip>:8013/");</script><br /><br /> </span> <span style="margin: 0 0 45px 0; font-family: Tahoma,Sans; font-size: 10px; font-weight: normal; color: #111111;"> <b>ID: </b>4<br /> <b>Message: </b>No credentials<br /> </span> <!--/Info--> <!--/Contents--> </body> </html> -
{ "@category" : "datascan", "@timestamp" : "2024-11-21T08:30:25.000Z", "alternativeip" : [ "161.69.90.114" ], "app" : { "extract" : { "domain" : [ "w3.org" ], "hostname" : [ "www.w3.org" ], "url" : [ "http://www.w3.org/TR/html4/strict.dtd" ] }, "http" : { "bodymd5" : "7df3693b9d48e0910e4d93e6ac27eb17", "bodymmh3" : -894593925, "headermd5" : "fb50ae9fb29cb220a9d263843a6fe0ec", "headermmh3" : 399283783, "realm" : "Skyhigh Security Cloud" }, "length" : 1880 }, "asn" : "AS203724", "basicconstraints" : "critical", "ca" : "false", "country" : "DE", "data" : "HTTP/1.1 401 authenticationrequired\r\ndate: Thu, 21 Nov 2024 08:30:25 GMT\r\ncontent-type: text/html\r\ncache-control: no-cache\r\ncontent-length: 1611\r\nx-frame-options: deny\r\nwww-authenticate: Basic realm=\"Skyhigh Security Cloud\"\r\nstrict-transport-security: max-age=31536000\r\nconnection: close\r\n\r\n<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01//EN\" \"http://www.w3.org/TR/html4/strict.dtd\">\n<html>\n<head>\n\t<meta http-equiv=\"Content-Type\" content=\"text/html;charset=utf-8\">\n\t <script src=\"/mwg-internal/de5fs23hu73ds/files/javascript/sw.js\" type=\"text/javascript\" ></script>\n\t<title>Blocked Request: http://<ip>:8013/</title>\n\t<style type=\"text/css\">\n\t\tbody { padding: 5px }\n\t\tp { margin: 1em 0; font-family: Tahoma,Sans; font-size: 12px; color: #333 }\n\t\tli { margin: 1em 0; font-family: Tahoma,Sans; font-size: 12px; color: #333 }\n\t</style>\n</head>\n<body>\n\t<h1 style=\"margin: 0 0 45px 0; font-family: Tahoma,Sans; font-size: 24px; font-weight: bold; color: #6569FE;\">Skyhigh Security</h1>\n<!--Contents-->\n<!-- FileName: authenticationrequired.html\n Language: [en]\n-->\n<!--Title-->\n<h1 style=\"margin: 0 0 45px 0; font-family: Tahoma,Sans; font-size: 20px; font-weight: bold; color: #6569FE;\">Authentication Required</h1>\n\n<span style=\"margin: 0 0 45px 0; font-family: Tahoma,Sans; font-size: 16px; font-weight: bold; color: #000000;\">\nYou must be authenticated to access this URL.<br /><br />\n</span>\n \n<!--/Content-->\n\n<span style=\"margin: 0 0 45px 0; font-family: Tahoma,Sans; font-size: 12px; font-weight: normal; color: #000000;\">\n<b>URL: </b><script type=\"text/javascript\">break_line(\"http://<ip>:8013/\");</script><br /><br />\n</span>\n\n<span style=\"margin: 0 0 45px 0; font-family: Tahoma,Sans; font-size: 10px; font-weight: normal; color: #111111;\">\n <b>ID: </b>4<br />\n <b>Message: </b>No credentials<br />\n</span>\n<!--/Info-->\n\n<!--/Contents-->\n</body>\n</html>\n", "datamd5" : "01200a30540bb18b15c1f0fbccf228ae", "datammh3" : 464103645, "device" : { "class" : "<enterprise field>: device.class" }, "domain" : [ "saasprotection.com" ], "extkeyusage" : [ "serverAuth", "clientAuth" ], "fingerprint" : { "md5" : "6ca692745f34f49c6a6904c6c2d04be4", "sha1" : "177fb755db46e2ce1b29147ad5adaed4bd710437", "sha256" : "3f352a76e814729f1ba407753b24adacd0ab2108e0d62f7ec6ecf454e87e3580" }, "hostname" : [ "saasprotection.com" ], "ip" : "185.212.107.105", "ipv6" : "false", "issuer" : { "city" : "Salford", "commonname" : "Sectigo RSA Organization Validation Secure Server CA", "country" : "GB", "organization" : "Sectigo Limited" }, "keyusage" : [ "digitalSignature", "keyEncipherment" ], "latitude" : "51.2993", "location" : "51.2993,9.4910", "longitude" : "9.4910", "node" : { "country" : "<enterprise field>: node.country", "groupid" : "<enterprise field>: node.groupid", "id" : "<enterprise field>: node.id", "physicalcountry" : "<enterprise field>: node.physicalcountry" }, "organization" : "Musarubra Germany GmbH", "os" : "Linux Kernel", "osvendor" : "Linux", "port" : 8013, "protocol" : "http", "protocolversion" : "1.1", "publickey" : { "algorithm" : "rsaEncryption", "length" : 2048 }, "reason" : "authenticationrequired", "seen_date" : "2024-11-21", "serial" : "2f:c5:fb:f0:01:91:79:b0:1d:7f:15:e5:98:4c:c9:87", "signature" : { "algorithm" : "sha256WithRSAEncryption" }, "source" : "datascan", "status" : 401, "subject" : { "altname" : [ "*.saasprotection.com", "saasprotection.com" ], "commonname" : "*.saasprotection.com", "country" : "US", "organization" : "Musarubra US LLC" }, "subnet" : "185.212.107.0/24", "tag" : "<enterprise field>: tag", "tld" : [ "com" ], "tls" : "true", "transport" : "tcp", "url" : "/", "validity" : { "notafter" : "2025-06-12T23:59:59Z", "notbefore" : "2024-06-12T00:00:00Z" }, "version" : "v3", "wildcard" : "true" }