Cyber Defense Search Engine

IP
182.242.95.101

Network
182.242.80.0/20

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

HTTP Title
400 Bad Request

ASN
AS134766

Organization
CHINANET Yunnan province IDC2 network

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
Server Server

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
e52dabeb1c6a087849f38698d5a84021

HTTP Header MD5
f86cc985ecde38fa6c654c6d843421bb

HTTP Body MD5
fa9a8acb2708be4a10ee7f3090414629

HTTP/1.1 400 Bad Request
Server: Server
Date: Thu, 07 Nov 2024 05:37:33 GMT
Content-Type: text/html
Content-Length: 145
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center></center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:37:33.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "fa9a8acb2708be4a10ee7f3090414629",
         "bodymmh3" : 1147286280,
         "headermd5" : "f86cc985ecde38fa6c654c6d843421bb",
         "headermmh3" : -903253288,
         "title" : "400 Bad Request"
      },
      "length" : 291
   },
   "asn" : "AS134766",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: Server\r\nDate: Thu, 07 Nov 2024 05:37:33 GMT\r\nContent-Type: text/html\r\nContent-Length: 145\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 Bad Request</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<hr><center></center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "e52dabeb1c6a087849f38698d5a84021",
   "datammh3" : -1320027916,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS134766",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "163.com",
         "chinatelecom.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "CHINANET-YN",
      "organization" : "CHINANET YunNan PROVINCE NETWORK",
      "subnet" : "182.242.80.0/20"
   },
   "ip" : "182.242.95.101",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "CHINANET Yunnan province IDC2 network",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 1911,
   "product" : "Server",
   "productvendor" : "Server",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "182.242.80.0/20",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp"
}

IP
38.29.44.27

Alternative IP(s)
141.136.33.148

Network
38.29.32.0/19

Domain(s)
goldenrural.com

Device

<enterprise field>: device.class

Operating System
NetBSD NetBSD

Reverse DNS
38-29-44-27.cust.goldenrural.com

ASN
AS32100

Organization
METROLOOP

Protocol
fox

Source
datascan
Operating System
NetBSD NetBSD

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
bf41fd44e9b806ce84f3476361ae8d62

fox a 0 -1 fox hello
{
fox.version=s:1.0.2
id=i:1333
n4Id=s:132c96de72b9b60824292c4d50c55a48bc651640a2a7a0a2f4
n4SuperId=s:134578bfc0053915b4ab58211282d5c0a37cac32a74e8c1514
hostName=s:
hostAddress=s:192.168.1.229
app.name=s:Station
};;
fox a 1 -1 fox challenge
{
method=s:digest
keyExchangeMethods=s:null.1
};;

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:37:13.000Z",
   "alternativeip" : [
      "141.136.33.148"
   ],
   "app" : {
      "extract" : {
         "ip" : [
            "192.168.1.229"
         ]
      },
      "length" : 312
   },
   "asn" : "AS32100",
   "city" : "Omemee",
   "country" : "CA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "fox a 0 -1 fox hello\n{\nfox.version=s:1.0.2\nid=i:1333\nn4Id=s:132c96de72b9b60824292c4d50c55a48bc651640a2a7a0a2f4\nn4SuperId=s:134578bfc0053915b4ab58211282d5c0a37cac32a74e8c1514\nhostName=s:\nhostAddress=s:192.168.1.229\napp.name=s:Station\n};;\nfox a 1 -1 fox challenge\n{\nmethod=s:digest\nkeyExchangeMethods=s:null.1\n};;\n",
   "datamd5" : "bf41fd44e9b806ce84f3476361ae8d62",
   "datammh3" : 1508354310,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "goldenrural.com"
   ],
   "geolocus" : {
      "asn" : "AS32100",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "CA",
      "countryname" : "Canada",
      "domain" : [
         "cogentco.com",
         "metroloop.net"
      ],
      "isineu" : "false",
      "latitude" : "56.130366",
      "location" : "56.130366,-106.346771",
      "longitude" : "-106.346771",
      "netname" : "OCDOTUS-CGNT-NET-1",
      "organization" : "Metro Loop",
      "subnet" : "38.29.32.0/19"
   },
   "host" : [
      "38-29-44-27"
   ],
   "hostname" : [
      "38-29-44-27.cust.goldenrural.com"
   ],
   "ip" : "38.29.44.27",
   "ipv6" : "false",
   "latitude" : "44.2916",
   "location" : "44.2916,-78.5589",
   "longitude" : "-78.5589",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "METROLOOP",
   "os" : "NetBSD",
   "osvendor" : "NetBSD",
   "port" : 1911,
   "protocol" : "fox",
   "protocolversion" : "1.0.2",
   "reverse" : [
      "38-29-44-27.cust.goldenrural.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "subdomains" : [
      "cust.goldenrural.com"
   ],
   "subnet" : "38.29.32.0/19",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp"
}

IP
63.40.30.90

Network
63.40.0.0/15

Domain(s)
myvzw.com

Device

<enterprise field>: device.class

Operating System
Linux Linux 4.4.62-ti-rt-r99

Reverse DNS
host90.sub-63-40-30.myvzw.com

ASN
AS6167

Organization
CELLCO-PART

Protocol
fox

Source
datascan
Operating System
Linux Linux 4.4.62-ti-rt-r99

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
4e4c88b5f60e8ba06655742ea0cb95d3

fox a 0 -1 fox hello
{
fox.version=s:1.0.1
id=i:1842
n4Id=s:e0d02770e6ca51ab3369fabf18362bd585d291263bab541219
n4SuperId=s:c289ca92adba07d28f3ea265523e7ca459643d9e7f545ea3ad
hostName=s:192.168.0.63
hostAddress=s:192.168.0.63
app.name=s:Station
app.version=s:4.6.96.28.1
vm.name=s:OpenJDK Client VM
vm.version=s:25.202-b152
os.name=s:Linux
os.version=s:4.4.62-ti-rt-r99
station.name=s:VERI4204507
lang=s:en
timeZone=s:US/Michigan;-18000000;3600000;02:00:00.000,wall,march,8,on or after,sunday,undefined;02:00:00.000,wall,november,1,on or after,sunday,undefined
hostId=s:Lyx-LSM5-1019-2046-0846
vmUuid=s:02831c39-8112-4371-9d20-f070b6c2d4b6
brandId=s:JENEsys
sysInfo=o:bog 61[<bog version="1.0">
<p m="b=baja" t="b:Facets" v=""/>
</bog>
]
};;
fox a 1 -1 fox challenge
{
method=s:digest
keyExchangeMethods=s:null.1
};;

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:36:51.000Z",
   "app" : {
      "extract" : {
         "ip" : [
            "4.6.96.28",
            "192.168.0.63"
         ]
      },
      "length" : 816
   },
   "asn" : "AS6167",
   "city" : "Brooklyn",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "fox a 0 -1 fox hello\n{\nfox.version=s:1.0.1\nid=i:1842\nn4Id=s:e0d02770e6ca51ab3369fabf18362bd585d291263bab541219\nn4SuperId=s:c289ca92adba07d28f3ea265523e7ca459643d9e7f545ea3ad\nhostName=s:192.168.0.63\nhostAddress=s:192.168.0.63\napp.name=s:Station\napp.version=s:4.6.96.28.1\nvm.name=s:OpenJDK Client VM\nvm.version=s:25.202-b152\nos.name=s:Linux\nos.version=s:4.4.62-ti-rt-r99\nstation.name=s:VERI4204507\nlang=s:en\ntimeZone=s:US/Michigan;-18000000;3600000;02:00:00.000,wall,march,8,on or after,sunday,undefined;02:00:00.000,wall,november,1,on or after,sunday,undefined\nhostId=s:Lyx-LSM5-1019-2046-0846\nvmUuid=s:02831c39-8112-4371-9d20-f070b6c2d4b6\nbrandId=s:JENEsys\nsysInfo=o:bog 61[<bog version=\"1.0\">\n<p m=\"b=baja\" t=\"b:Facets\" v=\"\"/>\n</bog>\n]\n};;\nfox a 1 -1 fox challenge\n{\nmethod=s:digest\nkeyExchangeMethods=s:null.1\n};;\n",
   "datamd5" : "4e4c88b5f60e8ba06655742ea0cb95d3",
   "datammh3" : 1787366625,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "myvzw.com"
   ],
   "geolocus" : {
      "asn" : "AS6167",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "myvzw.com",
         "verizon.com",
         "verizon.net",
         "verizonbusiness.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "NETBLK-UUNET97DU",
      "organization" : "Verizon Business",
      "subnet" : "63.40.0.0/13"
   },
   "host" : [
      "host90"
   ],
   "hostname" : [
      "host90.sub-63-40-30.myvzw.com"
   ],
   "ip" : "63.40.30.90",
   "ipv6" : "false",
   "latitude" : "40.6208",
   "location" : "40.6208,-74.0426",
   "longitude" : "-74.0426",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "CELLCO-PART",
   "os" : "Linux",
   "osvendor" : "Linux",
   "osversion" : "4.4.62-ti-rt-r99",
   "port" : 1911,
   "protocol" : "fox",
   "protocolversion" : "1.0.1",
   "reverse" : [
      "host90.sub-63-40-30.myvzw.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "subdomains" : [
      "sub-63-40-30.myvzw.com"
   ],
   "subnet" : "63.40.0.0/15",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp"
}

IP
199.231.180.233

Network
199.231.176.0/21

Device

<enterprise field>: device.class

Operating System
BlackBerry QNX 6.5.0

ASN
AS16958

Organization
BCIU-22

Protocol
fox

Source
datascan
Operating System
BlackBerry QNX 6.5.0

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
3ba4f7829f018f458594caa8d7075c55

fox a 0 -1 fox hello
{
fox.version=s:1.0.1
id=i:890
n4Id=s:e439c4788c1568666a022b7453771c6a723432793974239911
n4SuperId=s:daf9972847d836ed6ea49af604245de8fdb39bf743196497f2
hostName=s:
hostAddress=s:172.16.235.10
app.name=s:Station
app.version=s:4.6.96.28.4
vm.name=s:Java HotSpot(TM) Embedded Client VM
vm.version=s:25.161-b01
os.name=s:QNX
os.version=s:6.5.0
station.name=s:MorrJrSrHighSchool
lang=s:en
timeZone=s:America/New_York;-18000000;3600000;02:00:00.000,wall,march,8,on or after,sunday,undefined;02:00:00.000,wall,november,1,on or after,sunday,undefined
hostId=s:Qnx-TITAN-894D-FDFB-A547-E9F8
vmUuid=s:8cdc5a85-1884-4914-beb0-8598bd91bf9c
brandId=s:Webs
sysInfo=o:bog 61[<bog version="1.0">
<p m="b=baja" t="b:Facets" v=""/>
</bog>
]
};;
fox a 1 -1 fox challenge
{
method=s:digest
keyExchangeMethods=s:null.1
};;

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:36:36.000Z",
   "app" : {
      "extract" : {
         "ip" : [
            "4.6.96.28",
            "172.16.235.10"
         ]
      },
      "length" : 823
   },
   "asn" : "AS16958",
   "city" : "Southampton",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "fox a 0 -1 fox hello\n{\nfox.version=s:1.0.1\nid=i:890\nn4Id=s:e439c4788c1568666a022b7453771c6a723432793974239911\nn4SuperId=s:daf9972847d836ed6ea49af604245de8fdb39bf743196497f2\nhostName=s:\nhostAddress=s:172.16.235.10\napp.name=s:Station\napp.version=s:4.6.96.28.4\nvm.name=s:Java HotSpot(TM) Embedded Client VM\nvm.version=s:25.161-b01\nos.name=s:QNX\nos.version=s:6.5.0\nstation.name=s:MorrJrSrHighSchool\nlang=s:en\ntimeZone=s:America/New_York;-18000000;3600000;02:00:00.000,wall,march,8,on or after,sunday,undefined;02:00:00.000,wall,november,1,on or after,sunday,undefined\nhostId=s:Qnx-TITAN-894D-FDFB-A547-E9F8\nvmUuid=s:8cdc5a85-1884-4914-beb0-8598bd91bf9c\nbrandId=s:Webs\nsysInfo=o:bog 61[<bog version=\"1.0\">\n<p m=\"b=baja\" t=\"b:Facets\" v=\"\"/>\n</bog>\n]\n};;\nfox a 1 -1 fox challenge\n{\nmethod=s:digest\nkeyExchangeMethods=s:null.1\n};;\n",
   "datamd5" : "3ba4f7829f018f458594caa8d7075c55",
   "datammh3" : -2123731473,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS16958",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "bucksiu.org"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "BUCKSCOUNTYIU",
      "organization" : "Bucks County Intermediate Unit #22",
      "subnet" : "199.231.176.0/21"
   },
   "ip" : "199.231.180.233",
   "ipv6" : "false",
   "latitude" : "40.1743",
   "location" : "40.1743,-75.0438",
   "longitude" : "-75.0438",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "BCIU-22",
   "os" : "QNX",
   "osvendor" : "BlackBerry",
   "osversion" : "6.5.0",
   "port" : 1911,
   "protocol" : "fox",
   "protocolversion" : "1.0.1",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "subnet" : "199.231.176.0/21",
   "tls" : "false",
   "transport" : "tcp"
}

IP
124.115.11.35

Network
124.115.0.0/19

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

HTTP Title
400 Bad Request

ASN
AS4835

Organization
China Telecom Group

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
Server Server

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
e52dabeb1c6a087849f38698d5a84021

HTTP Header MD5
f86cc985ecde38fa6c654c6d843421bb

HTTP Body MD5
fa9a8acb2708be4a10ee7f3090414629

HTTP/1.1 400 Bad Request
Server: Server
Date: Thu, 07 Nov 2024 05:36:27 GMT
Content-Type: text/html
Content-Length: 145
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center></center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:36:27.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "fa9a8acb2708be4a10ee7f3090414629",
         "bodymmh3" : 1147286280,
         "headermd5" : "f86cc985ecde38fa6c654c6d843421bb",
         "headermmh3" : -607652067,
         "title" : "400 Bad Request"
      },
      "length" : 291
   },
   "asn" : "AS4835",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: Server\r\nDate: Thu, 07 Nov 2024 05:36:27 GMT\r\nContent-Type: text/html\r\nContent-Length: 145\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 Bad Request</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<hr><center></center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "e52dabeb1c6a087849f38698d5a84021",
   "datammh3" : -1320027916,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4835",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinatelecom.cn",
         "xa.sn.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "CHINANET-SN",
      "organization" : "CHINANET Shanxi(SN) province network",
      "subnet" : "124.115.0.0/19"
   },
   "ip" : "124.115.11.35",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "China Telecom Group",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 1911,
   "product" : "Server",
   "productvendor" : "Server",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "124.115.0.0/19",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp"
}

IP
96.79.152.174

Network
96.64.0.0/11

Device

<enterprise field>: device.class

Operating System
NetBSD NetBSD

ASN
AS7922

Organization
COMCAST-7922

Protocol
fox

Source
datascan
Operating System
NetBSD NetBSD

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
fc68ba55eba9dadb5c5ef2f73fa73823

fox a 0 -1 fox hello
{
fox.version=s:1.0.2
id=i:291
n4Id=s:14f9d89fecf23e51796c036e8c82f9473871c15fcf49d23373
n4SuperId=s:c945152fbf7654d0a2bc41f3185fddc9aff1a40c5b82e12f2d
hostName=s:FX80
hostAddress=s:10.1.10.149
app.name=s:Station
};;
fox a 1 -1 fox challenge
{
method=s:digest
keyExchangeMethods=s:null.1
};;

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:36:27.000Z",
   "app" : {
      "extract" : {
         "ip" : [
            "10.1.10.149"
         ]
      },
      "length" : 313
   },
   "asn" : "AS7922",
   "city" : "Brookline",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "fox a 0 -1 fox hello\n{\nfox.version=s:1.0.2\nid=i:291\nn4Id=s:14f9d89fecf23e51796c036e8c82f9473871c15fcf49d23373\nn4SuperId=s:c945152fbf7654d0a2bc41f3185fddc9aff1a40c5b82e12f2d\nhostName=s:FX80\nhostAddress=s:10.1.10.149\napp.name=s:Station\n};;\nfox a 1 -1 fox challenge\n{\nmethod=s:digest\nkeyExchangeMethods=s:null.1\n};;\n",
   "datamd5" : "fc68ba55eba9dadb5c5ef2f73fa73823",
   "datammh3" : 469974815,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS7922",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "comcast.com",
         "comcast.net"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "MICHIGAN-CCCS-35",
      "organization" : "Comcast Cable Communications, LLC",
      "subnet" : "96.64.0.0/12"
   },
   "ip" : "96.79.152.174",
   "ipv6" : "false",
   "latitude" : "42.3399",
   "location" : "42.3399,-71.1245",
   "longitude" : "-71.1245",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "COMCAST-7922",
   "os" : "NetBSD",
   "osvendor" : "NetBSD",
   "port" : 1911,
   "protocol" : "fox",
   "protocolversion" : "1.0.2",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "subnet" : "96.64.0.0/11",
   "tls" : "false",
   "transport" : "tcp"
}

IP
24.137.54.234

Network
24.137.48.0/20

Domain(s)
gildasclubsimcoemuskoka.org

Device

<enterprise field>: device.class

Operating System
BlackBerry QNX 6.4.1

Reverse DNS
mail.gildasclubsimcoemuskoka.org

ASN
AS812

Organization
ROGERS-COMMUNICATIONS

Protocol
fox

Source
datascan
Operating System
BlackBerry QNX 6.4.1

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
fcb02e948f2ec31559ca4cc62cb02ff8

fox a 0 -1 fox hello
{
fox.version=s:1.0.1
id=i:14855
hostName=s:192.168.60.60
hostAddress=s:192.168.60.60
app.name=s:Station
app.version=s:3.8.111
vm.name=s:Java HotSpot(TM) Client VM
vm.version=s:1.5.0_81-b06
os.name=s:QNX
os.version=s:6.4.1
station.name=s:GildaBarrie
lang=s:en
timeZone=s:America/New_York;-18000000;3600000;02:00:00.000,wall,march,8,on or after,sunday,undefined;02:00:00.000,wall,november,1,on or after,sunday,undefined
hostId=s:Qnx-NPM6E-0000-1874-78A7
vmUuid=s:11ebebc2-7421-fc04-0000-0000000098bc
brandId=s:WebsOpen
sysInfo=o:bog 61[<bog version="1.0">
<p m="b=baja" t="b:Facets" v=""/>
</bog>
]
authAgentTypeSpecs=s:fox:FoxUsernamePasswordAuthAgent
};;
fox a 1 -1 fox rejected
{
};;

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:36:18.000Z",
   "app" : {
      "extract" : {
         "ip" : [
            "192.168.60.60"
         ]
      },
      "length" : 707
   },
   "asn" : "AS812",
   "city" : "Stratford",
   "country" : "CA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "fox a 0 -1 fox hello\n{\nfox.version=s:1.0.1\nid=i:14855\nhostName=s:192.168.60.60\nhostAddress=s:192.168.60.60\napp.name=s:Station\napp.version=s:3.8.111\nvm.name=s:Java HotSpot(TM) Client VM\nvm.version=s:1.5.0_81-b06\nos.name=s:QNX\nos.version=s:6.4.1\nstation.name=s:GildaBarrie\nlang=s:en\ntimeZone=s:America/New_York;-18000000;3600000;02:00:00.000,wall,march,8,on or after,sunday,undefined;02:00:00.000,wall,november,1,on or after,sunday,undefined\nhostId=s:Qnx-NPM6E-0000-1874-78A7\nvmUuid=s:11ebebc2-7421-fc04-0000-0000000098bc\nbrandId=s:WebsOpen\nsysInfo=o:bog 61[<bog version=\"1.0\">\n<p m=\"b=baja\" t=\"b:Facets\" v=\"\"/>\n</bog>\n]\nauthAgentTypeSpecs=s:fox:FoxUsernamePasswordAuthAgent\n};;\nfox a 1 -1 fox rejected\n{\n};;\n",
   "datamd5" : "fcb02e948f2ec31559ca4cc62cb02ff8",
   "datammh3" : -1889694073,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "gildasclubsimcoemuskoka.org"
   ],
   "geolocus" : {
      "asn" : "AS812",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "CA",
      "countryname" : "Canada",
      "domain" : [
         "rogers.com",
         "wave.ca"
      ],
      "isineu" : "false",
      "latitude" : "56.130366",
      "location" : "56.130366,-106.346771",
      "longitude" : "-106.346771",
      "netname" : "COMP-BTE-COMPUTERS",
      "organization" : "Rogers Communications Canada Inc.",
      "subnet" : "24.137.48.0/20"
   },
   "host" : [
      "mail"
   ],
   "hostname" : [
      "mail.gildasclubsimcoemuskoka.org"
   ],
   "ip" : "24.137.54.234",
   "ipv6" : "false",
   "latitude" : "43.3679",
   "location" : "43.3679,-80.9523",
   "longitude" : "-80.9523",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "ROGERS-COMMUNICATIONS",
   "os" : "QNX",
   "osvendor" : "BlackBerry",
   "osversion" : "6.4.1",
   "port" : 1911,
   "protocol" : "fox",
   "protocolversion" : "1.0.1",
   "reverse" : [
      "mail.gildasclubsimcoemuskoka.org"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "subnet" : "24.137.48.0/20",
   "tld" : [
      "org"
   ],
   "tls" : "false",
   "transport" : "tcp"
}

IP
207.195.128.68

Network
207.195.128.0/19

Domain(s)
68-st-tel.net

Device

<enterprise field>: device.class

Operating System
BlackBerry QNX 6.5.0

Reverse DNS
207.195.128.68-st-tel.net

ASN
AS30027

Organization
STINET-1

Protocol
fox

Source
datascan
Operating System
BlackBerry QNX 6.5.0

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
e4d1c84390ab4feca5278ddbb2cd54a9

fox a 0 -1 fox hello
{
fox.version=s:1.0.1
id=i:504
n4Id=s:9b8b89942028b001932d065975f341bd1ae0d550b168f52ced
n4SuperId=s:db2ad88868f5fccabab56c1df00a38f29d6509b5c1f1e2d713
hostName=s:
hostAddress=s:192.168.1.140
app.name=s:Station
app.version=s:4.3.58.22.5
vm.name=s:Java HotSpot(TM) Embedded Client VM
vm.version=s:25.91-b04
os.name=s:QNX
os.version=s:6.5.0
station.name=s:LgStation
lang=s:en
timeZone=s:US/Central;-21600000;3600000;02:00:00.000,wall,march,8,on or after,sunday,undefined;02:00:00.000,wall,november,1,on or after,sunday,undefined
hostId=s:Qnx-TITAN-5EE9-EF83-E70C-9F97
vmUuid=s:99e34a37-2f9f-40f1-aaff-9e9504b07a5f
brandId=s:LGUSAC
sysInfo=o:bog 61[<bog version="1.0">
<p m="b=baja" t="b:Facets" v=""/>
</bog>
]
};;
fox a 1 -1 fox challenge
{
method=s:digest
keyExchangeMethods=s:null.1
};;

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:36:05.000Z",
   "app" : {
      "extract" : {
         "ip" : [
            "192.168.1.140",
            "4.3.58.22"
         ]
      },
      "length" : 809
   },
   "asn" : "AS30027",
   "city" : "Oakley",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "fox a 0 -1 fox hello\n{\nfox.version=s:1.0.1\nid=i:504\nn4Id=s:9b8b89942028b001932d065975f341bd1ae0d550b168f52ced\nn4SuperId=s:db2ad88868f5fccabab56c1df00a38f29d6509b5c1f1e2d713\nhostName=s:\nhostAddress=s:192.168.1.140\napp.name=s:Station\napp.version=s:4.3.58.22.5\nvm.name=s:Java HotSpot(TM) Embedded Client VM\nvm.version=s:25.91-b04\nos.name=s:QNX\nos.version=s:6.5.0\nstation.name=s:LgStation\nlang=s:en\ntimeZone=s:US/Central;-21600000;3600000;02:00:00.000,wall,march,8,on or after,sunday,undefined;02:00:00.000,wall,november,1,on or after,sunday,undefined\nhostId=s:Qnx-TITAN-5EE9-EF83-E70C-9F97\nvmUuid=s:99e34a37-2f9f-40f1-aaff-9e9504b07a5f\nbrandId=s:LGUSAC\nsysInfo=o:bog 61[<bog version=\"1.0\">\n<p m=\"b=baja\" t=\"b:Facets\" v=\"\"/>\n</bog>\n]\n};;\nfox a 1 -1 fox challenge\n{\nmethod=s:digest\nkeyExchangeMethods=s:null.1\n};;\n",
   "datamd5" : "e4d1c84390ab4feca5278ddbb2cd54a9",
   "datammh3" : -1960116384,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "68-st-tel.net"
   ],
   "geolocus" : {
      "asn" : "AS30027",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "1-st-tel.net",
         "sttelcom.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "STCOMMUNICATIONSLLC",
      "organization" : "S & T COMMUNICATIONS LLC",
      "subnet" : "207.195.128.0/19"
   },
   "host" : [
      207
   ],
   "hostname" : [
      "207.195.128.68-st-tel.net"
   ],
   "ip" : "207.195.128.68",
   "ipv6" : "false",
   "latitude" : "39.1333",
   "location" : "39.1333,-100.8638",
   "longitude" : "-100.8638",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "STINET-1",
   "os" : "QNX",
   "osvendor" : "BlackBerry",
   "osversion" : "6.5.0",
   "port" : 1911,
   "protocol" : "fox",
   "protocolversion" : "1.0.1",
   "reverse" : [
      "207.195.128.68-st-tel.net"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "subdomains" : [
      "195.128.68-st-tel.net",
      "128.68-st-tel.net"
   ],
   "subnet" : "207.195.128.0/19",
   "tld" : [
      "net"
   ],
   "tls" : "false",
   "transport" : "tcp"
}

IP
124.71.67.89

Network
124.71.0.0/17

Domain(s)
hwclouds-dns.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

HTTP Title
400 Bad Request

Reverse DNS
ecs-124-71-67-89.compute.hwclouds-dns.com

ASN
AS55990

Organization
Huawei Cloud Service data center

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
f2083f017112b6922555e256009a7822

HTTP Header MD5
1e8097feb560a0b862b6d4dfbc28d144

HTTP Body MD5
7a6038c896014f08981bc3e198ccc865

HTTP/1.1 400 Bad Request
Date: Thu, 07 Nov 2024 05:35:55 GMT
Content-Type: text/html
Content-Length: 122
Connection: close
Server: elb

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:35:55.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "7a6038c896014f08981bc3e198ccc865",
         "bodymmh3" : 188482381,
         "headermd5" : "1e8097feb560a0b862b6d4dfbc28d144",
         "headermmh3" : -225807291,
         "title" : "400 Bad Request"
      },
      "length" : 265
   },
   "asn" : "AS55990",
   "city" : "Guangzhou",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nDate: Thu, 07 Nov 2024 05:35:55 GMT\r\nContent-Type: text/html\r\nContent-Length: 122\r\nConnection: close\r\nServer: elb\r\n\r\n<html>\r\n<head><title>400 Bad Request</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "f2083f017112b6922555e256009a7822",
   "datammh3" : 867207957,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "hwclouds-dns.com"
   ],
   "geolocus" : {
      "asn" : "AS55990",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "cnnic.cn",
         "huawei.com",
         "hwclouds-dns.com"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "HWCSNET",
      "organization" : "Huawei Public Cloud Service (Huawei Software Technologies Ltd.Co)",
      "subnet" : "124.71.0.0/17"
   },
   "host" : [
      "ecs-124-71-67-89"
   ],
   "hostname" : [
      "ecs-124-71-67-89.compute.hwclouds-dns.com"
   ],
   "ip" : "124.71.67.89",
   "ipv6" : "false",
   "latitude" : "23.1181",
   "location" : "23.1181,113.2539",
   "longitude" : "113.2539",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Huawei Cloud Service data center",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 1911,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "reverse" : [
      "ecs-124-71-67-89.compute.hwclouds-dns.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "compute.hwclouds-dns.com"
   ],
   "subnet" : "124.71.0.0/17",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp"
}

IP
39.135.219.28

Network
39.135.218.0/23

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

HTTP Title
400 Bad Request

ASN
AS24400

Organization
Shanghai Mobile Communications Co.,Ltd.

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
Server Server

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
e52dabeb1c6a087849f38698d5a84021

HTTP Header MD5
f86cc985ecde38fa6c654c6d843421bb

HTTP Body MD5
fa9a8acb2708be4a10ee7f3090414629

HTTP/1.1 400 Bad Request
Server: Server
Date: Thu, 07 Nov 2024 05:35:55 GMT
Content-Type: text/html
Content-Length: 145
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center></center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:35:55.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "fa9a8acb2708be4a10ee7f3090414629",
         "bodymmh3" : 1147286280,
         "headermd5" : "f86cc985ecde38fa6c654c6d843421bb",
         "headermmh3" : 1942293548,
         "title" : "400 Bad Request"
      },
      "length" : 291
   },
   "asn" : "AS24400",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: Server\r\nDate: Thu, 07 Nov 2024 05:35:55 GMT\r\nContent-Type: text/html\r\nContent-Length: 145\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 Bad Request</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<hr><center></center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "e52dabeb1c6a087849f38698d5a84021",
   "datammh3" : -1320027916,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS24400",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinamobile.com"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "CMNET",
      "organization" : "China Mobile",
      "subnet" : "39.135.218.0/23"
   },
   "ip" : "39.135.219.28",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Shanghai Mobile Communications Co.,Ltd.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 1911,
   "product" : "Server",
   "productvendor" : "Server",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "39.135.218.0/23",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp"
}

Returning 10 result(s) out of 101,810 in 0.064 second(s)

182.242.95.101:1911 (tcp/http) - last seen on 2024-11-07 at 05:37:33 UTC

38.29.44.27:1911 (tcp/fox) - last seen on 2024-11-07 at 05:37:13 UTC

63.40.30.90:1911 (tcp/fox) - last seen on 2024-11-07 at 05:36:51 UTC

199.231.180.233:1911 (tcp/fox) - last seen on 2024-11-07 at 05:36:36 UTC

124.115.11.35:1911 (tcp/http) - last seen on 2024-11-07 at 05:36:27 UTC

96.79.152.174:1911 (tcp/fox) - last seen on 2024-11-07 at 05:36:27 UTC

24.137.54.234:1911 (tcp/fox) - last seen on 2024-11-07 at 05:36:18 UTC

207.195.128.68:1911 (tcp/fox) - last seen on 2024-11-07 at 05:36:05 UTC

124.71.67.89:1911 (tcp/http) - last seen on 2024-11-07 at 05:35:55 UTC

39.135.219.28:1911 (tcp/http) - last seen on 2024-11-07 at 05:35:55 UTC