Cyber Defense Search Engine

IP
80.241.139.38

Network
80.241.136.0/22

Device

<enterprise field>: device.class

HTTP Title
400 Bad Request

ASN
AS202132

Organization
Sysman Progetti & Servizi srl

Protocol
http Cert expired http

Source
datascan
Product
F5 Nginx

CPE(s)

<enterprise field>: cpe
Issuer Common Name
pfSense-620a764d05b9b

Issuer Organization
pfSense webConfigurator Self-Signed Certificate

Subject Organization
pfSense webConfigurator Self-Signed Certificate

Subject Common Name
pfSense-620a764d05b9b

Subject Alt Name
pfSense-620a764d05b9b

SHA256 Fingerprint
7a0673f7c08df28680ddfe8af262d2f81362c7c906034d027a5b1be8e68d71b5

Validity Not Before
2023-08-16T08:11:16Z

Validity Not After
2024-09-17T08:11:16Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
28715c6ec3fd38b6ed232e3e37959e9c

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
16444d0bf46608253d591db62f41e7c3

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 07 Nov 2024 03:28:11 GMT
Content-Type: text/html
Content-Length: 150
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:28:11.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "16444d0bf46608253d591db62f41e7c3",
         "bodymmh3" : -534304446,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : 1234720749,
         "title" : "400 Bad Request"
      },
      "length" : 295
   },
   "asn" : "AS202132",
   "ca" : "false",
   "country" : "IT",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 03:28:11 GMT\r\nContent-Type: text/html\r\nContent-Length: 150\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 Bad Request</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "28715c6ec3fd38b6ed232e3e37959e9c",
   "datammh3" : -1512152686,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "7383715b74ae758afbb1db634b8ead00",
      "sha1" : "4a66ba2f5914a1b6e07c057a1fb4f02a8a70f085",
      "sha256" : "7a0673f7c08df28680ddfe8af262d2f81362c7c906034d027a5b1be8e68d71b5"
   },
   "ip" : "80.241.139.38",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "pfSense-620a764d05b9b",
      "organization" : "pfSense webConfigurator Self-Signed Certificate"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "43.1479",
   "location" : "43.1479,12.1097",
   "longitude" : "12.1097",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Sysman Progetti & Servizi srl",
   "port" : 513,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "Bad Request",
   "seen_date" : "2024-11-07",
   "serial" : "27:a1:bd:61:35:a0:a6:de",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 400,
   "subject" : {
      "altname" : [
         "pfSense-620a764d05b9b"
      ],
      "commonname" : "pfSense-620a764d05b9b",
      "organization" : "pfSense webConfigurator Self-Signed Certificate"
   },
   "subnet" : "80.241.136.0/22",
   "tag" : "<enterprise field>: tag",
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2024-09-17T08:11:16Z",
      "notbefore" : "2023-08-16T08:11:16Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
102.16.254.108

Alternative IP(s)
104.18.24.217 104.18.25.217 2606:4700:0:0:0:0:6812:18d9 2606:4700:0:0:0:0:6812:19d9

Network
102.16.0.0/14

Domain(s)
stellar-ix.com tgn.mg

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

HTTP Title
400 Bad Request

Reverse DNS
tgn.16.25.108.tgn.mg

ASN
AS37054

Organization
Telecom-Malagasy

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Stellar-IX

Issuer Organization
Stellar-IX

Subject Organization
Stellar-IX

Subject Common Name
repoharbor.stellar-ix.com

Subject Alt Name
repoharbor.stellar-ix.com repoharbor

SHA256 Fingerprint
c997ac0177e8c803f16179e3dd75ffe7d0f62fc97853a54397c0b7d2655312fa

Validity Not Before
2024-11-01T06:33:21Z

Validity Not After
2034-10-30T06:33:21Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
28715c6ec3fd38b6ed232e3e37959e9c

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
16444d0bf46608253d591db62f41e7c3

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 07 Nov 2024 02:37:07 GMT
Content-Type: text/html
Content-Length: 150
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T02:37:08.000Z",
   "alternativeip" : [
      "104.18.24.217",
      "104.18.25.217",
      "2606:4700:0:0:0:0:6812:18d9",
      "2606:4700:0:0:0:0:6812:19d9"
   ],
   "app" : {
      "http" : {
         "bodymd5" : "16444d0bf46608253d591db62f41e7c3",
         "bodymmh3" : -534304446,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : -1860582829,
         "title" : "400 Bad Request"
      },
      "length" : 295
   },
   "asn" : "AS37054",
   "ca" : "false",
   "country" : "MG",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 02:37:07 GMT\r\nContent-Type: text/html\r\nContent-Length: 150\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 Bad Request</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "28715c6ec3fd38b6ed232e3e37959e9c",
   "datammh3" : -1512152686,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "stellar-ix.com",
      "tgn.mg"
   ],
   "extkeyusage" : [
      "serverAuth"
   ],
   "fingerprint" : {
      "md5" : "ee6df48d2d22f97af884874829ce3311",
      "sha1" : "cdd1693a5e9bc2718cc06fa9b386b6ab8e8bd0fd",
      "sha256" : "c997ac0177e8c803f16179e3dd75ffe7d0f62fc97853a54397c0b7d2655312fa"
   },
   "geolocus" : {
      "asn" : "AS37054",
      "continent" : "AF",
      "continentname" : "Africa",
      "country" : "MG",
      "countryname" : "Madagascar",
      "domain" : [
         "tgn.mg"
      ],
      "isineu" : "false",
      "latitude" : "-18.766947",
      "location" : "-18.766947,46.869107",
      "longitude" : "46.869107",
      "netname" : "Telecom-Malagasy-1",
      "organization" : "Telecom Malagasy",
      "subnet" : "102.16.128.0/17"
   },
   "host" : [
      "repoharbor",
      "tgn"
   ],
   "hostname" : [
      "repoharbor.stellar-ix.com",
      "tgn.16.25.108.tgn.mg"
   ],
   "ip" : "102.16.254.108",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Antananarivo",
      "commonname" : "Stellar-IX",
      "country" : "MG",
      "organization" : "Stellar-IX",
      "organizationalunit" : "Stellar-IX"
   },
   "keyusage" : [
      "digitalSignature",
      "nonRepudiation",
      "keyEncipherment",
      "dataEncipherment"
   ],
   "latitude" : "-20.0015",
   "location" : "-20.0015,46.9961",
   "longitude" : "46.9961",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Telecom-Malagasy",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 513,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 4096
   },
   "reason" : "Bad Request",
   "reverse" : [
      "tgn.16.25.108.tgn.mg"
   ],
   "seen_date" : "2024-11-07",
   "serial" : "3f:f8:ed:32:98:e1:03:2c:40:87:c1:e9:99:42:0d:ac:f1:0b:1b:a9",
   "signature" : {
      "algorithm" : "sha512WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "16.25.108.tgn.mg",
      "108.tgn.mg",
      "25.108.tgn.mg"
   ],
   "subject" : {
      "altname" : [
         "repoharbor.stellar-ix.com",
         "repoharbor"
      ],
      "city" : "Antananarivo",
      "commonname" : "repoharbor.stellar-ix.com",
      "country" : "MG",
      "organization" : "Stellar-IX",
      "organizationalunit" : "Stellar-IX"
   },
   "subnet" : "102.16.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com",
      "mg"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2034-10-30T06:33:21Z",
      "notbefore" : "2024-11-01T06:33:21Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
139.59.99.104

Network
139.59.0.0/17

Domain(s)
newsctunnel.me

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

HTTP Title
400 Bad Request

ASN
AS14061

Organization
DIGITALOCEAN-ASN

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe
Issuer Common Name
E6

Issuer Organization
Let's Encrypt

Subject Common Name
f4cw.newsctunnel.me

Subject Alt Name
f4cw.newsctunnel.me

SHA256 Fingerprint
42717a4bf84b5154d2236f475ca3322e08370c0b85d8f1347622c0c5b78ae614

Validity Not Before
2024-10-20T05:36:41Z

Validity Not After
2025-01-18T05:36:40Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
28715c6ec3fd38b6ed232e3e37959e9c

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
16444d0bf46608253d591db62f41e7c3

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 07 Nov 2024 01:26:43 GMT
Content-Type: text/html
Content-Length: 150
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T01:26:43.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "16444d0bf46608253d591db62f41e7c3",
         "bodymmh3" : -534304446,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : 1768320182,
         "title" : "400 Bad Request"
      },
      "length" : 295
   },
   "asn" : "AS14061",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Singapore",
   "country" : "SG",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 01:26:43 GMT\r\nContent-Type: text/html\r\nContent-Length: 150\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 Bad Request</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "28715c6ec3fd38b6ed232e3e37959e9c",
   "datammh3" : -1512152686,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "newsctunnel.me"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "63db76b79e803f7778d6c6613794bbb2",
      "sha1" : "260fb62d674d3899f490b5dd03e752a4784d5b54",
      "sha256" : "42717a4bf84b5154d2236f475ca3322e08370c0b85d8f1347622c0c5b78ae614"
   },
   "geolocus" : {
      "asn" : "AS14061",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "SG",
      "countryname" : "Singapore",
      "domain" : [
         "digitalocean.com"
      ],
      "isineu" : "false",
      "latitude" : "1.352083",
      "location" : "1.352083,103.819836",
      "longitude" : "103.819836",
      "netname" : "DIGITALOCEAN-AP",
      "organization" : "DigitalOcean, LLC",
      "subnet" : "139.59.96.0/20"
   },
   "host" : [
      "f4cw"
   ],
   "hostname" : [
      "f4cw.newsctunnel.me"
   ],
   "ip" : "139.59.99.104",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "E6",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature"
   ],
   "latitude" : "1.3078",
   "location" : "1.3078,103.6818",
   "longitude" : "103.6818",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "DIGITALOCEAN-ASN",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 513,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "id-ecPublicKey",
      "length" : 256
   },
   "reason" : "Bad Request",
   "seen_date" : "2024-11-07",
   "serial" : "04:f1:b3:e9:e0:9b:f0:5d:8d:31:b4:8b:cb:b2:31:c3:d1:d6",
   "signature" : {
      "algorithm" : "ecdsa-with-SHA384"
   },
   "source" : "datascan",
   "status" : 400,
   "subject" : {
      "altname" : [
         "f4cw.newsctunnel.me"
      ],
      "commonname" : "f4cw.newsctunnel.me"
   },
   "subnet" : "139.59.0.0/17",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "me"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-01-18T05:36:40Z",
      "notbefore" : "2024-10-20T05:36:41Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
115.64.26.65

Network
115.64.0.0/16

Domain(s)
dyndns.org home.arpa

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

HTTP Title
400 Bad Request

ASN
AS7545

Organization
TPG Telecom Limited

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Home CA

Subject Common Name
storage.home.arpa

Subject Alt Name
storage.home.arpa spacenow.dyndns.org

SHA256 Fingerprint
2c485254e8f602ada1912b58e5b7fc5fc5a580b1a253c885e9d4db2b27627322

Validity Not Before
2024-05-27T00:29:56Z

Validity Not After
2034-05-25T00:29:56Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
28715c6ec3fd38b6ed232e3e37959e9c

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
16444d0bf46608253d591db62f41e7c3

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 07 Nov 2024 00:49:32 GMT
Content-Type: text/html
Content-Length: 150
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T00:49:33.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "16444d0bf46608253d591db62f41e7c3",
         "bodymmh3" : -534304446,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : -1105413983,
         "title" : "400 Bad Request"
      },
      "length" : 295
   },
   "asn" : "AS7545",
   "ca" : "false",
   "city" : "Sydney",
   "country" : "AU",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 00:49:32 GMT\r\nContent-Type: text/html\r\nContent-Length: 150\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 Bad Request</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "28715c6ec3fd38b6ed232e3e37959e9c",
   "datammh3" : -1512152686,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "dyndns.org",
      "home.arpa"
   ],
   "extkeyusage" : [
      "serverAuth"
   ],
   "fingerprint" : {
      "md5" : "664b9cef13dc95b26f35187813a97d8a",
      "sha1" : "6cd25ee8d9879dfd11d3a081466cb75688a013bf",
      "sha256" : "2c485254e8f602ada1912b58e5b7fc5fc5a580b1a253c885e9d4db2b27627322"
   },
   "geolocus" : {
      "asn" : "AS7545",
      "continent" : "OC",
      "continentname" : "Oceania",
      "country" : "AU",
      "countryname" : "Australia",
      "domain" : [
         "tpg.com.au",
         "tpgi.com.au",
         "tpgtelecom.com.au"
      ],
      "isineu" : "false",
      "latitude" : "-25.274398",
      "location" : "-25.274398,133.775136",
      "longitude" : "133.775136",
      "netname" : "TPG-AU",
      "organization" : "TPG Internet Pty Ltd",
      "subnet" : "115.64.0.0/16"
   },
   "host" : [
      "spacenow",
      "storage"
   ],
   "hostname" : [
      "spacenow.dyndns.org",
      "storage.home.arpa"
   ],
   "ip" : "115.64.26.65",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "Home CA"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "-33.8715",
   "location" : "-33.8715,151.2006",
   "longitude" : "151.2006",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TPG Telecom Limited",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 513,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "Bad Request",
   "seen_date" : "2024-11-07",
   "serial" : "73:45:8f:87:58:a0:7f:e8:f0:28:f5:ff:eb:4b:9f:f1",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 400,
   "subject" : {
      "altname" : [
         "storage.home.arpa",
         "spacenow.dyndns.org"
      ],
      "commonname" : "storage.home.arpa"
   },
   "subnet" : "115.64.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "arpa",
      "org"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2034-05-25T00:29:56Z",
      "notbefore" : "2024-05-27T00:29:56Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
159.223.75.187

Network
159.223.0.0/17

Domain(s)
sabdo.my.id

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

HTTP Title
400 Bad Request

ASN
AS14061

Organization
DIGITALOCEAN-ASN

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe
Issuer Common Name
E5

Issuer Organization
Let's Encrypt

Subject Common Name
aressss.sabdo.my.id

Subject Alt Name
aressss.sabdo.my.id

SHA256 Fingerprint
7ec8c602827142032e1e5b65cfad9f260f7b528975ea75b38d8652affd5f4bf8

Validity Not Before
2024-10-16T02:52:03Z

Validity Not After
2025-01-14T02:52:02Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
28715c6ec3fd38b6ed232e3e37959e9c

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
16444d0bf46608253d591db62f41e7c3

HTTP/1.1 400 Bad Request
Server: nginx
Date: Wed, 06 Nov 2024 21:02:55 GMT
Content-Type: text/html
Content-Length: 150
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T21:02:55.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "16444d0bf46608253d591db62f41e7c3",
         "bodymmh3" : -534304446,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : 1609795534,
         "title" : "400 Bad Request"
      },
      "length" : 295
   },
   "asn" : "AS14061",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Singapore",
   "country" : "SG",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Wed, 06 Nov 2024 21:02:55 GMT\r\nContent-Type: text/html\r\nContent-Length: 150\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 Bad Request</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "28715c6ec3fd38b6ed232e3e37959e9c",
   "datammh3" : -1512152686,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "sabdo.my.id"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "b5ab88567f00efa8bc2d918e69ed7e7e",
      "sha1" : "438a7ca24480a9dceb87d36a7babbd1ba9d8e831",
      "sha256" : "7ec8c602827142032e1e5b65cfad9f260f7b528975ea75b38d8652affd5f4bf8"
   },
   "geolocus" : {
      "asn" : "AS14061",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "digitalocean.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "DO-13",
      "organization" : "DigitalOcean, LLC",
      "subnet" : "159.223.64.0/19"
   },
   "host" : [
      "aressss"
   ],
   "hostname" : [
      "aressss.sabdo.my.id"
   ],
   "ip" : "159.223.75.187",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "E5",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature"
   ],
   "latitude" : "1.3078",
   "location" : "1.3078,103.6818",
   "longitude" : "103.6818",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "DIGITALOCEAN-ASN",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 513,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "id-ecPublicKey",
      "length" : 256
   },
   "reason" : "Bad Request",
   "seen_date" : "2024-11-06",
   "serial" : "03:ad:72:6e:76:9e:78:de:cc:4d:6a:43:f8:16:08:8a:d0:f2",
   "signature" : {
      "algorithm" : "ecdsa-with-SHA384"
   },
   "source" : "datascan",
   "status" : 400,
   "subject" : {
      "altname" : [
         "aressss.sabdo.my.id"
      ],
      "commonname" : "aressss.sabdo.my.id"
   },
   "subnet" : "159.223.0.0/17",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "my.id"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-01-14T02:52:02Z",
      "notbefore" : "2024-10-16T02:52:03Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
171.97.217.113

Network
171.96.0.0/15

Domain(s)
asianet.co.th

Device

<enterprise field>: device.class

HTTP Title
400 Bad Request

Reverse DNS
ppp-171-97-217-113.revip8.asianet.co.th

ASN
AS17552

Organization
True Online

Protocol
http Cert not expired http

Source
datascan
Product
F5 Nginx

CPE(s)

<enterprise field>: cpe
Issuer Common Name
pfSense-5971e1284144e

Issuer Organization
pfSense webConfigurator Self-Signed Certificate

Subject Organization
pfSense webConfigurator Self-Signed Certificate

Subject Email
admin@pfSense.localdomain

Subject Common Name
pfSense-5971e1284144e

Subject Alt Name
pfSense-5971e1284144e

SHA256 Fingerprint
5e53f8037b3da7f68a4fabac0a821f3ff70592772413addda3e5023a9d2a9052

Validity Not Before
2022-12-16T06:36:01Z

Validity Not After
2028-06-07T06:36:01Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
28715c6ec3fd38b6ed232e3e37959e9c

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
16444d0bf46608253d591db62f41e7c3

HTTP/1.1 400 Bad Request
Server: nginx
Date: Wed, 06 Nov 2024 18:26:48 GMT
Content-Type: text/html
Content-Length: 150
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T18:26:48.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "16444d0bf46608253d591db62f41e7c3",
         "bodymmh3" : -534304446,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : 92978546,
         "title" : "400 Bad Request"
      },
      "length" : 295
   },
   "asn" : "AS17552",
   "ca" : "false",
   "city" : "Bangkok",
   "country" : "TH",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Wed, 06 Nov 2024 18:26:48 GMT\r\nContent-Type: text/html\r\nContent-Length: 150\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 Bad Request</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "28715c6ec3fd38b6ed232e3e37959e9c",
   "datammh3" : -1512152686,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "asianet.co.th"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "e230defef8153dd503e7ecb0675164ad",
      "sha1" : "475bd89dfe44f40f031fef4144544b7d1feb65a0",
      "sha256" : "5e53f8037b3da7f68a4fabac0a821f3ff70592772413addda3e5023a9d2a9052"
   },
   "geolocus" : {
      "asn" : "AS17552",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "TH",
      "countryname" : "Thailand",
      "domain" : [
         "asianet.co.th",
         "trueinternet.co.th"
      ],
      "isineu" : "false",
      "latitude" : "15.870032",
      "location" : "15.870032,100.992541",
      "longitude" : "100.992541",
      "netname" : "TRUENET-HISP",
      "organization" : "TRUE BROADBAND",
      "subnet" : "171.97.128.0/17"
   },
   "host" : [
      "ppp-171-97-217-113"
   ],
   "hostname" : [
      "ppp-171-97-217-113.revip8.asianet.co.th"
   ],
   "ip" : "171.97.217.113",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Locality",
      "commonname" : "pfSense-5971e1284144e",
      "country" : "US",
      "email" : "admin@pfSense.localdomain",
      "organization" : "pfSense webConfigurator Self-Signed Certificate"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "13.7618",
   "location" : "13.7618,100.5324",
   "longitude" : "100.5324",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "True Online",
   "port" : 513,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "Bad Request",
   "reverse" : [
      "ppp-171-97-217-113.revip8.asianet.co.th"
   ],
   "seen_date" : "2024-11-06",
   "serial" : "5b:b6:ca:a9:53:d6:33:cd",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "revip8.asianet.co.th"
   ],
   "subject" : {
      "altname" : [
         "pfSense-5971e1284144e"
      ],
      "city" : "Locality",
      "commonname" : "pfSense-5971e1284144e",
      "country" : "US",
      "email" : "admin@pfSense.localdomain",
      "organization" : "pfSense webConfigurator Self-Signed Certificate"
   },
   "subnet" : "171.96.0.0/15",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "co.th"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2028-06-07T06:36:01Z",
      "notbefore" : "2022-12-16T06:36:01Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
210.186.122.103

Alternative IP(s)
2001:e68:67e0:fc00:9209:d0ff:fe33:288e

Network
210.186.0.0/15

Domain(s)
synology.me

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

HTTP Title
400 Bad Request

ASN
AS4788

Organization
TM TECHNOLOGY SERVICES SDN. BHD.

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe
Issuer Common Name
E6

Issuer Organization
Let's Encrypt

Subject Common Name
patiencemodular.synology.me

Subject Alt Name
*.patiencemodular.synology.me patiencemodular.synology.me

SHA256 Fingerprint
2b99c1a6703cc424424b49b22399d0acec76510099b4707f59fadf1848779fba

Validity Not Before
2024-09-11T22:24:57Z

Validity Not After
2024-12-10T22:24:56Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
28715c6ec3fd38b6ed232e3e37959e9c

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
16444d0bf46608253d591db62f41e7c3

HTTP/1.1 400 Bad Request
Server: nginx
Date: Wed, 06 Nov 2024 17:28:55 GMT
Content-Type: text/html
Content-Length: 150
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T17:28:55.000Z",
   "alternativeip" : [
      "2001:e68:67e0:fc00:9209:d0ff:fe33:288e"
   ],
   "app" : {
      "http" : {
         "bodymd5" : "16444d0bf46608253d591db62f41e7c3",
         "bodymmh3" : -534304446,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : 1583830628,
         "title" : "400 Bad Request"
      },
      "length" : 295
   },
   "asn" : "AS4788",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Kuala Lumpur",
   "country" : "MY",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Wed, 06 Nov 2024 17:28:55 GMT\r\nContent-Type: text/html\r\nContent-Length: 150\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 Bad Request</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "28715c6ec3fd38b6ed232e3e37959e9c",
   "datammh3" : -1512152686,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "synology.me"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "21f6dba0907cec27fa0d391c54feaa77",
      "sha1" : "349b8819759626d5328ec9b3da5c08f902ce487a",
      "sha256" : "2b99c1a6703cc424424b49b22399d0acec76510099b4707f59fadf1848779fba"
   },
   "geolocus" : {
      "asn" : "AS4788",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "MY",
      "countryname" : "Malaysia",
      "domain" : [
         "tm.com.my",
         "tm.net.my"
      ],
      "isineu" : "false",
      "latitude" : "4.210484",
      "location" : "4.210484,101.975766",
      "longitude" : "101.975766",
      "netname" : "INFRA-TMNET",
      "organization" : "ADSL Streamyx Telekom Malaysia",
      "subnet" : "210.186.96.0/19"
   },
   "host" : [
      "patiencemodular"
   ],
   "hostname" : [
      "patiencemodular.synology.me"
   ],
   "ip" : "210.186.122.103",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "E6",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature"
   ],
   "latitude" : "3.1833",
   "location" : "3.1833,101.6697",
   "longitude" : "101.6697",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TM TECHNOLOGY SERVICES SDN. BHD.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 513,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "id-ecPublicKey",
      "length" : 256
   },
   "reason" : "Bad Request",
   "seen_date" : "2024-11-06",
   "serial" : "04:9a:c1:71:d8:86:30:1f:73:0c:4b:4c:3f:b5:53:83:f3:f0",
   "signature" : {
      "algorithm" : "ecdsa-with-SHA384"
   },
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "patiencemodular.synology.me"
   ],
   "subject" : {
      "altname" : [
         "*.patiencemodular.synology.me",
         "patiencemodular.synology.me"
      ],
      "commonname" : "patiencemodular.synology.me"
   },
   "subnet" : "210.186.0.0/15",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "me"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2024-12-10T22:24:56Z",
      "notbefore" : "2024-09-11T22:24:57Z"
   },
   "version" : "v3",
   "wildcard" : "true"
}

IP
219.92.232.26

Alternative IP(s)
2001:e68:6745:7d00:9209:d0ff:fe0d:1c6d

Network
219.92.0.0/15

Domain(s)
synology.me tm.net.my

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

HTTP Title
400 Bad Request

Reverse DNS
kuk-232-26.tm.net.my

ASN
AS4788

Organization
TM TECHNOLOGY SERVICES SDN. BHD.

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe
Issuer Common Name
E6

Issuer Organization
Let's Encrypt

Subject Common Name
batupapan.synology.me

Subject Alt Name
batupapan.synology.me

SHA256 Fingerprint
fbeec8a7bb34c9ceadbfc175f72cab042f8d76d3f44a6dd90214ccfb3d87d6a5

Validity Not Before
2024-10-28T16:37:55Z

Validity Not After
2025-01-26T16:37:54Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
28715c6ec3fd38b6ed232e3e37959e9c

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
16444d0bf46608253d591db62f41e7c3

HTTP/1.1 400 Bad Request
Server: nginx
Date: Wed, 06 Nov 2024 17:16:10 GMT
Content-Type: text/html
Content-Length: 150
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T17:16:10.000Z",
   "alternativeip" : [
      "2001:e68:6745:7d00:9209:d0ff:fe0d:1c6d"
   ],
   "app" : {
      "http" : {
         "bodymd5" : "16444d0bf46608253d591db62f41e7c3",
         "bodymmh3" : -534304446,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : -957035047,
         "title" : "400 Bad Request"
      },
      "length" : 295
   },
   "asn" : "AS4788",
   "basicconstraints" : "critical",
   "ca" : "false",
   "country" : "MY",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Wed, 06 Nov 2024 17:16:10 GMT\r\nContent-Type: text/html\r\nContent-Length: 150\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 Bad Request</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "28715c6ec3fd38b6ed232e3e37959e9c",
   "datammh3" : -1512152686,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "synology.me",
      "tm.net.my"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "5fca75cb175d13e2c566e4867f2d2ec8",
      "sha1" : "6531e12260ee9672fee3649f98ca9a6d6f36edde",
      "sha256" : "fbeec8a7bb34c9ceadbfc175f72cab042f8d76d3f44a6dd90214ccfb3d87d6a5"
   },
   "geolocus" : {
      "asn" : "AS4788",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "MY",
      "countryname" : "Malaysia",
      "domain" : [
         "tm.com.my",
         "tm.net.my"
      ],
      "isineu" : "false",
      "latitude" : "4.210484",
      "location" : "4.210484,101.975766",
      "longitude" : "101.975766",
      "netname" : "INFRA-TMNET",
      "organization" : "TMnet route object",
      "subnet" : "219.92.0.0/16"
   },
   "host" : [
      "batupapan",
      "kuk-232-26"
   ],
   "hostname" : [
      "batupapan.synology.me",
      "kuk-232-26.tm.net.my"
   ],
   "ip" : "219.92.232.26",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "E6",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature"
   ],
   "latitude" : "2.5000",
   "location" : "2.5000,112.5000",
   "longitude" : "112.5000",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TM TECHNOLOGY SERVICES SDN. BHD.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 513,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "id-ecPublicKey",
      "length" : 256
   },
   "reason" : "Bad Request",
   "reverse" : [
      "kuk-232-26.tm.net.my"
   ],
   "seen_date" : "2024-11-06",
   "serial" : "03:ae:18:40:68:f3:a5:94:8e:ce:ed:70:a4:ac:a6:9a:15:d0",
   "signature" : {
      "algorithm" : "ecdsa-with-SHA384"
   },
   "source" : "datascan",
   "status" : 400,
   "subject" : {
      "altname" : [
         "batupapan.synology.me"
      ],
      "commonname" : "batupapan.synology.me"
   },
   "subnet" : "219.92.0.0/15",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "me",
      "net.my"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-01-26T16:37:54Z",
      "notbefore" : "2024-10-28T16:37:55Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
121.122.70.60

Network
121.120.0.0/14

Domain(s)
synology.me

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

HTTP Title
400 Bad Request

ASN
AS9534

Organization
Binariang Berhad

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe
Issuer Common Name
E5

Issuer Organization
Let's Encrypt

Subject Common Name
cactusautomation.synology.me

Subject Alt Name
*.cactusautomation.synology.me cactusautomation.synology.me

SHA256 Fingerprint
f7fa4dfe850b374254d21c568d78d3a108e2e05f1bb65ee1e9b9905dd8afa708

Validity Not Before
2024-09-27T04:03:15Z

Validity Not After
2024-12-26T04:03:14Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
28715c6ec3fd38b6ed232e3e37959e9c

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
16444d0bf46608253d591db62f41e7c3

HTTP/1.1 400 Bad Request
Server: nginx
Date: Wed, 06 Nov 2024 15:57:27 GMT
Content-Type: text/html
Content-Length: 150
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T15:57:27.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "16444d0bf46608253d591db62f41e7c3",
         "bodymmh3" : -534304446,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : -1851269244,
         "title" : "400 Bad Request"
      },
      "length" : 295
   },
   "asn" : "AS9534",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Puchong Batu Dua Belas",
   "country" : "MY",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Wed, 06 Nov 2024 15:57:27 GMT\r\nContent-Type: text/html\r\nContent-Length: 150\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 Bad Request</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "28715c6ec3fd38b6ed232e3e37959e9c",
   "datammh3" : -1512152686,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "synology.me"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "d27ff9ec669a013390836597b5d5eb63",
      "sha1" : "1dfc12ce82fc749cb91658572b5af38e2821cead",
      "sha256" : "f7fa4dfe850b374254d21c568d78d3a108e2e05f1bb65ee1e9b9905dd8afa708"
   },
   "geolocus" : {
      "asn" : "AS9534",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "MY",
      "countryname" : "Malaysia",
      "domain" : [
         "maxis.com.my",
         "pwrdsgn.com"
      ],
      "isineu" : "false",
      "latitude" : "4.210484",
      "location" : "4.210484,101.975766",
      "longitude" : "101.975766",
      "netname" : "MAXISNET-3G",
      "organization" : "Maxis Broadband Sdn.Bhd",
      "subnet" : "121.122.0.0/17"
   },
   "host" : [
      "cactusautomation"
   ],
   "hostname" : [
      "cactusautomation.synology.me"
   ],
   "ip" : "121.122.70.60",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "E5",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature"
   ],
   "latitude" : "3.0732",
   "location" : "3.0732,101.6219",
   "longitude" : "101.6219",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Binariang Berhad",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 513,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "id-ecPublicKey",
      "length" : 256
   },
   "reason" : "Bad Request",
   "seen_date" : "2024-11-06",
   "serial" : "03:05:07:7a:54:f4:f2:c1:a3:9c:46:fc:d2:40:bf:12:39:b9",
   "signature" : {
      "algorithm" : "ecdsa-with-SHA384"
   },
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "cactusautomation.synology.me"
   ],
   "subject" : {
      "altname" : [
         "*.cactusautomation.synology.me",
         "cactusautomation.synology.me"
      ],
      "commonname" : "cactusautomation.synology.me"
   },
   "subnet" : "121.120.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "me"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2024-12-26T04:03:14Z",
      "notbefore" : "2024-09-27T04:03:15Z"
   },
   "version" : "v3",
   "wildcard" : "true"
}

IP
165.22.249.11

Network
165.22.0.0/16

Domain(s)
newsctunnel.me

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

HTTP Title
400 Bad Request

ASN
AS14061

Organization
DIGITALOCEAN-ASN

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe
Issuer Common Name
E6

Issuer Organization
Let's Encrypt

Subject Common Name
s1ar.newsctunnel.me

Subject Alt Name
s1ar.newsctunnel.me

SHA256 Fingerprint
6837ed2047d1ec4ae320ab99e79cc74cd876cbe557ba46c246966cdacb4fab21

Validity Not Before
2024-08-15T02:47:35Z

Validity Not After
2024-11-13T02:47:34Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
28715c6ec3fd38b6ed232e3e37959e9c

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
16444d0bf46608253d591db62f41e7c3

HTTP/1.1 400 Bad Request
Server: nginx
Date: Wed, 06 Nov 2024 15:21:38 GMT
Content-Type: text/html
Content-Length: 150
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T15:21:39.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "16444d0bf46608253d591db62f41e7c3",
         "bodymmh3" : -534304446,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : -628820444,
         "title" : "400 Bad Request"
      },
      "length" : 295
   },
   "asn" : "AS14061",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Singapore",
   "country" : "SG",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Wed, 06 Nov 2024 15:21:38 GMT\r\nContent-Type: text/html\r\nContent-Length: 150\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 Bad Request</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "28715c6ec3fd38b6ed232e3e37959e9c",
   "datammh3" : -1512152686,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "newsctunnel.me"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "da0f73c172c8b9273720f9ca3eaa9191",
      "sha1" : "0f29534fea73daa6a2b4d6f05eaa83541a400d71",
      "sha256" : "6837ed2047d1ec4ae320ab99e79cc74cd876cbe557ba46c246966cdacb4fab21"
   },
   "geolocus" : {
      "asn" : "AS14061",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "digitalocean.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "DIGITALOCEAN-165-22-0-0",
      "organization" : "DigitalOcean, LLC",
      "subnet" : "165.22.240.0/20"
   },
   "host" : [
      "s1ar"
   ],
   "hostname" : [
      "s1ar.newsctunnel.me"
   ],
   "ip" : "165.22.249.11",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "E6",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature"
   ],
   "latitude" : "1.3078",
   "location" : "1.3078,103.6818",
   "longitude" : "103.6818",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "DIGITALOCEAN-ASN",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 513,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "id-ecPublicKey",
      "length" : 256
   },
   "reason" : "Bad Request",
   "seen_date" : "2024-11-06",
   "serial" : "04:d4:4d:71:bb:be:67:03:ad:fb:f1:84:69:89:fa:81:d6:b3",
   "signature" : {
      "algorithm" : "ecdsa-with-SHA384"
   },
   "source" : "datascan",
   "status" : 400,
   "subject" : {
      "altname" : [
         "s1ar.newsctunnel.me"
      ],
      "commonname" : "s1ar.newsctunnel.me"
   },
   "subnet" : "165.22.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "me"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2024-11-13T02:47:34Z",
      "notbefore" : "2024-08-15T02:47:35Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

Returning 10 result(s) out of 563 in 0.053 second(s)

80.241.139.38:513 (tcp/http/tls) - last seen on 2024-11-07 at 03:28:11 UTC

102.16.254.108:513 (tcp/http/tls) - last seen on 2024-11-07 at 02:37:08 UTC

139.59.99.104:513 (tcp/http/tls) - last seen on 2024-11-07 at 01:26:43 UTC

115.64.26.65:513 (tcp/http/tls) - last seen on 2024-11-07 at 00:49:33 UTC

159.223.75.187:513 (tcp/http/tls) - last seen on 2024-11-06 at 21:02:55 UTC

171.97.217.113:513 (tcp/http/tls) - last seen on 2024-11-06 at 18:26:48 UTC

210.186.122.103:513 (tcp/http/tls) - last seen on 2024-11-06 at 17:28:55 UTC

219.92.232.26:513 (tcp/http/tls) - last seen on 2024-11-06 at 17:16:10 UTC

121.122.70.60:513 (tcp/http/tls) - last seen on 2024-11-06 at 15:57:27 UTC

165.22.249.11:513 (tcp/http/tls) - last seen on 2024-11-06 at 15:21:39 UTC