Cyber Defense Search Engine

IP
89.138.168.133

Alternative IP(s)
93.172.13.206

Network
89.138.0.0/15

Domain(s)
duckdns.org netvision.net.il

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
89-138-168-133.bb.netvision.net.il

ASN
AS1680

Organization
Cellcom Fixed Line Communication L.P

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel
Issuer Common Name
E5

Issuer Organization
Let's Encrypt

Subject Common Name
dvir-assistant.duckdns.org

Subject Alt Name
dvir-assistant.duckdns.org

SHA256 Fingerprint
47ca3eef91a2fbb2f3e23f1b808b72cfb801249aca006bc068c755f5ce919478

Validity Not Before
2024-09-30T02:46:38Z

Validity Not After
2024-12-29T02:46:37Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
bf9a12cf89e406c3466775dd6bea3124

HTTP Header MD5
4a24ab9280b062115a577dc73a5d0688

HTTP Body MD5
980822991fc4045585308e8c5b6ef8bf

HTTP/1.0 400 Bad Request
Content-Type: text/plain; charset=utf-8
Content-Length: 40
Date: Thu, 21 Nov 2024 10:30:35 GMT
Server: Python/3.12 aiohttp/3.9.3

Invalid method encountered:

  b''
    ^

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:30:36.000Z",
   "alternativeip" : [
      "93.172.13.206"
   ],
   "app" : {
      "http" : {
         "bodymd5" : "980822991fc4045585308e8c5b6ef8bf",
         "bodymmh3" : 939398497,
         "headermd5" : "4a24ab9280b062115a577dc73a5d0688",
         "headermmh3" : 583323043
      },
      "length" : 201
   },
   "asn" : "AS1680",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Rishon LeTsiyyon",
   "country" : "IL",
   "data" : "HTTP/1.0 400 Bad Request\r\nContent-Type: text/plain; charset=utf-8\r\nContent-Length: 40\r\nDate: Thu, 21 Nov 2024 10:30:35 GMT\r\nServer: Python/3.12 aiohttp/3.9.3\r\n\r\nInvalid method encountered:\n\n  b''\n    ^",
   "datamd5" : "bf9a12cf89e406c3466775dd6bea3124",
   "datammh3" : 175864787,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "duckdns.org",
      "netvision.net.il"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "477cc534d8de1ee82c24479f5a5a8f23",
      "sha1" : "30b3b626d1db569710afbeeef785e58a3fb070eb",
      "sha256" : "47ca3eef91a2fbb2f3e23f1b808b72cfb801249aca006bc068c755f5ce919478"
   },
   "geolocus" : {
      "asn" : "AS1680",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "IL",
      "countryname" : "Israel",
      "domain" : [
         "013netvision.co.il",
         "cellcom.co.il",
         "netvision.net.il"
      ],
      "isineu" : "false",
      "latitude" : "31.046051",
      "location" : "31.046051,34.851612",
      "longitude" : "34.851612",
      "netname" : "BB-HFA",
      "organization" : "Netvision",
      "subnet" : "89.138.0.0/16"
   },
   "host" : [
      "89-138-168-133",
      "dvir-assistant"
   ],
   "hostname" : [
      "89-138-168-133.bb.netvision.net.il",
      "dvir-assistant.duckdns.org"
   ],
   "ip" : "89.138.168.133",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "E5",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature"
   ],
   "latitude" : "31.9642",
   "location" : "31.9642,34.7876",
   "longitude" : "34.7876",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Cellcom Fixed Line Communication L.P",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 513,
   "protocol" : "http",
   "protocolversion" : "1.0",
   "publickey" : {
      "algorithm" : "id-ecPublicKey",
      "length" : 384
   },
   "reason" : "Bad Request",
   "reverse" : [
      "89-138-168-133.bb.netvision.net.il"
   ],
   "seen_date" : "2024-11-21",
   "serial" : "03:0b:59:f6:c4:d0:73:f4:7d:5d:0b:06:f2:15:69:14:3a:81",
   "signature" : {
      "algorithm" : "ecdsa-with-SHA384"
   },
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "bb.netvision.net.il"
   ],
   "subject" : {
      "altname" : [
         "dvir-assistant.duckdns.org"
      ],
      "commonname" : "dvir-assistant.duckdns.org"
   },
   "subnet" : "89.138.0.0/15",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "net.il",
      "org"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2024-12-29T02:46:37Z",
      "notbefore" : "2024-09-30T02:46:38Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
185.82.192.246

Network
185.82.192.0/22

Domain(s)
plex.direct

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

HTTP Title
Bad Request

ASN
AS57112

Organization
F2X Operator B.V.

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

HTTP Component(s)
Plex Media Server

CPE(s)

<enterprise field>: cpe
Issuer Common Name
R11

Issuer Organization
Let's Encrypt

Subject Common Name
*.0b382b63ddeb4f08a8b39e42b13731ff.plex.direct

Subject Alt Name
*.0b382b63ddeb4f08a8b39e42b13731ff.plex.direct

SHA256 Fingerprint
d825f0bb47dd2aae310d25b8ce371cc3f13d2fbdc95f6f3124c31e2096e02a2a

Validity Not Before
2024-10-25T14:29:29Z

Validity Not After
2025-01-23T14:29:28Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
a0dd649935a895148cdde6002f85108c

HTTP Header MD5
aee94a2d2739dffea2e92963443a15de

HTTP Body MD5
419be1d725da998c5b2ea2826d709222

HTTP/1.1 400 Bad Request
X-Plex-Protocol: 1.0
Content-Length: 89
Content-Type: text/html
Connection: close
Cache-Control: no-cache
Date: Thu, 21 Nov 2024 10:28:14 GMT

<html><head><title>Bad Request</title></head><body><h1>400 Bad Request</h1></body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:28:14.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "419be1d725da998c5b2ea2826d709222",
         "bodymmh3" : -673640879,
         "component" : [
            {
               "productvendor" : "Plex",
               "product" : "Media Server"
            }
         ],
         "headermd5" : "aee94a2d2739dffea2e92963443a15de",
         "headermmh3" : 2117308716,
         "title" : "Bad Request"
      },
      "length" : 265
   },
   "asn" : "AS57112",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Rotterdam",
   "country" : "NL",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nX-Plex-Protocol: 1.0\r\nContent-Length: 89\r\nContent-Type: text/html\r\nConnection: close\r\nCache-Control: no-cache\r\nDate: Thu, 21 Nov 2024 10:28:14 GMT\r\n\r\n<html><head><title>Bad Request</title></head><body><h1>400 Bad Request</h1></body></html>",
   "datamd5" : "a0dd649935a895148cdde6002f85108c",
   "datammh3" : 514112715,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "plex.direct"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "6648c48960d35d8fe5403858c6120222",
      "sha1" : "70d971b0feab0a27bbb770efe86274ae3a4b8e51",
      "sha256" : "d825f0bb47dd2aae310d25b8ce371cc3f13d2fbdc95f6f3124c31e2096e02a2a"
   },
   "hostname" : [
      "plex.direct"
   ],
   "ip" : "185.82.192.246",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "R11",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "51.9187",
   "location" : "51.9187,4.4721",
   "longitude" : "4.4721",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "F2X Operator B.V.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 513,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "Bad Request",
   "seen_date" : "2024-11-21",
   "serial" : "03:5c:14:56:21:0a:d1:da:1b:6d:6d:c4:2e:9b:5b:eb:ca:ea",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "0b382b63ddeb4f08a8b39e42b13731ff.plex.direct"
   ],
   "subject" : {
      "altname" : [
         "*.0b382b63ddeb4f08a8b39e42b13731ff.plex.direct"
      ],
      "commonname" : "*.0b382b63ddeb4f08a8b39e42b13731ff.plex.direct"
   },
   "subnet" : "185.82.192.0/22",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "direct"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-01-23T14:29:28Z",
      "notbefore" : "2024-10-25T14:29:29Z"
   },
   "version" : "v3",
   "wildcard" : "true"
}

IP
175.6.52.143

Alternative IP(s)
36.111.140.220

Network
175.6.0.0/17

Domain(s)
ctcdn.cn

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

HTTP Title
400 Bad Request

ASN
AS63835

Organization
No.293,Wanbao Avenue

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

Product
OpenResty OpenResty

CPE(s)

<enterprise field>: cpe
Issuer Common Name
TrustAsia RSA OV TLS CA G3

Issuer Organization
TrustAsia Technologies, Inc.

Subject Organization
天翼云科技有限公司

Subject Common Name
*.ctcdn.cn

Subject Alt Name
*.ctcdn.cn ctcdn.cn

SHA256 Fingerprint
4351ece255ded01775a98c06c7473981844dd287bb97f00547a3e7c0d559eb9c

Validity Not Before
2024-09-26T00:00:00Z

Validity Not After
2025-10-25T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
8c49bc06d60f942d30ac351f99471454

HTTP Header MD5
14a85540396540cde8a9446ac7ed7a2a

HTTP Body MD5
fe7bef4d04e5d3f79d908d8447cc621a

HTTP/1.1 400 Bad Request
Server: openresty
Date: Thu, 21 Nov 2024 10:28:10 GMT
Content-Type: text/html
Content-Length: 154
Connection: close
Request-Id: 348f673f0b3aaf06cca43c12234b8640

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>openresty</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:28:12.000Z",
   "alternativeip" : [
      "36.111.140.220"
   ],
   "app" : {
      "http" : {
         "bodymd5" : "fe7bef4d04e5d3f79d908d8447cc621a",
         "bodymmh3" : 232769354,
         "headermd5" : "14a85540396540cde8a9446ac7ed7a2a",
         "headermmh3" : 531151921,
         "title" : "400 Bad Request"
      },
      "length" : 349
   },
   "asn" : "AS63835",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Shanghai",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: openresty\r\nDate: Thu, 21 Nov 2024 10:28:10 GMT\r\nContent-Type: text/html\r\nContent-Length: 154\r\nConnection: close\r\nRequest-Id: 348f673f0b3aaf06cca43c12234b8640\r\n\r\n<html>\r\n<head><title>400 Bad Request</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<hr><center>openresty</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "8c49bc06d60f942d30ac351f99471454",
   "datammh3" : -443454665,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "ctcdn.cn"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "55bc56b100e998a70df3224a68e82383",
      "sha1" : "f0ea6896862f42ab4a09a2a7bab4f44b95066363",
      "sha256" : "4351ece255ded01775a98c06c7473981844dd287bb97f00547a3e7c0d559eb9c"
   },
   "geolocus" : {
      "asn" : "AS63835",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "189.cn",
         "chinatelecom.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "CHINANET-HN",
      "organization" : "CHINANET HUNAN PROVINCE NETWORK",
      "subnet" : "175.6.0.0/17"
   },
   "hostname" : [
      "ctcdn.cn"
   ],
   "ip" : "175.6.52.143",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "TrustAsia RSA OV TLS CA G3",
      "country" : "CN",
      "organization" : "TrustAsia Technologies, Inc."
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "31.2222",
   "location" : "31.2222,121.4581",
   "longitude" : "121.4581",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "No.293,Wanbao Avenue",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 513,
   "product" : "OpenResty",
   "productvendor" : "OpenResty",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "Bad Request",
   "seen_date" : "2024-11-21",
   "serial" : "8f:e4:65:df:95:0f:19:03:5d:c3:5e:27:8f:f7:82:62",
   "signature" : {
      "algorithm" : "sha384WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 400,
   "subject" : {
      "altname" : [
         "*.ctcdn.cn",
         "ctcdn.cn"
      ],
      "commonname" : "*.ctcdn.cn",
      "country" : "CN",
      "organization" : "\u5929\u7ffc\u4e91\u79d1\u6280\u6709\u9650\u516c\u53f8"
   },
   "subnet" : "175.6.0.0/17",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "cn"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-10-25T23:59:59Z",
      "notbefore" : "2024-09-26T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "true"
}

IP
103.181.183.147

Network
103.181.182.0/23

Domain(s)
candrassh.my.id nevacloud.io

Device

<enterprise field>: device.class

Operating System
Linux Linux Ubuntu

HTTP Title
400 Bad Request

Reverse DNS
103-181-183-147.nevacloud.io

ASN
AS149391

Organization
PT Delta Awan Angkasa

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Ubuntu

Product
F5 Nginx 1.18.0

CPE(s)

<enterprise field>: cpe
Issuer Common Name
E5

Issuer Organization
Let's Encrypt

Subject Common Name
neva-id9.candrassh.my.id

Subject Alt Name
neva-id9.candrassh.my.id

SHA256 Fingerprint
fa12961ff17849228130b82c35939241bbb096ac08b033391718ddf81b72e2e9

Validity Not Before
2024-10-31T10:05:52Z

Validity Not After
2025-01-29T10:05:51Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
3dabcb7b6a57527e5581dad5baada826

HTTP Header MD5
73b5b39070f21c93f1b94a75281c1ce0

HTTP Body MD5
1e46276ffb5b2c00e884636d4a161fb2

HTTP/1.1 400 Bad Request
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 21 Nov 2024 10:27:08 GMT
Content-Type: text/html
Content-Length: 166
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx/1.18.0 (Ubuntu)</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:27:08.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "1e46276ffb5b2c00e884636d4a161fb2",
         "bodymmh3" : -25150266,
         "headermd5" : "73b5b39070f21c93f1b94a75281c1ce0",
         "headermmh3" : 261091077,
         "title" : "400 Bad Request"
      },
      "length" : 327
   },
   "asn" : "AS149391",
   "basicconstraints" : "critical",
   "ca" : "false",
   "country" : "ID",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 21 Nov 2024 10:27:08 GMT\r\nContent-Type: text/html\r\nContent-Length: 166\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 Bad Request</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<hr><center>nginx/1.18.0 (Ubuntu)</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "3dabcb7b6a57527e5581dad5baada826",
   "datammh3" : 264405383,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "candrassh.my.id",
      "nevacloud.io"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "1629f0785dd003945d1e33fb881c0840",
      "sha1" : "5af5c99c580eb682897749915787b07900f21b6e",
      "sha256" : "fa12961ff17849228130b82c35939241bbb096ac08b033391718ddf81b72e2e9"
   },
   "geolocus" : {
      "asn" : "AS149391",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "ID",
      "countryname" : "Indonesia",
      "domain" : [
         "deneva.co.id",
         "nevacloud.com"
      ],
      "isineu" : "false",
      "latitude" : "-0.789275",
      "location" : "-0.789275,113.921327",
      "longitude" : "113.921327",
      "netname" : "IDNIC-DAA-ID",
      "organization" : "Route object for 103.181.182.0/23",
      "subnet" : "103.181.182.0/23"
   },
   "host" : [
      "103-181-183-147",
      "neva-id9"
   ],
   "hostname" : [
      "103-181-183-147.nevacloud.io",
      "neva-id9.candrassh.my.id"
   ],
   "ip" : "103.181.183.147",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "E5",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature"
   ],
   "latitude" : "-6.1728",
   "location" : "-6.1728,106.8272",
   "longitude" : "106.8272",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "PT Delta Awan Angkasa",
   "os" : "Linux",
   "osdistribution" : "Ubuntu",
   "osvendor" : "Linux",
   "port" : 513,
   "product" : "Nginx",
   "productvendor" : "F5",
   "productversion" : "1.18.0",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "id-ecPublicKey",
      "length" : 256
   },
   "reason" : "Bad Request",
   "reverse" : [
      "103-181-183-147.nevacloud.io"
   ],
   "seen_date" : "2024-11-21",
   "serial" : "04:7b:93:5f:cb:e0:bf:e1:b4:61:16:73:58:4f:08:a5:36:85",
   "signature" : {
      "algorithm" : "ecdsa-with-SHA384"
   },
   "source" : "datascan",
   "status" : 400,
   "subject" : {
      "altname" : [
         "neva-id9.candrassh.my.id"
      ],
      "commonname" : "neva-id9.candrassh.my.id"
   },
   "subnet" : "103.181.182.0/23",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "io",
      "my.id"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-01-29T10:05:51Z",
      "notbefore" : "2024-10-31T10:05:52Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
176.241.34.124

Network
176.241.0.0/18

Domain(s)
digikabel.hu plex.direct

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

HTTP Title
Bad Request

Reverse DNS
176-241-34-124.pool.digikabel.hu

ASN
AS20845

Organization
DIGI Tavkozlesi es Szolgaltato Kft.

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Kernel

HTTP Component(s)
Plex Media Server

CPE(s)

<enterprise field>: cpe
Issuer Common Name
R11

Issuer Organization
Let's Encrypt

Subject Common Name
*.aac0287d031346caa73f1e0235280189.plex.direct

Subject Alt Name
*.aac0287d031346caa73f1e0235280189.plex.direct

SHA256 Fingerprint
8c1bed3811426a4c1d0ed7b5ccf57f35ab4b72f54d78ca5c7d4570355b272220

Validity Not Before
2024-10-14T05:10:38Z

Validity Not After
2025-01-12T05:10:37Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
a0dd649935a895148cdde6002f85108c

HTTP Header MD5
aee94a2d2739dffea2e92963443a15de

HTTP Body MD5
419be1d725da998c5b2ea2826d709222

HTTP/1.1 400 Bad Request
X-Plex-Protocol: 1.0
Content-Length: 89
Content-Type: text/html
Connection: close
Cache-Control: no-cache
Date: Thu, 21 Nov 2024 10:25:14 GMT

<html><head><title>Bad Request</title></head><body><h1>400 Bad Request</h1></body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:25:14.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "419be1d725da998c5b2ea2826d709222",
         "bodymmh3" : -673640879,
         "component" : [
            {
               "product" : "Media Server",
               "productvendor" : "Plex"
            }
         ],
         "headermd5" : "aee94a2d2739dffea2e92963443a15de",
         "headermmh3" : -308844468,
         "title" : "Bad Request"
      },
      "length" : 265
   },
   "asn" : "AS20845",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Szeged",
   "country" : "HU",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nX-Plex-Protocol: 1.0\r\nContent-Length: 89\r\nContent-Type: text/html\r\nConnection: close\r\nCache-Control: no-cache\r\nDate: Thu, 21 Nov 2024 10:25:14 GMT\r\n\r\n<html><head><title>Bad Request</title></head><body><h1>400 Bad Request</h1></body></html>",
   "datamd5" : "a0dd649935a895148cdde6002f85108c",
   "datammh3" : 514112715,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "digikabel.hu",
      "plex.direct"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "436f5ed4e6a95df1181ce31a75602af6",
      "sha1" : "11067d51ce1220b4c25f86bb93b8ce857d306960",
      "sha256" : "8c1bed3811426a4c1d0ed7b5ccf57f35ab4b72f54d78ca5c7d4570355b272220"
   },
   "host" : [
      "176-241-34-124"
   ],
   "hostname" : [
      "176-241-34-124.pool.digikabel.hu"
   ],
   "ip" : "176.241.34.124",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "R11",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "46.2527",
   "location" : "46.2527,20.1540",
   "longitude" : "20.1540",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "DIGI Tavkozlesi es Szolgaltato Kft.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 513,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "Bad Request",
   "reverse" : [
      "176-241-34-124.pool.digikabel.hu"
   ],
   "seen_date" : "2024-11-21",
   "serial" : "03:94:65:5a:2c:2e:5e:09:7c:2e:6e:d3:3e:45:c0:f5:fc:2d",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "aac0287d031346caa73f1e0235280189.plex.direct",
      "pool.digikabel.hu"
   ],
   "subject" : {
      "altname" : [
         "*.aac0287d031346caa73f1e0235280189.plex.direct"
      ],
      "commonname" : "*.aac0287d031346caa73f1e0235280189.plex.direct"
   },
   "subnet" : "176.241.0.0/18",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "direct",
      "hu"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-01-12T05:10:37Z",
      "notbefore" : "2024-10-14T05:10:38Z"
   },
   "version" : "v3",
   "wildcard" : "true"
}

IP
85.217.129.221

Network
85.217.129.0/24

Domain(s)
85-avatel.es

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

HTTP Title
400 Bad Request

Reverse DNS
221.129.217.85-avatel.es

ASN
AS200845

Organization
Avatel Telecom, SA

Protocol
http Cert expired http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Synology Inc. CA

Issuer Organization
Synology Inc.

Subject Organization
Synology Inc.

Subject Common Name
synology

Subject Alt Name
synology

SHA256 Fingerprint
5006ee8dffe8afbb48631a1654ec76c0af94c57cf1bfde8b669094bc1e9cd526

Validity Not Before
2021-11-17T18:31:07Z

Validity Not After
2022-11-18T18:31:07Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
28715c6ec3fd38b6ed232e3e37959e9c

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
16444d0bf46608253d591db62f41e7c3

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 21 Nov 2024 16:45:44 GMT
Content-Type: text/html
Content-Length: 150
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:22:54.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "16444d0bf46608253d591db62f41e7c3",
         "bodymmh3" : -534304446,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : 498250418,
         "title" : "400 Bad Request"
      },
      "length" : 295
   },
   "asn" : "AS200845",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "l'Alf\u00e0s del Pi",
   "country" : "ES",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 21 Nov 2024 16:45:44 GMT\r\nContent-Type: text/html\r\nContent-Length: 150\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 Bad Request</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "28715c6ec3fd38b6ed232e3e37959e9c",
   "datammh3" : -1512152686,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "85-avatel.es"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "b1627a771e8139126e973dfb9e14a8c7",
      "sha1" : "9d520bf1237a2061b0b9a3fe0ec799689ba4780d",
      "sha256" : "5006ee8dffe8afbb48631a1654ec76c0af94c57cf1bfde8b669094bc1e9cd526"
   },
   "host" : [
      221
   ],
   "hostname" : [
      "221.129.217.85-avatel.es"
   ],
   "ip" : "85.217.129.221",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Taipei",
      "commonname" : "Synology Inc. CA",
      "country" : "TW",
      "organization" : "Synology Inc."
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "38.7275",
   "location" : "38.7275,-0.0672",
   "longitude" : "-0.0672",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Avatel Telecom, SA",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 513,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "Bad Request",
   "reverse" : [
      "221.129.217.85-avatel.es"
   ],
   "seen_date" : "2024-11-21",
   "serial" : "c2:3e:dd:2c:b1:4f:95:a0",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "217.85-avatel.es",
      "129.217.85-avatel.es"
   ],
   "subject" : {
      "altname" : [
         "synology"
      ],
      "city" : "Taipei",
      "commonname" : "synology",
      "country" : "TW",
      "organization" : "Synology Inc."
   },
   "subnet" : "85.217.129.0/24",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "es"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2022-11-18T18:31:07Z",
      "notbefore" : "2021-11-17T18:31:07Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
77.69.183.2

Network
77.69.128.0/17

Domain(s)
batelco.com.bh

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

Reverse DNS
dynamic.ip.77.69.183.2.batelco.com.bh

ASN
AS5416

Organization
Beyon B.s.c.

Protocol
http Cert not expired http

Source
datascan
Operating System
Microsoft Windows

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Avigilon Control Center Web Endpoint

Issuer Organization
Avigilon Corp.

Subject Organization
Avigilon Corp.

Subject Common Name
Avigilon Control Center Web Endpoint

SHA256 Fingerprint
996f1871174126a355b66e6867fa5ff7a2e8388081306cd8c5e1df33ebe6e892

Validity Not Before
2020-10-14T06:49:28Z

Validity Not After
2045-10-14T06:49:28Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
f9871220de3b4841d3ec21d5dbbd6c29

HTTP Header MD5
93007e1f6b5b4c0030a15c52d4caa269

HTTP Body MD5
d41d8cd98f00b204e9800998ecf8427e
```
HTTP/1.1 400 Bad Request
```

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:09:08.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d41d8cd98f00b204e9800998ecf8427e",
         "bodymmh3" : -1,
         "headermd5" : "93007e1f6b5b4c0030a15c52d4caa269",
         "headermmh3" : -1540452864
      },
      "length" : 28
   },
   "asn" : "AS5416",
   "city" : "Manama",
   "country" : "BH",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\n\r\n",
   "datamd5" : "f9871220de3b4841d3ec21d5dbbd6c29",
   "datammh3" : -51113821,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "batelco.com.bh"
   ],
   "fingerprint" : {
      "md5" : "3278e6ec706854d8f8f462f5e4516897",
      "sha1" : "7ba3d94b1abd7986cd245605de653460d8c6720a",
      "sha256" : "996f1871174126a355b66e6867fa5ff7a2e8388081306cd8c5e1df33ebe6e892"
   },
   "geolocus" : {
      "asn" : "AS5416",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "BH",
      "countryname" : "Bahrain",
      "domain" : [
         "batelco.com.bh",
         "btc.com.bh"
      ],
      "isineu" : "false",
      "latitude" : "25.930414",
      "location" : "25.930414,50.637772",
      "longitude" : "50.637772",
      "netname" : "ADSL",
      "organization" : "Bahrain Telcommunication Company",
      "subnet" : "77.69.160.0/19"
   },
   "host" : [
      "dynamic"
   ],
   "hostname" : [
      "dynamic.ip.77.69.183.2.batelco.com.bh"
   ],
   "ip" : "77.69.183.2",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Vancouver",
      "commonname" : "Avigilon Control Center Web Endpoint",
      "country" : "CA",
      "organization" : "Avigilon Corp.",
      "organizationalunit" : "ACC"
   },
   "latitude" : "26.2410",
   "location" : "26.2410,50.5779",
   "longitude" : "50.5779",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Beyon B.s.c.",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 513,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "Bad Request",
   "reverse" : [
      "dynamic.ip.77.69.183.2.batelco.com.bh"
   ],
   "seen_date" : "2024-11-21",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "183.2.batelco.com.bh",
      "69.183.2.batelco.com.bh",
      "2.batelco.com.bh",
      "77.69.183.2.batelco.com.bh",
      "ip.77.69.183.2.batelco.com.bh"
   ],
   "subject" : {
      "city" : "Vancouver",
      "commonname" : "Avigilon Control Center Web Endpoint",
      "country" : "CA",
      "organization" : "Avigilon Corp.",
      "organizationalunit" : "ACC"
   },
   "subnet" : "77.69.128.0/17",
   "tld" : [
      "com.bh"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2045-10-14T06:49:28Z",
      "notbefore" : "2020-10-14T06:49:28Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
37.233.36.133

Network
37.233.0.0/18

Domain(s)
36.133: self-signed certificate starnet.md

Device

<enterprise field>: device.class

Operating System
Linux Linux Ubuntu

HTTP Title
400 Bad Request

Reverse DNS
37-233-36-133.starnet.md

ASN
AS31252

Organization
StarNet Solutii SRL

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Ubuntu

Product
F5 Nginx 1.14.0

CPE(s)

<enterprise field>: cpe
Issuer Common Name
37.233.36.133: Self-signed certificate

Issuer Organization
Self-signed certificate

Subject Organization
Self-signed certificate

Subject Common Name
37.233.36.133: Self-signed certificate

SHA256 Fingerprint
2a58c1dd3f291c48092982846da5c6dff53ccc35e2d4e03a34928acf00bf1feb

Validity Not Before
2023-08-06T11:02:35Z

Validity Not After
2025-08-05T11:02:35Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
a5c509101b5f879b6e08c8ebf626320b

HTTP Header MD5
62df4e371b9166f214e2f0d5b1bb9e93

HTTP Body MD5
d64b0184bd231464e603c3f736b3d85d

HTTP/1.1 400 Bad Request
Server: nginx/1.14.0 (Ubuntu)
Date: Thu, 21 Nov 2024 10:06:54 GMT
Content-Type: text/html
Content-Length: 182
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body bgcolor="white">
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx/1.14.0 (Ubuntu)</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:06:54.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d64b0184bd231464e603c3f736b3d85d",
         "bodymmh3" : -179766712,
         "headermd5" : "62df4e371b9166f214e2f0d5b1bb9e93",
         "headermmh3" : -1298636702,
         "title" : "400 Bad Request"
      },
      "length" : 343
   },
   "asn" : "AS31252",
   "ca" : "false",
   "city" : "Chisinau",
   "country" : "MD",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx/1.14.0 (Ubuntu)\r\nDate: Thu, 21 Nov 2024 10:06:54 GMT\r\nContent-Type: text/html\r\nContent-Length: 182\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 Bad Request</title></head>\r\n<body bgcolor=\"white\">\r\n<center><h1>400 Bad Request</h1></center>\r\n<hr><center>nginx/1.14.0 (Ubuntu)</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "a5c509101b5f879b6e08c8ebf626320b",
   "datammh3" : -2104091638,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "36.133: self-signed certificate",
      "starnet.md"
   ],
   "fingerprint" : {
      "md5" : "79fb87e50d19d237fb4eb0f4814d35ea",
      "sha1" : "aff440958309dce97f1fed77c875459cf6bf4e37",
      "sha256" : "2a58c1dd3f291c48092982846da5c6dff53ccc35e2d4e03a34928acf00bf1feb"
   },
   "host" : [
      37,
      "37-233-36-133"
   ],
   "hostname" : [
      "37-233-36-133.starnet.md",
      "37.233.36.133: Self-signed certificate"
   ],
   "ip" : "37.233.36.133",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Chishinau",
      "commonname" : "37.233.36.133: Self-signed certificate",
      "country" : "MD",
      "organization" : "Self-signed certificate"
   },
   "latitude" : "47.0042",
   "location" : "47.0042,28.8574",
   "longitude" : "28.8574",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "StarNet Solutii SRL",
   "os" : "Linux",
   "osdistribution" : "Ubuntu",
   "osvendor" : "Linux",
   "port" : 513,
   "product" : "Nginx",
   "productvendor" : "F5",
   "productversion" : "1.14.0",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reason" : "Bad Request",
   "reverse" : [
      "37-233-36-133.starnet.md"
   ],
   "seen_date" : "2024-11-21",
   "serial" : "60:ed:17:c9:10:32:e5:0f:d4:5b:a2:f5:e6:2f:08:d6:b7:62:36:b2",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "233.36.133: self-signed certificate"
   ],
   "subject" : {
      "city" : "Chishinau",
      "commonname" : "37.233.36.133: Self-signed certificate",
      "country" : "MD",
      "organization" : "Self-signed certificate"
   },
   "subnet" : "37.233.0.0/18",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "133: self-signed certificate",
      "md"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-08-05T11:02:35Z",
      "notbefore" : "2023-08-06T11:02:35Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
209.97.168.68

Network
209.97.128.0/18

Domain(s)
vip-xserver.me

Device

<enterprise field>: device.class

Operating System
Linux Linux Ubuntu

HTTP Title
400 Bad Request

ASN
AS14061

Organization
DIGITALOCEAN-ASN

Protocol
http Cert not expired http

Source
datascan
Operating System
Linux Linux Ubuntu

Product
F5 Nginx 1.18.0

CPE(s)

<enterprise field>: cpe
Issuer Common Name
E6

Issuer Organization
Let's Encrypt

Subject Common Name
kamilsgdo.vip-xserver.me

Subject Alt Name
kamilsgdo.vip-xserver.me

SHA256 Fingerprint
d8a8e8921e02f827f0731b363700929f7966e8e227098d3b0db3ba73469f75e8

Validity Not Before
2024-10-29T23:44:34Z

Validity Not After
2025-01-27T23:44:33Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
3dabcb7b6a57527e5581dad5baada826

HTTP Header MD5
73b5b39070f21c93f1b94a75281c1ce0

HTTP Body MD5
1e46276ffb5b2c00e884636d4a161fb2

HTTP/1.1 400 Bad Request
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 21 Nov 2024 10:01:09 GMT
Content-Type: text/html
Content-Length: 166
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx/1.18.0 (Ubuntu)</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:01:09.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "1e46276ffb5b2c00e884636d4a161fb2",
         "bodymmh3" : -25150266,
         "headermd5" : "73b5b39070f21c93f1b94a75281c1ce0",
         "headermmh3" : -2009650922,
         "title" : "400 Bad Request"
      },
      "length" : 327
   },
   "asn" : "AS14061",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Singapore",
   "country" : "SG",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 21 Nov 2024 10:01:09 GMT\r\nContent-Type: text/html\r\nContent-Length: 166\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 Bad Request</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<hr><center>nginx/1.18.0 (Ubuntu)</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "3dabcb7b6a57527e5581dad5baada826",
   "datammh3" : 264405383,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "vip-xserver.me"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "8df49f8c01b0ba8ed8d0d6f8123addd8",
      "sha1" : "c35047bddac79e32e83e9184fbe7c2ae77c02b96",
      "sha256" : "d8a8e8921e02f827f0731b363700929f7966e8e227098d3b0db3ba73469f75e8"
   },
   "geolocus" : {
      "asn" : "AS14061",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "digitalocean.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "DIGITALOCEAN-209-97-128-0",
      "organization" : "DigitalOcean, LLC",
      "subnet" : "209.97.160.0/20"
   },
   "host" : [
      "kamilsgdo"
   ],
   "hostname" : [
      "kamilsgdo.vip-xserver.me"
   ],
   "ip" : "209.97.168.68",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "E6",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature"
   ],
   "latitude" : "1.3078",
   "location" : "1.3078,103.6818",
   "longitude" : "103.6818",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "DIGITALOCEAN-ASN",
   "os" : "Linux",
   "osdistribution" : "Ubuntu",
   "osvendor" : "Linux",
   "port" : 513,
   "product" : "Nginx",
   "productvendor" : "F5",
   "productversion" : "1.18.0",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "id-ecPublicKey",
      "length" : 256
   },
   "reason" : "Bad Request",
   "seen_date" : "2024-11-21",
   "serial" : "03:65:5e:8a:65:55:94:44:f2:e8:28:79:35:42:e3:fd:e9:ac",
   "signature" : {
      "algorithm" : "ecdsa-with-SHA384"
   },
   "source" : "datascan",
   "status" : 400,
   "subject" : {
      "altname" : [
         "kamilsgdo.vip-xserver.me"
      ],
      "commonname" : "kamilsgdo.vip-xserver.me"
   },
   "subnet" : "209.97.128.0/18",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "me"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-01-27T23:44:33Z",
      "notbefore" : "2024-10-29T23:44:34Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
152.42.251.58

Network
152.42.128.0/17

Domain(s)
klmpk.systems

Device

<enterprise field>: device.class

Operating System
Linux Linux Ubuntu

HTTP Title
400 Bad Request

ASN
AS14061

Organization
DIGITALOCEAN-ASN

Protocol
http Cert expired http

Source
datascan
Operating System
Linux Linux Ubuntu

Product
F5 Nginx 1.18.0

CPE(s)

<enterprise field>: cpe
Issuer Common Name
E6

Issuer Organization
Let's Encrypt

Subject Common Name
kesyy.klmpk.systems

Subject Alt Name
kesyy.klmpk.systems

SHA256 Fingerprint
9b4adbc3b39348a192c378732b455c0a3559e9d26c50e0579d9547118a68d35c

Validity Not Before
2024-07-06T19:19:31Z

Validity Not After
2024-10-04T19:19:30Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
3dabcb7b6a57527e5581dad5baada826

HTTP Header MD5
73b5b39070f21c93f1b94a75281c1ce0

HTTP Body MD5
1e46276ffb5b2c00e884636d4a161fb2

HTTP/1.1 400 Bad Request
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 21 Nov 2024 10:00:12 GMT
Content-Type: text/html
Content-Length: 166
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx/1.18.0 (Ubuntu)</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:00:12.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "1e46276ffb5b2c00e884636d4a161fb2",
         "bodymmh3" : -25150266,
         "headermd5" : "73b5b39070f21c93f1b94a75281c1ce0",
         "headermmh3" : 723248991,
         "title" : "400 Bad Request"
      },
      "length" : 327
   },
   "asn" : "AS14061",
   "basicconstraints" : "critical",
   "ca" : "false",
   "country" : "SG",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 21 Nov 2024 10:00:12 GMT\r\nContent-Type: text/html\r\nContent-Length: 166\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 Bad Request</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<hr><center>nginx/1.18.0 (Ubuntu)</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "3dabcb7b6a57527e5581dad5baada826",
   "datammh3" : 264405383,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "klmpk.systems"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "4d63141989bd2b0e2ea0c1ae474e9fe9",
      "sha1" : "2cfae767e1cc6cacd0022c6fb4f184cdb891abc2",
      "sha256" : "9b4adbc3b39348a192c378732b455c0a3559e9d26c50e0579d9547118a68d35c"
   },
   "geolocus" : {
      "asn" : "AS14061",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "digitalocean.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "DO-13",
      "organization" : "DigitalOcean, LLC",
      "subnet" : "152.42.192.0/18"
   },
   "host" : [
      "kesyy"
   ],
   "hostname" : [
      "kesyy.klmpk.systems"
   ],
   "ip" : "152.42.251.58",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "E6",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature"
   ],
   "latitude" : "1.3673",
   "location" : "1.3673,103.8014",
   "longitude" : "103.8014",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "DIGITALOCEAN-ASN",
   "os" : "Linux",
   "osdistribution" : "Ubuntu",
   "osvendor" : "Linux",
   "port" : 513,
   "product" : "Nginx",
   "productvendor" : "F5",
   "productversion" : "1.18.0",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "publickey" : {
      "algorithm" : "id-ecPublicKey",
      "length" : 256
   },
   "reason" : "Bad Request",
   "seen_date" : "2024-11-21",
   "serial" : "03:be:ee:7b:b3:47:ab:2c:d1:3a:1a:fa:8e:f7:0d:a7:be:99",
   "signature" : {
      "algorithm" : "ecdsa-with-SHA384"
   },
   "source" : "datascan",
   "status" : 400,
   "subject" : {
      "altname" : [
         "kesyy.klmpk.systems"
      ],
      "commonname" : "kesyy.klmpk.systems"
   },
   "subnet" : "152.42.128.0/17",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "systems"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2024-10-04T19:19:30Z",
      "notbefore" : "2024-07-06T19:19:31Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

Returning 10 result(s) out of 4,290 in 0.035 second(s)

89.138.168.133:513 (tcp/http/tls) - last seen on 2024-11-21 at 10:30:36 UTC

185.82.192.246:513 (tcp/http/tls) - last seen on 2024-11-21 at 10:28:14 UTC

175.6.52.143:513 (tcp/http/tls) - last seen on 2024-11-21 at 10:28:12 UTC

103.181.183.147:513 (tcp/http/tls) - last seen on 2024-11-21 at 10:27:08 UTC

176.241.34.124:513 (tcp/http/tls) - last seen on 2024-11-21 at 10:25:14 UTC

85.217.129.221:513 (tcp/http/tls) - last seen on 2024-11-21 at 10:22:54 UTC

77.69.183.2:513 (tcp/http/tls) - last seen on 2024-11-21 at 10:09:08 UTC

37.233.36.133:513 (tcp/http/tls) - last seen on 2024-11-21 at 10:06:54 UTC

209.97.168.68:513 (tcp/http/tls) - last seen on 2024-11-21 at 10:01:09 UTC

152.42.251.58:513 (tcp/http/tls) - last seen on 2024-11-21 at 10:00:12 UTC