Cyber Defense Search Engine

IP
141.164.38.243

Network
141.164.32.0/19

Domain(s)
vultrusercontent.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://141.164.38.243:5800/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

Reverse DNS
141.164.38.243.vultrusercontent.com

ASN
AS20473

Organization
AS-VULTR

Protocol
http

Source
datascan
NOTE
This tab is a merge from current page results.

CPE(s)

Domain(s)
vultrusercontent.com

Hostname(s)
141.164.38.243.vultrusercontent.com 141.164.49.197.vultrusercontent.com 149.28.45.194.vultrusercontent.com 149.28.88.191.vultrusercontent.com 158.247.237.215.vultrusercontent.com 216.128.178.28.vultrusercontent.com 45.32.94.78.vultrusercontent.com 45.76.149.48.vultrusercontent.com 45.76.203.155.vultrusercontent.com 64.176.56.60.vultrusercontent.com

IP(s)
141.164.38.243 141.164.49.197 149.28.45.194 149.28.88.191 158.247.237.215 216.128.178.28 45.32.94.78 45.76.149.48 45.76.203.155 64.176.56.60

Port(s)
5800

Protocol(s)
http

Tag(s)

URL(s)
/
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0c1820e0d381850a77897bf32978a1f0

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
ea425366a98dfc499c0cbeedb9a4f02a

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 21 Nov 2024 10:32:06 GMT
Content-Type: text/html
Content-Length: 248
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:32:07.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
         "bodymmh3" : 1153229498,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : 346163534,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 393
   },
   "asn" : "AS20473",
   "city" : "Seoul",
   "country" : "KR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 21 Nov 2024 10:32:06 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
   "datammh3" : 190190724,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "vultrusercontent.com"
   ],
   "host" : [
      141
   ],
   "hostname" : [
      "141.164.38.243.vultrusercontent.com"
   ],
   "ip" : "141.164.38.243",
   "ipv6" : "false",
   "latitude" : "37.5681",
   "location" : "37.5681,126.8998",
   "longitude" : "126.8998",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AS-VULTR",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5800,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "reverse" : [
      "141.164.38.243.vultrusercontent.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "164.38.243.vultrusercontent.com",
      "243.vultrusercontent.com",
      "38.243.vultrusercontent.com"
   ],
   "subnet" : "141.164.32.0/19",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
158.247.237.215

Network
158.247.192.0/18

Domain(s)
vultrusercontent.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://158.247.237.215:5800/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

Reverse DNS
158.247.237.215.vultrusercontent.com

ASN
AS20473

Organization
AS-VULTR

Protocol
http

Source
datascan
NOTE
This tab is a merge from current page results.

CPE(s)

Domain(s)
vultrusercontent.com

Hostname(s)
141.164.38.243.vultrusercontent.com 141.164.49.197.vultrusercontent.com 149.28.45.194.vultrusercontent.com 149.28.88.191.vultrusercontent.com 158.247.237.215.vultrusercontent.com 216.128.178.28.vultrusercontent.com 45.32.94.78.vultrusercontent.com 45.76.149.48.vultrusercontent.com 45.76.203.155.vultrusercontent.com 64.176.56.60.vultrusercontent.com

IP(s)
141.164.38.243 141.164.49.197 149.28.45.194 149.28.88.191 158.247.237.215 216.128.178.28 45.32.94.78 45.76.149.48 45.76.203.155 64.176.56.60

Port(s)
5800

Protocol(s)
http

Tag(s)

URL(s)
/
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0c1820e0d381850a77897bf32978a1f0

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
ea425366a98dfc499c0cbeedb9a4f02a

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 21 Nov 2024 10:24:07 GMT
Content-Type: text/html
Content-Length: 248
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:24:08.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
         "bodymmh3" : 1153229498,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : -590602906,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 393
   },
   "asn" : "AS20473",
   "city" : "Seoul",
   "country" : "KR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 21 Nov 2024 10:24:07 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
   "datammh3" : 190190724,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "vultrusercontent.com"
   ],
   "geolocus" : {
      "asn" : "AS20473",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "JP",
      "countryname" : "Japan",
      "domain" : [
         "choopa.com",
         "constant.com",
         "vultr.com"
      ],
      "isineu" : "false",
      "latitude" : "36.204824",
      "location" : "36.204824,138.252924",
      "longitude" : "138.252924",
      "netname" : "CONSTANT-AP",
      "organization" : "The Constant Company, LLC",
      "subnet" : "158.247.192.0/18"
   },
   "host" : [
      158
   ],
   "hostname" : [
      "158.247.237.215.vultrusercontent.com"
   ],
   "ip" : "158.247.237.215",
   "ipv6" : "false",
   "latitude" : "37.5681",
   "location" : "37.5681,126.8998",
   "longitude" : "126.8998",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AS-VULTR",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5800,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "reverse" : [
      "158.247.237.215.vultrusercontent.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "215.vultrusercontent.com",
      "237.215.vultrusercontent.com",
      "247.237.215.vultrusercontent.com"
   ],
   "subnet" : "158.247.192.0/18",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
45.32.94.78

Network
45.32.0.0/16

Domain(s)
vultrusercontent.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://45.32.94.78:5800/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

Reverse DNS
45.32.94.78.vultrusercontent.com

ASN
AS20473

Organization
AS-VULTR

Protocol
http

Source
datascan
NOTE
This tab is a merge from current page results.

CPE(s)

Domain(s)
vultrusercontent.com

Hostname(s)
141.164.38.243.vultrusercontent.com 141.164.49.197.vultrusercontent.com 149.28.45.194.vultrusercontent.com 149.28.88.191.vultrusercontent.com 158.247.237.215.vultrusercontent.com 216.128.178.28.vultrusercontent.com 45.32.94.78.vultrusercontent.com 45.76.149.48.vultrusercontent.com 45.76.203.155.vultrusercontent.com 64.176.56.60.vultrusercontent.com

IP(s)
141.164.38.243 141.164.49.197 149.28.45.194 149.28.88.191 158.247.237.215 216.128.178.28 45.32.94.78 45.76.149.48 45.76.203.155 64.176.56.60

Port(s)
5800

Protocol(s)
http

Tag(s)

URL(s)
/
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0c1820e0d381850a77897bf32978a1f0

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
ea425366a98dfc499c0cbeedb9a4f02a

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 21 Nov 2024 10:03:02 GMT
Content-Type: text/html
Content-Length: 248
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:03:03.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
         "bodymmh3" : 1153229498,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : 2134131428,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 393
   },
   "asn" : "AS20473",
   "city" : "Los Angeles",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 21 Nov 2024 10:03:02 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
   "datammh3" : 190190724,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "vultrusercontent.com"
   ],
   "geolocus" : {
      "asn" : "AS20473",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "constant.com",
         "vultr.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "NET-45-32-64-0-23",
      "organization" : "Vultr Holdings, LLC",
      "subnet" : "45.32.64.0/19"
   },
   "host" : [
      45
   ],
   "hostname" : [
      "45.32.94.78.vultrusercontent.com"
   ],
   "ip" : "45.32.94.78",
   "ipv6" : "false",
   "latitude" : "34.0544",
   "location" : "34.0544,-118.2440",
   "longitude" : "-118.2440",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AS-VULTR",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5800,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "reverse" : [
      "45.32.94.78.vultrusercontent.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "32.94.78.vultrusercontent.com",
      "78.vultrusercontent.com",
      "94.78.vultrusercontent.com"
   ],
   "subnet" : "45.32.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
141.164.49.197

Network
141.164.32.0/19

Domain(s)
vultrusercontent.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://141.164.49.197:5800/ 200

Reverse DNS
141.164.49.197.vultrusercontent.com

ASN
AS20473

Organization
AS-VULTR

Protocol
http

Source
datascan
NOTE
This tab is a merge from current page results.

CPE(s)

Domain(s)
vultrusercontent.com

Hostname(s)
141.164.38.243.vultrusercontent.com 141.164.49.197.vultrusercontent.com 149.28.45.194.vultrusercontent.com 149.28.88.191.vultrusercontent.com 158.247.237.215.vultrusercontent.com 216.128.178.28.vultrusercontent.com 45.32.94.78.vultrusercontent.com 45.76.149.48.vultrusercontent.com 45.76.203.155.vultrusercontent.com 64.176.56.60.vultrusercontent.com

IP(s)
141.164.38.243 141.164.49.197 149.28.45.194 149.28.88.191 158.247.237.215 216.128.178.28 45.32.94.78 45.76.149.48 45.76.203.155 64.176.56.60

Port(s)
5800

Protocol(s)
http

Tag(s)

URL(s)
/
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0993ebdf8fd60c687d53ba7005b1c24d

HTTP Header MD5
bdd21f5a86747d05843c828e0965c094

HTTP Body MD5
0e286281cd03ef77daa6087a8ddf1cce

HTTP/1.1 200 OK
Strict-Transport-Security: max-age=31536000; includeSubdomains
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Length: 4229
Content-Type: text/html
Date: Thu, 21 Nov 2024 10:02:35 UTC

<!--
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
-->
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
    <META http-equiv="Content-Type" content="text/html; charset=utf-8">
    <META HTTP-EQUIV="Pragma" CONTENT="no_cache">
    <META NAME="ATEN International Co Ltd." CONTENT="(c) ATEN International Co Ltd. 2010">
    <title></title>
<!--    <link rel="shortcut icon" href="../images/favicon.ico"> -->
    <link rel="stylesheet" href="../css/basic.css" type="text/css">
    <script language="JavaScript">
    if (window != top)
        top.location.href = "/";//location.href;
    </script>
    <script language="JavaScript" src="../js/utils.js"></script>
    <script language="JavaScript" type="text/javascript">
    var lang_setting;
    lang_setting = ReadCookie("language");
    if (lang_setting == null)
    {
        CreateCookie("langSetFlag","0");
        CreateCookie("language","English");
        lang_setting = "English";
    }
    document.write("<script type=\"text/javascript\", src = \"../js/lang/" + lang_setting + "/lang_str.js\"><\/script>");
    function checkform()
    {
        if(Trim(form1.name.value) == "")
        {
            alert(lang.LANG_LOGIN_INVALID_USERNAME);
            form1.name.focus();
            return;
        }
        if(Trim(form1.pwd.value) == "")
        {
            alert(lang.LANG_LOGIN_INVALID_PASSWORD);
            form1.pwd.focus();
            return;
        }
        document.form1.submit();
        return;
    }
    function checkEnt(e)
    {
        var key = window.event ? e.keyCode : e.which;
        if(key == 13)
        {

            checkform();
        }
    }
    function PageInit()
    {
        var msg = document.getElementById("login_word");
        msg.setAttribute("value", lang.LANG_LOGIN_LOGIN);
        return;
    }
</script>
</head>
<body onload='PageInit()'>
    <table style="margin: 0px; height: 100%; width: 100%" border="0" background=#FFFFFF cellpadding="0" cellspacing="0">
        <tr>
            <td style="height: 25%; vertical-align: bottom; text-align: center">
                <table style="margin: 0 auto;" border="0" width="412px">
                    <tr>
                        <td>
                            <img src="../images/logo.gif" style="margin: 0px; padding: 0px;">
                        </td>
                    </tr>
                </table>
            </td>
        </tr>
        <tr style="width: 100%">
            <td style="height: 100%; vertical-align: top;">
                <form name="form1" action="/cgi/login.cgi" method="post" autocomplete="off">
                    <table class="login">
                        <tr><td align="center" colspan="2">
                            <h3><script>document.writeln(lang.LANG_LOGIN_PROMPT);</script></h3>
                        </td></tr>
                        <tr>
                            <td align="right" width="40%">
                                <script>document.writeln(lang.LANG_LOGIN_USERNAME)</script>
                            </td>
                            <td>
                                <input align="left" name="name" size="20" maxlength="64" style="width:146px;" type="text" onKeyDown="checkEnt(event)">
                            </td>
                        </tr>
                        <tr>
                            <td align="right" width="40%">
                                <script>document.writeln(lang.LANG_LOGIN_PASSWORD)</script>
                            </td>
                            <td>
                                <input align="left" name="pwd" size="20" maxlength="64" style="width:146px;" type="password" onKeyDown="checkEnt(event)">
                            </td>
                        </tr>
                        <tr>
                            <td align="center" colspan="2">
                                <input id="login_word" class="btnStyle" name="Login" type="button" onclick="javascript: checkform(this)">
                            </td>
                        </tr>
                    </table>
                </form>
            </td>
        </tr>
    </table>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:02:35.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "w3.org"
         ],
         "file" : [
            "login.cgi"
         ],
         "hostname" : [
            "www.w3.org"
         ],
         "url" : [
            "http://www.w3.org/1999/xhtml",
            "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"
         ]
      },
      "http" : {
         "bodymd5" : "0e286281cd03ef77daa6087a8ddf1cce",
         "bodymmh3" : -2022788506,
         "headermd5" : "bdd21f5a86747d05843c828e0965c094",
         "headermmh3" : 1682494449
      },
      "length" : 4491
   },
   "asn" : "AS20473",
   "city" : "Seoul",
   "country" : "KR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nStrict-Transport-Security: max-age=31536000; includeSubdomains\r\nX-XSS-Protection: 1; mode=block\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nContent-Length: 4229\r\nContent-Type: text/html\r\nDate: Thu, 21 Nov 2024 10:02:35 UTC\r\n\r\n<!--\n<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">\n-->\n<html xmlns=\"http://www.w3.org/1999/xhtml\">\n<head>\n    <META http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">\n    <META HTTP-EQUIV=\"Pragma\" CONTENT=\"no_cache\">\n    <META NAME=\"ATEN International Co Ltd.\" CONTENT=\"(c) ATEN International Co Ltd. 2010\">\n    <title></title>\n<!--    <link rel=\"shortcut icon\" href=\"../images/favicon.ico\"> -->\n    <link rel=\"stylesheet\" href=\"../css/basic.css\" type=\"text/css\">\n    <script language=\"JavaScript\">\n    if (window != top)\n        top.location.href = \"/\";//location.href;\n    </script>\n    <script language=\"JavaScript\" src=\"../js/utils.js\"></script>\n    <script language=\"JavaScript\" type=\"text/javascript\">\n    var lang_setting;\n    lang_setting = ReadCookie(\"language\");\n    if (lang_setting == null)\n    {\n        CreateCookie(\"langSetFlag\",\"0\");\n        CreateCookie(\"language\",\"English\");\n        lang_setting = \"English\";\n    }\n    document.write(\"<script type=\\\"text/javascript\\\", src = \\\"../js/lang/\" + lang_setting + \"/lang_str.js\\\"><\\/script>\");\n    function checkform()\n    {\n        if(Trim(form1.name.value) == \"\")\n        {\n            alert(lang.LANG_LOGIN_INVALID_USERNAME);\n            form1.name.focus();\n            return;\n        }\n        if(Trim(form1.pwd.value) == \"\")\n        {\n            alert(lang.LANG_LOGIN_INVALID_PASSWORD);\n            form1.pwd.focus();\n            return;\n        }\n        document.form1.submit();\n        return;\n    }\n    function checkEnt(e)\n    {\n        var key = window.event ? e.keyCode : e.which;\n        if(key == 13)\n        {\n\n            checkform();\n        }\n    }\n    function PageInit()\n    {\n        var msg = document.getElementById(\"login_word\");\n        msg.setAttribute(\"value\", lang.LANG_LOGIN_LOGIN);\n        return;\n    }\n</script>\n</head>\n<body onload='PageInit()'>\n    <table style=\"margin: 0px; height: 100%; width: 100%\" border=\"0\" background=#FFFFFF cellpadding=\"0\" cellspacing=\"0\">\n        <tr>\n            <td style=\"height: 25%; vertical-align: bottom; text-align: center\">\n                <table style=\"margin: 0 auto;\" border=\"0\" width=\"412px\">\n                    <tr>\n                        <td>\n                            <img src=\"../images/logo.gif\" style=\"margin: 0px; padding: 0px;\">\n                        </td>\n                    </tr>\n                </table>\n            </td>\n        </tr>\n        <tr style=\"width: 100%\">\n            <td style=\"height: 100%; vertical-align: top;\">\n                <form name=\"form1\" action=\"/cgi/login.cgi\" method=\"post\" autocomplete=\"off\">\n                    <table class=\"login\">\n                        <tr><td align=\"center\" colspan=\"2\">\n                            <h3><script>document.writeln(lang.LANG_LOGIN_PROMPT);</script></h3>\n                        </td></tr>\n                        <tr>\n                            <td align=\"right\" width=\"40%\">\n                                <script>document.writeln(lang.LANG_LOGIN_USERNAME)</script>\n                            </td>\n                            <td>\n                                <input align=\"left\" name=\"name\" size=\"20\" maxlength=\"64\" style=\"width:146px;\" type=\"text\" onKeyDown=\"checkEnt(event)\">\n                            </td>\n                        </tr>\n                        <tr>\n                            <td align=\"right\" width=\"40%\">\n                                <script>document.writeln(lang.LANG_LOGIN_PASSWORD)</script>\n                            </td>\n                            <td>\n                                <input align=\"left\" name=\"pwd\" size=\"20\" maxlength=\"64\" style=\"width:146px;\" type=\"password\" onKeyDown=\"checkEnt(event)\">\n                            </td>\n                        </tr>\n                        <tr>\n                            <td align=\"center\" colspan=\"2\">\n                                <input id=\"login_word\" class=\"btnStyle\" name=\"Login\" type=\"button\" onclick=\"javascript: checkform(this)\">\n                            </td>\n                        </tr>\n                    </table>\n                </form>\n            </td>\n        </tr>\n    </table>\n</body>\n</html>",
   "datamd5" : "0993ebdf8fd60c687d53ba7005b1c24d",
   "datammh3" : 237833661,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "vultrusercontent.com"
   ],
   "host" : [
      141
   ],
   "hostname" : [
      "141.164.49.197.vultrusercontent.com"
   ],
   "ip" : "141.164.49.197",
   "ipv6" : "false",
   "latitude" : "37.5681",
   "location" : "37.5681,126.8998",
   "longitude" : "126.8998",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AS-VULTR",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5800,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "reverse" : [
      "141.164.49.197.vultrusercontent.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "164.49.197.vultrusercontent.com",
      "197.vultrusercontent.com",
      "49.197.vultrusercontent.com"
   ],
   "subnet" : "141.164.32.0/19",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
216.128.178.28

Network
216.128.176.0/20

Domain(s)
vultrusercontent.com

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://216.128.178.28:5800/ 200

HTTP Title
[vultr-guest]

Reverse DNS
216.128.178.28.vultrusercontent.com

ASN
AS20473

Organization
AS-VULTR

Protocol
http

Source
datascan
NOTE
This tab is a merge from current page results.

CPE(s)

Domain(s)
vultrusercontent.com

Hostname(s)
141.164.38.243.vultrusercontent.com 141.164.49.197.vultrusercontent.com 149.28.45.194.vultrusercontent.com 149.28.88.191.vultrusercontent.com 158.247.237.215.vultrusercontent.com 216.128.178.28.vultrusercontent.com 45.32.94.78.vultrusercontent.com 45.76.149.48.vultrusercontent.com 45.76.203.155.vultrusercontent.com 64.176.56.60.vultrusercontent.com

IP(s)
141.164.38.243 141.164.49.197 149.28.45.194 149.28.88.191 158.247.237.215 216.128.178.28 45.32.94.78 45.76.149.48 45.76.203.155 64.176.56.60

Port(s)
5800

Protocol(s)
http

Tag(s)

URL(s)
/
Operating System
Microsoft Windows

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
00893b1bd88470c3529ad0be84a9d39f

HTTP Header MD5
5f57c09195c67827a2bf23194539d5c6

HTTP Body MD5
d82322810b34796f0770923fb06841c1

HTTP/1.0 200 OK

<HTML>
  <HEAD><TITLE> [vultr-guest] </TITLE></HEAD>
  <BODY>
  <SPAN style='position: absolute; top:0px;left:0px'>
<OBJECT 
    ID='VncViewer'
    classid = 'clsid:8AD9C840-044E-11D1-B3E9-00805F499D93'
    codebase = 'http://java.sun.com/update/1.4.2/jinstall-1_4-windows-i586.cab#Version=1,4,0,0'
    WIDTH = 1280 HEIGHT = 832 >
    <PARAM NAME = CODE VALUE = VncViewer.class >
    <PARAM NAME = ARCHIVE VALUE = VncViewer.jar >
    <PARAM NAME = 'type' VALUE = 'application/x-java-applet;version=1.4'>
    <PARAM NAME = 'scriptable' VALUE = 'false'>
    <PARAM NAME = PORT VALUE=5900>
    <PARAM NAME = ENCODING VALUE=Tight>
    <PARAM NAME = 'Open New Window' VALUE='Yes'>
    <COMMENT>
	<EMBED 
            type = 'application/x-java-applet;version=1.4' \
            CODE = VncViewer.class \
            ARCHIVE = VncViewer.jar \
            WIDTH = 1280 \
            HEIGHT = 832 \
            PORT =5900 \
            ENCODING =Tight \
	    scriptable = false \
	    pluginspage ='http://java.sun.com/products/plugin/index.html#download'>
	    <NOEMBED>
            </NOEMBED>
	</EMBED>
    </COMMENT>
</OBJECT>
  </SPAN>
  </BODY>
</HTML>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T09:48:27.000Z",
   "app" : {
      "extract" : {
         "domain" : [
            "sun.com"
         ],
         "hostname" : [
            "java.sun.com"
         ],
         "url" : [
            "http://java.sun.com/products/plugin/index.html",
            "http://java.sun.com/update/1.4.2/jinstall-1_4-windows-i586.cab"
         ]
      },
      "http" : {
         "bodymd5" : "d82322810b34796f0770923fb06841c1",
         "bodymmh3" : 1104062271,
         "headermd5" : "5f57c09195c67827a2bf23194539d5c6",
         "headermmh3" : -1031289583,
         "title" : "[vultr-guest]"
      },
      "length" : 1165
   },
   "asn" : "AS20473",
   "city" : "Toronto",
   "country" : "CA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.0 200 OK\n\n<HTML>\n  <HEAD><TITLE> [vultr-guest] </TITLE></HEAD>\n  <BODY>\n  <SPAN style='position: absolute; top:0px;left:0px'>\n<OBJECT \n    ID='VncViewer'\n    classid = 'clsid:8AD9C840-044E-11D1-B3E9-00805F499D93'\n    codebase = 'http://java.sun.com/update/1.4.2/jinstall-1_4-windows-i586.cab#Version=1,4,0,0'\n    WIDTH = 1280 HEIGHT = 832 >\n    <PARAM NAME = CODE VALUE = VncViewer.class >\n    <PARAM NAME = ARCHIVE VALUE = VncViewer.jar >\n    <PARAM NAME = 'type' VALUE = 'application/x-java-applet;version=1.4'>\n    <PARAM NAME = 'scriptable' VALUE = 'false'>\n    <PARAM NAME = PORT VALUE=5900>\n    <PARAM NAME = ENCODING VALUE=Tight>\n    <PARAM NAME = 'Open New Window' VALUE='Yes'>\n    <COMMENT>\n\t<EMBED \n            type = 'application/x-java-applet;version=1.4' \\\n            CODE = VncViewer.class \\\n            ARCHIVE = VncViewer.jar \\\n            WIDTH = 1280 \\\n            HEIGHT = 832 \\\n            PORT =5900 \\\n            ENCODING =Tight \\\n\t    scriptable = false \\\n\t    pluginspage ='http://java.sun.com/products/plugin/index.html#download'>\n\t    <NOEMBED>\n            </NOEMBED>\n\t</EMBED>\n    </COMMENT>\n</OBJECT>\n  </SPAN>\n  </BODY>\n</HTML>\n",
   "datamd5" : "00893b1bd88470c3529ad0be84a9d39f",
   "datammh3" : 1081464140,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "vultrusercontent.com"
   ],
   "geolocus" : {
      "asn" : "AS20473",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "CA",
      "countryname" : "Canada",
      "domain" : [
         "constant.com",
         "vultr.com"
      ],
      "isineu" : "false",
      "latitude" : "56.130366",
      "location" : "56.130366,-106.346771",
      "longitude" : "-106.346771",
      "netname" : "NET-216-128-176-0-23",
      "organization" : "Vultr Holdings, LLC",
      "subnet" : "216.128.176.0/20"
   },
   "host" : [
      216
   ],
   "hostname" : [
      "216.128.178.28.vultrusercontent.com"
   ],
   "ip" : "216.128.178.28",
   "ipv6" : "false",
   "latitude" : "43.6547",
   "location" : "43.6547,-79.3623",
   "longitude" : "-79.3623",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AS-VULTR",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 5800,
   "protocol" : "http",
   "protocolversion" : "1.0",
   "reason" : "OK",
   "reverse" : [
      "216.128.178.28.vultrusercontent.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 200,
   "subdomains" : [
      "128.178.28.vultrusercontent.com",
      "178.28.vultrusercontent.com",
      "28.vultrusercontent.com"
   ],
   "subnet" : "216.128.176.0/20",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
149.28.88.191

Network
149.28.64.0/18

Domain(s)
vultrusercontent.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://149.28.88.191:5800/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

Reverse DNS
149.28.88.191.vultrusercontent.com

ASN
AS20473

Organization
AS-VULTR

Protocol
http

Source
datascan
NOTE
This tab is a merge from current page results.

CPE(s)

Domain(s)
vultrusercontent.com

Hostname(s)
141.164.38.243.vultrusercontent.com 141.164.49.197.vultrusercontent.com 149.28.45.194.vultrusercontent.com 149.28.88.191.vultrusercontent.com 158.247.237.215.vultrusercontent.com 216.128.178.28.vultrusercontent.com 45.32.94.78.vultrusercontent.com 45.76.149.48.vultrusercontent.com 45.76.203.155.vultrusercontent.com 64.176.56.60.vultrusercontent.com

IP(s)
141.164.38.243 141.164.49.197 149.28.45.194 149.28.88.191 158.247.237.215 216.128.178.28 45.32.94.78 45.76.149.48 45.76.203.155 64.176.56.60

Port(s)
5800

Protocol(s)
http

Tag(s)

URL(s)
/
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0c1820e0d381850a77897bf32978a1f0

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
ea425366a98dfc499c0cbeedb9a4f02a

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 21 Nov 2024 09:35:34 GMT
Content-Type: text/html
Content-Length: 248
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T09:35:34.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
         "bodymmh3" : 1153229498,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : -75127129,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 393
   },
   "asn" : "AS20473",
   "city" : "Los Angeles",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 21 Nov 2024 09:35:34 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
   "datammh3" : 190190724,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "vultrusercontent.com"
   ],
   "geolocus" : {
      "asn" : "AS20473",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "constant.com",
         "vultr.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "NET-149-28-64-0-23",
      "organization" : "Vultr Holdings, LLC",
      "subnet" : "149.28.64.0/18"
   },
   "host" : [
      149
   ],
   "hostname" : [
      "149.28.88.191.vultrusercontent.com"
   ],
   "ip" : "149.28.88.191",
   "ipv6" : "false",
   "latitude" : "34.0544",
   "location" : "34.0544,-118.2440",
   "longitude" : "-118.2440",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AS-VULTR",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5800,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "reverse" : [
      "149.28.88.191.vultrusercontent.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "191.vultrusercontent.com",
      "28.88.191.vultrusercontent.com",
      "88.191.vultrusercontent.com"
   ],
   "subnet" : "149.28.64.0/18",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
149.28.45.194

Network
149.28.32.0/19

Domain(s)
vultrusercontent.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://149.28.45.194:5800/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

Reverse DNS
149.28.45.194.vultrusercontent.com

ASN
AS20473

Organization
AS-VULTR

Protocol
http

Source
datascan
NOTE
This tab is a merge from current page results.

CPE(s)

Domain(s)
vultrusercontent.com

Hostname(s)
141.164.38.243.vultrusercontent.com 141.164.49.197.vultrusercontent.com 149.28.45.194.vultrusercontent.com 149.28.88.191.vultrusercontent.com 158.247.237.215.vultrusercontent.com 216.128.178.28.vultrusercontent.com 45.32.94.78.vultrusercontent.com 45.76.149.48.vultrusercontent.com 45.76.203.155.vultrusercontent.com 64.176.56.60.vultrusercontent.com

IP(s)
141.164.38.243 141.164.49.197 149.28.45.194 149.28.88.191 158.247.237.215 216.128.178.28 45.32.94.78 45.76.149.48 45.76.203.155 64.176.56.60

Port(s)
5800

Protocol(s)
http

Tag(s)

URL(s)
/
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0c1820e0d381850a77897bf32978a1f0

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
ea425366a98dfc499c0cbeedb9a4f02a

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 21 Nov 2024 09:19:28 GMT
Content-Type: text/html
Content-Length: 248
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T09:19:29.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
         "bodymmh3" : 1153229498,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : -1344082156,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 393
   },
   "asn" : "AS20473",
   "city" : "Piscataway",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 21 Nov 2024 09:19:28 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
   "datammh3" : 190190724,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "vultrusercontent.com"
   ],
   "geolocus" : {
      "asn" : "AS20473",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "constant.com",
         "vultr.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "NET-149-28-32-0-23",
      "organization" : "Vultr Holdings, LLC",
      "subnet" : "149.28.32.0/19"
   },
   "host" : [
      149
   ],
   "hostname" : [
      "149.28.45.194.vultrusercontent.com"
   ],
   "ip" : "149.28.45.194",
   "ipv6" : "false",
   "latitude" : "40.5511",
   "location" : "40.5511,-74.4606",
   "longitude" : "-74.4606",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AS-VULTR",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5800,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "reverse" : [
      "149.28.45.194.vultrusercontent.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "194.vultrusercontent.com",
      "28.45.194.vultrusercontent.com",
      "45.194.vultrusercontent.com"
   ],
   "subnet" : "149.28.32.0/19",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
45.76.203.155

Network
45.76.0.0/15

Domain(s)
vultrusercontent.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://45.76.203.155:5800/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

Reverse DNS
45.76.203.155.vultrusercontent.com

ASN
AS20473

Organization
AS-VULTR

Protocol
http

Source
datascan
NOTE
This tab is a merge from current page results.

CPE(s)

Domain(s)
vultrusercontent.com

Hostname(s)
141.164.38.243.vultrusercontent.com 141.164.49.197.vultrusercontent.com 149.28.45.194.vultrusercontent.com 149.28.88.191.vultrusercontent.com 158.247.237.215.vultrusercontent.com 216.128.178.28.vultrusercontent.com 45.32.94.78.vultrusercontent.com 45.76.149.48.vultrusercontent.com 45.76.203.155.vultrusercontent.com 64.176.56.60.vultrusercontent.com

IP(s)
141.164.38.243 141.164.49.197 149.28.45.194 149.28.88.191 158.247.237.215 216.128.178.28 45.32.94.78 45.76.149.48 45.76.203.155 64.176.56.60

Port(s)
5800

Protocol(s)
http

Tag(s)

URL(s)
/
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0c1820e0d381850a77897bf32978a1f0

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
ea425366a98dfc499c0cbeedb9a4f02a

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 21 Nov 2024 09:07:09 GMT
Content-Type: text/html
Content-Length: 248
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T09:07:10.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
         "bodymmh3" : 1153229498,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : 918027271,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 393
   },
   "asn" : "AS20473",
   "country" : "JP",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 21 Nov 2024 09:07:09 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
   "datammh3" : 190190724,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "vultrusercontent.com"
   ],
   "geolocus" : {
      "asn" : "AS20473",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "JP",
      "countryname" : "Japan",
      "domain" : [
         "constant.com",
         "vultr.com"
      ],
      "isineu" : "false",
      "latitude" : "36.204824",
      "location" : "36.204824,138.252924",
      "longitude" : "138.252924",
      "netname" : "NET-45-76-192-0-23",
      "organization" : "Vultr Holdings, LLC",
      "subnet" : "45.76.192.0/19"
   },
   "host" : [
      45
   ],
   "hostname" : [
      "45.76.203.155.vultrusercontent.com"
   ],
   "ip" : "45.76.203.155",
   "ipv6" : "false",
   "latitude" : "35.6887",
   "location" : "35.6887,139.7450",
   "longitude" : "139.7450",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AS-VULTR",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5800,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "reverse" : [
      "45.76.203.155.vultrusercontent.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "155.vultrusercontent.com",
      "203.155.vultrusercontent.com",
      "76.203.155.vultrusercontent.com"
   ],
   "subnet" : "45.76.0.0/15",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
64.176.56.60

Network
64.176.0.0/18

Domain(s)
vultrusercontent.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://64.176.56.60:5800/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

Reverse DNS
64.176.56.60.vultrusercontent.com

ASN
AS20473

Organization
AS-VULTR

Protocol
http

Source
datascan
NOTE
This tab is a merge from current page results.

CPE(s)

Domain(s)
vultrusercontent.com

Hostname(s)
141.164.38.243.vultrusercontent.com 141.164.49.197.vultrusercontent.com 149.28.45.194.vultrusercontent.com 149.28.88.191.vultrusercontent.com 158.247.237.215.vultrusercontent.com 216.128.178.28.vultrusercontent.com 45.32.94.78.vultrusercontent.com 45.76.149.48.vultrusercontent.com 45.76.203.155.vultrusercontent.com 64.176.56.60.vultrusercontent.com

IP(s)
141.164.38.243 141.164.49.197 149.28.45.194 149.28.88.191 158.247.237.215 216.128.178.28 45.32.94.78 45.76.149.48 45.76.203.155 64.176.56.60

Port(s)
5800

Protocol(s)
http

Tag(s)

URL(s)
/
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0c1820e0d381850a77897bf32978a1f0

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
ea425366a98dfc499c0cbeedb9a4f02a

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 21 Nov 2024 09:03:25 GMT
Content-Type: text/html
Content-Length: 248
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T09:03:26.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
         "bodymmh3" : 1153229498,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : -1518777909,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 393
   },
   "asn" : "AS20473",
   "city" : "Osaka",
   "country" : "JP",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 21 Nov 2024 09:03:25 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
   "datammh3" : 190190724,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "vultrusercontent.com"
   ],
   "geolocus" : {
      "asn" : "AS20473",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "constant.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "CHOOP-1",
      "organization" : "The Constant Company, LLC",
      "subnet" : "64.176.32.0/19"
   },
   "host" : [
      64
   ],
   "hostname" : [
      "64.176.56.60.vultrusercontent.com"
   ],
   "ip" : "64.176.56.60",
   "ipv6" : "false",
   "latitude" : "34.6837",
   "location" : "34.6837,135.5236",
   "longitude" : "135.5236",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AS-VULTR",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5800,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "reverse" : [
      "64.176.56.60.vultrusercontent.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "176.56.60.vultrusercontent.com",
      "56.60.vultrusercontent.com",
      "60.vultrusercontent.com"
   ],
   "subnet" : "64.176.0.0/18",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
45.76.149.48

Network
45.76.0.0/15

Domain(s)
vultrusercontent.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://45.76.149.48:5800/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

Reverse DNS
45.76.149.48.vultrusercontent.com

ASN
AS20473

Organization
AS-VULTR

Protocol
http

Source
datascan
NOTE
This tab is a merge from current page results.

CPE(s)

Domain(s)
vultrusercontent.com

Hostname(s)
141.164.38.243.vultrusercontent.com 141.164.49.197.vultrusercontent.com 149.28.45.194.vultrusercontent.com 149.28.88.191.vultrusercontent.com 158.247.237.215.vultrusercontent.com 216.128.178.28.vultrusercontent.com 45.32.94.78.vultrusercontent.com 45.76.149.48.vultrusercontent.com 45.76.203.155.vultrusercontent.com 64.176.56.60.vultrusercontent.com

IP(s)
141.164.38.243 141.164.49.197 149.28.45.194 149.28.88.191 158.247.237.215 216.128.178.28 45.32.94.78 45.76.149.48 45.76.203.155 64.176.56.60

Port(s)
5800

Protocol(s)
http

Tag(s)

URL(s)
/
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0c1820e0d381850a77897bf32978a1f0

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
ea425366a98dfc499c0cbeedb9a4f02a

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 21 Nov 2024 09:01:47 GMT
Content-Type: text/html
Content-Length: 248
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T09:01:48.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
         "bodymmh3" : 1153229498,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : 866231938,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 393
   },
   "asn" : "AS20473",
   "city" : "Singapore",
   "country" : "SG",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 21 Nov 2024 09:01:47 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
   "datammh3" : 190190724,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "vultrusercontent.com"
   ],
   "geolocus" : {
      "asn" : "AS20473",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "SG",
      "countryname" : "Singapore",
      "domain" : [
         "constant.com",
         "vultr.com"
      ],
      "isineu" : "false",
      "latitude" : "1.352083",
      "location" : "1.352083,103.819836",
      "longitude" : "103.819836",
      "netname" : "NET-45-76-144-0-23",
      "organization" : "Vultr Holdings, LLC",
      "subnet" : "45.76.144.0/20"
   },
   "host" : [
      45
   ],
   "hostname" : [
      "45.76.149.48.vultrusercontent.com"
   ],
   "ip" : "45.76.149.48",
   "ipv6" : "false",
   "latitude" : "1.3078",
   "location" : "1.3078,103.6818",
   "longitude" : "103.6818",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AS-VULTR",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5800,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "reverse" : [
      "45.76.149.48.vultrusercontent.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "149.48.vultrusercontent.com",
      "48.vultrusercontent.com",
      "76.149.48.vultrusercontent.com"
   ],
   "subnet" : "45.76.0.0/15",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

Returning 10 result(s) out of 862 in 0.051 second(s)

141.164.38.243:5800 (tcp/http) - last seen on 2024-11-21 at 10:32:07 UTC

158.247.237.215:5800 (tcp/http) - last seen on 2024-11-21 at 10:24:08 UTC

45.32.94.78:5800 (tcp/http) - last seen on 2024-11-21 at 10:03:03 UTC

141.164.49.197:5800 (tcp/http) - last seen on 2024-11-21 at 10:02:35 UTC

216.128.178.28:5800 (tcp/http) - last seen on 2024-11-21 at 09:48:27 UTC

149.28.88.191:5800 (tcp/http) - last seen on 2024-11-21 at 09:35:34 UTC

149.28.45.194:5800 (tcp/http) - last seen on 2024-11-21 at 09:19:29 UTC

45.76.203.155:5800 (tcp/http) - last seen on 2024-11-21 at 09:07:10 UTC

64.176.56.60:5800 (tcp/http) - last seen on 2024-11-21 at 09:03:26 UTC

45.76.149.48:5800 (tcp/http) - last seen on 2024-11-21 at 09:01:48 UTC