Returning 10 result(s) out of 43 in 0.117 second(s)

  • 162.213.37.216:5938 (tcp/http) - last seen on 2024-11-07 at 03:20:49 UTC

    • IP
      162.213.37.216
      Alternative IP(s)
      159.89.152.22
      Network
      162.213.36.0/22
      Domain(s)
      amity.be
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://162.213.37.216:5938/ 400

      HTTP Title
      400 The plain HTTP request was sent to HTTPS port
      Reverse DNS
      biophilia.amity.be
      ASN
      AS50837
      Organization
      Cloudsigma Ag
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      0c1820e0d381850a77897bf32978a1f0
      HTTP Header MD5
      a629a0fe278971ad61801ba6975ba467
      HTTP Body MD5
      ea425366a98dfc499c0cbeedb9a4f02a
    • HTTP/1.1 400 Bad Request
      Server: nginx
      Date: Thu, 07 Nov 2024 03:20:49 GMT
      Content-Type: text/html
      Content-Length: 248
      Connection: close
      
      <html>
      <head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
      <body>
      <center><h1>400 Bad Request</h1></center>
      <center>The plain HTTP request was sent to HTTPS port</center>
      <hr><center>nginx</center>
      </body>
      </html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:20:49.000Z",
         "alternativeip" : [
            "159.89.152.22"
         ],
         "app" : {
            "http" : {
               "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
               "bodymmh3" : 1153229498,
               "headermd5" : "a629a0fe278971ad61801ba6975ba467",
               "headermmh3" : 684801277,
               "title" : "400 The plain HTTP request was sent to HTTPS port"
            },
            "length" : 393
         },
         "asn" : "AS50837",
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 03:20:49 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
         "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
         "datammh3" : 190190724,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "amity.be"
         ],
         "geolocus" : {
            "asn" : "AS50837",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "cloudsigma.com",
               "cloudsigma.net"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "CLOUDSIGMA",
            "organization" : "Cloud Sigma",
            "subnet" : "162.213.36.0/22"
         },
         "host" : [
            "biophilia"
         ],
         "hostname" : [
            "biophilia.amity.be"
         ],
         "ip" : "162.213.37.216",
         "ipv6" : "false",
         "latitude" : "37.7510",
         "location" : "37.7510,-97.8220",
         "longitude" : "-97.8220",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Cloudsigma Ag",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 5938,
         "product" : "Nginx",
         "productvendor" : "F5",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Bad Request",
         "reverse" : [
            "biophilia.amity.be"
         ],
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 400,
         "subnet" : "162.213.36.0/22",
         "tld" : [
            "be"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 162.213.36.66:5938 (tcp/http) - last seen on 2024-11-06 at 23:19:04 UTC

    • IP
      162.213.36.66
      Network
      162.213.36.0/22
      Domain(s)
      cloudsigma.net
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://162.213.36.66:5938/ 400

      HTTP Title
      400 The plain HTTP request was sent to HTTPS port
      Reverse DNS
      host-66-36.213.162.cloudsigma.net
      ASN
      AS50837
      Organization
      Cloudsigma Ag
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      0c1820e0d381850a77897bf32978a1f0
      HTTP Header MD5
      a629a0fe278971ad61801ba6975ba467
      HTTP Body MD5
      ea425366a98dfc499c0cbeedb9a4f02a
    • HTTP/1.1 400 Bad Request
      Server: nginx
      Date: Wed, 06 Nov 2024 23:19:04 GMT
      Content-Type: text/html
      Content-Length: 248
      Connection: close
      
      <html>
      <head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
      <body>
      <center><h1>400 Bad Request</h1></center>
      <center>The plain HTTP request was sent to HTTPS port</center>
      <hr><center>nginx</center>
      </body>
      </html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-06T23:19:04.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
               "bodymmh3" : 1153229498,
               "headermd5" : "a629a0fe278971ad61801ba6975ba467",
               "headermmh3" : -878515303,
               "title" : "400 The plain HTTP request was sent to HTTPS port"
            },
            "length" : 393
         },
         "asn" : "AS50837",
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Wed, 06 Nov 2024 23:19:04 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
         "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
         "datammh3" : 190190724,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "cloudsigma.net"
         ],
         "geolocus" : {
            "asn" : "AS50837",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "cloudsigma.com",
               "cloudsigma.net"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "CLOUDSIGMA",
            "organization" : "Cloud Sigma",
            "subnet" : "162.213.36.0/22"
         },
         "host" : [
            "host-66-36"
         ],
         "hostname" : [
            "host-66-36.213.162.cloudsigma.net"
         ],
         "ip" : "162.213.36.66",
         "ipv6" : "false",
         "latitude" : "37.7510",
         "location" : "37.7510,-97.8220",
         "longitude" : "-97.8220",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Cloudsigma Ag",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 5938,
         "product" : "Nginx",
         "productvendor" : "F5",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Bad Request",
         "reverse" : [
            "host-66-36.213.162.cloudsigma.net"
         ],
         "seen_date" : "2024-11-06",
         "source" : "datascan",
         "status" : 400,
         "subdomains" : [
            "162.cloudsigma.net",
            "213.162.cloudsigma.net"
         ],
         "subnet" : "162.213.36.0/22",
         "tld" : [
            "net"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 185.12.4.192:5938 (tcp/http) - last seen on 2024-11-06 at 19:05:32 UTC

    • IP
      185.12.4.192
      Network
      185.12.4.0/22
      Domain(s)
      cloudsigma.net
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://185.12.4.192:5938/ 400

      HTTP Title
      400 The plain HTTP request was sent to HTTPS port
      Reverse DNS
      host.cloudsigma.net
      ASN
      AS50837
      Organization
      Cloudsigma Ag
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      0c1820e0d381850a77897bf32978a1f0
      HTTP Header MD5
      a629a0fe278971ad61801ba6975ba467
      HTTP Body MD5
      ea425366a98dfc499c0cbeedb9a4f02a
    • HTTP/1.1 400 Bad Request
      Server: nginx
      Date: Wed, 06 Nov 2024 19:05:32 GMT
      Content-Type: text/html
      Content-Length: 248
      Connection: close
      
      <html>
      <head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
      <body>
      <center><h1>400 Bad Request</h1></center>
      <center>The plain HTTP request was sent to HTTPS port</center>
      <hr><center>nginx</center>
      </body>
      </html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-06T19:05:32.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
               "bodymmh3" : 1153229498,
               "headermd5" : "a629a0fe278971ad61801ba6975ba467",
               "headermmh3" : 1592501641,
               "title" : "400 The plain HTTP request was sent to HTTPS port"
            },
            "length" : 393
         },
         "asn" : "AS50837",
         "country" : "CH",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Wed, 06 Nov 2024 19:05:32 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
         "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
         "datammh3" : 190190724,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "cloudsigma.net"
         ],
         "host" : [
            "host"
         ],
         "hostname" : [
            "host.cloudsigma.net"
         ],
         "ip" : "185.12.4.192",
         "ipv6" : "false",
         "latitude" : "47.1449",
         "location" : "47.1449,8.1551",
         "longitude" : "8.1551",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Cloudsigma Ag",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 5938,
         "product" : "Nginx",
         "productvendor" : "F5",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Bad Request",
         "reverse" : [
            "host.cloudsigma.net"
         ],
         "seen_date" : "2024-11-06",
         "source" : "datascan",
         "status" : 400,
         "subnet" : "185.12.4.0/22",
         "tld" : [
            "net"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 94.156.202.139:5938 (tcp/http) - last seen on 2024-11-06 at 15:30:26 UTC

    • IP
      94.156.202.139
      Network
      94.156.200.0/22
      Domain(s)
      cloudsigma.net
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://94.156.202.139:5938/ 400

      HTTP Title
      400 The plain HTTP request was sent to HTTPS port
      Reverse DNS
      host-139-202-156-94.cloudsigma.net
      ASN
      AS50837
      Organization
      Cloudsigma Ag
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      0c1820e0d381850a77897bf32978a1f0
      HTTP Header MD5
      a629a0fe278971ad61801ba6975ba467
      HTTP Body MD5
      ea425366a98dfc499c0cbeedb9a4f02a
    • HTTP/1.1 400 Bad Request
      Server: nginx
      Date: Wed, 06 Nov 2024 15:30:26 GMT
      Content-Type: text/html
      Content-Length: 248
      Connection: close
      
      <html>
      <head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
      <body>
      <center><h1>400 Bad Request</h1></center>
      <center>The plain HTTP request was sent to HTTPS port</center>
      <hr><center>nginx</center>
      </body>
      </html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-06T15:30:26.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
               "bodymmh3" : 1153229498,
               "headermd5" : "a629a0fe278971ad61801ba6975ba467",
               "headermmh3" : -304530070,
               "title" : "400 The plain HTTP request was sent to HTTPS port"
            },
            "length" : 393
         },
         "asn" : "AS50837",
         "country" : "CH",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Wed, 06 Nov 2024 15:30:26 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
         "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
         "datammh3" : 190190724,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "cloudsigma.net"
         ],
         "geolocus" : {
            "asn" : "AS50837",
            "continent" : "EU",
            "continentname" : "Europe",
            "country" : "CH",
            "countryname" : "Switzerland",
            "domain" : [
               "cloudsigma.com",
               "cloudsigma.net"
            ],
            "isineu" : "false",
            "latitude" : "46.818188",
            "location" : "46.818188,8.227512",
            "longitude" : "8.227512",
            "netname" : "CH-CLOUDSIGMA-20080827",
            "organization" : "CLOUDSIGMA AG",
            "subnet" : "94.156.202.0/23"
         },
         "host" : [
            "host-139-202-156-94"
         ],
         "hostname" : [
            "host-139-202-156-94.cloudsigma.net"
         ],
         "ip" : "94.156.202.139",
         "ipv6" : "false",
         "latitude" : "47.1449",
         "location" : "47.1449,8.1551",
         "longitude" : "8.1551",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Cloudsigma Ag",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 5938,
         "product" : "Nginx",
         "productvendor" : "F5",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Bad Request",
         "reverse" : [
            "host-139-202-156-94.cloudsigma.net"
         ],
         "seen_date" : "2024-11-06",
         "source" : "datascan",
         "status" : 400,
         "subnet" : "94.156.200.0/22",
         "tld" : [
            "net"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 185.113.222.144:5938 (tcp/http) - last seen on 2024-11-06 at 13:32:58 UTC

    • IP
      185.113.222.144
      Network
      185.113.222.0/24
      Domain(s)
      cloudsigma.net
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://185.113.222.144:5938/ 400

      HTTP Title
      400 The plain HTTP request was sent to HTTPS port
      Reverse DNS
      host-144-222-113-185.cloudsigma.net
      ASN
      AS50837
      Organization
      Cloudsigma Ag
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      0c1820e0d381850a77897bf32978a1f0
      HTTP Header MD5
      a629a0fe278971ad61801ba6975ba467
      HTTP Body MD5
      ea425366a98dfc499c0cbeedb9a4f02a
    • HTTP/1.1 400 Bad Request
      Server: nginx
      Date: Wed, 06 Nov 2024 13:32:58 GMT
      Content-Type: text/html
      Content-Length: 248
      Connection: close
      
      <html>
      <head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
      <body>
      <center><h1>400 Bad Request</h1></center>
      <center>The plain HTTP request was sent to HTTPS port</center>
      <hr><center>nginx</center>
      </body>
      </html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-06T13:32:58.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
               "bodymmh3" : 1153229498,
               "headermd5" : "a629a0fe278971ad61801ba6975ba467",
               "headermmh3" : 1795325823,
               "title" : "400 The plain HTTP request was sent to HTTPS port"
            },
            "length" : 393
         },
         "asn" : "AS50837",
         "country" : "DE",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Wed, 06 Nov 2024 13:32:58 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
         "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
         "datammh3" : 190190724,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "cloudsigma.net"
         ],
         "geolocus" : {
            "asn" : "AS50837",
            "continent" : "EU",
            "continentname" : "Europe",
            "country" : "DE",
            "countryname" : "Germany",
            "domain" : [
               "cloudsigma.net",
               "enthus.de"
            ],
            "isineu" : "true",
            "latitude" : "51.165691",
            "location" : "51.165691,10.451526",
            "longitude" : "10.451526",
            "netname" : "DE-ENTHUS-20150819",
            "organization" : "enthus GmbH",
            "subnet" : "185.113.222.0/24"
         },
         "host" : [
            "host-144-222-113-185"
         ],
         "hostname" : [
            "host-144-222-113-185.cloudsigma.net"
         ],
         "ip" : "185.113.222.144",
         "ipv6" : "false",
         "latitude" : "51.2993",
         "location" : "51.2993,9.4910",
         "longitude" : "9.4910",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Cloudsigma Ag",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 5938,
         "product" : "Nginx",
         "productvendor" : "F5",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Bad Request",
         "reverse" : [
            "host-144-222-113-185.cloudsigma.net"
         ],
         "seen_date" : "2024-11-06",
         "source" : "datascan",
         "status" : 400,
         "subnet" : "185.113.222.0/24",
         "tld" : [
            "net"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 162.213.36.80:5938 (tcp/http) - last seen on 2024-11-06 at 11:27:31 UTC

    • IP
      162.213.36.80
      Network
      162.213.36.0/22
      Domain(s)
      emlprm.com
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://162.213.36.80:5938/ 400

      HTTP Title
      400 The plain HTTP request was sent to HTTPS port
      Reverse DNS
      mail.emlprm.com
      ASN
      AS50837
      Organization
      Cloudsigma Ag
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      0c1820e0d381850a77897bf32978a1f0
      HTTP Header MD5
      a629a0fe278971ad61801ba6975ba467
      HTTP Body MD5
      ea425366a98dfc499c0cbeedb9a4f02a
    • HTTP/1.1 400 Bad Request
      Server: nginx
      Date: Wed, 06 Nov 2024 11:27:31 GMT
      Content-Type: text/html
      Content-Length: 248
      Connection: close
      
      <html>
      <head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
      <body>
      <center><h1>400 Bad Request</h1></center>
      <center>The plain HTTP request was sent to HTTPS port</center>
      <hr><center>nginx</center>
      </body>
      </html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-06T11:27:31.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
               "bodymmh3" : 1153229498,
               "headermd5" : "a629a0fe278971ad61801ba6975ba467",
               "headermmh3" : 611302114,
               "title" : "400 The plain HTTP request was sent to HTTPS port"
            },
            "length" : 393
         },
         "asn" : "AS50837",
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Wed, 06 Nov 2024 11:27:31 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
         "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
         "datammh3" : 190190724,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "emlprm.com"
         ],
         "geolocus" : {
            "asn" : "AS50837",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "cloudsigma.com",
               "cloudsigma.net"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "CLOUDSIGMA",
            "organization" : "Cloud Sigma",
            "subnet" : "162.213.36.0/22"
         },
         "host" : [
            "mail"
         ],
         "hostname" : [
            "mail.emlprm.com"
         ],
         "ip" : "162.213.36.80",
         "ipv6" : "false",
         "latitude" : "37.7510",
         "location" : "37.7510,-97.8220",
         "longitude" : "-97.8220",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Cloudsigma Ag",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 5938,
         "product" : "Nginx",
         "productvendor" : "F5",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Bad Request",
         "reverse" : [
            "mail.emlprm.com"
         ],
         "seen_date" : "2024-11-06",
         "source" : "datascan",
         "status" : 400,
         "subnet" : "162.213.36.0/22",
         "tld" : [
            "com"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 31.171.248.226:5938 (tcp/http) - last seen on 2024-11-04 at 20:57:33 UTC

    • IP
      31.171.248.226
      Network
      31.171.248.0/21
      Domain(s)
      cloudsigma.net
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://31.171.248.226:5938/ 400

      HTTP Title
      400 The plain HTTP request was sent to HTTPS port
      Reverse DNS
      host-226-248-171-31.cloudsigma.net
      ASN
      AS50837
      Organization
      Cloudsigma Ag
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      0c1820e0d381850a77897bf32978a1f0
      HTTP Header MD5
      a629a0fe278971ad61801ba6975ba467
      HTTP Body MD5
      ea425366a98dfc499c0cbeedb9a4f02a
    • HTTP/1.1 400 Bad Request
      Server: nginx
      Date: Mon, 04 Nov 2024 20:57:33 GMT
      Content-Type: text/html
      Content-Length: 248
      Connection: close
      
      <html>
      <head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
      <body>
      <center><h1>400 Bad Request</h1></center>
      <center>The plain HTTP request was sent to HTTPS port</center>
      <hr><center>nginx</center>
      </body>
      </html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-04T20:57:33.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
               "bodymmh3" : 1153229498,
               "headermd5" : "a629a0fe278971ad61801ba6975ba467",
               "headermmh3" : -26900523,
               "title" : "400 The plain HTTP request was sent to HTTPS port"
            },
            "length" : 393
         },
         "asn" : "AS50837",
         "country" : "CH",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Mon, 04 Nov 2024 20:57:33 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
         "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
         "datammh3" : 190190724,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "cloudsigma.net"
         ],
         "geolocus" : {
            "asn" : "AS50837",
            "continent" : "EU",
            "continentname" : "Europe",
            "country" : "CH",
            "countryname" : "Switzerland",
            "domain" : [
               "cloudsigma.com",
               "cloudsigma.net"
            ],
            "isineu" : "false",
            "latitude" : "46.818188",
            "location" : "46.818188,8.227512",
            "longitude" : "8.227512",
            "netname" : "CH-CLOUDSIGMA",
            "organization" : "CloudSigma",
            "subnet" : "31.171.248.0/23"
         },
         "host" : [
            "host-226-248-171-31"
         ],
         "hostname" : [
            "host-226-248-171-31.cloudsigma.net"
         ],
         "ip" : "31.171.248.226",
         "ipv6" : "false",
         "latitude" : "47.1449",
         "location" : "47.1449,8.1551",
         "longitude" : "8.1551",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Cloudsigma Ag",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 5938,
         "product" : "Nginx",
         "productvendor" : "F5",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Bad Request",
         "reverse" : [
            "host-226-248-171-31.cloudsigma.net"
         ],
         "seen_date" : "2024-11-04",
         "source" : "datascan",
         "status" : 400,
         "subnet" : "31.171.248.0/21",
         "tld" : [
            "net"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 31.171.248.135:5938 (tcp/http) - last seen on 2024-11-03 at 07:25:19 UTC

    • IP
      31.171.248.135
      Network
      31.171.248.0/21
      Domain(s)
      cloudsigma.net
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://31.171.248.135:5938/ 400

      HTTP Title
      400 The plain HTTP request was sent to HTTPS port
      Reverse DNS
      host-135-248-171-31.cloudsigma.net
      ASN
      AS50837
      Organization
      Cloudsigma Ag
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      0c1820e0d381850a77897bf32978a1f0
      HTTP Header MD5
      a629a0fe278971ad61801ba6975ba467
      HTTP Body MD5
      ea425366a98dfc499c0cbeedb9a4f02a
    • HTTP/1.1 400 Bad Request
      Server: nginx
      Date: Sun, 03 Nov 2024 07:25:19 GMT
      Content-Type: text/html
      Content-Length: 248
      Connection: close
      
      <html>
      <head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
      <body>
      <center><h1>400 Bad Request</h1></center>
      <center>The plain HTTP request was sent to HTTPS port</center>
      <hr><center>nginx</center>
      </body>
      </html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-03T07:25:19.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
               "bodymmh3" : 1153229498,
               "headermd5" : "a629a0fe278971ad61801ba6975ba467",
               "headermmh3" : 1504633916,
               "title" : "400 The plain HTTP request was sent to HTTPS port"
            },
            "length" : 393
         },
         "asn" : "AS50837",
         "country" : "CH",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Sun, 03 Nov 2024 07:25:19 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
         "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
         "datammh3" : 190190724,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "cloudsigma.net"
         ],
         "geolocus" : {
            "asn" : "AS50837",
            "continent" : "EU",
            "continentname" : "Europe",
            "country" : "CH",
            "countryname" : "Switzerland",
            "domain" : [
               "cloudsigma.com",
               "cloudsigma.net"
            ],
            "isineu" : "false",
            "latitude" : "46.818188",
            "location" : "46.818188,8.227512",
            "longitude" : "8.227512",
            "netname" : "CH-CLOUDSIGMA",
            "organization" : "CloudSigma",
            "subnet" : "31.171.248.0/23"
         },
         "host" : [
            "host-135-248-171-31"
         ],
         "hostname" : [
            "host-135-248-171-31.cloudsigma.net"
         ],
         "ip" : "31.171.248.135",
         "ipv6" : "false",
         "latitude" : "47.1449",
         "location" : "47.1449,8.1551",
         "longitude" : "8.1551",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Cloudsigma Ag",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 5938,
         "product" : "Nginx",
         "productvendor" : "F5",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Bad Request",
         "reverse" : [
            "host-135-248-171-31.cloudsigma.net"
         ],
         "seen_date" : "2024-11-03",
         "source" : "datascan",
         "status" : 400,
         "subnet" : "31.171.248.0/21",
         "tld" : [
            "net"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 94.156.202.251:5938 (tcp/http) - last seen on 2024-11-02 at 08:55:09 UTC

    • IP
      94.156.202.251
      Network
      94.156.200.0/22
      Domain(s)
      cloudsigma.net
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://94.156.202.251:5938/ 400

      HTTP Title
      400 The plain HTTP request was sent to HTTPS port
      Reverse DNS
      host-251-202-156-94.cloudsigma.net
      ASN
      AS50837
      Organization
      Cloudsigma Ag
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      0c1820e0d381850a77897bf32978a1f0
      HTTP Header MD5
      a629a0fe278971ad61801ba6975ba467
      HTTP Body MD5
      ea425366a98dfc499c0cbeedb9a4f02a
    • HTTP/1.1 400 Bad Request
      Server: nginx
      Date: Sat, 02 Nov 2024 08:55:09 GMT
      Content-Type: text/html
      Content-Length: 248
      Connection: close
      
      <html>
      <head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
      <body>
      <center><h1>400 Bad Request</h1></center>
      <center>The plain HTTP request was sent to HTTPS port</center>
      <hr><center>nginx</center>
      </body>
      </html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-02T08:55:09.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
               "bodymmh3" : 1153229498,
               "headermd5" : "a629a0fe278971ad61801ba6975ba467",
               "headermmh3" : -1560639326,
               "title" : "400 The plain HTTP request was sent to HTTPS port"
            },
            "length" : 393
         },
         "asn" : "AS50837",
         "country" : "CH",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Sat, 02 Nov 2024 08:55:09 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
         "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
         "datammh3" : 190190724,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "cloudsigma.net"
         ],
         "geolocus" : {
            "asn" : "AS50837",
            "continent" : "EU",
            "continentname" : "Europe",
            "country" : "CH",
            "countryname" : "Switzerland",
            "domain" : [
               "cloudsigma.com",
               "cloudsigma.net"
            ],
            "isineu" : "false",
            "latitude" : "46.818188",
            "location" : "46.818188,8.227512",
            "longitude" : "8.227512",
            "netname" : "CH-CLOUDSIGMA-20080827",
            "organization" : "CLOUDSIGMA AG",
            "subnet" : "94.156.202.0/23"
         },
         "host" : [
            "host-251-202-156-94"
         ],
         "hostname" : [
            "host-251-202-156-94.cloudsigma.net"
         ],
         "ip" : "94.156.202.251",
         "ipv6" : "false",
         "latitude" : "47.1449",
         "location" : "47.1449,8.1551",
         "longitude" : "8.1551",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Cloudsigma Ag",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 5938,
         "product" : "Nginx",
         "productvendor" : "F5",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Bad Request",
         "reverse" : [
            "host-251-202-156-94.cloudsigma.net"
         ],
         "seen_date" : "2024-11-02",
         "source" : "datascan",
         "status" : 400,
         "subnet" : "94.156.200.0/22",
         "tld" : [
            "net"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 185.12.6.27:5938 (tcp/http) - last seen on 2024-11-02 at 08:45:50 UTC

    • IP
      185.12.6.27
      Network
      185.12.4.0/22
      Domain(s)
      cloudsigma.net
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://185.12.6.27:5938/ 400

      HTTP Title
      400 The plain HTTP request was sent to HTTPS port
      Reverse DNS
      host-27-6-12-185.cloudsigma.net
      ASN
      AS50837
      Organization
      Cloudsigma Ag
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      F5 Nginx
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      0c1820e0d381850a77897bf32978a1f0
      HTTP Header MD5
      a629a0fe278971ad61801ba6975ba467
      HTTP Body MD5
      ea425366a98dfc499c0cbeedb9a4f02a
    • HTTP/1.1 400 Bad Request
      Server: nginx
      Date: Sat, 02 Nov 2024 08:45:50 GMT
      Content-Type: text/html
      Content-Length: 248
      Connection: close
      
      <html>
      <head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
      <body>
      <center><h1>400 Bad Request</h1></center>
      <center>The plain HTTP request was sent to HTTPS port</center>
      <hr><center>nginx</center>
      </body>
      </html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-02T08:45:50.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
               "bodymmh3" : 1153229498,
               "headermd5" : "a629a0fe278971ad61801ba6975ba467",
               "headermmh3" : 946733460,
               "title" : "400 The plain HTTP request was sent to HTTPS port"
            },
            "length" : 393
         },
         "asn" : "AS50837",
         "country" : "CH",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Sat, 02 Nov 2024 08:45:50 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
         "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
         "datammh3" : 190190724,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "cloudsigma.net"
         ],
         "geolocus" : {
            "asn" : "AS50837",
            "continent" : "EU",
            "continentname" : "Europe",
            "country" : "CH",
            "countryname" : "Switzerland",
            "domain" : [
               "cloudsigma.com",
               "cloudsigma.net"
            ],
            "isineu" : "false",
            "latitude" : "46.818188",
            "location" : "46.818188,8.227512",
            "longitude" : "8.227512",
            "netname" : "CLOUDSIGMA",
            "organization" : "CloudSigma",
            "subnet" : "185.12.6.0/24"
         },
         "host" : [
            "host-27-6-12-185"
         ],
         "hostname" : [
            "host-27-6-12-185.cloudsigma.net"
         ],
         "ip" : "185.12.6.27",
         "ipv6" : "false",
         "latitude" : "47.1449",
         "location" : "47.1449,8.1551",
         "longitude" : "8.1551",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Cloudsigma Ag",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 5938,
         "product" : "Nginx",
         "productvendor" : "F5",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Bad Request",
         "reverse" : [
            "host-27-6-12-185.cloudsigma.net"
         ],
         "seen_date" : "2024-11-02",
         "source" : "datascan",
         "status" : 400,
         "subnet" : "185.12.4.0/22",
         "tld" : [
            "net"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }