Cyber Defense Search Engine

IP
106.47.44.146

Network
106.47.0.0/16

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://106.47.44.146:8331/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

ASN
AS17638

Organization
ASN for TIANJIN Provincial Net of CT

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0c1820e0d381850a77897bf32978a1f0

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
ea425366a98dfc499c0cbeedb9a4f02a

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 07 Nov 2024 05:53:45 GMT
Content-Type: text/html
Content-Length: 248
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:53:46.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
         "bodymmh3" : 1153229498,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : 1903023312,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 393
   },
   "asn" : "AS17638",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 05:53:45 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
   "datammh3" : 190190724,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4134",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "189.cn",
         "chinatelecom.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "CHINANET-HN",
      "organization" : "CHINANET HUNAN PROVINCE NETWORK",
      "subnet" : "106.32.0.0/12"
   },
   "ip" : "106.47.44.146",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "ASN for TIANJIN Provincial Net of CT",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 8331,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "106.47.0.0/16",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
45.33.95.176

Network
45.33.88.0/21

Domain(s)
linodeusercontent.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://45.33.95.176:8331/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

Reverse DNS
45-33-95-176.ip.linodeusercontent.com

ASN
AS63949

Organization
Akamai Connected Cloud

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0c1820e0d381850a77897bf32978a1f0

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
ea425366a98dfc499c0cbeedb9a4f02a

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 07 Nov 2024 05:51:56 GMT
Content-Type: text/html
Content-Length: 248
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:51:57.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
         "bodymmh3" : 1153229498,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : -459867977,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 393
   },
   "asn" : "AS63949",
   "city" : "Cedar Knolls",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 05:51:56 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
   "datammh3" : 190190724,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "linodeusercontent.com"
   ],
   "geolocus" : {
      "asn" : "AS63949",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "akamai.com",
         "linode.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "LINODE",
      "organization" : "Linode",
      "subnet" : "45.33.0.0/17"
   },
   "host" : [
      "45-33-95-176"
   ],
   "hostname" : [
      "45-33-95-176.ip.linodeusercontent.com"
   ],
   "ip" : "45.33.95.176",
   "ipv6" : "false",
   "latitude" : "40.8229",
   "location" : "40.8229,-74.4592",
   "longitude" : "-74.4592",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Akamai Connected Cloud",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 8331,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "reverse" : [
      "45-33-95-176.ip.linodeusercontent.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "ip.linodeusercontent.com"
   ],
   "subnet" : "45.33.88.0/21",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
45.232.149.67

Network
45.232.148.0/22

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://45.232.149.67:8331/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

ASN
AS266757

Organization
SATELITAL TELECOMUNICACIONES S.A.C

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx 1.10.3

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
36f0f0d4942302461b8587950b92b551

HTTP Header MD5
cd3cdfe64f777453298ec7e4e91eadb6

HTTP Body MD5
2967c8cbce19c898a1f617fa1bb30d94

HTTP/1.1 400 Bad Request
Server: nginx/1.10.3
Date: Thu, 07 Nov 2024 05:51:49 GMT
Content-Type: text/html
Content-Length: 271
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body bgcolor="white">
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx/1.10.3</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:51:50.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "2967c8cbce19c898a1f617fa1bb30d94",
         "bodymmh3" : -1598245278,
         "headermd5" : "cd3cdfe64f777453298ec7e4e91eadb6",
         "headermmh3" : 414881686,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 423
   },
   "asn" : "AS266757",
   "city" : "Iquitos",
   "country" : "PE",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx/1.10.3\r\nDate: Thu, 07 Nov 2024 05:51:49 GMT\r\nContent-Type: text/html\r\nContent-Length: 271\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body bgcolor=\"white\">\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx/1.10.3</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "36f0f0d4942302461b8587950b92b551",
   "datammh3" : 176086736,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS266757",
      "continent" : "SA",
      "continentname" : "South America",
      "country" : "PE",
      "countryname" : "Peru",
      "domain" : [
         "globalfiber.com.pe"
      ],
      "isineu" : "false",
      "latitude" : "-9.189967",
      "location" : "-9.189967,-75.015152",
      "longitude" : "-75.015152",
      "netname" : "PE-SATE3-LACNIC",
      "organization" : "SATELITAL TELECOMUNICACIONES S.A.C",
      "subnet" : "45.232.148.0/22"
   },
   "ip" : "45.232.149.67",
   "ipv6" : "false",
   "latitude" : "-3.7461",
   "location" : "-3.7461,-73.2455",
   "longitude" : "-73.2455",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "SATELITAL TELECOMUNICACIONES S.A.C",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 8331,
   "product" : "Nginx",
   "productvendor" : "F5",
   "productversion" : "1.10.3",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "45.232.148.0/22",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
202.182.111.184

Network
202.182.96.0/19

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://202.182.111.184:8331/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

ASN
AS20473

Organization
AS-VULTR

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0c1820e0d381850a77897bf32978a1f0

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
ea425366a98dfc499c0cbeedb9a4f02a

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 07 Nov 2024 05:41:37 GMT
Content-Type: text/html
Content-Length: 248
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:41:38.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
         "bodymmh3" : 1153229498,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : 1297813498,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 393
   },
   "asn" : "AS20473",
   "country" : "JP",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 05:41:37 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
   "datammh3" : 190190724,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS20473",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "JP",
      "countryname" : "Japan",
      "domain" : [
         "choopa.com",
         "vultr.com"
      ],
      "isineu" : "false",
      "latitude" : "36.204824",
      "location" : "36.204824,138.252924",
      "longitude" : "138.252924",
      "netname" : "TYO_VULTR_CUST",
      "organization" : "TYO_VULTR_CUST",
      "subnet" : "202.182.96.0/19"
   },
   "ip" : "202.182.111.184",
   "ipv6" : "false",
   "latitude" : "35.6887",
   "location" : "35.6887,139.7450",
   "longitude" : "139.7450",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AS-VULTR",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 8331,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "202.182.96.0/19",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
45.232.149.38

Network
45.232.148.0/22

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://45.232.149.38:8331/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

ASN
AS266757

Organization
SATELITAL TELECOMUNICACIONES S.A.C

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx 1.10.3

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
36f0f0d4942302461b8587950b92b551

HTTP Header MD5
cd3cdfe64f777453298ec7e4e91eadb6

HTTP Body MD5
2967c8cbce19c898a1f617fa1bb30d94

HTTP/1.1 400 Bad Request
Server: nginx/1.10.3
Date: Thu, 07 Nov 2024 05:40:40 GMT
Content-Type: text/html
Content-Length: 271
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body bgcolor="white">
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx/1.10.3</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:40:40.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "2967c8cbce19c898a1f617fa1bb30d94",
         "bodymmh3" : -1598245278,
         "headermd5" : "cd3cdfe64f777453298ec7e4e91eadb6",
         "headermmh3" : -1613352705,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 423
   },
   "asn" : "AS266757",
   "city" : "Iquitos",
   "country" : "PE",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx/1.10.3\r\nDate: Thu, 07 Nov 2024 05:40:40 GMT\r\nContent-Type: text/html\r\nContent-Length: 271\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body bgcolor=\"white\">\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx/1.10.3</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "36f0f0d4942302461b8587950b92b551",
   "datammh3" : 176086736,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS266757",
      "continent" : "SA",
      "continentname" : "South America",
      "country" : "PE",
      "countryname" : "Peru",
      "domain" : [
         "globalfiber.com.pe"
      ],
      "isineu" : "false",
      "latitude" : "-9.189967",
      "location" : "-9.189967,-75.015152",
      "longitude" : "-75.015152",
      "netname" : "PE-SATE3-LACNIC",
      "organization" : "SATELITAL TELECOMUNICACIONES S.A.C",
      "subnet" : "45.232.148.0/22"
   },
   "ip" : "45.232.149.38",
   "ipv6" : "false",
   "latitude" : "-3.7461",
   "location" : "-3.7461,-73.2455",
   "longitude" : "-73.2455",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "SATELITAL TELECOMUNICACIONES S.A.C",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 8331,
   "product" : "Nginx",
   "productvendor" : "F5",
   "productversion" : "1.10.3",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "45.232.148.0/22",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
87.92.188.156

Network
87.92.0.0/14

Domain(s)
dnainternet.fi

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://87.92.188.156:8331/ 400

Reverse DNS
87-92-188-156.rev.dnainternet.fi

ASN
AS16086

Organization
DNA Oyj

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
7ec6fc76f1262fda24211ad1f325a0f1

HTTP Header MD5
e1ac934a33d282a0f9203d1f38959cd4

HTTP Body MD5
b634668f41ef53ef6d608dc70c4e0dcb

HTTP/1.0 400 Bad Request

Client sent an HTTP request to an HTTPS server.

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:38:41.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "b634668f41ef53ef6d608dc70c4e0dcb",
         "bodymmh3" : 759042204,
         "headermd5" : "e1ac934a33d282a0f9203d1f38959cd4",
         "headermmh3" : 247729568
      },
      "length" : 76
   },
   "asn" : "AS16086",
   "city" : "Helsinki",
   "country" : "FI",
   "data" : "HTTP/1.0 400 Bad Request\r\n\r\nClient sent an HTTP request to an HTTPS server.\n",
   "datamd5" : "7ec6fc76f1262fda24211ad1f325a0f1",
   "datammh3" : 785411303,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "dnainternet.fi"
   ],
   "geolocus" : {
      "asn" : "AS16086",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "FI",
      "countryname" : "Finland",
      "domain" : [
         "dnainternet.fi",
         "dnaip.fi"
      ],
      "isineu" : "true",
      "latitude" : "61.92411",
      "location" : "61.92411,25.748151",
      "longitude" : "25.748151",
      "netname" : "DNA-BB-LA-20140616",
      "organization" : "DNA Oy",
      "subnet" : "87.92.128.0/17"
   },
   "host" : [
      "87-92-188-156"
   ],
   "hostname" : [
      "87-92-188-156.rev.dnainternet.fi"
   ],
   "ip" : "87.92.188.156",
   "ipv6" : "false",
   "latitude" : "60.1797",
   "location" : "60.1797,24.9344",
   "longitude" : "24.9344",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "DNA Oyj",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 8331,
   "protocol" : "http",
   "protocolversion" : "1.0",
   "reason" : "Bad Request",
   "reverse" : [
      "87-92-188-156.rev.dnainternet.fi"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "rev.dnainternet.fi"
   ],
   "subnet" : "87.92.0.0/14",
   "tld" : [
      "fi"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
203.83.8.234

Network
203.83.8.0/22

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://203.83.8.234:8331/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

ASN
AS132883

Organization
TOPWAY GLOBAL LIMITED

Protocol
http

Source
datascan
Operating System
Microsoft Windows

Product
F5 Nginx 1.17.6

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
023c8c5e51d9ce9369af8e1f921f5e3f

HTTP Header MD5
f4eaba8998b0e515f84d95c1ad5ea5c7

HTTP Body MD5
a2b4897849c71fbcb21dd632d3506361

HTTP/1.1 400 Bad Request
Server: nginx/1.17.6
Date: Thu, 07 Nov 2024 05:35:16 GMT
Content-Type: text/html
Content-Length: 255
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx/1.17.6</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:35:17.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "a2b4897849c71fbcb21dd632d3506361",
         "bodymmh3" : -2063426561,
         "headermd5" : "f4eaba8998b0e515f84d95c1ad5ea5c7",
         "headermmh3" : -703182826,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 407
   },
   "asn" : "AS132883",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx/1.17.6\r\nDate: Thu, 07 Nov 2024 05:35:16 GMT\r\nContent-Type: text/html\r\nContent-Length: 255\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx/1.17.6</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "023c8c5e51d9ce9369af8e1f921f5e3f",
   "datammh3" : 457427036,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS132883",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "cnaaa.com",
         "cnnic.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "cnaaa",
      "organization" : "Jiangsu Sanai network science and technology co ,LTD",
      "subnet" : "203.83.8.0/22"
   },
   "ip" : "203.83.8.234",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TOPWAY GLOBAL LIMITED",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 8331,
   "product" : "Nginx",
   "productvendor" : "F5",
   "productversion" : "1.17.6",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "203.83.8.0/22",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
139.180.147.216

Network
139.180.128.0/18

Domain(s)
vultrusercontent.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://139.180.147.216:8331/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

Reverse DNS
139.180.147.216.vultrusercontent.com

ASN
AS20473

Organization
AS-VULTR

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0c1820e0d381850a77897bf32978a1f0

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
ea425366a98dfc499c0cbeedb9a4f02a

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 07 Nov 2024 05:33:24 GMT
Content-Type: text/html
Content-Length: 248
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:33:25.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
         "bodymmh3" : 1153229498,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : -1880112074,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 393
   },
   "asn" : "AS20473",
   "city" : "Singapore",
   "country" : "SG",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 05:33:24 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
   "datammh3" : 190190724,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "vultrusercontent.com"
   ],
   "geolocus" : {
      "asn" : "AS20473",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "SG",
      "countryname" : "Singapore",
      "domain" : [
         "choopa.com",
         "vultr.com"
      ],
      "isineu" : "false",
      "latitude" : "1.352083",
      "location" : "1.352083,103.819836",
      "longitude" : "103.819836",
      "netname" : "SGP_VULTR_CUST",
      "organization" : "SGP_VULTR_CUST",
      "subnet" : "139.180.128.0/19"
   },
   "host" : [
      139
   ],
   "hostname" : [
      "139.180.147.216.vultrusercontent.com"
   ],
   "ip" : "139.180.147.216",
   "ipv6" : "false",
   "latitude" : "1.3078",
   "location" : "1.3078,103.6818",
   "longitude" : "103.6818",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AS-VULTR",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 8331,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "reverse" : [
      "139.180.147.216.vultrusercontent.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "147.216.vultrusercontent.com",
      "180.147.216.vultrusercontent.com",
      "216.vultrusercontent.com"
   ],
   "subnet" : "139.180.128.0/18",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
216.98.13.244

Network
216.98.0.0/20

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://216.98.13.244:8331/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

ASN
AS6364

Organization
ATLANTIC-NET-1

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0c1820e0d381850a77897bf32978a1f0

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
ea425366a98dfc499c0cbeedb9a4f02a

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 07 Nov 2024 05:32:43 GMT
Content-Type: text/html
Content-Length: 248
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:32:44.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
         "bodymmh3" : 1153229498,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : -436087909,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 393
   },
   "asn" : "AS6364",
   "city" : "Sacramento",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 05:32:43 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
   "datammh3" : 190190724,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS6364",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "atlantic.net"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "NET-216-98-0-0-1",
      "organization" : "Atlantic.net, Inc.",
      "subnet" : "216.98.0.0/20"
   },
   "ip" : "216.98.13.244",
   "ipv6" : "false",
   "latitude" : "38.5810",
   "location" : "38.5810,-121.4939",
   "longitude" : "-121.4939",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "ATLANTIC-NET-1",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 8331,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "216.98.0.0/20",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
187.200.203.94

Network
187.200.192.0/19

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://187.200.203.94:8331/ 400

HTTP Title
400 Bad Request

ASN
AS8151

Organization
UNINET

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
Apache HTTP Server

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0af26e3479a7a09fb8c5ecbcfd0c0ba0

HTTP Header MD5
dab2aa19d9d8c79d419e721bae6ae52e

HTTP Body MD5
6efda5878ab25f4f28a89bbb3f9fa41c

HTTP/1.1 400 Bad Request
Date: Thu, 07 Nov 2024 05:31:54 GMT
Server: Apache
Content-Length: 362
Connection: close
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>400 Bad Request</title>
</head><body>
<h1>Bad Request</h1>
<p>Your browser sent a request that this server could not understand.<br />
Reason: You're speaking plain HTTP to an SSL-enabled server port.<br />
 Instead use the HTTPS scheme to access this URL, please.<br />
</p>
</body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T05:31:56.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "6efda5878ab25f4f28a89bbb3f9fa41c",
         "bodymmh3" : -645452522,
         "headermd5" : "dab2aa19d9d8c79d419e721bae6ae52e",
         "headermmh3" : 693835562,
         "title" : "400 Bad Request"
      },
      "length" : 528
   },
   "asn" : "AS8151",
   "city" : "San Mateo Atenco",
   "country" : "MX",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nDate: Thu, 07 Nov 2024 05:31:54 GMT\r\nServer: Apache\r\nContent-Length: 362\r\nConnection: close\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n<!DOCTYPE HTML PUBLIC \"-//IETF//DTD HTML 2.0//EN\">\n<html><head>\n<title>400 Bad Request</title>\n</head><body>\n<h1>Bad Request</h1>\n<p>Your browser sent a request that this server could not understand.<br />\nReason: You're speaking plain HTTP to an SSL-enabled server port.<br />\n Instead use the HTTPS scheme to access this URL, please.<br />\n</p>\n</body></html>\n",
   "datamd5" : "0af26e3479a7a09fb8c5ecbcfd0c0ba0",
   "datammh3" : -730346438,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS8151",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "MX",
      "countryname" : "Mexico",
      "domain" : [
         "prod-infinitum.com.mx",
         "uninet.com.mx"
      ],
      "isineu" : "false",
      "latitude" : "23.634501",
      "location" : "23.634501,-102.552784",
      "longitude" : "-102.552784",
      "netname" : "MX-USCV4-LACNIC",
      "organization" : "UNINET",
      "subnet" : "187.200.0.0/16"
   },
   "ip" : "187.200.203.94",
   "ipv6" : "false",
   "latitude" : "19.2679",
   "location" : "19.2679,-99.5430",
   "longitude" : "-99.5430",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "UNINET",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 8331,
   "product" : "HTTP Server",
   "productvendor" : "Apache",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "187.200.192.0/19",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

Returning 10 result(s) out of 4,466 in 0.095 second(s)

106.47.44.146:8331 (tcp/http) - last seen on 2024-11-07 at 05:53:46 UTC

45.33.95.176:8331 (tcp/http) - last seen on 2024-11-07 at 05:51:57 UTC

45.232.149.67:8331 (tcp/http) - last seen on 2024-11-07 at 05:51:50 UTC

202.182.111.184:8331 (tcp/http) - last seen on 2024-11-07 at 05:41:38 UTC

45.232.149.38:8331 (tcp/http) - last seen on 2024-11-07 at 05:40:40 UTC

87.92.188.156:8331 (tcp/http) - last seen on 2024-11-07 at 05:38:41 UTC

203.83.8.234:8331 (tcp/http) - last seen on 2024-11-07 at 05:35:17 UTC

139.180.147.216:8331 (tcp/http) - last seen on 2024-11-07 at 05:33:25 UTC

216.98.13.244:8331 (tcp/http) - last seen on 2024-11-07 at 05:32:44 UTC

187.200.203.94:8331 (tcp/http) - last seen on 2024-11-07 at 05:31:56 UTC