Cyber Defense Search Engine

IP
1.94.74.55

Network
1.94.0.0/15

Domain(s)
hwclouds-dns.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://1.94.74.55:9990/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

Reverse DNS
ecs-1-94-74-55.compute.hwclouds-dns.com

ASN
AS55990

Organization
Huawei Cloud Service data center

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
1669a0dbf3548e4bc93f696ed05e5286

HTTP Header MD5
1bcf1dcb69e0b166facc4cad91962931

HTTP Body MD5
4ea630c72fb92754153fdeee2796514a

HTTP/1.1 400 Bad Request
Server: CloudWAF
Date: Thu, 07 Nov 2024 03:27:57 GMT
Content-Type: text/html
Content-Length: 251
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>CloudWAF</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:27:57.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "4ea630c72fb92754153fdeee2796514a",
         "bodymmh3" : -1197436772,
         "headermd5" : "1bcf1dcb69e0b166facc4cad91962931",
         "headermmh3" : -1035635398,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 399
   },
   "asn" : "AS55990",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: CloudWAF\r\nDate: Thu, 07 Nov 2024 03:27:57 GMT\r\nContent-Type: text/html\r\nContent-Length: 251\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>CloudWAF</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "1669a0dbf3548e4bc93f696ed05e5286",
   "datammh3" : 517877946,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "hwclouds-dns.com"
   ],
   "geolocus" : {
      "asn" : "AS55990",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "cnnic.cn",
         "drpeng.com.cn",
         "hwclouds-dns.com"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "DXTNET",
      "organization" : "Beijing Teletron Telecom Engineering Co., Ltd.",
      "subnet" : "1.94.0.0/16"
   },
   "host" : [
      "ecs-1-94-74-55"
   ],
   "hostname" : [
      "ecs-1-94-74-55.compute.hwclouds-dns.com"
   ],
   "ip" : "1.94.74.55",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Huawei Cloud Service data center",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 9990,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "reverse" : [
      "ecs-1-94-74-55.compute.hwclouds-dns.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "compute.hwclouds-dns.com"
   ],
   "subnet" : "1.94.0.0/15",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
116.205.75.127

Network
116.205.0.0/16

Domain(s)
hwclouds-dns.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://116.205.75.127:9990/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

Reverse DNS
ecs-116-205-75-127.compute.hwclouds-dns.com

ASN
AS55990

Organization
Huawei Cloud Service data center

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
1669a0dbf3548e4bc93f696ed05e5286

HTTP Header MD5
1bcf1dcb69e0b166facc4cad91962931

HTTP Body MD5
4ea630c72fb92754153fdeee2796514a

HTTP/1.1 400 Bad Request
Server: CloudWAF
Date: Thu, 07 Nov 2024 03:27:57 GMT
Content-Type: text/html
Content-Length: 251
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>CloudWAF</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:27:57.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "4ea630c72fb92754153fdeee2796514a",
         "bodymmh3" : -1197436772,
         "headermd5" : "1bcf1dcb69e0b166facc4cad91962931",
         "headermmh3" : -1035635398,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 399
   },
   "asn" : "AS55990",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: CloudWAF\r\nDate: Thu, 07 Nov 2024 03:27:57 GMT\r\nContent-Type: text/html\r\nContent-Length: 251\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>CloudWAF</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "1669a0dbf3548e4bc93f696ed05e5286",
   "datammh3" : 517877946,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "hwclouds-dns.com"
   ],
   "geolocus" : {
      "asn" : "AS55990",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "cnnic.cn",
         "huawei.com",
         "hwclouds-dns.com"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "HWCSNET",
      "organization" : "Huawei Public Cloud Service (Huawei Software Technologies Ltd.Co)",
      "subnet" : "116.205.0.0/16"
   },
   "host" : [
      "ecs-116-205-75-127"
   ],
   "hostname" : [
      "ecs-116-205-75-127.compute.hwclouds-dns.com"
   ],
   "ip" : "116.205.75.127",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Huawei Cloud Service data center",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 9990,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "reverse" : [
      "ecs-116-205-75-127.compute.hwclouds-dns.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "compute.hwclouds-dns.com"
   ],
   "subnet" : "116.205.0.0/16",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
76.190.95.174

Network
76.190.0.0/16

Domain(s)
spectrum.com

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

URL

http://76.190.95.174:9990/ 301

HTTP Title
Moved Permanently

Reverse DNS
syn-076-190-095-174.biz.spectrum.com

ASN
AS10796

Organization
TWC-10796-MIDWEST

Protocol
http

Source
datascan
Operating System
Microsoft Windows

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
e539c04994c2cd8807e555472d40d7f0

HTTP Header MD5
2c561ce2561b7f6113f96cf56b362b57

HTTP Body MD5
6d74b20c6fa245a96aa940816c13f6ff

HTTP/1.1 301 Moved Permanently
Access-Control-Allow-Origin: *
Content-Length: 98
Content-Type: text/html; charset=utf-8
Date: Thu, 07 Nov 2024 03:27:37 GMT
Location: https://<ip>:9990/

<HTML><HEAD><TITLE>Moved Permanently</TITLE></HEAD><BODY><H1>301 Moved Permanently -- </H1></BODY>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:27:36.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "6d74b20c6fa245a96aa940816c13f6ff",
         "bodymmh3" : -2097937471,
         "headermd5" : "2c561ce2561b7f6113f96cf56b362b57",
         "headermmh3" : 1350696082,
         "title" : "Moved Permanently"
      },
      "length" : 291
   },
   "asn" : "AS10796",
   "city" : "Jeffersonville",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 301 Moved Permanently\r\nAccess-Control-Allow-Origin: *\r\nContent-Length: 98\r\nContent-Type: text/html; charset=utf-8\r\nDate: Thu, 07 Nov 2024 03:27:37 GMT\r\nLocation: https://<ip>:9990/\r\n\r\n<HTML><HEAD><TITLE>Moved Permanently</TITLE></HEAD><BODY><H1>301 Moved Permanently -- </H1></BODY>",
   "datamd5" : "e539c04994c2cd8807e555472d40d7f0",
   "datammh3" : -274522966,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "spectrum.com"
   ],
   "geolocus" : {
      "asn" : "AS10796",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "charter.com",
         "charter.net",
         "spectrum.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "RRACI",
      "organization" : "Charter Communications Inc",
      "subnet" : "76.190.0.0/16"
   },
   "host" : [
      "syn-076-190-095-174"
   ],
   "hostname" : [
      "syn-076-190-095-174.biz.spectrum.com"
   ],
   "ip" : "76.190.95.174",
   "ipv6" : "false",
   "latitude" : "38.3015",
   "location" : "38.3015,-85.7469",
   "longitude" : "-85.7469",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TWC-10796-MIDWEST",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 9990,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Moved Permanently",
   "reverse" : [
      "syn-076-190-095-174.biz.spectrum.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 301,
   "subdomains" : [
      "biz.spectrum.com"
   ],
   "subnet" : "76.190.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
110.41.218.108

Network
110.41.216.0/21

Domain(s)
hwclouds-dns.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://110.41.218.108:9990/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

Reverse DNS
ecs-110-41-218-108.compute.hwclouds-dns.com

ASN
AS55990

Organization
Huawei Cloud Service data center

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
1669a0dbf3548e4bc93f696ed05e5286

HTTP Header MD5
1bcf1dcb69e0b166facc4cad91962931

HTTP Body MD5
4ea630c72fb92754153fdeee2796514a

HTTP/1.1 400 Bad Request
Server: CloudWAF
Date: Thu, 07 Nov 2024 03:27:36 GMT
Content-Type: text/html
Content-Length: 251
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>CloudWAF</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:27:36.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "4ea630c72fb92754153fdeee2796514a",
         "bodymmh3" : -1197436772,
         "headermd5" : "1bcf1dcb69e0b166facc4cad91962931",
         "headermmh3" : 1865282903,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 399
   },
   "asn" : "AS55990",
   "city" : "Guangzhou",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: CloudWAF\r\nDate: Thu, 07 Nov 2024 03:27:36 GMT\r\nContent-Type: text/html\r\nContent-Length: 251\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>CloudWAF</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "1669a0dbf3548e4bc93f696ed05e5286",
   "datammh3" : 517877946,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "hwclouds-dns.com"
   ],
   "geolocus" : {
      "asn" : "AS55990",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "cnnic.cn",
         "huawei.com",
         "hwclouds-dns.com"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "HWCSNET",
      "organization" : "Huawei Public Cloud Service (Huawei Software Technologies Ltd.Co)",
      "subnet" : "110.41.216.0/21"
   },
   "host" : [
      "ecs-110-41-218-108"
   ],
   "hostname" : [
      "ecs-110-41-218-108.compute.hwclouds-dns.com"
   ],
   "ip" : "110.41.218.108",
   "ipv6" : "false",
   "latitude" : "23.1181",
   "location" : "23.1181,113.2539",
   "longitude" : "113.2539",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Huawei Cloud Service data center",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 9990,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "reverse" : [
      "ecs-110-41-218-108.compute.hwclouds-dns.com"
   ],
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subdomains" : [
      "compute.hwclouds-dns.com"
   ],
   "subnet" : "110.41.216.0/21",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
101.126.25.20

Network
101.126.0.0/18

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://101.126.25.20:9990/ 200

ASN
AS137718

Organization
Beijing Volcano Engine Technology Co., Ltd.

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
ce831127322ce99c4573249f83fe1a66

HTTP Header MD5
24924dbab1ba8ceca5a38d9f45d2129c

HTTP Body MD5
d990e82add2de74b39da3f40311f37c5

HTTP/1.1 200 OK
Content-Type: application/json
Vary: Origin
Date: Thu, 07 Nov 2024 03:20:53 GMT
Content-Length: 18
Connection: close

{"hello":"clash"}

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:20:53.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "d990e82add2de74b39da3f40311f37c5",
         "bodymmh3" : 1484912707,
         "headermd5" : "24924dbab1ba8ceca5a38d9f45d2129c",
         "headermmh3" : 1853936377
      },
      "length" : 159
   },
   "asn" : "AS137718",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nContent-Type: application/json\r\nVary: Origin\r\nDate: Thu, 07 Nov 2024 03:20:53 GMT\r\nContent-Length: 18\r\nConnection: close\r\n\r\n{\"hello\":\"clash\"}\n",
   "datamd5" : "ce831127322ce99c4573249f83fe1a66",
   "datammh3" : 1345543657,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS137718",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "bytedance.com",
         "cnnic.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "VOLCANO-ENGINE",
      "organization" : "China Internet Network Information Center",
      "subnet" : "101.126.0.0/18"
   },
   "ip" : "101.126.25.20",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Beijing Volcano Engine Technology Co., Ltd.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 9990,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "101.126.0.0/18",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
37.34.85.213

Network
37.34.80.0/21

Device

<enterprise field>: device.class

URL

http://37.34.85.213:9990/ 407

ASN
AS996

Organization
JY-MOBILE-COMMUNICATIONS

Protocol
http

Source
datascan

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
beff904528226673ee6dbdb9e7fe6002

HTTP Header MD5
4bd5a82db187fbf06a2b7f25b880c717

HTTP Body MD5
917a0ae17b6e9db13c448d39f37c69ca

HTTP/1.1 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm=""

Proxy Authentication Required

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:20:51.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "917a0ae17b6e9db13c448d39f37c69ca",
         "bodymmh3" : -1539650452,
         "headermd5" : "4bd5a82db187fbf06a2b7f25b880c717",
         "headermmh3" : 372433470
      },
      "length" : 111
   },
   "asn" : "AS996",
   "city" : "Dallas",
   "country" : "US",
   "data" : "HTTP/1.1 407 Proxy Authentication Required\r\nProxy-Authenticate: Basic realm=\"\"\r\n\r\nProxy Authentication Required",
   "datamd5" : "beff904528226673ee6dbdb9e7fe6002",
   "datammh3" : 501879459,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "ip" : "37.34.85.213",
   "ipv6" : "false",
   "latitude" : "32.7889",
   "location" : "32.7889,-96.8021",
   "longitude" : "-96.8021",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "JY-MOBILE-COMMUNICATIONS",
   "port" : 9990,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Proxy Authentication Required",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 407,
   "subnet" : "37.34.80.0/21",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
37.34.87.118

Network
37.34.80.0/21

Device

<enterprise field>: device.class

URL

http://37.34.87.118:9990/ 407

ASN
AS996

Organization
JY-MOBILE-COMMUNICATIONS

Protocol
http

Source
datascan

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
beff904528226673ee6dbdb9e7fe6002

HTTP Header MD5
4bd5a82db187fbf06a2b7f25b880c717

HTTP Body MD5
917a0ae17b6e9db13c448d39f37c69ca

HTTP/1.1 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm=""

Proxy Authentication Required

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:20:50.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "917a0ae17b6e9db13c448d39f37c69ca",
         "bodymmh3" : -1539650452,
         "headermd5" : "4bd5a82db187fbf06a2b7f25b880c717",
         "headermmh3" : 372433470
      },
      "length" : 111
   },
   "asn" : "AS996",
   "city" : "Dallas",
   "country" : "US",
   "data" : "HTTP/1.1 407 Proxy Authentication Required\r\nProxy-Authenticate: Basic realm=\"\"\r\n\r\nProxy Authentication Required",
   "datamd5" : "beff904528226673ee6dbdb9e7fe6002",
   "datammh3" : 501879459,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "ip" : "37.34.87.118",
   "ipv6" : "false",
   "latitude" : "32.7889",
   "location" : "32.7889,-96.8021",
   "longitude" : "-96.8021",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "JY-MOBILE-COMMUNICATIONS",
   "port" : 9990,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Proxy Authentication Required",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 407,
   "subnet" : "37.34.80.0/21",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
42.48.130.4

Network
42.48.0.0/15

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://42.48.130.4:9990/ 200

HTTP Title
v2rayA

ASN
AS4837

Organization
CHINA UNICOM China169 Backbone

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
87ce33d98fdd3d0c05d45c16a9baf374

HTTP Header MD5
632f4b06edc51531ab6c727d7f7054ea

HTTP Body MD5
9eda9d1df286ebca76e988716e609e6a

HTTP/1.1 200 OK
Cache-Control: public, must-revalidate
Content-Type: text/html; charset=utf-8
Etag: W/9eda9d1df286ebca76e988716e609e6a
Date: Thu, 07 Nov 2024 03:20:49 GMT
Content-Length: 925
Connection: close

<!doctype html><html lang="en"><head><meta charset="utf-8"><meta http-equiv="X-UA-Compatible" content="IE=edge"><meta name="viewport" content="width=device-width,initial-scale=1,maximum-scale=1,user-scalable=no"><link rel="icon" href="static/favicon.ico"><title>v2rayA</title><script defer="defer" type="module" src="static/js/chunk-vendors.8434d40a.js"></script><script defer="defer" type="module" src="static/js/app.3a6845c0.js"></script><link href="static/css/chunk-vendors.89743a08.css" rel="stylesheet"><link href="static/css/app.398fcc6e.css" rel="stylesheet"><script defer="defer" src="static/js/chunk-vendors-legacy.a5e70e2b.js" nomodule></script><script defer="defer" src="static/js/app-legacy.c2e0738d.js" nomodule></script></head><body><noscript><strong>We're sorry but v2rayA-GUI doesn't work properly without JavaScript enabled. Please enable it to continue.</strong></noscript><div id="app"></div></body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:20:50.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "9eda9d1df286ebca76e988716e609e6a",
         "bodymmh3" : 1616183916,
         "header" : [
            {
               "name" : "Etag",
               "value" : "W/9eda9d1df286ebca76e988716e609e6a"
            }
         ],
         "headermd5" : "632f4b06edc51531ab6c727d7f7054ea",
         "headermmh3" : 697628291,
         "title" : "v2rayA"
      },
      "length" : 1143
   },
   "asn" : "AS4837",
   "city" : "Guangzhou",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 200 OK\r\nCache-Control: public, must-revalidate\r\nContent-Type: text/html; charset=utf-8\r\nEtag: W/9eda9d1df286ebca76e988716e609e6a\r\nDate: Thu, 07 Nov 2024 03:20:49 GMT\r\nContent-Length: 925\r\nConnection: close\r\n\r\n<!doctype html><html lang=\"en\"><head><meta charset=\"utf-8\"><meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\"><meta name=\"viewport\" content=\"width=device-width,initial-scale=1,maximum-scale=1,user-scalable=no\"><link rel=\"icon\" href=\"static/favicon.ico\"><title>v2rayA</title><script defer=\"defer\" type=\"module\" src=\"static/js/chunk-vendors.8434d40a.js\"></script><script defer=\"defer\" type=\"module\" src=\"static/js/app.3a6845c0.js\"></script><link href=\"static/css/chunk-vendors.89743a08.css\" rel=\"stylesheet\"><link href=\"static/css/app.398fcc6e.css\" rel=\"stylesheet\"><script defer=\"defer\" src=\"static/js/chunk-vendors-legacy.a5e70e2b.js\" nomodule></script><script defer=\"defer\" src=\"static/js/app-legacy.c2e0738d.js\" nomodule></script></head><body><noscript><strong>We're sorry but v2rayA-GUI doesn't work properly without JavaScript enabled. Please enable it to continue.</strong></noscript><div id=\"app\"></div></body></html>",
   "datamd5" : "87ce33d98fdd3d0c05d45c16a9baf374",
   "datammh3" : -1112855545,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4837",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinaunicom.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "UNICOM-HN",
      "organization" : "China Unicom Hunan Province Network",
      "subnet" : "42.48.0.0/15"
   },
   "ip" : "42.48.130.4",
   "ipv6" : "false",
   "latitude" : "23.1181",
   "location" : "23.1181,113.2539",
   "longitude" : "113.2539",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "CHINA UNICOM China169 Backbone",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 9990,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "OK",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 200,
   "subnet" : "42.48.0.0/15",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
194.87.38.65

Network
194.87.38.0/24

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://194.87.38.65:9990/ 407

ASN
AS212238

Organization
Datacamp Limited

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
beff904528226673ee6dbdb9e7fe6002

HTTP Header MD5
4bd5a82db187fbf06a2b7f25b880c717

HTTP Body MD5
917a0ae17b6e9db13c448d39f37c69ca

HTTP/1.1 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm=""

Proxy Authentication Required

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:20:50.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "917a0ae17b6e9db13c448d39f37c69ca",
         "bodymmh3" : -1539650452,
         "headermd5" : "4bd5a82db187fbf06a2b7f25b880c717",
         "headermmh3" : 372433470
      },
      "length" : 111
   },
   "asn" : "AS212238",
   "city" : "Ashburn",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 407 Proxy Authentication Required\r\nProxy-Authenticate: Basic realm=\"\"\r\n\r\nProxy Authentication Required",
   "datamd5" : "beff904528226673ee6dbdb9e7fe6002",
   "datammh3" : 501879459,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS212238",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "interlir.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "US-Zike-Network",
      "organization" : "US-Zike-Network",
      "subnet" : "194.87.38.0/24"
   },
   "ip" : "194.87.38.65",
   "ipv6" : "false",
   "latitude" : "39.0395",
   "location" : "39.0395,-77.4917",
   "longitude" : "-77.4917",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Datacamp Limited",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 9990,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Proxy Authentication Required",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 407,
   "subnet" : "194.87.38.0/24",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
213.139.70.115

Network
213.139.70.0/23

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://213.139.70.115:9990/ 407

ASN
AS61317

Organization
Hivelocity LLC

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
beff904528226673ee6dbdb9e7fe6002

HTTP Header MD5
4bd5a82db187fbf06a2b7f25b880c717

HTTP Body MD5
917a0ae17b6e9db13c448d39f37c69ca

HTTP/1.1 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm=""

Proxy Authentication Required

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:20:30.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "917a0ae17b6e9db13c448d39f37c69ca",
         "bodymmh3" : -1539650452,
         "headermd5" : "4bd5a82db187fbf06a2b7f25b880c717",
         "headermmh3" : 372433470
      },
      "length" : 111
   },
   "asn" : "AS61317",
   "country" : "DE",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 407 Proxy Authentication Required\r\nProxy-Authenticate: Basic realm=\"\"\r\n\r\nProxy Authentication Required",
   "datamd5" : "beff904528226673ee6dbdb9e7fe6002",
   "datammh3" : 501879459,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "ip" : "213.139.70.115",
   "ipv6" : "false",
   "latitude" : "51.2993",
   "location" : "51.2993,9.4910",
   "longitude" : "9.4910",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Hivelocity LLC",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 9990,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Proxy Authentication Required",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 407,
   "subnet" : "213.139.70.0/23",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

Returning 10 result(s) out of 130,134 in 0.042 second(s)

1.94.74.55:9990 (tcp/http) - last seen on 2024-11-07 at 03:27:57 UTC

116.205.75.127:9990 (tcp/http) - last seen on 2024-11-07 at 03:27:57 UTC

76.190.95.174:9990 (tcp/http) - last seen on 2024-11-07 at 03:27:36 UTC

110.41.218.108:9990 (tcp/http) - last seen on 2024-11-07 at 03:27:36 UTC

101.126.25.20:9990 (tcp/http) - last seen on 2024-11-07 at 03:20:53 UTC

37.34.85.213:9990 (tcp/http) - last seen on 2024-11-07 at 03:20:51 UTC

37.34.87.118:9990 (tcp/http) - last seen on 2024-11-07 at 03:20:50 UTC

42.48.130.4:9990 (tcp/http) - last seen on 2024-11-07 at 03:20:50 UTC

194.87.38.65:9990 (tcp/http) - last seen on 2024-11-07 at 03:20:50 UTC

213.139.70.115:9990 (tcp/http) - last seen on 2024-11-07 at 03:20:30 UTC