Returning 10 result(s) out of 130,134 in 0.042 second(s)

  • 1.94.74.55:9990 (tcp/http) - last seen on 2024-11-07 at 03:27:57 UTC

    • IP
      1.94.74.55
      Network
      1.94.0.0/15
      Domain(s)
      hwclouds-dns.com
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://1.94.74.55:9990/ 400

      HTTP Title
      400 The plain HTTP request was sent to HTTPS port
      Reverse DNS
      ecs-1-94-74-55.compute.hwclouds-dns.com
      ASN
      AS55990
      Organization
      Huawei Cloud Service data center
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      1669a0dbf3548e4bc93f696ed05e5286
      HTTP Header MD5
      1bcf1dcb69e0b166facc4cad91962931
      HTTP Body MD5
      4ea630c72fb92754153fdeee2796514a
    • HTTP/1.1 400 Bad Request
      Server: CloudWAF
      Date: Thu, 07 Nov 2024 03:27:57 GMT
      Content-Type: text/html
      Content-Length: 251
      Connection: close
      
      <html>
      <head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
      <body>
      <center><h1>400 Bad Request</h1></center>
      <center>The plain HTTP request was sent to HTTPS port</center>
      <hr><center>CloudWAF</center>
      </body>
      </html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:27:57.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "4ea630c72fb92754153fdeee2796514a",
               "bodymmh3" : -1197436772,
               "headermd5" : "1bcf1dcb69e0b166facc4cad91962931",
               "headermmh3" : -1035635398,
               "title" : "400 The plain HTTP request was sent to HTTPS port"
            },
            "length" : 399
         },
         "asn" : "AS55990",
         "country" : "CN",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 400 Bad Request\r\nServer: CloudWAF\r\nDate: Thu, 07 Nov 2024 03:27:57 GMT\r\nContent-Type: text/html\r\nContent-Length: 251\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>CloudWAF</center>\r\n</body>\r\n</html>\r\n",
         "datamd5" : "1669a0dbf3548e4bc93f696ed05e5286",
         "datammh3" : 517877946,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "hwclouds-dns.com"
         ],
         "geolocus" : {
            "asn" : "AS55990",
            "continent" : "AS",
            "continentname" : "Asia",
            "country" : "CN",
            "countryname" : "China",
            "domain" : [
               "cnnic.cn",
               "drpeng.com.cn",
               "hwclouds-dns.com"
            ],
            "isineu" : "false",
            "latitude" : "35.86166",
            "location" : "35.86166,104.195397",
            "longitude" : "104.195397",
            "netname" : "DXTNET",
            "organization" : "Beijing Teletron Telecom Engineering Co., Ltd.",
            "subnet" : "1.94.0.0/16"
         },
         "host" : [
            "ecs-1-94-74-55"
         ],
         "hostname" : [
            "ecs-1-94-74-55.compute.hwclouds-dns.com"
         ],
         "ip" : "1.94.74.55",
         "ipv6" : "false",
         "latitude" : "34.7732",
         "location" : "34.7732,113.7220",
         "longitude" : "113.7220",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Huawei Cloud Service data center",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 9990,
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Bad Request",
         "reverse" : [
            "ecs-1-94-74-55.compute.hwclouds-dns.com"
         ],
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 400,
         "subdomains" : [
            "compute.hwclouds-dns.com"
         ],
         "subnet" : "1.94.0.0/15",
         "tld" : [
            "com"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 116.205.75.127:9990 (tcp/http) - last seen on 2024-11-07 at 03:27:57 UTC

    • IP
      116.205.75.127
      Network
      116.205.0.0/16
      Domain(s)
      hwclouds-dns.com
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://116.205.75.127:9990/ 400

      HTTP Title
      400 The plain HTTP request was sent to HTTPS port
      Reverse DNS
      ecs-116-205-75-127.compute.hwclouds-dns.com
      ASN
      AS55990
      Organization
      Huawei Cloud Service data center
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      1669a0dbf3548e4bc93f696ed05e5286
      HTTP Header MD5
      1bcf1dcb69e0b166facc4cad91962931
      HTTP Body MD5
      4ea630c72fb92754153fdeee2796514a
    • HTTP/1.1 400 Bad Request
      Server: CloudWAF
      Date: Thu, 07 Nov 2024 03:27:57 GMT
      Content-Type: text/html
      Content-Length: 251
      Connection: close
      
      <html>
      <head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
      <body>
      <center><h1>400 Bad Request</h1></center>
      <center>The plain HTTP request was sent to HTTPS port</center>
      <hr><center>CloudWAF</center>
      </body>
      </html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:27:57.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "4ea630c72fb92754153fdeee2796514a",
               "bodymmh3" : -1197436772,
               "headermd5" : "1bcf1dcb69e0b166facc4cad91962931",
               "headermmh3" : -1035635398,
               "title" : "400 The plain HTTP request was sent to HTTPS port"
            },
            "length" : 399
         },
         "asn" : "AS55990",
         "country" : "CN",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 400 Bad Request\r\nServer: CloudWAF\r\nDate: Thu, 07 Nov 2024 03:27:57 GMT\r\nContent-Type: text/html\r\nContent-Length: 251\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>CloudWAF</center>\r\n</body>\r\n</html>\r\n",
         "datamd5" : "1669a0dbf3548e4bc93f696ed05e5286",
         "datammh3" : 517877946,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "hwclouds-dns.com"
         ],
         "geolocus" : {
            "asn" : "AS55990",
            "continent" : "AS",
            "continentname" : "Asia",
            "country" : "CN",
            "countryname" : "China",
            "domain" : [
               "cnnic.cn",
               "huawei.com",
               "hwclouds-dns.com"
            ],
            "isineu" : "false",
            "latitude" : "35.86166",
            "location" : "35.86166,104.195397",
            "longitude" : "104.195397",
            "netname" : "HWCSNET",
            "organization" : "Huawei Public Cloud Service (Huawei Software Technologies Ltd.Co)",
            "subnet" : "116.205.0.0/16"
         },
         "host" : [
            "ecs-116-205-75-127"
         ],
         "hostname" : [
            "ecs-116-205-75-127.compute.hwclouds-dns.com"
         ],
         "ip" : "116.205.75.127",
         "ipv6" : "false",
         "latitude" : "34.7732",
         "location" : "34.7732,113.7220",
         "longitude" : "113.7220",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Huawei Cloud Service data center",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 9990,
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Bad Request",
         "reverse" : [
            "ecs-116-205-75-127.compute.hwclouds-dns.com"
         ],
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 400,
         "subdomains" : [
            "compute.hwclouds-dns.com"
         ],
         "subnet" : "116.205.0.0/16",
         "tld" : [
            "com"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 76.190.95.174:9990 (tcp/http) - last seen on 2024-11-07 at 03:27:36 UTC

    • IP
      76.190.95.174
      Network
      76.190.0.0/16
      Domain(s)
      spectrum.com
      Device

      <enterprise field>: device.class

      Operating System
      Microsoft Windows
      URL

      http://76.190.95.174:9990/ 301

      HTTP Title
      Moved Permanently
      Reverse DNS
      syn-076-190-095-174.biz.spectrum.com
      ASN
      AS10796
      Organization
      TWC-10796-MIDWEST
      Protocol
      http
      Source
      datascan
    • Operating System
      Microsoft Windows
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      e539c04994c2cd8807e555472d40d7f0
      HTTP Header MD5
      2c561ce2561b7f6113f96cf56b362b57
      HTTP Body MD5
      6d74b20c6fa245a96aa940816c13f6ff
    • HTTP/1.1 301 Moved Permanently
      Access-Control-Allow-Origin: *
      Content-Length: 98
      Content-Type: text/html; charset=utf-8
      Date: Thu, 07 Nov 2024 03:27:37 GMT
      Location: https://<ip>:9990/
      
      <HTML><HEAD><TITLE>Moved Permanently</TITLE></HEAD><BODY><H1>301 Moved Permanently -- </H1></BODY>
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:27:36.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "6d74b20c6fa245a96aa940816c13f6ff",
               "bodymmh3" : -2097937471,
               "headermd5" : "2c561ce2561b7f6113f96cf56b362b57",
               "headermmh3" : 1350696082,
               "title" : "Moved Permanently"
            },
            "length" : 291
         },
         "asn" : "AS10796",
         "city" : "Jeffersonville",
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 301 Moved Permanently\r\nAccess-Control-Allow-Origin: *\r\nContent-Length: 98\r\nContent-Type: text/html; charset=utf-8\r\nDate: Thu, 07 Nov 2024 03:27:37 GMT\r\nLocation: https://<ip>:9990/\r\n\r\n<HTML><HEAD><TITLE>Moved Permanently</TITLE></HEAD><BODY><H1>301 Moved Permanently -- </H1></BODY>",
         "datamd5" : "e539c04994c2cd8807e555472d40d7f0",
         "datammh3" : -274522966,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "spectrum.com"
         ],
         "geolocus" : {
            "asn" : "AS10796",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "charter.com",
               "charter.net",
               "spectrum.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "RRACI",
            "organization" : "Charter Communications Inc",
            "subnet" : "76.190.0.0/16"
         },
         "host" : [
            "syn-076-190-095-174"
         ],
         "hostname" : [
            "syn-076-190-095-174.biz.spectrum.com"
         ],
         "ip" : "76.190.95.174",
         "ipv6" : "false",
         "latitude" : "38.3015",
         "location" : "38.3015,-85.7469",
         "longitude" : "-85.7469",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "TWC-10796-MIDWEST",
         "os" : "Windows",
         "osvendor" : "Microsoft",
         "port" : 9990,
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Moved Permanently",
         "reverse" : [
            "syn-076-190-095-174.biz.spectrum.com"
         ],
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 301,
         "subdomains" : [
            "biz.spectrum.com"
         ],
         "subnet" : "76.190.0.0/16",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 110.41.218.108:9990 (tcp/http) - last seen on 2024-11-07 at 03:27:36 UTC

    • IP
      110.41.218.108
      Network
      110.41.216.0/21
      Domain(s)
      hwclouds-dns.com
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://110.41.218.108:9990/ 400

      HTTP Title
      400 The plain HTTP request was sent to HTTPS port
      Reverse DNS
      ecs-110-41-218-108.compute.hwclouds-dns.com
      ASN
      AS55990
      Organization
      Huawei Cloud Service data center
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      1669a0dbf3548e4bc93f696ed05e5286
      HTTP Header MD5
      1bcf1dcb69e0b166facc4cad91962931
      HTTP Body MD5
      4ea630c72fb92754153fdeee2796514a
    • HTTP/1.1 400 Bad Request
      Server: CloudWAF
      Date: Thu, 07 Nov 2024 03:27:36 GMT
      Content-Type: text/html
      Content-Length: 251
      Connection: close
      
      <html>
      <head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
      <body>
      <center><h1>400 Bad Request</h1></center>
      <center>The plain HTTP request was sent to HTTPS port</center>
      <hr><center>CloudWAF</center>
      </body>
      </html>
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:27:36.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "4ea630c72fb92754153fdeee2796514a",
               "bodymmh3" : -1197436772,
               "headermd5" : "1bcf1dcb69e0b166facc4cad91962931",
               "headermmh3" : 1865282903,
               "title" : "400 The plain HTTP request was sent to HTTPS port"
            },
            "length" : 399
         },
         "asn" : "AS55990",
         "city" : "Guangzhou",
         "country" : "CN",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 400 Bad Request\r\nServer: CloudWAF\r\nDate: Thu, 07 Nov 2024 03:27:36 GMT\r\nContent-Type: text/html\r\nContent-Length: 251\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>CloudWAF</center>\r\n</body>\r\n</html>\r\n",
         "datamd5" : "1669a0dbf3548e4bc93f696ed05e5286",
         "datammh3" : 517877946,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "hwclouds-dns.com"
         ],
         "geolocus" : {
            "asn" : "AS55990",
            "continent" : "AS",
            "continentname" : "Asia",
            "country" : "CN",
            "countryname" : "China",
            "domain" : [
               "cnnic.cn",
               "huawei.com",
               "hwclouds-dns.com"
            ],
            "isineu" : "false",
            "latitude" : "35.86166",
            "location" : "35.86166,104.195397",
            "longitude" : "104.195397",
            "netname" : "HWCSNET",
            "organization" : "Huawei Public Cloud Service (Huawei Software Technologies Ltd.Co)",
            "subnet" : "110.41.216.0/21"
         },
         "host" : [
            "ecs-110-41-218-108"
         ],
         "hostname" : [
            "ecs-110-41-218-108.compute.hwclouds-dns.com"
         ],
         "ip" : "110.41.218.108",
         "ipv6" : "false",
         "latitude" : "23.1181",
         "location" : "23.1181,113.2539",
         "longitude" : "113.2539",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Huawei Cloud Service data center",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 9990,
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Bad Request",
         "reverse" : [
            "ecs-110-41-218-108.compute.hwclouds-dns.com"
         ],
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 400,
         "subdomains" : [
            "compute.hwclouds-dns.com"
         ],
         "subnet" : "110.41.216.0/21",
         "tld" : [
            "com"
         ],
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 101.126.25.20:9990 (tcp/http) - last seen on 2024-11-07 at 03:20:53 UTC

    • IP
      101.126.25.20
      Network
      101.126.0.0/18
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://101.126.25.20:9990/ 200

      ASN
      AS137718
      Organization
      Beijing Volcano Engine Technology Co., Ltd.
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      ce831127322ce99c4573249f83fe1a66
      HTTP Header MD5
      24924dbab1ba8ceca5a38d9f45d2129c
      HTTP Body MD5
      d990e82add2de74b39da3f40311f37c5
    • HTTP/1.1 200 OK
      Content-Type: application/json
      Vary: Origin
      Date: Thu, 07 Nov 2024 03:20:53 GMT
      Content-Length: 18
      Connection: close
      
      {"hello":"clash"}
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:20:53.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "d990e82add2de74b39da3f40311f37c5",
               "bodymmh3" : 1484912707,
               "headermd5" : "24924dbab1ba8ceca5a38d9f45d2129c",
               "headermmh3" : 1853936377
            },
            "length" : 159
         },
         "asn" : "AS137718",
         "country" : "CN",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nContent-Type: application/json\r\nVary: Origin\r\nDate: Thu, 07 Nov 2024 03:20:53 GMT\r\nContent-Length: 18\r\nConnection: close\r\n\r\n{\"hello\":\"clash\"}\n",
         "datamd5" : "ce831127322ce99c4573249f83fe1a66",
         "datammh3" : 1345543657,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "geolocus" : {
            "asn" : "AS137718",
            "continent" : "AS",
            "continentname" : "Asia",
            "country" : "CN",
            "countryname" : "China",
            "domain" : [
               "bytedance.com",
               "cnnic.cn"
            ],
            "isineu" : "false",
            "latitude" : "35.86166",
            "location" : "35.86166,104.195397",
            "longitude" : "104.195397",
            "netname" : "VOLCANO-ENGINE",
            "organization" : "China Internet Network Information Center",
            "subnet" : "101.126.0.0/18"
         },
         "ip" : "101.126.25.20",
         "ipv6" : "false",
         "latitude" : "34.7732",
         "location" : "34.7732,113.7220",
         "longitude" : "113.7220",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Beijing Volcano Engine Technology Co., Ltd.",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 9990,
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "OK",
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 200,
         "subnet" : "101.126.0.0/18",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 37.34.85.213:9990 (tcp/http) - last seen on 2024-11-07 at 03:20:51 UTC

    • IP
      37.34.85.213
      Network
      37.34.80.0/21
      Device

      <enterprise field>: device.class

      URL

      http://37.34.85.213:9990/ 407

      ASN
      AS996
      Organization
      JY-MOBILE-COMMUNICATIONS
      Protocol
      http
      Source
      datascan
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      beff904528226673ee6dbdb9e7fe6002
      HTTP Header MD5
      4bd5a82db187fbf06a2b7f25b880c717
      HTTP Body MD5
      917a0ae17b6e9db13c448d39f37c69ca
    • HTTP/1.1 407 Proxy Authentication Required
      Proxy-Authenticate: Basic realm=""
      
      Proxy Authentication Required
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:20:51.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "917a0ae17b6e9db13c448d39f37c69ca",
               "bodymmh3" : -1539650452,
               "headermd5" : "4bd5a82db187fbf06a2b7f25b880c717",
               "headermmh3" : 372433470
            },
            "length" : 111
         },
         "asn" : "AS996",
         "city" : "Dallas",
         "country" : "US",
         "data" : "HTTP/1.1 407 Proxy Authentication Required\r\nProxy-Authenticate: Basic realm=\"\"\r\n\r\nProxy Authentication Required",
         "datamd5" : "beff904528226673ee6dbdb9e7fe6002",
         "datammh3" : 501879459,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "ip" : "37.34.85.213",
         "ipv6" : "false",
         "latitude" : "32.7889",
         "location" : "32.7889,-96.8021",
         "longitude" : "-96.8021",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "JY-MOBILE-COMMUNICATIONS",
         "port" : 9990,
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Proxy Authentication Required",
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 407,
         "subnet" : "37.34.80.0/21",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 37.34.87.118:9990 (tcp/http) - last seen on 2024-11-07 at 03:20:50 UTC

    • IP
      37.34.87.118
      Network
      37.34.80.0/21
      Device

      <enterprise field>: device.class

      URL

      http://37.34.87.118:9990/ 407

      ASN
      AS996
      Organization
      JY-MOBILE-COMMUNICATIONS
      Protocol
      http
      Source
      datascan
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      beff904528226673ee6dbdb9e7fe6002
      HTTP Header MD5
      4bd5a82db187fbf06a2b7f25b880c717
      HTTP Body MD5
      917a0ae17b6e9db13c448d39f37c69ca
    • HTTP/1.1 407 Proxy Authentication Required
      Proxy-Authenticate: Basic realm=""
      
      Proxy Authentication Required
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:20:50.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "917a0ae17b6e9db13c448d39f37c69ca",
               "bodymmh3" : -1539650452,
               "headermd5" : "4bd5a82db187fbf06a2b7f25b880c717",
               "headermmh3" : 372433470
            },
            "length" : 111
         },
         "asn" : "AS996",
         "city" : "Dallas",
         "country" : "US",
         "data" : "HTTP/1.1 407 Proxy Authentication Required\r\nProxy-Authenticate: Basic realm=\"\"\r\n\r\nProxy Authentication Required",
         "datamd5" : "beff904528226673ee6dbdb9e7fe6002",
         "datammh3" : 501879459,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "ip" : "37.34.87.118",
         "ipv6" : "false",
         "latitude" : "32.7889",
         "location" : "32.7889,-96.8021",
         "longitude" : "-96.8021",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "JY-MOBILE-COMMUNICATIONS",
         "port" : 9990,
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Proxy Authentication Required",
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 407,
         "subnet" : "37.34.80.0/21",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 42.48.130.4:9990 (tcp/http) - last seen on 2024-11-07 at 03:20:50 UTC

    • IP
      42.48.130.4
      Network
      42.48.0.0/15
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://42.48.130.4:9990/ 200

      HTTP Title
      v2rayA
      ASN
      AS4837
      Organization
      CHINA UNICOM China169 Backbone
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      87ce33d98fdd3d0c05d45c16a9baf374
      HTTP Header MD5
      632f4b06edc51531ab6c727d7f7054ea
      HTTP Body MD5
      9eda9d1df286ebca76e988716e609e6a
    • HTTP/1.1 200 OK
      Cache-Control: public, must-revalidate
      Content-Type: text/html; charset=utf-8
      Etag: W/9eda9d1df286ebca76e988716e609e6a
      Date: Thu, 07 Nov 2024 03:20:49 GMT
      Content-Length: 925
      Connection: close
      
      <!doctype html><html lang="en"><head><meta charset="utf-8"><meta http-equiv="X-UA-Compatible" content="IE=edge"><meta name="viewport" content="width=device-width,initial-scale=1,maximum-scale=1,user-scalable=no"><link rel="icon" href="static/favicon.ico"><title>v2rayA</title><script defer="defer" type="module" src="static/js/chunk-vendors.8434d40a.js"></script><script defer="defer" type="module" src="static/js/app.3a6845c0.js"></script><link href="static/css/chunk-vendors.89743a08.css" rel="stylesheet"><link href="static/css/app.398fcc6e.css" rel="stylesheet"><script defer="defer" src="static/js/chunk-vendors-legacy.a5e70e2b.js" nomodule></script><script defer="defer" src="static/js/app-legacy.c2e0738d.js" nomodule></script></head><body><noscript><strong>We're sorry but v2rayA-GUI doesn't work properly without JavaScript enabled. Please enable it to continue.</strong></noscript><div id="app"></div></body></html>
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:20:50.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "9eda9d1df286ebca76e988716e609e6a",
               "bodymmh3" : 1616183916,
               "header" : [
                  {
                     "name" : "Etag",
                     "value" : "W/9eda9d1df286ebca76e988716e609e6a"
                  }
               ],
               "headermd5" : "632f4b06edc51531ab6c727d7f7054ea",
               "headermmh3" : 697628291,
               "title" : "v2rayA"
            },
            "length" : 1143
         },
         "asn" : "AS4837",
         "city" : "Guangzhou",
         "country" : "CN",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nCache-Control: public, must-revalidate\r\nContent-Type: text/html; charset=utf-8\r\nEtag: W/9eda9d1df286ebca76e988716e609e6a\r\nDate: Thu, 07 Nov 2024 03:20:49 GMT\r\nContent-Length: 925\r\nConnection: close\r\n\r\n<!doctype html><html lang=\"en\"><head><meta charset=\"utf-8\"><meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\"><meta name=\"viewport\" content=\"width=device-width,initial-scale=1,maximum-scale=1,user-scalable=no\"><link rel=\"icon\" href=\"static/favicon.ico\"><title>v2rayA</title><script defer=\"defer\" type=\"module\" src=\"static/js/chunk-vendors.8434d40a.js\"></script><script defer=\"defer\" type=\"module\" src=\"static/js/app.3a6845c0.js\"></script><link href=\"static/css/chunk-vendors.89743a08.css\" rel=\"stylesheet\"><link href=\"static/css/app.398fcc6e.css\" rel=\"stylesheet\"><script defer=\"defer\" src=\"static/js/chunk-vendors-legacy.a5e70e2b.js\" nomodule></script><script defer=\"defer\" src=\"static/js/app-legacy.c2e0738d.js\" nomodule></script></head><body><noscript><strong>We're sorry but v2rayA-GUI doesn't work properly without JavaScript enabled. Please enable it to continue.</strong></noscript><div id=\"app\"></div></body></html>",
         "datamd5" : "87ce33d98fdd3d0c05d45c16a9baf374",
         "datammh3" : -1112855545,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "geolocus" : {
            "asn" : "AS4837",
            "continent" : "AS",
            "continentname" : "Asia",
            "country" : "CN",
            "countryname" : "China",
            "domain" : [
               "chinaunicom.cn"
            ],
            "isineu" : "false",
            "latitude" : "35.86166",
            "location" : "35.86166,104.195397",
            "longitude" : "104.195397",
            "netname" : "UNICOM-HN",
            "organization" : "China Unicom Hunan Province Network",
            "subnet" : "42.48.0.0/15"
         },
         "ip" : "42.48.130.4",
         "ipv6" : "false",
         "latitude" : "23.1181",
         "location" : "23.1181,113.2539",
         "longitude" : "113.2539",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "CHINA UNICOM China169 Backbone",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 9990,
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "OK",
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 200,
         "subnet" : "42.48.0.0/15",
         "tag" : "<enterprise field>: tag",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 194.87.38.65:9990 (tcp/http) - last seen on 2024-11-07 at 03:20:50 UTC

    • IP
      194.87.38.65
      Network
      194.87.38.0/24
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://194.87.38.65:9990/ 407

      ASN
      AS212238
      Organization
      Datacamp Limited
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      beff904528226673ee6dbdb9e7fe6002
      HTTP Header MD5
      4bd5a82db187fbf06a2b7f25b880c717
      HTTP Body MD5
      917a0ae17b6e9db13c448d39f37c69ca
    • HTTP/1.1 407 Proxy Authentication Required
      Proxy-Authenticate: Basic realm=""
      
      Proxy Authentication Required
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:20:50.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "917a0ae17b6e9db13c448d39f37c69ca",
               "bodymmh3" : -1539650452,
               "headermd5" : "4bd5a82db187fbf06a2b7f25b880c717",
               "headermmh3" : 372433470
            },
            "length" : 111
         },
         "asn" : "AS212238",
         "city" : "Ashburn",
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 407 Proxy Authentication Required\r\nProxy-Authenticate: Basic realm=\"\"\r\n\r\nProxy Authentication Required",
         "datamd5" : "beff904528226673ee6dbdb9e7fe6002",
         "datammh3" : 501879459,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "geolocus" : {
            "asn" : "AS212238",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "interlir.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "US-Zike-Network",
            "organization" : "US-Zike-Network",
            "subnet" : "194.87.38.0/24"
         },
         "ip" : "194.87.38.65",
         "ipv6" : "false",
         "latitude" : "39.0395",
         "location" : "39.0395,-77.4917",
         "longitude" : "-77.4917",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Datacamp Limited",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 9990,
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Proxy Authentication Required",
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 407,
         "subnet" : "194.87.38.0/24",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }
      
  • 213.139.70.115:9990 (tcp/http) - last seen on 2024-11-07 at 03:20:30 UTC

    • IP
      213.139.70.115
      Network
      213.139.70.0/23
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      URL

      http://213.139.70.115:9990/ 407

      ASN
      AS61317
      Organization
      Hivelocity LLC
      Protocol
      http
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      beff904528226673ee6dbdb9e7fe6002
      HTTP Header MD5
      4bd5a82db187fbf06a2b7f25b880c717
      HTTP Body MD5
      917a0ae17b6e9db13c448d39f37c69ca
    • HTTP/1.1 407 Proxy Authentication Required
      Proxy-Authenticate: Basic realm=""
      
      Proxy Authentication Required
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-07T03:20:30.000Z",
         "app" : {
            "http" : {
               "bodymd5" : "917a0ae17b6e9db13c448d39f37c69ca",
               "bodymmh3" : -1539650452,
               "headermd5" : "4bd5a82db187fbf06a2b7f25b880c717",
               "headermmh3" : 372433470
            },
            "length" : 111
         },
         "asn" : "AS61317",
         "country" : "DE",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 407 Proxy Authentication Required\r\nProxy-Authenticate: Basic realm=\"\"\r\n\r\nProxy Authentication Required",
         "datamd5" : "beff904528226673ee6dbdb9e7fe6002",
         "datammh3" : 501879459,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "ip" : "213.139.70.115",
         "ipv6" : "false",
         "latitude" : "51.2993",
         "location" : "51.2993,9.4910",
         "longitude" : "9.4910",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Hivelocity LLC",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 9990,
         "protocol" : "http",
         "protocolversion" : "1.1",
         "reason" : "Proxy Authentication Required",
         "seen_date" : "2024-11-07",
         "source" : "datascan",
         "status" : 407,
         "subnet" : "213.139.70.0/23",
         "tls" : "false",
         "transport" : "tcp",
         "url" : "/"
      }