{"ip":"104.251.225.2","total_events":2,"verdict":{"verdict":"probing","label":"Low-level probing","detail":null,"confidence":"low","network_type":null},"first_seen":"2026-05-30T15:15:36","last_seen":"2026-05-31T11:39:41","events_24h":0,"events_7d":2,"geo":{"country_code":"HK","country_name":"Hong Kong","region":"","city":"Hong Kong","asn":140042,"org":"Zhipinshang Hongkong Electron Communication Technology Limited"},"source_domain":null,"known_scanners":[],"scanner_tag":null,"cve_matches":[],"top_ports":[{"port":48188,"proto":"tcp","label":"","count":1},{"port":8088,"proto":"tcp","label":"Hadoop","count":1}],"fingerprints":{"ssh_hassh":[],"tls_ja4":[],"ja4h":["ge11nn0600_997975d30189"]},"fingerprint_peers":{"ge11nn0600_997975d30189":1},"user_agents":[],"timeline":[{"date":"2026-05-30","count":1},{"date":"2026-05-31","count":1}],"recent_events":[{"timestamp":"2026-05-31T11:39:41","port":8088,"proto":"tcp","app_proto":"","host":"<HONEYPOT>","headers":"{\"accept\":\"*/*\",\"cache-control\":\"max-age=259200\",\"connection\":\"keep-alive\",\"host\":\"<HONEYPOT>:8088\",\"via\":\"1.1 squid-proxy (squid/3.5.27)\",\"x-forwarded-for\":\"123.181.192.116\"}","body":"","sni":"","tls_cipher":"","tls_version":"","alpn":[],"url_path":"/system_stats","summary":"","method":"GET","user_agent":""},{"timestamp":"2026-05-30T15:15:36","port":48188,"proto":"tcp","app_proto":"","host":"<HONEYPOT>","headers":"{\"accept\":\"*/*\",\"cache-control\":\"max-age=259200\",\"connection\":\"keep-alive\",\"host\":\"<HONEYPOT>:48188\",\"via\":\"1.1 squid-proxy (squid/3.5.27)\",\"x-forwarded-for\":\"123.181.192.116\"}","body":"","sni":"","tls_cipher":"","tls_version":"","alpn":[],"url_path":"/system_stats","summary":"","method":"GET","user_agent":""}],"http_methods":[{"method":"GET","count":2}],"distinct_ports_total":2,"top_paths":[{"path":"/system_stats","count":2,"ports":2}],"distinct_paths_total":1,"top_snis":[],"top_hosts":[],"top_alpns":[],"header_profile":{"signature":["Accept","Cache-Control","Connection","Host","Via","X-Forwarded-For"],"representative":[{"name":"Accept","value":"*/*","notable":false},{"name":"Cache-Control","value":"max-age=259200","notable":false},{"name":"Connection","value":"keep-alive","notable":false},{"name":"Host","value":"<HONEYPOT>:8088","notable":false},{"name":"Via","value":"1.1 squid-proxy (squid/3.5.27)","notable":false},{"name":"X-Forwarded-For","value":"123.181.192.116","notable":true}],"distinct_sets":1,"events_with_headers":2},"tags":[],"data_as_of":"2026-06-04T17:42:47.862563+00:00"}