123.99.195.76

As of: Feb 29, 2024 8:17am UTC | Latest
{
  "ip": "123.99.195.76",
  "services": [
    {
      "_decoded": "rdp",
      "_encoding": {
        "certificate": "DISPLAY_HEX"
      },
      "certificate": "a3f38bb46c8ca1b9ad67c777601dd5b549c3638c2aa62950eedf748cb0bad6ec",
      "extended_service_name": "RDP",
      "jarm": {
        "_encoding": {
          "fingerprint": "DISPLAY_HEX",
          "cipher_and_version_fingerprint": "DISPLAY_HEX",
          "tls_extensions_sha256": "DISPLAY_HEX"
        },
        "fingerprint": "26d26d00026d26d22c26d26d26d26dd3b67dd3674d9af9dd91c1955a35d0e9",
        "cipher_and_version_fingerprint": "26d26d00026d26d22c26d26d26d26d",
        "tls_extensions_sha256": "d3b67dd3674d9af9dd91c1955a35d0e9",
        "observed_at": "2024-02-18T23:16:37.662479075Z"
      },
      "labels": [
        "network-administration",
        "remote-access"
      ],
      "observed_at": "2024-02-28T22:53:52.996302544Z",
      "perspective_id": "PERSPECTIVE_TATA",
      "port": 6530,
      "rdp": {
        "version": {
          "raw": 524292,
          "major": 5,
          "minor": 0
        },
        "protocol_flags": {
          "extended_client_data_supported": true,
          "restricted_admin_mode": true,
          "dynvc_graphics_pipeline": false,
          "neg_resp_reserved": false,
          "restricted_auth_mode": false
        },
        "selected_security_protocol": {
          "standard_rdp": true,
          "tls": true,
          "raw_value": 1,
          "credssp": false,
          "rdstls": false,
          "credssp_early_auth": false,
          "error": false,
          "error_ssl_required": false,
          "error_ssl_forbidden": false,
          "error_ssl_cert_missing": false,
          "error_bad_flags": false,
          "error_hybrid_required": false,
          "error_ssl_user_auth_required": false,
          "error_unknown": false
        },
        "x224_cc_pdu_srcref": 13330,
        "connect_response": {
          "domain_parameters": {
            "max_channel_ids": 34,
            "max_user_id_channels": 3,
            "num_priorities": 1,
            "max_provider_height": 1,
            "max_mcspdu_size": 65528,
            "domain_protocol_version": 2,
            "max_token_ids": 0,
            "min_throughput": 0
          },
          "connect_id": 0
        },
        "certificate_info": {}
      },
      "service_name": "RDP",
      "source_ip": "167.94.138.34",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "a3f38bb46c8ca1b9ad67c777601dd5b549c3638c2aa62950eedf748cb0bad6ec",
          "leaf_data": {
            "subject_dn": "CN=C20230725125641",
            "issuer_dn": "CN=C20230725125641",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "10209509f92a3a44d2575dfa46fda2936b2351a48226dde21556361b50724e3a",
            "fingerprint": "a3f38bb46c8ca1b9ad67c777601dd5b549c3638c2aa62950eedf748cb0bad6ec",
            "issuer": {
              "common_name": [
                "C20230725125641"
              ]
            },
            "subject": {
              "common_name": [
                "C20230725125641"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "l4HW0NegjcAggT9yzR+eKt2v8WqN9RXgCgFJTCn0yF3IgFEj+Q/u5RqNi3YuI4IPoBJxhgbLW93x8k7UaQqJ6O7stwY0fE6l6wIBbednlWJR4D2bRpyF9vB0Ggn1Bb23+5U3rdBUjb+p5igL7ShL5FSeYIh1DUxIbBHPGKha7ih3Oo/o1x9tP8qbs5Sc/GS6bcAPfJ2iBgVBXTUbvZ0vkGireZdgzUdNB/nwzkWFDMz+rJFbUqnSbUDJ+ejRjY0m7PrGzNJiYC3y9bIps3nLAY/Oc6XchrLYBIDVv60olWT2ICqaVX8+QU6hQhhILvlughgA/TJMTr26zy9Mz2DCaQ==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "fd6253330b5553f5e1f3afa7b5d5b166a4415687669b18af500aeaa34d64d38d"
            },
            "signature": {
              "self_signed": true,
              "signature_algorithm": "SHA1-RSA"
            }
          }
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 25
          }
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "8529fd8de0d7f73186ef5ea8b4531a76"
      },
      "transport_fingerprint": {
        "raw": "8192,255,false,MNWNNS,1000,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "banner_grab",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "EIIAXX?uX<O@U<LiOPh@K\\",
      "banner_hashes": [
        "sha256:dd9dc6dbdf8dc840a6d5fa2410e8008f97e360cf8a801a5ab870d8291fcd4f17"
      ],
      "banner_hex": "4549494158583f75583c4f40553c4c694f5068404b5c",
      "discovery_method": "IPV4_WALK_FULL_PRIORITY_1",
      "extended_service_name": "UNKNOWN",
      "observed_at": "2024-02-28T13:02:35.804678977Z",
      "perspective_id": "PERSPECTIVE_NTT",
      "port": 8000,
      "service_name": "UNKNOWN",
      "source_ip": "167.248.133.122",
      "transport_fingerprint": {
        "raw": "8192,255,false,MNWNNS,1000,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "banner_grab",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "123.99.195.76|9008",
      "banner_hashes": [
        "sha256:6046816c63003ca04c18b9e6a4019b866f9f23a202cd765c10be93b407173813"
      ],
      "banner_hex": "3132332e39392e3139352e37367c39303038",
      "discovery_method": "IPV4_WALK_FULL_PRIORITY_1",
      "extended_service_name": "UNKNOWN",
      "observed_at": "2024-02-29T08:17:19.713636918Z",
      "perspective_id": "PERSPECTIVE_ORANGE",
      "port": 9000,
      "service_name": "UNKNOWN",
      "source_ip": "167.94.145.54",
      "transport_fingerprint": {
        "raw": "8192,255,false,MNWNNS,1000,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 200 OK\r\nContent-Type: text/html\r\nLast-Modified: Tue, 12 Sep 2023 07:56:46 GMT\r\nAccept-Ranges: bytes\r\nETag: \"dec765ad4ee5d91:0\"\r\nServer: Microsoft-IIS/7.5\r\nDate:  <REDACTED>\r\nContent-Length: 8119\r\n",
      "banner_hashes": [
        "sha256:b3502c47406115a53ee724ad8b059e37d1f19c80cb5a91bf28dc25e46a811005"
      ],
      "banner_hex": "485454502f312e3120323030204f4b0d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a4c6173742d4d6f6469666965643a205475652c2031322053657020323032332030373a35363a343620474d540d0a4163636570742d52616e6765733a2062797465730d0a455461673a20226465633736356164346565356439313a30220d0a5365727665723a204d6963726f736f66742d4949532f372e350d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d4c656e6774683a20383131390d0a",
      "discovery_method": "IPV4_WALK_FULL_PRIORITY_3",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://123.99.195.76:18789/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 200,
          "status_reason": "OK",
          "headers": {
            "Accept_Ranges": [
              "bytes"
            ],
            "_encoding": {
              "Accept_Ranges": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Last_Modified": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "ETag": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8"
            },
            "Content_Type": [
              "text/html"
            ],
            "Last_Modified": [
              "Tue, 12 Sep 2023 07:56:46 GMT"
            ],
            "Content_Length": [
              "8119"
            ],
            "Date": [
              "<REDACTED>"
            ],
            "ETag": [
              "\"dec765ad4ee5d91:0\""
            ],
            "Server": [
              "Microsoft-IIS/7.5"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>1.80\u5929\u9b54\u661f\u738b\u5408\u51fb</title>",
            "<meta charset=\"UTF-8\">",
            "<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">",
            "<meta name=\"viewport\" content=\"width=device-width, initial-scale=1.0\">"
          ],
          "body_size": 8119,
          "body": "\ufeff<!DOCTYPE html>\r\n<html lang=\"en\">\r\n\r\n<head>\r\n    <meta charset=\"UTF-8\">\r\n    <meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\r\n    <meta name=\"viewport\" content=\"width=device-width, initial-scale=1.0\">\r\n    <title>1.80\u5929\u9b54\u661f\u738b\u5408\u51fb</title>\r\n    <link rel=\"stylesheet\" href=\"css.css\" />\r\n</head>\r\n<script>\r\n</script>\r\n<script src=\"https://code.jquery.com/jquery-3.6.3.min.js\"></script>\r\n<script>\r\n    $(() => {\r\n\r\n\r\n        var img04 = 0;\r\n        var len = $('.area_04_list img').length\r\n        $('.area_04_list .sp1').click(function () {\r\n            img04++\r\n            if (img04 >= len) {\r\n                img04 = 0\r\n            }\r\n            $('.area_04_list img').hide().eq(img04).show()\r\n        })\r\n        $('.area_04_list .sp2').click(function () {\r\n\r\n            if (img04 <= 0) {\r\n                img04 = len - 1\r\n            } else {\r\n                img04--\r\n            }\r\n\r\n            $('.area_04_list img').hide().eq(img04).show()\r\n        })\r\n\r\n        var img03 = 0;\r\n        var len03 = $('.img-box-list img').length\r\n        $(\".show-box .sp1\").click(function () {\r\n            img03++\r\n            if (img03 >= len03) {\r\n                img03 = 0\r\n            }\r\n            $(\".img-box-list\").css({ \"transform\": \"translate(\" + -402 * img03 + \"px, 0px)\" })\r\n        })\r\n        $(\".show-box .sp2\").click(function () {\r\n            img03--\r\n            if (img03 <= 0) {\r\n                img03 = 0\r\n            } else {\r\n                img03--\r\n            }\r\n            $(\".img-box-list\").css({ \"transform\": \"translate(\" + -402 * img03 + \"px, 0px)\" })\r\n        })\r\n\r\n        $(window).scroll(function () {\r\n\r\n            if ($(document).scrollTop() <= 0) {\r\n                $(\".nav i img\").css(\"width\", \"100%\")\r\n                $(\".nav_box\").css(\"background\", \"rgba(0, 0, 0, .5)\")\r\n\r\n\r\n            }\r\n            if ($(document).scrollTop() >= 150) {\r\n                $(\".nav i img\").css(\"width\", \"50%\")\r\n                $(\".nav_box\").css(\"background\", \"rgba(0, 0, 0, .8)\")\r\n\r\n            }\r\n            /*if ($(document).scrollTop() >= $(document).height() - $(window).height()) {\r\n                alert(\"\u6eda\u52a8\u6761\u5df2\u7ecf\u5230\u8fbe\u5e95\u90e8\u4e3a\" + $(document).scrollTop());\r\n\r\n            }*/\r\n\r\n        });\r\n\r\n    })\r\n</script>\r\n\r\n<body>\r\n\r\n    <div class=\"heard\">\r\n        <!-- <div class=\"nav-logo\">\r\n            <div class=\"logo-box\">\r\n                <img src=\"img/logo1.png\" />\r\n                <img src=\"img/logo2.png\" />\r\n            </div>\r\n\r\n        </div> -->\r\n        <div class=\"nav_box\">\r\n            <div class=\"nav\">\r\n                <a href=\"#\" target=\"_blank\">\r\n                    <b>\u5b98\u7f51\u9996\u9875</b>\r\n                    <span>HOME</span>\r\n                </a>\r\n                <a href=\"http://123.99.195.76:18789/A1.80\u222e\u5929\u3003\u9b54\u226e\u5408\u51fb\u226f.rar\" target=\"_blank\">\r\n                    <b>\u767b\u5f55\u5668\u4e0b\u8f7d</b>\r\n                    <span>LOGIN</span>\r\n                </a>\r\n                <a href=\"https://share.weiyun.com/3KbrXDAH\" target=\"_blank\">\r\n                    <b>\u7f51\u76d8\u4e0b\u8f7d</b>\r\n                    <span>NET DISK</span>\r\n                </a>\r\n                <i><img src=\"img/01.png\" /></i>\r\n                <a href=\"https://wws.lanzouj.com/180tmhj\" target=\"_blank\">\r\n                    <b>\u5fae\u7aef\u4e0b\u8f7d</b>\r\n                    <span>DATA</span>\r\n                </a>\r\n                <a href=\"http://123.99.195.76:18789/A1.80\u222e\u5929\u3003\u9b54\u226e\u5408\u51fb\u226f.rar\" target=\"_blank\">\r\n                    <b>\u8865\u4e01\u4e0b\u8f7d</b>\r\n                    <span>PATCH</span>\r\n                </a>\r\n                <a href=\"wx.html\" target=\"_blank\">\r\n                    <b>\u6e38\u620f\u5ba2\u670d</b>\r\n                    <span>SERVICE</span>\r\n                </a>\r\n            </div>\r\n        </div>\r\n\r\n    </div>\r\n    <div class=\"content\">\r\n        <div class=\"area_01\">\r\n            <video autoplay=\"\" loop=\"\" preload=\"auto\" muted=\"\" id=\"top-video\">\r\n                <source src=\"img/mp4.mp4\" type=\"video/mp4\">\r\n            </video>\r\n            <div class=\"area_01_but\">\r\n                <a href=\"http://123.99.195.76:18789/A1.80\u222e\u5929\u3003\u9b54\u226e\u5408\u51fb\u226f.rar\" target=\"_blank\">\r\n                </a>\r\n                <a href=\"cz.html\" target=\"_blank\">\r\n\r\n                </a>\r\n                <a href=\"http://123.99.195.76:18789/A1.80\u222e\u5929\u3003\u9b54\u226e\u5408\u51fb\u226f.rar\" target=\"_blank\">\r\n                </a>\r\n            </div>\r\n        </div>\r\n        <div class=\"area_02\">\r\n            <h1 class=\"title_img\"><img src=\"./img/05.png\" /></h1>\r\n            <div class=\"area\">\r\n                <div class=\"area_02_01_text\">\r\n                    <p>\u3010\u7248\u672c\u7c7b\u578b\u3011:\u5929\u9b54\u5408\u51fb_1.80\u661f\u738b\u5408\u51fb+1\u7248,\u7edd\u65e0\u4efb\u4f55\u9690\u85cf\u6d88\u8d39\r\n                    <p>\u3010\u5143\u5b9d\u6bd4\u4f8b\u3011:1:500\u6d4b\u8bd5\u51b2\u503c\u989d\u5916\u8d60\u900110%\uff0c\u91d1\u521a\u77f3\u5168\u9760\u6253</p>\r\n                    <p>\u3010\u88c5\u5907\u5c42\u6b21\u3011:\u7956\u739b-\u8d64\u6708-\u96f7\u9706-\u5f3a\u5316-\u6218\u795e-\u661f\u738b-\u5929\u9b54\u7cfb\u5217</p>\r\n                    <p>\u3010\u7279\u8272\u8bf4\u660e\u3011:\u6240\u6709\u88c5\u5907\u9760\u6253\u3001\u7b49\u7ea7\u9760\u624b\u52a8\u5347\u7ea7\u3001\u5143\u5b9d\u88c5\u5907\u4fdd\u503c\u3001\u6563\u4eba\u5fc5\u9009\uff01</p>\r\n                    <p>\u3010\u6e38\u620f\u7b80\u4ecb\u3011:\u6bcf\u5929\u56db\u4e2a\u65b0\u533a\u51c6\u65f6\u5f00\u653e,\u767e\u4e07\u7ea7\u5e7f\u544a\u91cd\u91d1\u5ba3\u4f20,\u4eba\u6c14\u706b\u7206\uff01</p>\r\n                    <p>\u3010\u6e38\u620f\u7279\u8272\u3011:\u6563\u4eba\u4e00\u5305\u70df\u6fc0\u60c5\u4e00\u5e74</p>\r\n                    <p>\u3010\u7248\u672c\u4ecb\u7ecd\u3011:\u672c\u670d\u672c\u7740\u516c\u5e73\u516c\u6b63\u826f\u5fc3\u65e0\u5751\u51fa\u53d1\u70b9\uff0c\u7206\u7387\u548c\u5145\u503c\u65e0\u5173\uff0c\u5b8c\u5168\u770b\u8138</p>\r\n                    <p>\u3010\u5f00\u533a\u4ecb\u7ecd\u3011:\u6bcf\u5929\u5f004\u4e2a\u65b0\u533a\u7b2c\u4e09\u592916\u70b9\u5408\u533a</p>\r\n                    <p>\u3010\u5c01\u6302\u6a21\u5f0f\u3011:\u7981\u6b62\u4f7f\u7528\u5916\u6302\u8f85\u52a9\uff0c\u67e5\u5230\u76f4\u5220\u6570\u636e\uff0b\u6240\u6709\u533a\u670d3\u5c01\uff0c\u4e0d\u89e3\u91ca</p>\r\n                </div>\r\n            </div>\r\n        </div>\r\n        <div class=\"area_03\">\r\n            <h1 class=\"title_img\"><img src=\"./img/08.png\" /></h1>\r\n            <div class=\"show-box\">\r\n                <span class=\"sp1\"></span>\r\n                <div class=\"img-box\">\r\n                    <div class=\"img-box-list\">\r\n                        <img src=\"./img/13.gif\" alt=\"\">\r\n                        <img src=\"./img/14.gif\" alt=\"\">\r\n                        <img src=\"./img/15.gif\" alt=\"\">\r\n\r\n                    </div>\r\n                </div>\r\n                <span class=\"sp2\"></span>\r\n            </div>\r\n        </div>\r\n        <div class=\"area_04\">\r\n            <h1 class=\"title_img\"><img src=\"./img/10.png\" /></h1>\r\n            <div class=\"area_04_list\">\r\n                <span class=\"sp1\"></span>\r\n                <div class=\"area_04_img\">\r\n                    <img src=\"./img/12.png\" alt=\"\">\r\n                    <img src=\"./img/12.png\" alt=\"\">\r\n                    <img src=\"./img/12.png\" alt=\"\">\r\n                </div>\r\n                <span class=\"sp2\"></span>\r\n            </div>\r\n        </div>\r\n\r\n    </div>\r\n    <div class=\"footer\">\r\n        <div class=\"footer_nav\">\r\n            <p>\r\n\r\n                <a href=\"\" target=\"_blank\">\u5173\u4e8e\u6211\u4eec</a> |\r\n                <a href=\"\" target=\"_blank\">\u670d\u52a1\u6761\u6b3e</a> |\r\n                <a href=\"\" target=\"_blank\">\u5e7f\u544a\u670d\u52a1</a> |\r\n                <a href=\"\" target=\"_blank\">\u4eba\u4e8b\u62db\u8058</a> |\r\n                <a href=\"\" target=\"_blank\">\u6e38\u620f\u5ba2\u670d</a> |\r\n                <a href=\"\" target=\"_blank\">\u5546\u52a1\u5408\u4f5c</a> |\r\n                <a href=\"\" target=\"_blank\">\u6b63\u7248\u7533\u660e</a> |\r\n                <a href=\"\" target=\"_blank\">\u7ef4\u6743\u4e3e\u62a5</a>\r\n\r\n            </p>\r\n            <p>COPYRIGHT 2013-2023 ERA . ALL RIGHTS RESERVED. \u7248\u6743\u6240\u6709</p>\r\n        </div>\r\n    </div>\r\n<script>var sdata='https://gmstatistics.2geepay.com/s?u=1001&g=7C38F4638A0B4404&c='+escape(document.referrer);document.write(unescape(\"%3Cscript src='\"+sdata+\"' type='text/javascript' %3E%3C/script%3E\"));</script>\r\n</body>\r\n\r\n</html>\r\n\r\n<script>\r\n    if (!is_pc()) window.location.href = \"/mini/index.html\";\r\n    function is_pc() {\r\n        var flag = true;\r\n        var userAgentInfo = navigator.userAgent;\r\n        var Agents = [\"Android\", \"iPhone\",\r\n            \"SymbianOS\", \"Windows Phone\",\r\n            \"iPad\", \"iPod\"];\r\n        for (var v = 0; v < Agents.length; v++) {\r\n            if (userAgentInfo.indexOf(Agents[v]) > 0) {\r\n                flag = false;\r\n                break;\r\n            }\r\n        }\r\n        return flag;\r\n    }\r\n</script>",
          "body_hashes": [
            "sha256:5c6efc6fdd1fd2c24f2f5e75d188633dd3d59acb63034ece1845e9c0d09a88ce",
            "sha1:f64ee35fb7919b59b1fe069fc4e4b7bccab41b82"
          ],
          "body_hash": "sha1:f64ee35fb7919b59b1fe069fc4e4b7bccab41b82",
          "html_title": "1.80\u5929\u9b54\u661f\u738b\u5408\u51fb"
        },
        "supports_http2": false
      },
      "observed_at": "2024-02-28T23:55:30.215143655Z",
      "perspective_id": "PERSPECTIVE_NTT",
      "port": 18789,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:microsoft:windows_server_2008:*:*:*:*:*:*:*:*",
          "part": "o",
          "vendor": "Microsoft",
          "product": "Windows Server 2008 R2",
          "other": {
            "family": "Windows"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:microsoft:internet_information_services:7.5:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Microsoft",
          "product": "IIS",
          "version": "7.5",
          "other": {
            "family": "IIS"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.248.133.125",
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "banner_grab",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "123.99.195.76|37017",
      "banner_hashes": [
        "sha256:c9d892ac2d01a011a06a89eb65898d60144955d4d6c5ee485fba833d91ed63b2"
      ],
      "banner_hex": "3132332e39392e3139352e37367c3337303137",
      "discovery_method": "IPV4_WALK_FULL_PRIORITY_3",
      "extended_service_name": "UNKNOWN",
      "observed_at": "2024-02-28T22:05:22.706175373Z",
      "perspective_id": "PERSPECTIVE_HE",
      "port": 37015,
      "service_name": "UNKNOWN",
      "source_ip": "162.142.125.216",
      "transport_fingerprint": {
        "raw": "8192,255,true,NWST,0,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 404 Not Found\r\nContent-Type: text/html; charset=us-ascii\r\nServer: Microsoft-HTTPAPI/2.0\r\nDate:  <REDACTED>\r\nConnection: close\r\nContent-Length: 315\r\n",
      "banner_hashes": [
        "sha256:d7de42c1e8c09cf951e3ad6248fda3ab48a60ca3eac8b25effd4b3067df8f362"
      ],
      "banner_hex": "485454502f312e3120343034204e6f7420466f756e640d0a436f6e74656e742d547970653a20746578742f68746d6c3b20636861727365743d75732d61736369690d0a5365727665723a204d6963726f736f66742d485454504150492f322e300d0a446174653a20203c52454441435445443e0d0a436f6e6e656374696f6e3a20636c6f73650d0a436f6e74656e742d4c656e6774683a203331350d0a",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://123.99.195.76:47001/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 404,
          "status_reason": "Not Found",
          "headers": {
            "Date": [
              "<REDACTED>"
            ],
            "_encoding": {
              "Date": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8"
            },
            "Content_Type": [
              "text/html; charset=us-ascii"
            ],
            "Connection": [
              "close"
            ],
            "Content_Length": [
              "315"
            ],
            "Server": [
              "Microsoft-HTTPAPI/2.0"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<TITLE>Not Found</TITLE>",
            "<META HTTP-EQUIV=\"Content-Type\" Content=\"text/html; charset=us-ascii\">"
          ],
          "body_size": 315,
          "body": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01//EN\"\"http://www.w3.org/TR/html4/strict.dtd\">\r\n<HTML><HEAD><TITLE>Not Found</TITLE>\r\n<META HTTP-EQUIV=\"Content-Type\" Content=\"text/html; charset=us-ascii\"></HEAD>\r\n<BODY><h2>Not Found</h2>\r\n<hr><p>HTTP Error 404. The requested resource is not found.</p>\r\n</BODY></HTML>\r\n",
          "body_hashes": [
            "sha256:ce7127c38e30e92a021ed2bd09287713c6a923db9ffdb43f126e8965d777fbf0",
            "sha1:a66898b36c94c53766e66c1a7aaeb149447ec083"
          ],
          "body_hash": "sha1:a66898b36c94c53766e66c1a7aaeb149447ec083",
          "html_title": "Not Found"
        },
        "supports_http2": false
      },
      "observed_at": "2024-02-29T03:06:12.182086103Z",
      "perspective_id": "PERSPECTIVE_NTT",
      "port": 47001,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
          "part": "o",
          "vendor": "Microsoft",
          "product": "Windows",
          "other": {
            "family": "Windows"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:microsoft:http_api:2.0:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Microsoft",
          "product": "HTTP API",
          "version": "2.0",
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.248.133.35",
      "transport_protocol": "TCP",
      "truncated": false
    }
  ],
  "location": {
    "continent": "Asia",
    "country": "China",
    "country_code": "CN",
    "city": "Jiefang",
    "timezone": "Asia/Shanghai",
    "province": "Zhejiang",
    "coordinates": {
      "latitude": 30.77817,
      "longitude": 120.76328
    }
  },
  "location_updated_at": "2024-02-19T22:52:34.001687407Z",
  "autonomous_system": {
    "asn": 58461,
    "description": "CT-HANGZHOU-IDC No.288,Fu-chun Road",
    "bgp_prefix": "123.99.192.0/18",
    "name": "CT-HANGZHOU-IDC No.288,Fu-chun Road",
    "country_code": "CN"
  },
  "autonomous_system_updated_at": "2024-02-16T06:31:10.837749089Z",
  "whois": {
    "network": {
      "handle": "YTWL",
      "name": "Room 1405, Star building, No. 669 Jiefang Avenue,"
    }
  },
  "operating_system": {
    "uniform_resource_identifier": "cpe:2.3:o:microsoft:windows_server_2008:*:*:*:*:*:*:*:*",
    "part": "o",
    "vendor": "Microsoft",
    "product": "Windows Server 2008 R2",
    "other": {
      "family": "Windows"
    }
  },
  "dns": {
    "names": [
      "www.971cq.com",
      "5aicq.com",
      "ys.5aicq.com",
      "dnf.5aicq.com",
      "971cq.com",
      "www.5aicq.com",
      "qh1.5aicq.com",
      "jd.5aicq.com",
      "fg.5aicq.com",
      "www.zhaogee.com",
      "jb.5aicq.com",
      "zhaogee.com",
      "gee.5aicq.com",
      "978cq.com",
      "jd1.5aicq.com",
      "www.978cq.com",
      "ah.5aicq.com",
      "tj.5aicq.com",
      "wwwjd.5aicq.com",
      "ff.5aicq.com"
    ],
    "records": {
      "jb.5aicq.com": {
        "record_type": "A",
        "resolved_at": "2024-02-24T13:14:34.402837115Z"
      },
      "fg.5aicq.com": {
        "record_type": "A",
        "resolved_at": "2024-02-24T13:14:33.779185888Z"
      },
      "www.971cq.com": {
        "record_type": "A",
        "resolved_at": "2024-02-08T13:21:54.560536834Z"
      },
      "ff.5aicq.com": {
        "record_type": "A",
        "resolved_at": "2024-02-17T13:25:08.845670394Z"
      },
      "ys.5aicq.com": {
        "record_type": "A",
        "resolved_at": "2024-02-14T13:13:18.467489367Z"
      },
      "jd.5aicq.com": {
        "record_type": "A",
        "resolved_at": "2024-02-26T13:31:58.884474342Z"
      },
      "wwwjd.5aicq.com": {
        "record_type": "A",
        "resolved_at": "2024-02-23T13:23:37.747248649Z"
      },
      "dnf.5aicq.com": {
        "record_type": "A",
        "resolved_at": "2024-02-22T13:17:18.383522548Z"
      },
      "5aicq.com": {
        "record_type": "A",
        "resolved_at": "2024-02-23T13:23:36.947627007Z"
      },
      "978cq.com": {
        "record_type": "A",
        "resolved_at": "2024-02-24T13:15:18.519913814Z"
      },
      "zhaogee.com": {
        "record_type": "A",
        "resolved_at": "2022-10-07T14:15:29.431683313Z"
      },
      "jd1.5aicq.com": {
        "record_type": "A",
        "resolved_at": "2024-02-15T13:20:46.131634026Z"
      },
      "ah.5aicq.com": {
        "record_type": "A",
        "resolved_at": "2024-02-16T13:21:15.111932840Z"
      },
      "gee.5aicq.com": {
        "record_type": "A",
        "resolved_at": "2024-02-19T13:14:42.810973799Z"
      },
      "www.978cq.com": {
        "record_type": "A",
        "resolved_at": "2024-02-06T13:18:02.354382602Z"
      },
      "qh1.5aicq.com": {
        "record_type": "A",
        "resolved_at": "2024-02-25T13:20:26.623924112Z"
      },
      "www.5aicq.com": {
        "record_type": "A",
        "resolved_at": "2024-02-18T13:32:45.947198359Z"
      },
      "www.zhaogee.com": {
        "record_type": "A",
        "resolved_at": "2022-09-24T15:15:41.343583313Z"
      },
      "tj.5aicq.com": {
        "record_type": "A",
        "resolved_at": "2024-02-27T13:15:12.263742688Z"
      },
      "971cq.com": {
        "record_type": "A",
        "resolved_at": "2024-02-20T13:32:03.129017788Z"
      }
    }
  },
  "last_updated_at": "2024-02-29T08:17:33.476Z",
  "labels": [
    "network-administration",
    "remote-access"
  ]
}