123.99.199.176

As of: Sep 10, 2024 3:25am UTC | Latest
{
  "ip": "123.99.199.176",
  "services": [
    {
      "_decoded": "banner_grab",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "\r\nloguser:",
      "banner_hashes": [
        "sha256:776fb632eb97f8fefd346787345b249b8338d91e6e04bf9e9d8bd1df805d993e"
      ],
      "banner_hex": "0d0a6c6f67757365723a",
      "discovery_method": "IPV4_WALK_FULL_PRIORITY_3",
      "extended_service_name": "UNKNOWN",
      "observed_at": "2024-09-10T03:22:00.489363353Z",
      "perspective_id": "PERSPECTIVE_NTT_2",
      "port": 1051,
      "service_name": "UNKNOWN",
      "source_ip": "199.45.155.93",
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "rdp",
      "_encoding": {
        "certificate": "DISPLAY_HEX"
      },
      "certificate": "38533783e2732a7906a83c2a91ab6aa2c7264c5d91965fb11eb0698cacd172df",
      "discovery_method": "PREDICTIVE_METHOD_12",
      "extended_service_name": "RDP",
      "jarm": {
        "_encoding": {
          "fingerprint": "DISPLAY_HEX",
          "cipher_and_version_fingerprint": "DISPLAY_HEX",
          "tls_extensions_sha256": "DISPLAY_HEX"
        },
        "fingerprint": "2ad2ad16d2ad2ad22c2ad2ad2ad2adfd9c9d14e4f4f67f94f0359f8b28f532",
        "cipher_and_version_fingerprint": "2ad2ad16d2ad2ad22c2ad2ad2ad2ad",
        "tls_extensions_sha256": "fd9c9d14e4f4f67f94f0359f8b28f532",
        "observed_at": "2024-08-23T03:32:24.336318266Z"
      },
      "labels": [
        "network-administration",
        "remote-access"
      ],
      "observed_at": "2024-09-10T03:25:29.451043973Z",
      "perspective_id": "PERSPECTIVE_TATA",
      "port": 3389,
      "rdp": {
        "version": {
          "raw": 524295,
          "major": 10,
          "minor": 2
        },
        "protocol_flags": {
          "extended_client_data_supported": true,
          "dynvc_graphics_pipeline": true,
          "neg_resp_reserved": true,
          "restricted_admin_mode": true,
          "restricted_auth_mode": true
        },
        "selected_security_protocol": {
          "standard_rdp": true,
          "tls": true,
          "raw_value": 1,
          "credssp": false,
          "rdstls": false,
          "credssp_early_auth": false,
          "error": false,
          "error_ssl_required": false,
          "error_ssl_forbidden": false,
          "error_ssl_cert_missing": false,
          "error_bad_flags": false,
          "error_hybrid_required": false,
          "error_ssl_user_auth_required": false,
          "error_unknown": false
        },
        "x224_cc_pdu_srcref": 13330,
        "connect_response": {
          "domain_parameters": {
            "max_channel_ids": 34,
            "max_user_id_channels": 3,
            "num_priorities": 1,
            "max_provider_height": 1,
            "max_mcspdu_size": 65528,
            "domain_protocol_version": 2,
            "max_token_ids": 0,
            "min_throughput": 0
          },
          "connect_id": 0
        },
        "certificate_info": {}
      },
      "service_name": "RDP",
      "source_ip": "167.94.138.122",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "38533783e2732a7906a83c2a91ab6aa2c7264c5d91965fb11eb0698cacd172df",
          "leaf_data": {
            "subject_dn": "CN=ser415742906225",
            "issuer_dn": "CN=ser415742906225",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "632c9f82b966b4096e9a350ac9a75fffd7a9033596eafd7b3d54a4725567f52c",
            "fingerprint": "38533783e2732a7906a83c2a91ab6aa2c7264c5d91965fb11eb0698cacd172df",
            "issuer": {
              "common_name": [
                "ser415742906225"
              ]
            },
            "subject": {
              "common_name": [
                "ser415742906225"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "pLy/xtIzAAcDt7RW2B7MRc3qWBOu+NnBtiNzZ5CcANWvYjBo1fU8JZlbPgxgr7X3O3o04NLW8Dug8yspZKlEkPA96e0+AOqkfdk4j3/r9u3cCkMdw/PdZJvRzzyXh9cBiM82hflNtSrP1bR60PBeE7yBZxnrFKCjVhczU2EoXBIqvAH2lh/f2U46h7s1EaLQxG6rOg9q6/+2lskezjyjmj9if+0M5YG9YOyAwA5h7vhEU64qmd8VBTQAy0LdY8103MVW/E0S+YrM0erx0MQNKE99Y6QDQpf2uOL+6cNvRJOBrTcTevTHkR8H1gA0KxtJg4xZNBgpIbmAcgcHMXvAQw==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "6edf2c32706dc9ff82e7d1b44116dc637281fb6aef1db062c3b7b958753b1c22"
            },
            "signature": {
              "self_signed": true,
              "signature_algorithm": "SHA256-RSA"
            }
          }
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 29
          }
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "364ff14b04ef93c3b4cfa429d729c0d9",
        "ja4s": "t120100_c030_bc98f8e001b5",
        "versions": [
          {
            "tls_version": "TLSv1_2",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "364ff14b04ef93c3b4cfa429d729c0d9",
            "ja4s": "t120100_c030_bc98f8e001b5"
          },
          {
            "tls_version": "TLSv1_1",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "1308be477c8afb355e2860ab89378ae5",
            "ja4s": "t110100_c014_bc98f8e001b5"
          },
          {
            "tls_version": "TLSv1_0",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "bcf3a836c82d12ee988005fb0c011445",
            "ja4s": "t100100_c014_bc98f8e001b5"
          }
        ]
      },
      "transport_fingerprint": {
        "raw": "16384,128,true,MNNSNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "banner_grab",
      "_encoding": {
        "banner": "DISPLAY_UTF8"
      },
      "banner": "",
      "banner_hashes": [
        "sha256:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855"
      ],
      "discovery_method": "IPV4_WALK_FULL_PRIORITY_1",
      "extended_service_name": "WINRM",
      "observed_at": "2024-09-09T19:30:51.737380833Z",
      "parsed": {
        "winrm": {
          "auth_types": [
            "Negotiate"
          ],
          "ntlm_info": {
            "encryption_56bit_supported": true,
            "encryption_128bit_supported": true,
            "ntlm1_supported": true,
            "ntlm2_supported": true,
            "always_sign_supported": true,
            "challenge_type": 3,
            "target_name": "S\u0000E\u0000R\u00004\u00001\u00005\u00007\u00004\u00002\u00009\u00000\u00006\u00002\u00002\u00005\u0000",
            "netbios_computer_name": "SER415742906225",
            "netbios_domain_name": "SER415742906225",
            "dns_server_name": "ser415742906225",
            "dns_domain_name": "ser415742906225",
            "dns_tree_name": "",
            "os_version": "10.0.14393",
            "ntlm_version": 15
          }
        }
      },
      "perspective_id": "PERSPECTIVE_NTT",
      "port": 5985,
      "service_name": "WINRM",
      "source_ip": "206.168.34.33",
      "transport_fingerprint": {
        "raw": "16384,128,true,MNNSNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 500 Internal Server Error\r\nContent-Type: text/html\r\nServer: Microsoft-IIS/10.0\r\nX-Powered-By: ASP.NET\r\nDate:  <REDACTED>\r\nContent-Length: 1141\r\n",
      "banner_hashes": [
        "sha256:79d73bea8b9bb86297478bc38141fd63d50532d45ad6afcdc9f9d0dfd37ea877"
      ],
      "banner_hex": "485454502f312e312035303020496e7465726e616c20536572766572204572726f720d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a5365727665723a204d6963726f736f66742d4949532f31302e300d0a582d506f77657265642d42793a204153502e4e45540d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d4c656e6774683a20313134310d0a",
      "discovery_method": "IPV4_WALK_FULL_PRIORITY_2",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://123.99.199.176:8686/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 500,
          "status_reason": "Internal Server Error",
          "headers": {
            "Date": [
              "<REDACTED>"
            ],
            "_encoding": {
              "Date": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "X_Powered_By": "DISPLAY_UTF8"
            },
            "Server": [
              "Microsoft-IIS/10.0"
            ],
            "Content_Length": [
              "1141"
            ],
            "Content_Type": [
              "text/html"
            ],
            "X_Powered_By": [
              "ASP.NET"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>500 - \u5185\u90e8\u670d\u52a1\u5668\u9519\u8bef\u3002</title>",
            "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=gb2312\"/>"
          ],
          "body_size": 1141,
          "body": "<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Strict//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd\">\r\n<html xmlns=\"http://www.w3.org/1999/xhtml\">\r\n<head>\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=gb2312\"/>\r\n<title>500 - \u5185\u90e8\u670d\u52a1\u5668\u9519\u8bef\u3002</title>\r\n<style type=\"text/css\">\r\n<!--\r\nbody{margin:0;font-size:.7em;font-family:Verdana, Arial, Helvetica, sans-serif;background:#EEEEEE;}\r\nfieldset{padding:0 15px 10px 15px;} \r\nh1{font-size:2.4em;margin:0;color:#FFF;}\r\nh2{font-size:1.7em;margin:0;color:#CC0000;} \r\nh3{font-size:1.2em;margin:10px 0 0 0;color:#000000;} \r\n#header{width:96%;margin:0 0 0 0;padding:6px 2% 6px 2%;font-family:\"trebuchet MS\", Verdana, sans-serif;color:#FFF;\r\nbackground-color:#555555;}\r\n#content{margin:0 0 0 2%;position:relative;}\r\n.content-container{background:#FFF;width:96%;margin-top:8px;padding:10px;position:relative;}\r\n-->\r\n</style>\r\n</head>\r\n<body>\r\n<div id=\"header\"><h1>\u670d\u52a1\u5668\u9519\u8bef</h1></div>\r\n<div id=\"content\">\r\n <div class=\"content-container\"><fieldset>\r\n  <h2>500 - \u5185\u90e8\u670d\u52a1\u5668\u9519\u8bef\u3002</h2>\r\n  <h3>\u60a8\u67e5\u627e\u7684\u8d44\u6e90\u5b58\u5728\u95ee\u9898\uff0c\u56e0\u800c\u65e0\u6cd5\u663e\u793a\u3002</h3>\r\n </fiel",
          "body_hashes": [
            "sha256:3c6ec98991bc50ad4d2aca4ac35fb3a84b7afcaff0dec58c50c6f0364b17e2aa",
            "sha1:697471e179257e353950851ffbe2847fd69852b0"
          ],
          "body_hash": "sha1:697471e179257e353950851ffbe2847fd69852b0",
          "html_title": "500 - \u5185\u90e8\u670d\u52a1\u5668\u9519\u8bef\u3002"
        },
        "supports_http2": false
      },
      "observed_at": "2024-09-10T00:34:01.226015833Z",
      "perspective_id": "PERSPECTIVE_NTT",
      "port": 8686,
      "service_name": "HTTP",
      "software": [
        {
          "part": "o",
          "vendor": "Microsoft",
          "other": {
            "family": "Windows"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:microsoft:internet_information_services:10.0:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Microsoft",
          "product": "IIS",
          "version": "10.0",
          "other": {
            "family": "IIS"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:microsoft:asp.net:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Microsoft",
          "product": "ASP.NET",
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "206.168.34.200",
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 500 Internal Server Error\r\nContent-Type: text/html\r\nServer: Microsoft-IIS/10.0\r\nX-Powered-By: ASP.NET\r\nDate:  <REDACTED>\r\nContent-Length: 1141\r\n",
      "banner_hashes": [
        "sha256:79d73bea8b9bb86297478bc38141fd63d50532d45ad6afcdc9f9d0dfd37ea877"
      ],
      "banner_hex": "485454502f312e312035303020496e7465726e616c20536572766572204572726f720d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a5365727665723a204d6963726f736f66742d4949532f31302e300d0a582d506f77657265642d42793a204153502e4e45540d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d4c656e6774683a20313134310d0a",
      "discovery_method": "IPV4_WALK_FULL_PRIORITY_3",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://123.99.199.176:8695/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 500,
          "status_reason": "Internal Server Error",
          "headers": {
            "Date": [
              "<REDACTED>"
            ],
            "_encoding": {
              "Date": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "X_Powered_By": "DISPLAY_UTF8"
            },
            "Server": [
              "Microsoft-IIS/10.0"
            ],
            "Content_Length": [
              "1141"
            ],
            "Content_Type": [
              "text/html"
            ],
            "X_Powered_By": [
              "ASP.NET"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>500 - \u5185\u90e8\u670d\u52a1\u5668\u9519\u8bef\u3002</title>",
            "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=gb2312\"/>"
          ],
          "body_size": 1141,
          "body": "<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Strict//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd\">\r\n<html xmlns=\"http://www.w3.org/1999/xhtml\">\r\n<head>\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=gb2312\"/>\r\n<title>500 - \u5185\u90e8\u670d\u52a1\u5668\u9519\u8bef\u3002</title>\r\n<style type=\"text/css\">\r\n<!--\r\nbody{margin:0;font-size:.7em;font-family:Verdana, Arial, Helvetica, sans-serif;background:#EEEEEE;}\r\nfieldset{padding:0 15px 10px 15px;} \r\nh1{font-size:2.4em;margin:0;color:#FFF;}\r\nh2{font-size:1.7em;margin:0;color:#CC0000;} \r\nh3{font-size:1.2em;margin:10px 0 0 0;color:#000000;} \r\n#header{width:96%;margin:0 0 0 0;padding:6px 2% 6px 2%;font-family:\"trebuchet MS\", Verdana, sans-serif;color:#FFF;\r\nbackground-color:#555555;}\r\n#content{margin:0 0 0 2%;position:relative;}\r\n.content-container{background:#FFF;width:96%;margin-top:8px;padding:10px;position:relative;}\r\n-->\r\n</style>\r\n</head>\r\n<body>\r\n<div id=\"header\"><h1>\u670d\u52a1\u5668\u9519\u8bef</h1></div>\r\n<div id=\"content\">\r\n <div class=\"content-container\"><fieldset>\r\n  <h2>500 - \u5185\u90e8\u670d\u52a1\u5668\u9519\u8bef\u3002</h2>\r\n  <h3>\u60a8\u67e5\u627e\u7684\u8d44\u6e90\u5b58\u5728\u95ee\u9898\uff0c\u56e0\u800c\u65e0\u6cd5\u663e\u793a\u3002</h3>\r\n </fiel",
          "body_hashes": [
            "sha256:3c6ec98991bc50ad4d2aca4ac35fb3a84b7afcaff0dec58c50c6f0364b17e2aa",
            "sha1:697471e179257e353950851ffbe2847fd69852b0"
          ],
          "body_hash": "sha1:697471e179257e353950851ffbe2847fd69852b0",
          "html_title": "500 - \u5185\u90e8\u670d\u52a1\u5668\u9519\u8bef\u3002"
        },
        "supports_http2": false
      },
      "observed_at": "2024-09-09T15:20:32.398159713Z",
      "perspective_id": "PERSPECTIVE_NTT",
      "port": 8695,
      "service_name": "HTTP",
      "software": [
        {
          "part": "o",
          "vendor": "Microsoft",
          "other": {
            "family": "Windows"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:microsoft:internet_information_services:10.0:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Microsoft",
          "product": "IIS",
          "version": "10.0",
          "other": {
            "family": "IIS"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:microsoft:asp.net:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Microsoft",
          "product": "ASP.NET",
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "206.168.34.48",
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 500 Internal Server Error\r\nContent-Type: text/html\r\nServer: Microsoft-IIS/10.0\r\nX-Powered-By: ASP.NET\r\nDate:  <REDACTED>\r\nContent-Length: 1141\r\n",
      "banner_hashes": [
        "sha256:79d73bea8b9bb86297478bc38141fd63d50532d45ad6afcdc9f9d0dfd37ea877"
      ],
      "banner_hex": "485454502f312e312035303020496e7465726e616c20536572766572204572726f720d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a5365727665723a204d6963726f736f66742d4949532f31302e300d0a582d506f77657265642d42793a204153502e4e45540d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d4c656e6774683a20313134310d0a",
      "discovery_method": "PREDICTIVE_METHOD_11",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://123.99.199.176:8699/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 500,
          "status_reason": "Internal Server Error",
          "headers": {
            "Date": [
              "<REDACTED>"
            ],
            "_encoding": {
              "Date": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "X_Powered_By": "DISPLAY_UTF8"
            },
            "Server": [
              "Microsoft-IIS/10.0"
            ],
            "Content_Length": [
              "1141"
            ],
            "Content_Type": [
              "text/html"
            ],
            "X_Powered_By": [
              "ASP.NET"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>500 - \u5185\u90e8\u670d\u52a1\u5668\u9519\u8bef\u3002</title>",
            "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=gb2312\"/>"
          ],
          "body_size": 1141,
          "body": "<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Strict//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd\">\r\n<html xmlns=\"http://www.w3.org/1999/xhtml\">\r\n<head>\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=gb2312\"/>\r\n<title>500 - \u5185\u90e8\u670d\u52a1\u5668\u9519\u8bef\u3002</title>\r\n<style type=\"text/css\">\r\n<!--\r\nbody{margin:0;font-size:.7em;font-family:Verdana, Arial, Helvetica, sans-serif;background:#EEEEEE;}\r\nfieldset{padding:0 15px 10px 15px;} \r\nh1{font-size:2.4em;margin:0;color:#FFF;}\r\nh2{font-size:1.7em;margin:0;color:#CC0000;} \r\nh3{font-size:1.2em;margin:10px 0 0 0;color:#000000;} \r\n#header{width:96%;margin:0 0 0 0;padding:6px 2% 6px 2%;font-family:\"trebuchet MS\", Verdana, sans-serif;color:#FFF;\r\nbackground-color:#555555;}\r\n#content{margin:0 0 0 2%;position:relative;}\r\n.content-container{background:#FFF;width:96%;margin-top:8px;padding:10px;position:relative;}\r\n-->\r\n</style>\r\n</head>\r\n<body>\r\n<div id=\"header\"><h1>\u670d\u52a1\u5668\u9519\u8bef</h1></div>\r\n<div id=\"content\">\r\n <div class=\"content-container\"><fieldset>\r\n  <h2>500 - \u5185\u90e8\u670d\u52a1\u5668\u9519\u8bef\u3002</h2>\r\n  <h3>\u60a8\u67e5\u627e\u7684\u8d44\u6e90\u5b58\u5728\u95ee\u9898\uff0c\u56e0\u800c\u65e0\u6cd5\u663e\u793a\u3002</h3>\r\n </fiel",
          "body_hashes": [
            "sha256:3c6ec98991bc50ad4d2aca4ac35fb3a84b7afcaff0dec58c50c6f0364b17e2aa",
            "sha1:697471e179257e353950851ffbe2847fd69852b0"
          ],
          "body_hash": "sha1:697471e179257e353950851ffbe2847fd69852b0",
          "html_title": "500 - \u5185\u90e8\u670d\u52a1\u5668\u9519\u8bef\u3002"
        },
        "supports_http2": false
      },
      "observed_at": "2024-09-10T00:06:19.940217628Z",
      "perspective_id": "PERSPECTIVE_TATA",
      "port": 8699,
      "service_name": "HTTP",
      "software": [
        {
          "part": "o",
          "vendor": "Microsoft",
          "other": {
            "family": "Windows"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:microsoft:internet_information_services:10.0:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Microsoft",
          "product": "IIS",
          "version": "10.0",
          "other": {
            "family": "IIS"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:microsoft:asp.net:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Microsoft",
          "product": "ASP.NET",
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.138.48",
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 404 Not Found\r\nContent-Type: text/html; charset=us-ascii\r\nServer: Microsoft-HTTPAPI/2.0\r\nDate:  <REDACTED>\r\nConnection: close\r\nContent-Length: 315\r\n",
      "banner_hashes": [
        "sha256:d7de42c1e8c09cf951e3ad6248fda3ab48a60ca3eac8b25effd4b3067df8f362"
      ],
      "banner_hex": "485454502f312e3120343034204e6f7420466f756e640d0a436f6e74656e742d547970653a20746578742f68746d6c3b20636861727365743d75732d61736369690d0a5365727665723a204d6963726f736f66742d485454504150492f322e300d0a446174653a20203c52454441435445443e0d0a436f6e6e656374696f6e3a20636c6f73650d0a436f6e74656e742d4c656e6774683a203331350d0a",
      "discovery_method": "IPV4_WALK_FULL_PRIORITY_1",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://123.99.199.176:47001/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 404,
          "status_reason": "Not Found",
          "headers": {
            "Date": [
              "<REDACTED>"
            ],
            "_encoding": {
              "Date": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8"
            },
            "Server": [
              "Microsoft-HTTPAPI/2.0"
            ],
            "Content_Length": [
              "315"
            ],
            "Content_Type": [
              "text/html; charset=us-ascii"
            ],
            "Connection": [
              "close"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<TITLE>Not Found</TITLE>",
            "<META HTTP-EQUIV=\"Content-Type\" Content=\"text/html; charset=us-ascii\">"
          ],
          "body_size": 315,
          "body": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01//EN\"\"http://www.w3.org/TR/html4/strict.dtd\">\r\n<HTML><HEAD><TITLE>Not Found</TITLE>\r\n<META HTTP-EQUIV=\"Content-Type\" Content=\"text/html; charset=us-ascii\"></HEAD>\r\n<BODY><h2>Not Found</h2>\r\n<hr><p>HTTP Error 404. The requested resource is not found.</p>\r\n</BODY></HTML>\r\n",
          "body_hashes": [
            "sha256:ce7127c38e30e92a021ed2bd09287713c6a923db9ffdb43f126e8965d777fbf0",
            "sha1:a66898b36c94c53766e66c1a7aaeb149447ec083"
          ],
          "body_hash": "sha1:a66898b36c94c53766e66c1a7aaeb149447ec083",
          "html_title": "Not Found"
        },
        "supports_http2": false
      },
      "observed_at": "2024-09-09T16:40:29.753609281Z",
      "perspective_id": "PERSPECTIVE_PCCW",
      "port": 47001,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
          "part": "o",
          "vendor": "Microsoft",
          "product": "Windows",
          "other": {
            "family": "Windows"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:microsoft:http_api:2.0:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Microsoft",
          "product": "HTTP API",
          "version": "2.0",
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "199.45.154.139",
      "transport_protocol": "TCP",
      "truncated": false
    }
  ],
  "location": {
    "continent": "Asia",
    "country": "China",
    "country_code": "CN",
    "city": "Shanghai",
    "postal_code": "200000",
    "timezone": "Asia/Shanghai",
    "province": "Shanghai",
    "coordinates": {
      "latitude": 31.22222,
      "longitude": 121.45806
    }
  },
  "location_updated_at": "2024-08-26T18:55:50.376847062Z",
  "autonomous_system": {
    "asn": 58461,
    "description": "CT-HANGZHOU-IDC No.288,Fu-chun Road",
    "bgp_prefix": "123.99.192.0/18",
    "name": "CT-HANGZHOU-IDC No.288,Fu-chun Road",
    "country_code": "CN"
  },
  "autonomous_system_updated_at": "2024-08-26T18:55:50.377246033Z",
  "whois": {
    "network": {
      "handle": "YTWL",
      "name": "Room 1405, Star building, No. 669 Jiefang Avenue,",
      "cidrs": [
        "123.99.192.0/18"
      ],
      "updated": "2021-10-29T00:00:00Z"
    }
  },
  "operating_system": {
    "uniform_resource_identifier": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
    "part": "o",
    "vendor": "Microsoft",
    "product": "Windows",
    "other": {
      "family": "Windows"
    }
  },
  "dns": {},
  "last_updated_at": "2024-09-10T03:25:36.272Z",
  "labels": [
    "network-administration",
    "remote-access"
  ]
}