143.92.38.46

As of: Feb 22, 2024 8:56am UTC | Latest
{
  "ip": "143.92.38.46",
  "services": [
    {
      "_decoded": "ftp",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------\r\n220-You are user number 1 of 50 allowed.\r\n220-Local time is now 00:54. Server port: 21.\r\n220-This is a private system - No anonymous login\r\n220-IPv6 connections are also welcome on this server.\r\n220 You will be disconnected after 15 minutes of inactivity.\r\n",
      "banner_hashes": [
        "sha256:9e7b7c7ee848931042a57f3ccdaff4e195d87a9a43c0b07e04dbd41ce984f2ab"
      ],
      "banner_hex": "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",
      "certificate": "35cdb4e87f5482ca8c346fe7a15e80f8bbbbb1f5e075147a0092cc946022a448",
      "extended_service_name": "FTPes",
      "ftp": {
        "_encoding": {
          "banner": "DISPLAY_UTF8",
          "auth_tls_response": "DISPLAY_UTF8"
        },
        "banner": "220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------\r\n220-You are user number 1 of 50 allowed.\r\n220-Local time is now 00:54. Server port: 21.\r\n220-This is a private system - No anonymous login\r\n220-IPv6 connections are also welcome on this server.\r\n220 You will be disconnected after 15 minutes of inactivity.\r\n",
        "auth_tls_response": "234 AUTH TLS OK.\r\n",
        "status_code": 220,
        "status_meaning": "Service ready for new user.",
        "implicit_tls": false
      },
      "labels": [
        "file-sharing"
      ],
      "observed_at": "2024-02-21T16:54:36.777320967Z",
      "perspective_id": "PERSPECTIVE_ORANGE",
      "port": 21,
      "service_name": "FTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "product": "linux",
          "source": "OSI_TRANSPORT_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:pureftpd:pure\\-ftpd:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "PureFTPd",
          "product": "Pure-FTPd",
          "other": {
            "family": "Pure-FTPd"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "product": "pureftpd",
          "other": {
            "config": "[privsep] [TLS"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.145.59",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "35cdb4e87f5482ca8c346fe7a15e80f8bbbbb1f5e075147a0092cc946022a448",
          "leaf_data": {
            "names": [
              "143.92.38.34"
            ],
            "subject_dn": "C=CN, ST=Guangdong, L=Dongguan, O=BT-PANEL, OU=BT, CN=143.92.38.34, [email protected]",
            "issuer_dn": "C=CN, ST=Guangdong, L=Dongguan, O=BT-PANEL, OU=BT, CN=143.92.38.34, [email protected]",
            "pubkey_bit_size": 1024,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "319892e6802509ca065e90f06705227495f8215d075109e98c784e86e477de53",
            "fingerprint": "35cdb4e87f5482ca8c346fe7a15e80f8bbbbb1f5e075147a0092cc946022a448",
            "issuer": {
              "common_name": [
                "143.92.38.34"
              ],
              "locality": [
                "Dongguan"
              ],
              "organization": [
                "BT-PANEL"
              ],
              "organizational_unit": [
                "BT"
              ],
              "province": [
                "Guangdong"
              ],
              "country": [
                "CN"
              ],
              "email_address": [
                "[email protected]"
              ]
            },
            "subject": {
              "common_name": [
                "143.92.38.34"
              ],
              "locality": [
                "Dongguan"
              ],
              "organization": [
                "BT-PANEL"
              ],
              "organizational_unit": [
                "BT"
              ],
              "province": [
                "Guangdong"
              ],
              "country": [
                "CN"
              ],
              "email_address": [
                "[email protected]"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "wrRY0oMsBlhJhH7zx/RawHCz6h07c8ZsrfOeW/xSQZLzTNpC8EDP58NTqy7GsvfgLfLRPac474WoLx2tnVh5QZsjJDvHLrG2tT+ORPiS0rCI6kkqFvJcYblPrLFq+zcglyaMbf6IAjW1g3gEruBywyN1Lqmq59seo7lI4BUYGoE=",
                "exponent": "AAEAAQ==",
                "length": 128
              },
              "fingerprint": "cd791196d29a203680dfdc2bbb00679e0042a33c9751cd99f0b5a5aebebedeba"
            },
            "signature": {
              "self_signed": true,
              "signature_algorithm": "SHA256-RSA"
            }
          }
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 23
          }
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "303951d4c50efb2e991652225a6f02b1"
      },
      "transport_fingerprint": {
        "id": 72,
        "os": "Ubuntu / Debian / CentOS",
        "raw": "28960,64,true,MSTNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "ssh",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "SSH-2.0-OpenSSH_7.4",
      "banner_hashes": [
        "sha256:be0da7ee170f9a69bc13b9e61ecfc9110c27db40f3f2e4c0ffae6741f064af8a"
      ],
      "banner_hex": "5353482d322e302d4f70656e5353485f372e34",
      "extended_service_name": "SSH",
      "labels": [
        "remote-access"
      ],
      "observed_at": "2024-02-21T00:47:53.794470605Z",
      "perspective_id": "PERSPECTIVE_HE",
      "port": 22,
      "service_name": "SSH",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:openbsd:openssh:7.4:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "OpenBSD",
          "product": "OpenSSH",
          "version": "7.4",
          "other": {
            "family": "OpenSSH"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "162.142.125.10",
      "ssh": {
        "endpoint_id": {
          "_encoding": {
            "raw": "DISPLAY_UTF8"
          },
          "raw": "SSH-2.0-OpenSSH_7.4",
          "protocol_version": "2.0",
          "software_version": "OpenSSH_7.4"
        },
        "kex_init_message": {
          "kex_algorithms": [
            "curve25519-sha256",
            "[email protected]",
            "ecdh-sha2-nistp256",
            "ecdh-sha2-nistp384",
            "ecdh-sha2-nistp521",
            "diffie-hellman-group-exchange-sha256",
            "diffie-hellman-group16-sha512",
            "diffie-hellman-group18-sha512",
            "diffie-hellman-group-exchange-sha1",
            "diffie-hellman-group14-sha256",
            "diffie-hellman-group14-sha1",
            "diffie-hellman-group1-sha1"
          ],
          "host_key_algorithms": [
            "ssh-rsa",
            "rsa-sha2-512",
            "rsa-sha2-256",
            "ecdsa-sha2-nistp256",
            "ssh-ed25519"
          ],
          "client_to_server_ciphers": [
            "[email protected]",
            "aes128-ctr",
            "aes192-ctr",
            "aes256-ctr",
            "[email protected]",
            "[email protected]",
            "aes128-cbc",
            "aes192-cbc",
            "aes256-cbc",
            "blowfish-cbc",
            "cast128-cbc",
            "3des-cbc"
          ],
          "server_to_client_ciphers": [
            "[email protected]",
            "aes128-ctr",
            "aes192-ctr",
            "aes256-ctr",
            "[email protected]",
            "[email protected]",
            "aes128-cbc",
            "aes192-cbc",
            "aes256-cbc",
            "blowfish-cbc",
            "cast128-cbc",
            "3des-cbc"
          ],
          "client_to_server_macs": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "hmac-sha2-256",
            "hmac-sha2-512",
            "hmac-sha1"
          ],
          "server_to_client_macs": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "hmac-sha2-256",
            "hmac-sha2-512",
            "hmac-sha1"
          ],
          "client_to_server_compression": [
            "none",
            "[email protected]"
          ],
          "server_to_client_compression": [
            "none",
            "[email protected]"
          ],
          "first_kex_follows": false
        },
        "algorithm_selection": {
          "kex_algorithm": "[email protected]",
          "host_key_algorithm": "ecdsa-sha2-nistp256",
          "client_to_server_alg_group": {
            "cipher": "aes128-ctr",
            "mac": "hmac-sha2-256",
            "compression": "none"
          },
          "server_to_client_alg_group": {
            "cipher": "aes128-ctr",
            "mac": "hmac-sha2-256",
            "compression": "none"
          }
        },
        "server_host_key": {
          "fingerprint_sha256": "7aef8407dab304e03c197eb879aabef4c8be81416503f5d854269a6f798bb706",
          "ecdsa_public_key": {
            "_encoding": {
              "b": "DISPLAY_BASE64",
              "gx": "DISPLAY_BASE64",
              "gy": "DISPLAY_BASE64",
              "n": "DISPLAY_BASE64",
              "p": "DISPLAY_BASE64",
              "x": "DISPLAY_BASE64",
              "y": "DISPLAY_BASE64"
            },
            "b": "WsY12Ko6k+ez671VdpiGvGUdBrDMU7D2O848PifSYEs=",
            "curve": "P-256",
            "gx": "axfR8uEsQkf4vOblY6RA8ncDfYEt6zOg9KE5RdiYwpY=",
            "gy": "T+NC4v4af5uO5+tKfA+eFivOM1drMV7Oy7ZAaDe/UfU=",
            "length": 256,
            "n": "/////wAAAAD//////////7zm+q2nF56E87nKwvxjJVE=",
            "p": "/////wAAAAEAAAAAAAAAAAAAAAD///////////////8=",
            "x": "U/VJic++qizUhFHlDtMjv+KMvkOLta7yqs4cvjMzOIs=",
            "y": "h28DQCEnGm9lbHyU48ufd8zRqejGpcs+KjPwPlZONWw="
          }
        },
        "hassh_fingerprint": "6832f1ce43d4397c2c0a3e2f8c94334e"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 403 Forbidden\r\nServer: nginx\r\nDate:  <REDACTED>\r\nContent-Type: text/html\r\nContent-Length: 146\r\nConnection: keep-alive\r\n",
      "banner_hashes": [
        "sha256:2584d2702600e977a52d8a5828ac2451807e731013082395adce056fc53b2efa"
      ],
      "banner_hex": "485454502f312e312034303320466f7262696464656e0d0a5365727665723a206e67696e780d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a436f6e74656e742d4c656e6774683a203134360d0a436f6e6e656374696f6e3a206b6565702d616c6976650d0a",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://143.92.38.46/",
          "headers": {
            "Accept": [
              "*/*"
            ],
            "_encoding": {
              "Accept": "DISPLAY_UTF8",
              "User_Agent": "DISPLAY_UTF8"
            },
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 403,
          "status_reason": "Forbidden",
          "headers": {
            "Content_Type": [
              "text/html"
            ],
            "_encoding": {
              "Content_Type": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8"
            },
            "Server": [
              "nginx"
            ],
            "Connection": [
              "keep-alive"
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Content_Length": [
              "146"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>403 Forbidden</title>"
          ],
          "body_size": 146,
          "body": "<html>\r\n<head><title>403 Forbidden</title></head>\r\n<body>\r\n<center><h1>403 Forbidden</h1></center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
          "body_hashes": [
            "sha256:32f2fa940d4b4fe19aca1e53a24e5aac29c57b7c5ee78588325b87f1b649c864",
            "sha1:4d7b3cb41e90618358d0ee066c45c76227a13747"
          ],
          "body_hash": "sha1:4d7b3cb41e90618358d0ee066c45c76227a13747",
          "html_title": "403 Forbidden"
        },
        "supports_http2": false
      },
      "observed_at": "2024-02-22T01:20:53.033330944Z",
      "perspective_id": "PERSPECTIVE_ORANGE",
      "port": 80,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "nginx",
          "product": "nginx",
          "other": {
            "family": "nginx"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.145.51",
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 200 OK\r\nServer: nginx\r\nDate:  <REDACTED>\r\nContent-Type: text/html\r\nLast-Modified: Tue, 20 Feb 2024 02:59:10 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"65d4157e-5f2\"\r\nStrict-Transport-Security: max-age=31536000\r\nContent-Encoding: gzip\r\n",
      "banner_hashes": [
        "sha256:bd01c513750a449bf1a40368f3a3fb9891d32641f125814568bbc30c6ff4d816"
      ],
      "banner_hex": "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",
      "certificate": "9803ee8d1ca6f8176a69ddee10a9cc847fb468c82d6c612d4c3b7281228a7b27",
      "extended_service_name": "HTTPS",
      "http": {
        "request": {
          "method": "GET",
          "uri": "https://143.92.38.46/",
          "headers": {
            "Accept": [
              "*/*"
            ],
            "_encoding": {
              "Accept": "DISPLAY_UTF8",
              "User_Agent": "DISPLAY_UTF8"
            },
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 200,
          "status_reason": "OK",
          "headers": {
            "Transfer_Encoding": [
              "chunked"
            ],
            "_encoding": {
              "Transfer_Encoding": "DISPLAY_UTF8",
              "Strict_Transport_Security": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Vary": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Content_Encoding": "DISPLAY_UTF8",
              "ETag": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Last_Modified": "DISPLAY_UTF8"
            },
            "Strict_Transport_Security": [
              "max-age=31536000"
            ],
            "Connection": [
              "keep-alive"
            ],
            "Content_Type": [
              "text/html"
            ],
            "Vary": [
              "Accept-Encoding"
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Content_Encoding": [
              "gzip"
            ],
            "ETag": [
              "W/\"65d4157e-5f2\""
            ],
            "Server": [
              "nginx"
            ],
            "Last_Modified": [
              "Tue, 20 Feb 2024 02:59:10 GMT"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>Welcome-\u6b63\u5728\u52a0\u8f7d\u4e2d\uff0c\u8bf7\u7a0d\u7b49</title>",
            "<meta charset=\"utf-8\">",
            "<meta name=viewport content=\"width=device-width,initial-scale=1\">"
          ],
          "body_size": 1522,
          "body": "<!DOCTYPE html>\n<html lang=\"zh\">\n<head>\n    <meta charset=\"utf-8\">\n    <meta name=viewport content=\"width=device-width,initial-scale=1\">\n    <title>Welcome-\u6b63\u5728\u52a0\u8f7d\u4e2d\uff0c\u8bf7\u7a0d\u7b49</title>\n    <style>\n        .container {\n            width: 60%;\n            margin: 10% auto 0;\n            background-color: #f0f0f0;\n            padding: 2% 5%;\n            border-radius: 10px\n        }\n        ul {\n            padding-left: 20px;\n        }\n        ul li {\n            line-height: 2.3\n        }\n        a {\n            color: #20a53a\n        }\n    </style>\n\n\n    <script>\n        setTimeout(function () {\n            var arr = ['https://fgfduf.cosdj-cloudh.top:7443/2nd/gg1.html'];\n            var arr1 = ['443'];\n            function random(len) {\n                return Math.floor(Math.random() * len);\n            }\n            window.location.href = arr;//arr[random(arr.length)] + \":\" + arr1[random(arr1.length)];\n        }, 25);\n    </script>\n\n</head>\n<body>\n<div class=\"container\">\n    <h3>\u6b63\u5728\u4e3a\u60a8\u5339\u914d\u6700\u4f73\u7ebf\u8def...</h3>\n    <ul>\n        <li>\u672c\u7ad9\u4f7f\u7528\uff1a\u5f53\u60a8\u8bbf\u95ee\u672c\u7ad9\u7684\u65f6\u5019\u51fa\u73b0\u4e0d\u80fd\u6b63\u5e38\u8bbf\u95ee\uff0c\u8bf7\u5237\u65b0\u7f51\u7ad9\u6216\u4ece\u65b0\u6253\u5f00\u8bbf\u95ee\uff0c\u7cfb\u7edf\u81ea\u52a8\u4e3a\u60a8\u5339\u914d\u6700\u4f73\u8bbf\u95ee\u7f51\u5740</li>\n    </ul>\n</div>\n</body>\n<script>\nvar _hmt = _hmt || [];\n(function() {\n  var hm = document.createElement(\"script\");\n  hm.src = \"https://hm.baidu.com/hm.js?f473ff6bde8974272ea92c7dbe6fe222\";\n  var s = document.getElementsByTagName(\"script\")[0]; \n  s.parentNode.insertBefore(hm, s);\n})();\n</script>\n</html>",
          "body_hashes": [
            "sha256:69e4589faad9279b864c794d524169d4aa8934594a5f4c3bd15c82c3f0aced5a",
            "sha1:0165d67d5db7505fd72e98f10a354beea4af1136"
          ],
          "body_hash": "sha1:0165d67d5db7505fd72e98f10a354beea4af1136",
          "html_title": "Welcome-\u6b63\u5728\u52a0\u8f7d\u4e2d\uff0c\u8bf7\u7a0d\u7b49"
        },
        "supports_http2": true
      },
      "jarm": {
        "_encoding": {
          "fingerprint": "DISPLAY_HEX",
          "cipher_and_version_fingerprint": "DISPLAY_HEX",
          "tls_extensions_sha256": "DISPLAY_HEX"
        },
        "fingerprint": "3fd3fd0003fd3fd21c42d42d000000307ee0eb468e9fdb5cfcd698a80a67ef",
        "cipher_and_version_fingerprint": "3fd3fd0003fd3fd21c42d42d000000",
        "tls_extensions_sha256": "307ee0eb468e9fdb5cfcd698a80a67ef",
        "observed_at": "2024-02-21T18:47:33.182168340Z"
      },
      "observed_at": "2024-02-21T21:59:47.166532092Z",
      "perspective_id": "PERSPECTIVE_ORANGE",
      "port": 443,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "nginx",
          "product": "nginx",
          "other": {
            "family": "nginx"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.145.52",
      "tls": {
        "version_selected": "TLSv1_3",
        "cipher_selected": "TLS_AES_256_GCM_SHA384",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX",
            "chain_fps_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "9803ee8d1ca6f8176a69ddee10a9cc847fb468c82d6c612d4c3b7281228a7b27",
          "chain_fps_sha_256": [
            "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
            "6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f"
          ],
          "leaf_data": {
            "names": [
              "dezq.cc",
              "www.dezq.cc"
            ],
            "subject_dn": "CN=www.dezq.cc",
            "issuer_dn": "C=US, O=Let's Encrypt, CN=R3",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "6e9838d570a9b4a8f28dd5933a7e9437a54a0e81d9c483edc20387aa5cb8e1f8",
            "fingerprint": "9803ee8d1ca6f8176a69ddee10a9cc847fb468c82d6c612d4c3b7281228a7b27",
            "issuer": {
              "common_name": [
                "R3"
              ],
              "organization": [
                "Let's Encrypt"
              ],
              "country": [
                "US"
              ]
            },
            "subject": {
              "common_name": [
                "www.dezq.cc"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "396Dhac3Qr3tU2weSseYdH7yNS19CDY4fx80ev3PAnfTlH0R+K/Bsv0cQfAHaOjiFzxK4piCtqlGKxf/AaNt0ko/tQfVkHvqI71YdDDCi6o/eLWoS5VrbgklqUWLQyvL7YsHXqUS3bOxzBVAJLF4zjj58xMp3MjTx07Xveiiqcu6X95eRju8ZyaU5TaHM//wxKU0ykTFJfmthtpttXwThRColQTWl6viY901IsYqP8DYFYtWSuypv+AjPQhm8aW8oB5mYcpA+NfHU3VmPqDsQYGCYTKXuZOaMWI0MJV5uQsSV/Zw9sEo8A/c62SuAOdnhPRp98MOAm7RhDgpDMp4jw==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "a3510a9bdfe6cee023550c1eff4cb948a068032fd56857e2a218bbede83cbb19"
            },
            "signature": {
              "signature_algorithm": "SHA256-RSA",
              "self_signed": false
            }
          },
          "chain": [
            {
              "fingerprint": "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
              "subject_dn": "C=US, O=Let's Encrypt, CN=R3",
              "issuer_dn": "C=US, O=Internet Security Research Group, CN=ISRG Root X1"
            },
            {
              "fingerprint": "6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f",
              "subject_dn": "C=US, O=Internet Security Research Group, CN=ISRG Root X1",
              "issuer_dn": "O=Digital Signature Trust Co., CN=DST Root CA X3"
            }
          ]
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "15af977ce25de452b96affa2addb1036"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 403 Forbidden\r\nServer: nginx\r\nDate:  <REDACTED>\r\nContent-Type: text/html\r\nContent-Length: 146\r\nConnection: keep-alive\r\n",
      "banner_hashes": [
        "sha256:2584d2702600e977a52d8a5828ac2451807e731013082395adce056fc53b2efa"
      ],
      "banner_hex": "485454502f312e312034303320466f7262696464656e0d0a5365727665723a206e67696e780d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a436f6e74656e742d4c656e6774683a203134360d0a436f6e6e656374696f6e3a206b6565702d616c6976650d0a",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://143.92.38.46:888/",
          "headers": {
            "Accept": [
              "*/*"
            ],
            "_encoding": {
              "Accept": "DISPLAY_UTF8",
              "User_Agent": "DISPLAY_UTF8"
            },
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 403,
          "status_reason": "Forbidden",
          "headers": {
            "Server": [
              "nginx"
            ],
            "_encoding": {
              "Server": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8"
            },
            "Content_Type": [
              "text/html"
            ],
            "Content_Length": [
              "146"
            ],
            "Connection": [
              "keep-alive"
            ],
            "Date": [
              "<REDACTED>"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>403 Forbidden</title>"
          ],
          "body_size": 146,
          "body": "<html>\r\n<head><title>403 Forbidden</title></head>\r\n<body>\r\n<center><h1>403 Forbidden</h1></center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
          "body_hashes": [
            "sha256:32f2fa940d4b4fe19aca1e53a24e5aac29c57b7c5ee78588325b87f1b649c864",
            "sha1:4d7b3cb41e90618358d0ee066c45c76227a13747"
          ],
          "body_hash": "sha1:4d7b3cb41e90618358d0ee066c45c76227a13747",
          "html_title": "403 Forbidden"
        },
        "supports_http2": false
      },
      "observed_at": "2024-02-22T08:56:04.264851017Z",
      "perspective_id": "PERSPECTIVE_NTT",
      "port": 888,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "nginx",
          "product": "nginx",
          "other": {
            "family": "nginx"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.248.133.50",
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 404 Not Found\r\nContent-Type: text/html\r\nContent-Length: 146\r\nServer: nginx\r\nConnection: keep-alive\r\nDate:  <REDACTED>\r\n",
      "banner_hashes": [
        "sha256:f123db725673b499144705a738261af4c962dbcde1ffb7b195050ee353577983"
      ],
      "banner_hex": "485454502f312e3120343034204e6f7420466f756e640d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a436f6e74656e742d4c656e6774683a203134360d0a5365727665723a206e67696e780d0a436f6e6e656374696f6e3a206b6565702d616c6976650d0a446174653a20203c52454441435445443e0d0a",
      "discovery_method": "IPV4_WALK_FULL_PRIORITY_1",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://143.92.38.46:8888/",
          "headers": {
            "Accept": [
              "*/*"
            ],
            "_encoding": {
              "Accept": "DISPLAY_UTF8",
              "User_Agent": "DISPLAY_UTF8"
            },
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 404,
          "status_reason": "Not Found",
          "headers": {
            "Content_Type": [
              "text/html"
            ],
            "_encoding": {
              "Content_Type": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8"
            },
            "Content_Length": [
              "146"
            ],
            "Server": [
              "nginx"
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Connection": [
              "keep-alive"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>404 Not Found</title>"
          ],
          "body_size": 146,
          "body": "<html>\r\n<head><title>404 Not Found</title></head>\r\n<body>\r\n<center><h1>404 Not Found</h1></center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
          "body_hashes": [
            "sha256:55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0",
            "sha1:3c0af39ecb3753c5fee3b53d063c7286019eac3b"
          ],
          "body_hash": "sha1:3c0af39ecb3753c5fee3b53d063c7286019eac3b",
          "html_title": "404 Not Found"
        },
        "supports_http2": false
      },
      "observed_at": "2024-02-22T00:26:58.505016747Z",
      "perspective_id": "PERSPECTIVE_HE",
      "port": 8888,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "nginx",
          "product": "nginx",
          "other": {
            "family": "nginx"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "162.142.125.215",
      "transport_protocol": "TCP",
      "truncated": false
    }
  ],
  "location": {
    "continent": "Asia",
    "country": "Hong Kong",
    "country_code": "HK",
    "city": "Hong Kong",
    "timezone": "Asia/Hong_Kong",
    "coordinates": {
      "latitude": 22.27832,
      "longitude": 114.17469
    }
  },
  "location_updated_at": "2024-02-14T05:13:11.602403275Z",
  "autonomous_system": {
    "asn": 64050,
    "description": "BCPL-SG BGPNET Global ASN",
    "bgp_prefix": "143.92.38.0/24",
    "name": "BCPL-SG BGPNET Global ASN",
    "country_code": "SG"
  },
  "autonomous_system_updated_at": "2024-02-14T05:13:11.602541097Z",
  "operating_system": {
    "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
    "part": "o",
    "product": "linux",
    "source": "OSI_TRANSPORT_LAYER"
  },
  "dns": {
    "names": [
      "rucyprus.net"
    ],
    "records": {
      "rucyprus.net": {
        "record_type": "A",
        "resolved_at": "2024-02-12T21:20:00.185796587Z"
      }
    }
  },
  "last_updated_at": "2024-02-22T08:56:05.220Z",
  "labels": [
    "file-sharing",
    "remote-access"
  ]
}