162.219.249.76

As of: Sep 16, 2024 1:40am UTC | Latest
{
  "ip": "162.219.249.76",
  "services": [
    {
      "_decoded": "ftp",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------\r\n220-You are user number 1 of 50 allowed.\r\n220-Local time is now 15:37. Server port: 21.\r\n220-IPv6 connections are also welcome on this server.\r\n220 You will be disconnected after 15 minutes of inactivity.\r\n",
      "banner_hashes": [
        "sha256:32cc7f5f36986651899e3e7cfeb00cbc281d6a941a2ce26c20f4e1d5f6734f50"
      ],
      "banner_hex": "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",
      "certificate": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
      "discovery_method": "PREDICTIVE_METHOD_7",
      "extended_service_name": "FTPes",
      "ftp": {
        "_encoding": {
          "banner": "DISPLAY_UTF8",
          "auth_tls_response": "DISPLAY_UTF8"
        },
        "banner": "220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------\r\n220-You are user number 1 of 50 allowed.\r\n220-Local time is now 15:37. Server port: 21.\r\n220-IPv6 connections are also welcome on this server.\r\n220 You will be disconnected after 15 minutes of inactivity.\r\n",
        "auth_tls_response": "234 AUTH TLS OK.\r\n",
        "status_code": 220,
        "status_meaning": "Service ready for new user.",
        "implicit_tls": false
      },
      "labels": [
        "file-sharing"
      ],
      "observed_at": "2024-09-15T22:37:29.096700527Z",
      "perspective_id": "PERSPECTIVE_HE",
      "port": 21,
      "service_name": "FTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:pureftpd:pure\\-ftpd:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "PureFTPd",
          "product": "Pure-FTPd",
          "other": {
            "family": "Pure-FTPd"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "product": "pureftpd",
          "other": {
            "config": "[privsep] [TLS"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "162.142.125.45",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX",
            "chain_fps_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
          "chain_fps_sha_256": [
            "9d7c3f1aa6ad2b2ec0d5cf1e246f8d9ae6cbc9fd0755ad37bb974b1f2fb603f3"
          ],
          "leaf_data": {
            "names": [
              "cardinals.unisonplatform.com"
            ],
            "subject_dn": "CN=cardinals.unisonplatform.com",
            "issuer_dn": "C=US, O=Let's Encrypt, CN=R10",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "9ceb5b4f82a98b6e405a333b05a7f5c670d32862b9663c8b04c1a64c34228400",
            "fingerprint": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
            "issuer": {
              "common_name": [
                "R10"
              ],
              "organization": [
                "Let's Encrypt"
              ],
              "country": [
                "US"
              ]
            },
            "subject": {
              "common_name": [
                "cardinals.unisonplatform.com"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "tS44hDQlnTsfTx0O/RDfs8Sf5/POarC0crMejw5VAJFzSb3/4aRw5gpPKtioOPfTjUp7Ehj8uBwy2OLX+T+Pqnw5bkrF4ZIi99nig9fwwvJgNdc4KgDvtWpbxFuClu961elFAZ1YV+U4sLTKOYC7qXMHDdwaKUaxO8KD0SOXac1IJmK/Y+R4QY8S+JMKEFriy0zbqMn5WOsn1lqVYBCA00ToCfOda1gcQoRDWm3J3Al7Z/0xQIE5HaIFt3LA/mc3y9fW03Zb+BYvibAodsboGG8SNZ+XeW6HFdgKX0sQ+PJTVfyWL3ucaBKxh/zwdh0Crwr2YghNNOHgDhyOYIyV/w==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "7745105fc1953d613bdec14993c8cc3d83b829007d98a697c70b7fc984bf1745"
            },
            "signature": {
              "signature_algorithm": "SHA256-RSA",
              "self_signed": false
            }
          },
          "chain": [
            {
              "fingerprint": "9d7c3f1aa6ad2b2ec0d5cf1e246f8d9ae6cbc9fd0755ad37bb974b1f2fb603f3",
              "subject_dn": "C=US, O=Let's Encrypt, CN=R10",
              "issuer_dn": "C=US, O=Internet Security Research Group, CN=ISRG Root X1"
            }
          ]
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 23
          }
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "0debd3853f330c574b05e0b6d882dc27",
        "ja4s": "t120200_c030_344b4dce5a52"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "ssh",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "SSH-2.0-OpenSSH_8.0",
      "banner_hashes": [
        "sha256:2fa65f39c579f8943b13b6208b128f8a97dc339255bac4cf79a0d6a5cd4e6b54"
      ],
      "banner_hex": "5353482d322e302d4f70656e5353485f382e30",
      "discovery_method": "PREDICTIVE_METHOD_16",
      "extended_service_name": "SSH",
      "labels": [
        "remote-access"
      ],
      "observed_at": "2024-09-15T02:54:01.914502006Z",
      "perspective_id": "PERSPECTIVE_TELIA",
      "port": 22,
      "service_name": "SSH",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "product": "linux",
          "source": "OSI_TRANSPORT_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:openbsd:openssh:8.0:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "OpenBSD",
          "product": "OpenSSH",
          "version": "8.0",
          "other": {
            "family": "OpenSSH"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.146.54",
      "ssh": {
        "endpoint_id": {
          "_encoding": {
            "raw": "DISPLAY_UTF8"
          },
          "raw": "SSH-2.0-OpenSSH_8.0",
          "protocol_version": "2.0",
          "software_version": "OpenSSH_8.0"
        },
        "kex_init_message": {
          "kex_algorithms": [
            "curve25519-sha256",
            "[email protected]",
            "ecdh-sha2-nistp256",
            "ecdh-sha2-nistp384",
            "ecdh-sha2-nistp521",
            "diffie-hellman-group-exchange-sha256",
            "diffie-hellman-group14-sha256",
            "diffie-hellman-group16-sha512",
            "diffie-hellman-group18-sha512",
            "diffie-hellman-group-exchange-sha1",
            "diffie-hellman-group14-sha1",
            "[email protected]"
          ],
          "host_key_algorithms": [
            "rsa-sha2-512",
            "rsa-sha2-256",
            "ssh-rsa",
            "ecdsa-sha2-nistp256",
            "ssh-ed25519"
          ],
          "client_to_server_ciphers": [
            "[email protected]",
            "[email protected]",
            "aes256-ctr",
            "aes256-cbc",
            "[email protected]",
            "aes128-ctr",
            "aes128-cbc"
          ],
          "server_to_client_ciphers": [
            "[email protected]",
            "[email protected]",
            "aes256-ctr",
            "aes256-cbc",
            "[email protected]",
            "aes128-ctr",
            "aes128-cbc"
          ],
          "client_to_server_macs": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "hmac-sha2-256",
            "hmac-sha1",
            "[email protected]",
            "hmac-sha2-512"
          ],
          "server_to_client_macs": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "hmac-sha2-256",
            "hmac-sha1",
            "[email protected]",
            "hmac-sha2-512"
          ],
          "client_to_server_compression": [
            "none",
            "[email protected]"
          ],
          "server_to_client_compression": [
            "none",
            "[email protected]"
          ],
          "first_kex_follows": false
        },
        "algorithm_selection": {
          "kex_algorithm": "[email protected]",
          "host_key_algorithm": "ecdsa-sha2-nistp256",
          "client_to_server_alg_group": {
            "cipher": "aes128-ctr",
            "mac": "hmac-sha2-256",
            "compression": "none"
          },
          "server_to_client_alg_group": {
            "cipher": "aes128-ctr",
            "mac": "hmac-sha2-256",
            "compression": "none"
          }
        },
        "server_host_key": {
          "fingerprint_sha256": "2dea37ccac124b3ee48c43e672d1402e960ccb917b5d9b4790295fa20a513e41",
          "ecdsa_public_key": {
            "_encoding": {
              "b": "DISPLAY_BASE64",
              "gx": "DISPLAY_BASE64",
              "gy": "DISPLAY_BASE64",
              "n": "DISPLAY_BASE64",
              "p": "DISPLAY_BASE64",
              "x": "DISPLAY_BASE64",
              "y": "DISPLAY_BASE64"
            },
            "b": "WsY12Ko6k+ez671VdpiGvGUdBrDMU7D2O848PifSYEs=",
            "curve": "P-256",
            "gx": "axfR8uEsQkf4vOblY6RA8ncDfYEt6zOg9KE5RdiYwpY=",
            "gy": "T+NC4v4af5uO5+tKfA+eFivOM1drMV7Oy7ZAaDe/UfU=",
            "length": 256,
            "n": "/////wAAAAD//////////7zm+q2nF56E87nKwvxjJVE=",
            "p": "/////wAAAAEAAAAAAAAAAAAAAAD///////////////8=",
            "x": "3A2wAX6NQB9RVhPRn+eDMqaFRnRX4pmUjK9RlpZ4z0U=",
            "y": "slEjcQ+1iZ2pFmT9YJwhX886S23ws0qTVHsj9yyJPEA="
          }
        },
        "hassh_fingerprint": "686e20b21417c07a18d6311d1e29dacb"
      },
      "transport_fingerprint": {
        "id": 72,
        "os": "Ubuntu / Debian / CentOS",
        "raw": "28960,64,true,MSTNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "smtp",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "220-cardinals.unisonplatform.com ESMTP Exim 4.96.2 #2 Sun, 15 Sep 2024 03:10:50 +0000 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n",
      "banner_hashes": [
        "sha256:19daf037ca11218837d9c09d28a3cdbd19ad2877f5500fba15b3d0cdf73316fd"
      ],
      "banner_hex": "3232302d63617264696e616c732e756e69736f6e706c6174666f726d2e636f6d2045534d5450204578696d20342e39362e322023322053756e2c2031352053657020323032342030333a31303a3530202b30303030200d0a3232302d576520646f206e6f7420617574686f72697a652074686520757365206f6620746869732073797374656d20746f207472616e73706f727420756e736f6c6963697465642c200d0a32323020616e642f6f722062756c6b20652d6d61696c2e0d0a",
      "certificate": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
      "discovery_method": "PREDICTIVE_METHOD_20",
      "extended_service_name": "SMTP-STARTTLS",
      "labels": [
        "email"
      ],
      "observed_at": "2024-09-15T03:10:58.153587557Z",
      "perspective_id": "PERSPECTIVE_PCCW",
      "port": 25,
      "service_name": "SMTP",
      "smtp": {
        "_encoding": {
          "banner": "DISPLAY_UTF8",
          "ehlo": "DISPLAY_UTF8",
          "start_tls": "DISPLAY_UTF8"
        },
        "banner": "220-cardinals.unisonplatform.com ESMTP Exim 4.96.2 #2 Sun, 15 Sep 2024 03:10:50 +0000 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n",
        "ehlo": "250-cardinals.unisonplatform.com Hello www.censys.io [199.45.154.129]\r\n250-SIZE 52428800\r\n250-8BITMIME\r\n250-PIPELINING\r\n250-PIPECONNECT\r\n250-STARTTLS\r\n250 HELP\r\n",
        "start_tls": "220 TLS go ahead\r\n"
      },
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "product": "linux",
          "source": "OSI_TRANSPORT_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:exim:exim:4.96.2:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "exim",
          "product": "exim",
          "version": "4.96.2",
          "other": {
            "family": "exim"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "199.45.154.129",
      "tls": {
        "version_selected": "TLSv1_3",
        "cipher_selected": "TLS_CHACHA20_POLY1305_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX",
            "chain_fps_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
          "chain_fps_sha_256": [
            "9d7c3f1aa6ad2b2ec0d5cf1e246f8d9ae6cbc9fd0755ad37bb974b1f2fb603f3"
          ],
          "leaf_data": {
            "names": [
              "cardinals.unisonplatform.com"
            ],
            "subject_dn": "CN=cardinals.unisonplatform.com",
            "issuer_dn": "C=US, O=Let's Encrypt, CN=R10",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "9ceb5b4f82a98b6e405a333b05a7f5c670d32862b9663c8b04c1a64c34228400",
            "fingerprint": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
            "issuer": {
              "common_name": [
                "R10"
              ],
              "organization": [
                "Let's Encrypt"
              ],
              "country": [
                "US"
              ]
            },
            "subject": {
              "common_name": [
                "cardinals.unisonplatform.com"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "tS44hDQlnTsfTx0O/RDfs8Sf5/POarC0crMejw5VAJFzSb3/4aRw5gpPKtioOPfTjUp7Ehj8uBwy2OLX+T+Pqnw5bkrF4ZIi99nig9fwwvJgNdc4KgDvtWpbxFuClu961elFAZ1YV+U4sLTKOYC7qXMHDdwaKUaxO8KD0SOXac1IJmK/Y+R4QY8S+JMKEFriy0zbqMn5WOsn1lqVYBCA00ToCfOda1gcQoRDWm3J3Al7Z/0xQIE5HaIFt3LA/mc3y9fW03Zb+BYvibAodsboGG8SNZ+XeW6HFdgKX0sQ+PJTVfyWL3ucaBKxh/zwdh0Crwr2YghNNOHgDhyOYIyV/w==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "7745105fc1953d613bdec14993c8cc3d83b829007d98a697c70b7fc984bf1745"
            },
            "signature": {
              "signature_algorithm": "SHA256-RSA",
              "self_signed": false
            }
          },
          "chain": [
            {
              "fingerprint": "9d7c3f1aa6ad2b2ec0d5cf1e246f8d9ae6cbc9fd0755ad37bb974b1f2fb603f3",
              "subject_dn": "C=US, O=Let's Encrypt, CN=R10",
              "issuer_dn": "C=US, O=Internet Security Research Group, CN=ISRG Root X1"
            }
          ]
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "475c9302dc42b2751db9edcac3b74891",
        "ja4s": "t130200_1303_a56c5b993250"
      },
      "transport_fingerprint": {
        "id": 72,
        "os": "Ubuntu / Debian / CentOS",
        "raw": "28960,64,true,MSTNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 403 Forbidden\r\nDate:  <REDACTED>\r\nServer: Apache\r\nLast-Modified: Tue, 10 Jan 2023 01:36:27 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 2968\r\nContent-Type: text/html\r\n",
      "banner_hashes": [
        "sha256:8a6cef34af6474e2155c48df23abc436f6596427dde1f18de6b94cdef0c05e3a"
      ],
      "banner_hex": "485454502f312e312034303320466f7262696464656e0d0a446174653a20203c52454441435445443e0d0a5365727665723a204170616368650d0a4c6173742d4d6f6469666965643a205475652c203130204a616e20323032332030313a33363a323720474d540d0a4163636570742d52616e6765733a2062797465730d0a436f6e74656e742d4c656e6774683a20323936380d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a",
      "discovery_method": "PREDICTIVE_METHOD_7",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://162.219.249.76/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 403,
          "status_reason": "Forbidden",
          "headers": {
            "Date": [
              "<REDACTED>"
            ],
            "_encoding": {
              "Date": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Last_Modified": "DISPLAY_UTF8",
              "Accept_Ranges": "DISPLAY_UTF8"
            },
            "Server": [
              "Apache"
            ],
            "Content_Length": [
              "2968"
            ],
            "Content_Type": [
              "text/html"
            ],
            "Last_Modified": [
              "Tue, 10 Jan 2023 01:36:27 GMT"
            ],
            "Accept_Ranges": [
              "bytes"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>Softaculous Webuzo | Default Website Page</title>"
          ],
          "body_size": 2968,
          "body": "<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">\n<html xmlns=\"http://www.w3.org/1999/xhtml\">\n<head>\n<title>Softaculous Webuzo | Default Website Page</title>\n\n<style type=\"text/css\">\nbody,h1,div,class,p{\n\tpadding:0;\n\tmargin:0;\n\tfont-family:verdana,sans,serif;\n}\np{\n\tfont-size:12px;\n\tline-height:25px;\n\tcolor:#333;\t\n}\na{\n\tcolor:#333;\n\ttext-decoration:none;\n\tborder-bottom:2px dashed #333;\n}\na:hover{\n\tborder-bottom:0px dashed #333;\n}\n.logo{\n\twidth:250px;\n\theight:80px;\n\tmargin-left:100px;\t\n}\n#content{\n\twidth: 600px; height: 250px;\t\n\tbackground: #f4f4f4;\n\tpadding:0px 50px;\t\n\tborder-radius: 150px;\n\t-webkit-border-radius: 150px;\n\t-moz-border-radius: 150px;\t\n\tposition: relative;\n\tmargin: 60px auto 20px;\n\tborder-left:2px solid #a2dbf5;\n\tborder-right:2px solid #a2dbf5;\n\tborder-bottom:2px solid #a2dbf5;\n\tbox-shadow: 0 10px 10px -5px #666;\n}\n#content:after, #content:before{\n\tcontent: '';\n\tposition: absolute;\n\tbackground: #f4f4f4;\n\tz-index: -1;\n\tborder-left:2px solid #a2dbf5;\n\tborder-right:1px solid #a2dbf5;\n\tborder-top:2px solid #a2dbf5;\n}\n#content:after{\n\twidth: 300px; height: 300px;\n\ttop: -120px; \n\tleft: 120px;\t\n\tborder-radius: 250px;\n\t-webkit-border-radius: 250px;\n\t-moz-border-radius: 250px;\n}\n\n#content:before{\n\twidth: 250px; height: 250px;\n\ttop: -80px; \n\tright: 120px;\t\n\tborder-radius: 250px;\n\t-webkit-border-radius: 250px;\n\t-moz-border-radius: 250px;\n}\n.cloud{\n\twidth:100%;\n\theight:265px;\n\tbackground-image:url(\"https://images.softaculous.com/webuzo/noindex/cloud.png\");\n\tbackground-repeat:no-repeat;\n\tbackground-size:100%;\n\tposition:fixed;\n\tbottom:0px;\n\tz-index:9;\n}\n.cloud_bg{\n\twidth:100%;\n\theight:100px;\n\tbackground-color:#a2dbf5;\n\tposition:fixed;\n\tbottom:0;\n\tz-index:0;\n}\n</style>\n</head>\n<body>\n\t\t<div class=\"logo\"><img src=\"https://images.softaculous.com/webuzo/noindex/webuzo_logo.png\" alt=\"Softaculous Webuzo\" /></div>\n\t<center>\n\t\t\n\t\t<div id=\"content\">\t\t\t\n\t\t\t<p style=\"font-size:20px;font-weight:bolder;text-align:center;\">Default Website Page</p>\n\t\t\t\t<p>\n\t\t\t\t\tThis page is generated by <a href=\"https://www.webuzo.com\">Softaculous Webuzo</a>, a leading provider of software for the webhosting industry.\n\t\t\t\t\tYou are seeing this page because you have not uploaded the site content yet.\n\t\t\t\t</p>\n\t\t\t<p style=\"font-size:16px;font-weight:bolder;text-align:center;\">You can do following step:</p>\n\t\t\t\t\t<p><b>1.</b> Install a Web Application like a blog, forum, gallery, wiki, etc.<br> using <a href=\"https://www.webuzo.com\">Softaculous Webuzo</a>.</p>\n\t\t\t\t\t<p><b>2.</b> Upload some content using FTP / SSH.</p>\n\t\t\t\t\n\t\t\t\t<p>To log in to your Softaculous Webuzo Panel, please go to <font color=\"#000\">http://hostname:2002</font></p>\n\t\t</div>\t\n\t\t\t\n\t\t<div class=\"cloud\"><p style=\"text-align:left;padding-top:220px;padding-left:20px;\" >This Page is generated by <a href=\"https://www.webuzo.com\">Softaculous Webuzo.</a></p></div>\n\t\t<div class=\"cloud_bg\"></div>\n\t</center>\n</body>\n</html>",
          "body_hashes": [
            "sha256:0bb81142c1ec6f26892815d867633799a83d19cf4650111861ad58575864a3a8",
            "sha1:728171bc7da2f75cb764fdc8e6a8ad4485849446"
          ],
          "body_hash": "sha1:728171bc7da2f75cb764fdc8e6a8ad4485849446",
          "html_title": "Softaculous Webuzo | Default Website Page"
        },
        "supports_http2": false
      },
      "observed_at": "2024-09-13T07:25:40.793499446Z",
      "pending_removal_since": "2024-09-15T11:49:06.278972388Z",
      "perspective_id": "PERSPECTIVE_HE",
      "port": 80,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Apache",
          "product": "HTTPD",
          "other": {
            "family": "Apache"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "162.142.125.220",
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "imap",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot ready.\r\n",
      "banner_hashes": [
        "sha256:63500230532cabe1f25fe750881480938a5db7cba24c411a2f95587774910fb1"
      ],
      "banner_hex": "2a204f4b205b4341504142494c49545920494d41503472657631205341534c2d4952204c4f47494e2d524546455252414c5320494420454e41424c452049444c45204e414d455350414345204c49544552414c2b205354415254544c5320415554483d504c41494e20415554483d4c4f47494e5d20446f7665636f742072656164792e0d0a",
      "certificate": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
      "discovery_method": "PREDICTIVE_METHOD_24",
      "extended_service_name": "IMAPS",
      "imap": {
        "_encoding": {
          "banner": "DISPLAY_UTF8"
        },
        "banner": "* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot ready.\r\n",
        "start_tls": "a001 OK Begin TLS negotiation now.\r\n"
      },
      "labels": [
        "email"
      ],
      "observed_at": "2024-09-15T20:44:08.034575902Z",
      "perspective_id": "PERSPECTIVE_HE",
      "port": 143,
      "service_name": "IMAP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:dovecot:dovecot:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Dovecot",
          "product": "Dovecot",
          "other": {
            "family": "Dovecot"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "162.142.125.45",
      "tls": {
        "version_selected": "TLSv1_3",
        "cipher_selected": "TLS_CHACHA20_POLY1305_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX",
            "chain_fps_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
          "chain_fps_sha_256": [
            "9d7c3f1aa6ad2b2ec0d5cf1e246f8d9ae6cbc9fd0755ad37bb974b1f2fb603f3"
          ],
          "leaf_data": {
            "names": [
              "cardinals.unisonplatform.com"
            ],
            "subject_dn": "CN=cardinals.unisonplatform.com",
            "issuer_dn": "C=US, O=Let's Encrypt, CN=R10",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "9ceb5b4f82a98b6e405a333b05a7f5c670d32862b9663c8b04c1a64c34228400",
            "fingerprint": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
            "issuer": {
              "common_name": [
                "R10"
              ],
              "organization": [
                "Let's Encrypt"
              ],
              "country": [
                "US"
              ]
            },
            "subject": {
              "common_name": [
                "cardinals.unisonplatform.com"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "tS44hDQlnTsfTx0O/RDfs8Sf5/POarC0crMejw5VAJFzSb3/4aRw5gpPKtioOPfTjUp7Ehj8uBwy2OLX+T+Pqnw5bkrF4ZIi99nig9fwwvJgNdc4KgDvtWpbxFuClu961elFAZ1YV+U4sLTKOYC7qXMHDdwaKUaxO8KD0SOXac1IJmK/Y+R4QY8S+JMKEFriy0zbqMn5WOsn1lqVYBCA00ToCfOda1gcQoRDWm3J3Al7Z/0xQIE5HaIFt3LA/mc3y9fW03Zb+BYvibAodsboGG8SNZ+XeW6HFdgKX0sQ+PJTVfyWL3ucaBKxh/zwdh0Crwr2YghNNOHgDhyOYIyV/w==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "7745105fc1953d613bdec14993c8cc3d83b829007d98a697c70b7fc984bf1745"
            },
            "signature": {
              "signature_algorithm": "SHA256-RSA",
              "self_signed": false
            }
          },
          "chain": [
            {
              "fingerprint": "9d7c3f1aa6ad2b2ec0d5cf1e246f8d9ae6cbc9fd0755ad37bb974b1f2fb603f3",
              "subject_dn": "C=US, O=Let's Encrypt, CN=R10",
              "issuer_dn": "C=US, O=Internet Security Research Group, CN=ISRG Root X1"
            }
          ]
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "475c9302dc42b2751db9edcac3b74891",
        "ja4s": "t130200_1303_a56c5b993250",
        "versions": [
          {
            "tls_version": "TLSv1_3",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "475c9302dc42b2751db9edcac3b74891",
            "ja4s": "t130200_1303_a56c5b993250"
          }
        ]
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 403 Forbidden\r\nDate:  <REDACTED>\r\nServer: Apache\r\nLast-Modified: Tue, 10 Jan 2023 01:36:27 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 2968\r\nContent-Type: text/html\r\n",
      "banner_hashes": [
        "sha256:8a6cef34af6474e2155c48df23abc436f6596427dde1f18de6b94cdef0c05e3a"
      ],
      "banner_hex": "485454502f312e312034303320466f7262696464656e0d0a446174653a20203c52454441435445443e0d0a5365727665723a204170616368650d0a4c6173742d4d6f6469666965643a205475652c203130204a616e20323032332030313a33363a323720474d540d0a4163636570742d52616e6765733a2062797465730d0a436f6e74656e742d4c656e6774683a20323936380d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a",
      "certificate": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
      "discovery_method": "PREDICTIVE_METHOD_7",
      "extended_service_name": "HTTPS",
      "http": {
        "request": {
          "method": "GET",
          "uri": "https://162.219.249.76/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 403,
          "status_reason": "Forbidden",
          "headers": {
            "Date": [
              "<REDACTED>"
            ],
            "_encoding": {
              "Date": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Last_Modified": "DISPLAY_UTF8",
              "Accept_Ranges": "DISPLAY_UTF8"
            },
            "Server": [
              "Apache"
            ],
            "Content_Length": [
              "2968"
            ],
            "Content_Type": [
              "text/html"
            ],
            "Last_Modified": [
              "Tue, 10 Jan 2023 01:36:27 GMT"
            ],
            "Accept_Ranges": [
              "bytes"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>Softaculous Webuzo | Default Website Page</title>"
          ],
          "body_size": 2968,
          "body": "<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">\n<html xmlns=\"http://www.w3.org/1999/xhtml\">\n<head>\n<title>Softaculous Webuzo | Default Website Page</title>\n\n<style type=\"text/css\">\nbody,h1,div,class,p{\n\tpadding:0;\n\tmargin:0;\n\tfont-family:verdana,sans,serif;\n}\np{\n\tfont-size:12px;\n\tline-height:25px;\n\tcolor:#333;\t\n}\na{\n\tcolor:#333;\n\ttext-decoration:none;\n\tborder-bottom:2px dashed #333;\n}\na:hover{\n\tborder-bottom:0px dashed #333;\n}\n.logo{\n\twidth:250px;\n\theight:80px;\n\tmargin-left:100px;\t\n}\n#content{\n\twidth: 600px; height: 250px;\t\n\tbackground: #f4f4f4;\n\tpadding:0px 50px;\t\n\tborder-radius: 150px;\n\t-webkit-border-radius: 150px;\n\t-moz-border-radius: 150px;\t\n\tposition: relative;\n\tmargin: 60px auto 20px;\n\tborder-left:2px solid #a2dbf5;\n\tborder-right:2px solid #a2dbf5;\n\tborder-bottom:2px solid #a2dbf5;\n\tbox-shadow: 0 10px 10px -5px #666;\n}\n#content:after, #content:before{\n\tcontent: '';\n\tposition: absolute;\n\tbackground: #f4f4f4;\n\tz-index: -1;\n\tborder-left:2px solid #a2dbf5;\n\tborder-right:1px solid #a2dbf5;\n\tborder-top:2px solid #a2dbf5;\n}\n#content:after{\n\twidth: 300px; height: 300px;\n\ttop: -120px; \n\tleft: 120px;\t\n\tborder-radius: 250px;\n\t-webkit-border-radius: 250px;\n\t-moz-border-radius: 250px;\n}\n\n#content:before{\n\twidth: 250px; height: 250px;\n\ttop: -80px; \n\tright: 120px;\t\n\tborder-radius: 250px;\n\t-webkit-border-radius: 250px;\n\t-moz-border-radius: 250px;\n}\n.cloud{\n\twidth:100%;\n\theight:265px;\n\tbackground-image:url(\"https://images.softaculous.com/webuzo/noindex/cloud.png\");\n\tbackground-repeat:no-repeat;\n\tbackground-size:100%;\n\tposition:fixed;\n\tbottom:0px;\n\tz-index:9;\n}\n.cloud_bg{\n\twidth:100%;\n\theight:100px;\n\tbackground-color:#a2dbf5;\n\tposition:fixed;\n\tbottom:0;\n\tz-index:0;\n}\n</style>\n</head>\n<body>\n\t\t<div class=\"logo\"><img src=\"https://images.softaculous.com/webuzo/noindex/webuzo_logo.png\" alt=\"Softaculous Webuzo\" /></div>\n\t<center>\n\t\t\n\t\t<div id=\"content\">\t\t\t\n\t\t\t<p style=\"font-size:20px;font-weight:bolder;text-align:center;\">Default Website Page</p>\n\t\t\t\t<p>\n\t\t\t\t\tThis page is generated by <a href=\"https://www.webuzo.com\">Softaculous Webuzo</a>, a leading provider of software for the webhosting industry.\n\t\t\t\t\tYou are seeing this page because you have not uploaded the site content yet.\n\t\t\t\t</p>\n\t\t\t<p style=\"font-size:16px;font-weight:bolder;text-align:center;\">You can do following step:</p>\n\t\t\t\t\t<p><b>1.</b> Install a Web Application like a blog, forum, gallery, wiki, etc.<br> using <a href=\"https://www.webuzo.com\">Softaculous Webuzo</a>.</p>\n\t\t\t\t\t<p><b>2.</b> Upload some content using FTP / SSH.</p>\n\t\t\t\t\n\t\t\t\t<p>To log in to your Softaculous Webuzo Panel, please go to <font color=\"#000\">http://hostname:2002</font></p>\n\t\t</div>\t\n\t\t\t\n\t\t<div class=\"cloud\"><p style=\"text-align:left;padding-top:220px;padding-left:20px;\" >This Page is generated by <a href=\"https://www.webuzo.com\">Softaculous Webuzo.</a></p></div>\n\t\t<div class=\"cloud_bg\"></div>\n\t</center>\n</body>\n</html>",
          "body_hashes": [
            "sha256:0bb81142c1ec6f26892815d867633799a83d19cf4650111861ad58575864a3a8",
            "sha1:728171bc7da2f75cb764fdc8e6a8ad4485849446"
          ],
          "body_hash": "sha1:728171bc7da2f75cb764fdc8e6a8ad4485849446",
          "html_title": "Softaculous Webuzo | Default Website Page"
        },
        "supports_http2": false
      },
      "jarm": {
        "_encoding": {
          "fingerprint": "DISPLAY_HEX",
          "cipher_and_version_fingerprint": "DISPLAY_HEX",
          "tls_extensions_sha256": "DISPLAY_HEX"
        },
        "fingerprint": "3fd3fd15d3fd3fd21c42d42d000000e436b8a804d69893d3d67e44bb4f85f5",
        "cipher_and_version_fingerprint": "3fd3fd15d3fd3fd21c42d42d000000",
        "tls_extensions_sha256": "e436b8a804d69893d3d67e44bb4f85f5",
        "observed_at": "2024-09-15T10:58:29.673478982Z"
      },
      "observed_at": "2024-09-15T09:12:26.419357850Z",
      "perspective_id": "PERSPECTIVE_TELIA",
      "port": 443,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Apache",
          "product": "HTTPD",
          "other": {
            "family": "Apache"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.146.58",
      "tls": {
        "version_selected": "TLSv1_3",
        "cipher_selected": "TLS_AES_256_GCM_SHA384",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX",
            "chain_fps_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
          "chain_fps_sha_256": [
            "9d7c3f1aa6ad2b2ec0d5cf1e246f8d9ae6cbc9fd0755ad37bb974b1f2fb603f3"
          ],
          "leaf_data": {
            "names": [
              "cardinals.unisonplatform.com"
            ],
            "subject_dn": "CN=cardinals.unisonplatform.com",
            "issuer_dn": "C=US, O=Let's Encrypt, CN=R10",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "9ceb5b4f82a98b6e405a333b05a7f5c670d32862b9663c8b04c1a64c34228400",
            "fingerprint": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
            "issuer": {
              "common_name": [
                "R10"
              ],
              "organization": [
                "Let's Encrypt"
              ],
              "country": [
                "US"
              ]
            },
            "subject": {
              "common_name": [
                "cardinals.unisonplatform.com"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "tS44hDQlnTsfTx0O/RDfs8Sf5/POarC0crMejw5VAJFzSb3/4aRw5gpPKtioOPfTjUp7Ehj8uBwy2OLX+T+Pqnw5bkrF4ZIi99nig9fwwvJgNdc4KgDvtWpbxFuClu961elFAZ1YV+U4sLTKOYC7qXMHDdwaKUaxO8KD0SOXac1IJmK/Y+R4QY8S+JMKEFriy0zbqMn5WOsn1lqVYBCA00ToCfOda1gcQoRDWm3J3Al7Z/0xQIE5HaIFt3LA/mc3y9fW03Zb+BYvibAodsboGG8SNZ+XeW6HFdgKX0sQ+PJTVfyWL3ucaBKxh/zwdh0Crwr2YghNNOHgDhyOYIyV/w==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "7745105fc1953d613bdec14993c8cc3d83b829007d98a697c70b7fc984bf1745"
            },
            "signature": {
              "signature_algorithm": "SHA256-RSA",
              "self_signed": false
            }
          },
          "chain": [
            {
              "fingerprint": "9d7c3f1aa6ad2b2ec0d5cf1e246f8d9ae6cbc9fd0755ad37bb974b1f2fb603f3",
              "subject_dn": "C=US, O=Let's Encrypt, CN=R10",
              "issuer_dn": "C=US, O=Internet Security Research Group, CN=ISRG Root X1"
            }
          ]
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "15af977ce25de452b96affa2addb1036",
        "ja4s": "t130200_1302_a56c5b993250",
        "versions": [
          {
            "tls_version": "TLSv1_3",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "15af977ce25de452b96affa2addb1036",
            "ja4s": "t130200_1302_a56c5b993250"
          },
          {
            "tls_version": "TLSv1_2",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "86db15debe514144d61a8294470559a6",
            "ja4s": "t120300_cca8_cbb8871a0652"
          },
          {
            "tls_version": "TLSv1_1",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "24abcc4acb0869d8e569d403dfe55a99",
            "ja4s": "t110300_c013_cbb8871a0652"
          }
        ]
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "smtp",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "220-cardinals.unisonplatform.com ESMTP Exim 4.96.2 #2 Sun, 15 Sep 2024 09:11:42 +0000 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n",
      "banner_hashes": [
        "sha256:91740901985df85e2901771af7de31e72f2d33e7474c2c2deaf43fd8ad5c8944"
      ],
      "banner_hex": "3232302d63617264696e616c732e756e69736f6e706c6174666f726d2e636f6d2045534d5450204578696d20342e39362e322023322053756e2c2031352053657020323032342030393a31313a3432202b30303030200d0a3232302d576520646f206e6f7420617574686f72697a652074686520757365206f6620746869732073797374656d20746f207472616e73706f727420756e736f6c6963697465642c200d0a32323020616e642f6f722062756c6b20652d6d61696c2e0d0a",
      "certificate": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
      "discovery_method": "IPV4_WALK_FULL_PRIORITY_1",
      "extended_service_name": "SMTPS",
      "labels": [
        "email"
      ],
      "observed_at": "2024-09-15T09:12:10.460314624Z",
      "perspective_id": "PERSPECTIVE_TELIA",
      "port": 465,
      "service_name": "SMTP",
      "smtp": {
        "_encoding": {
          "banner": "DISPLAY_UTF8",
          "ehlo": "DISPLAY_UTF8"
        },
        "banner": "220-cardinals.unisonplatform.com ESMTP Exim 4.96.2 #2 Sun, 15 Sep 2024 09:11:42 +0000 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n",
        "ehlo": "250-cardinals.unisonplatform.com Hello www.censys.io [167.94.146.58]\r\n250-SIZE 52428800\r\n250-8BITMIME\r\n250-PIPELINING\r\n250-PIPECONNECT\r\n250-AUTH PLAIN LOGIN\r\n250 HELP\r\n"
      },
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:exim:exim:4.96.2:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "exim",
          "product": "exim",
          "version": "4.96.2",
          "other": {
            "family": "exim"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.146.58",
      "tls": {
        "version_selected": "TLSv1_3",
        "cipher_selected": "TLS_CHACHA20_POLY1305_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX",
            "chain_fps_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
          "chain_fps_sha_256": [
            "9d7c3f1aa6ad2b2ec0d5cf1e246f8d9ae6cbc9fd0755ad37bb974b1f2fb603f3"
          ],
          "leaf_data": {
            "names": [
              "cardinals.unisonplatform.com"
            ],
            "subject_dn": "CN=cardinals.unisonplatform.com",
            "issuer_dn": "C=US, O=Let's Encrypt, CN=R10",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "9ceb5b4f82a98b6e405a333b05a7f5c670d32862b9663c8b04c1a64c34228400",
            "fingerprint": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
            "issuer": {
              "common_name": [
                "R10"
              ],
              "organization": [
                "Let's Encrypt"
              ],
              "country": [
                "US"
              ]
            },
            "subject": {
              "common_name": [
                "cardinals.unisonplatform.com"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "tS44hDQlnTsfTx0O/RDfs8Sf5/POarC0crMejw5VAJFzSb3/4aRw5gpPKtioOPfTjUp7Ehj8uBwy2OLX+T+Pqnw5bkrF4ZIi99nig9fwwvJgNdc4KgDvtWpbxFuClu961elFAZ1YV+U4sLTKOYC7qXMHDdwaKUaxO8KD0SOXac1IJmK/Y+R4QY8S+JMKEFriy0zbqMn5WOsn1lqVYBCA00ToCfOda1gcQoRDWm3J3Al7Z/0xQIE5HaIFt3LA/mc3y9fW03Zb+BYvibAodsboGG8SNZ+XeW6HFdgKX0sQ+PJTVfyWL3ucaBKxh/zwdh0Crwr2YghNNOHgDhyOYIyV/w==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "7745105fc1953d613bdec14993c8cc3d83b829007d98a697c70b7fc984bf1745"
            },
            "signature": {
              "signature_algorithm": "SHA256-RSA",
              "self_signed": false
            }
          },
          "chain": [
            {
              "fingerprint": "9d7c3f1aa6ad2b2ec0d5cf1e246f8d9ae6cbc9fd0755ad37bb974b1f2fb603f3",
              "subject_dn": "C=US, O=Let's Encrypt, CN=R10",
              "issuer_dn": "C=US, O=Internet Security Research Group, CN=ISRG Root X1"
            }
          ]
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "475c9302dc42b2751db9edcac3b74891",
        "ja4s": "t130200_1303_a56c5b993250",
        "versions": [
          {
            "tls_version": "TLSv1_3",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "475c9302dc42b2751db9edcac3b74891",
            "ja4s": "t130200_1303_a56c5b993250"
          },
          {
            "tls_version": "TLSv1_2",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "d25619cb77d3219fc9fc14cb6b35eacc",
            "ja4s": "t120200_cca8_344b4dce5a52"
          }
        ]
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "smtp",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "220-cardinals.unisonplatform.com ESMTP Exim 4.96.2 #2 Mon, 16 Sep 2024 01:40:03 +0000 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n",
      "banner_hashes": [
        "sha256:124afcc0c710c6ea20531f32d0d45276fb49ed7f987818764841763d91fef99a"
      ],
      "banner_hex": "3232302d63617264696e616c732e756e69736f6e706c6174666f726d2e636f6d2045534d5450204578696d20342e39362e32202332204d6f6e2c2031362053657020323032342030313a34303a3033202b30303030200d0a3232302d576520646f206e6f7420617574686f72697a652074686520757365206f6620746869732073797374656d20746f207472616e73706f727420756e736f6c6963697465642c200d0a32323020616e642f6f722062756c6b20652d6d61696c2e0d0a",
      "certificate": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
      "discovery_method": "PREDICTIVE_METHOD_11",
      "extended_service_name": "SMTP-STARTTLS",
      "labels": [
        "email"
      ],
      "observed_at": "2024-09-16T01:40:31.665765765Z",
      "perspective_id": "PERSPECTIVE_HE",
      "port": 587,
      "service_name": "SMTP",
      "smtp": {
        "_encoding": {
          "banner": "DISPLAY_UTF8",
          "ehlo": "DISPLAY_UTF8",
          "start_tls": "DISPLAY_UTF8"
        },
        "banner": "220-cardinals.unisonplatform.com ESMTP Exim 4.96.2 #2 Mon, 16 Sep 2024 01:40:03 +0000 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n",
        "ehlo": "250-cardinals.unisonplatform.com Hello www.censys.io [162.142.125.222]\r\n250-SIZE 52428800\r\n250-8BITMIME\r\n250-PIPELINING\r\n250-PIPECONNECT\r\n250-STARTTLS\r\n250 HELP\r\n",
        "start_tls": "220 TLS go ahead\r\n"
      },
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "product": "linux",
          "source": "OSI_TRANSPORT_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:exim:exim:4.96.2:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "exim",
          "product": "exim",
          "version": "4.96.2",
          "other": {
            "family": "exim"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "162.142.125.222",
      "tls": {
        "version_selected": "TLSv1_3",
        "cipher_selected": "TLS_CHACHA20_POLY1305_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX",
            "chain_fps_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
          "chain_fps_sha_256": [
            "9d7c3f1aa6ad2b2ec0d5cf1e246f8d9ae6cbc9fd0755ad37bb974b1f2fb603f3"
          ],
          "leaf_data": {
            "names": [
              "cardinals.unisonplatform.com"
            ],
            "subject_dn": "CN=cardinals.unisonplatform.com",
            "issuer_dn": "C=US, O=Let's Encrypt, CN=R10",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "9ceb5b4f82a98b6e405a333b05a7f5c670d32862b9663c8b04c1a64c34228400",
            "fingerprint": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
            "issuer": {
              "common_name": [
                "R10"
              ],
              "organization": [
                "Let's Encrypt"
              ],
              "country": [
                "US"
              ]
            },
            "subject": {
              "common_name": [
                "cardinals.unisonplatform.com"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "tS44hDQlnTsfTx0O/RDfs8Sf5/POarC0crMejw5VAJFzSb3/4aRw5gpPKtioOPfTjUp7Ehj8uBwy2OLX+T+Pqnw5bkrF4ZIi99nig9fwwvJgNdc4KgDvtWpbxFuClu961elFAZ1YV+U4sLTKOYC7qXMHDdwaKUaxO8KD0SOXac1IJmK/Y+R4QY8S+JMKEFriy0zbqMn5WOsn1lqVYBCA00ToCfOda1gcQoRDWm3J3Al7Z/0xQIE5HaIFt3LA/mc3y9fW03Zb+BYvibAodsboGG8SNZ+XeW6HFdgKX0sQ+PJTVfyWL3ucaBKxh/zwdh0Crwr2YghNNOHgDhyOYIyV/w==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "7745105fc1953d613bdec14993c8cc3d83b829007d98a697c70b7fc984bf1745"
            },
            "signature": {
              "signature_algorithm": "SHA256-RSA",
              "self_signed": false
            }
          },
          "chain": [
            {
              "fingerprint": "9d7c3f1aa6ad2b2ec0d5cf1e246f8d9ae6cbc9fd0755ad37bb974b1f2fb603f3",
              "subject_dn": "C=US, O=Let's Encrypt, CN=R10",
              "issuer_dn": "C=US, O=Internet Security Research Group, CN=ISRG Root X1"
            }
          ]
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "475c9302dc42b2751db9edcac3b74891",
        "ja4s": "t130200_1303_a56c5b993250"
      },
      "transport_fingerprint": {
        "id": 72,
        "os": "Ubuntu / Debian / CentOS",
        "raw": "28960,64,true,MSTNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 302 Found\r\nDate:  <REDACTED>\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/7.4.33\r\nServer: Webuzo\r\nSet-Cookie: SOFTCookies398_sid=CsMVlB3KUYU3qse5y7ojYNAPeeWtQ3dc; path=/sessCsMVlB3KUYU3qse5/\r\nLocation: index.php?act=login&redirect=%2Findex.php\r\n",
      "banner_hashes": [
        "sha256:c54cbdd05f54b818ba8a5ca4a68374e9252cdc3cfb58264289fc6fcec44c813a"
      ],
      "banner_hex": "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",
      "discovery_method": "PREDICTIVE_METHOD_30",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://162.219.249.76:2002/index.php",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 302,
          "status_reason": "Found",
          "headers": {
            "Server": [
              "Webuzo"
            ],
            "_encoding": {
              "Server": "DISPLAY_UTF8",
              "Transfer_Encoding": "DISPLAY_UTF8",
              "Location": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Set_Cookie": "DISPLAY_UTF8",
              "X_Powered_By": "DISPLAY_UTF8"
            },
            "Transfer_Encoding": [
              "chunked"
            ],
            "Location": [
              "index.php?act=login&redirect=%2Findex.php"
            ],
            "Content_Type": [
              "text/html; charset=UTF-8"
            ],
            "Connection": [
              "keep-alive"
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Set_Cookie": [
              "SOFTCookies398_sid=CsMVlB3KUYU3qse5y7ojYNAPeeWtQ3dc; path=/sessCsMVlB3KUYU3qse5/"
            ],
            "X_Powered_By": [
              "PHP/7.4.33"
            ]
          },
          "body_size": 0
        },
        "supports_http2": false
      },
      "observed_at": "2024-09-12T20:01:28.135492853Z",
      "pending_removal_since": "2024-09-15T11:11:13.335011390Z",
      "perspective_id": "PERSPECTIVE_HE",
      "port": 2002,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:*:php:7.4.33:*:*:*:*:*:*:*",
          "part": "a",
          "product": "PHP",
          "version": "7.4.33",
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "162.142.125.34",
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 302 Found\r\nDate:  <REDACTED>\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/7.4.33\r\nServer: Webuzo\r\nSet-Cookie: SOFTCookies398_sid=RRnQiSA5GzbaMa2aieMt126ufUfThEK8; path=/sessRRnQiSA5GzbaMa2a/\r\nLocation: index.php?act=login&redirect=%2Findex.php\r\n",
      "banner_hashes": [
        "sha256:00bf525ffa960d1d0c04af95fccf05d79631257363b64a608355ec967c7e88bc"
      ],
      "banner_hex": "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",
      "certificate": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
      "discovery_method": "PREDICTIVE_METHOD_25",
      "extended_service_name": "HTTPS",
      "http": {
        "request": {
          "method": "GET",
          "uri": "https://162.219.249.76:2003/index.php",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 302,
          "status_reason": "Found",
          "headers": {
            "Server": [
              "Webuzo"
            ],
            "_encoding": {
              "Server": "DISPLAY_UTF8",
              "Transfer_Encoding": "DISPLAY_UTF8",
              "Location": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Set_Cookie": "DISPLAY_UTF8",
              "X_Powered_By": "DISPLAY_UTF8"
            },
            "Transfer_Encoding": [
              "chunked"
            ],
            "Location": [
              "index.php?act=login&redirect=%2Findex.php"
            ],
            "Content_Type": [
              "text/html; charset=UTF-8"
            ],
            "Connection": [
              "keep-alive"
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Set_Cookie": [
              "SOFTCookies398_sid=RRnQiSA5GzbaMa2aieMt126ufUfThEK8; path=/sessRRnQiSA5GzbaMa2a/"
            ],
            "X_Powered_By": [
              "PHP/7.4.33"
            ]
          },
          "body_size": 0
        },
        "supports_http2": false
      },
      "observed_at": "2024-09-14T16:51:18.884625316Z",
      "perspective_id": "PERSPECTIVE_PCCW",
      "port": 2003,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:*:php:7.4.33:*:*:*:*:*:*:*",
          "part": "a",
          "product": "PHP",
          "version": "7.4.33",
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "199.45.154.136",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX",
            "chain_fps_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
          "chain_fps_sha_256": [
            "9d7c3f1aa6ad2b2ec0d5cf1e246f8d9ae6cbc9fd0755ad37bb974b1f2fb603f3"
          ],
          "leaf_data": {
            "names": [
              "cardinals.unisonplatform.com"
            ],
            "subject_dn": "CN=cardinals.unisonplatform.com",
            "issuer_dn": "C=US, O=Let's Encrypt, CN=R10",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "9ceb5b4f82a98b6e405a333b05a7f5c670d32862b9663c8b04c1a64c34228400",
            "fingerprint": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
            "issuer": {
              "common_name": [
                "R10"
              ],
              "organization": [
                "Let's Encrypt"
              ],
              "country": [
                "US"
              ]
            },
            "subject": {
              "common_name": [
                "cardinals.unisonplatform.com"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "tS44hDQlnTsfTx0O/RDfs8Sf5/POarC0crMejw5VAJFzSb3/4aRw5gpPKtioOPfTjUp7Ehj8uBwy2OLX+T+Pqnw5bkrF4ZIi99nig9fwwvJgNdc4KgDvtWpbxFuClu961elFAZ1YV+U4sLTKOYC7qXMHDdwaKUaxO8KD0SOXac1IJmK/Y+R4QY8S+JMKEFriy0zbqMn5WOsn1lqVYBCA00ToCfOda1gcQoRDWm3J3Al7Z/0xQIE5HaIFt3LA/mc3y9fW03Zb+BYvibAodsboGG8SNZ+XeW6HFdgKX0sQ+PJTVfyWL3ucaBKxh/zwdh0Crwr2YghNNOHgDhyOYIyV/w==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "7745105fc1953d613bdec14993c8cc3d83b829007d98a697c70b7fc984bf1745"
            },
            "signature": {
              "signature_algorithm": "SHA256-RSA",
              "self_signed": false
            }
          },
          "chain": [
            {
              "fingerprint": "9d7c3f1aa6ad2b2ec0d5cf1e246f8d9ae6cbc9fd0755ad37bb974b1f2fb603f3",
              "subject_dn": "C=US, O=Let's Encrypt, CN=R10",
              "issuer_dn": "C=US, O=Internet Security Research Group, CN=ISRG Root X1"
            }
          ]
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 29
          }
        },
        "session_ticket": {
          "length": 176,
          "lifetime_hint": 300
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "e35df3e00ca4ef31d42b34bebaa2f86e",
        "ja4s": "t120300_c030_bec8bdbaef8a",
        "versions": [
          {
            "tls_version": "TLSv1_2",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "e35df3e00ca4ef31d42b34bebaa2f86e",
            "ja4s": "t120300_c030_bec8bdbaef8a"
          }
        ]
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 302 Found\r\nDate:  <REDACTED>\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/7.4.33\r\nServer: Webuzo\r\nSet-Cookie: SOFTCookies398_sid=BzXCVB4XdCAMkijTZrkqDhhvs7dLOtBM; path=/sessBzXCVB4XdCAMkijT/\r\nLocation: index.php?act=login&redirect=%2Findex.php\r\n",
      "banner_hashes": [
        "sha256:0c702b5ff5512101c20332377a5a59c75453dc7cf73f5b5a5b2701cb408b6fbf"
      ],
      "banner_hex": "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",
      "discovery_method": "PREDICTIVE_METHOD_25",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://162.219.249.76:2004/index.php",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 302,
          "status_reason": "Found",
          "headers": {
            "Server": [
              "Webuzo"
            ],
            "_encoding": {
              "Server": "DISPLAY_UTF8",
              "Transfer_Encoding": "DISPLAY_UTF8",
              "Location": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Set_Cookie": "DISPLAY_UTF8",
              "X_Powered_By": "DISPLAY_UTF8"
            },
            "Transfer_Encoding": [
              "chunked"
            ],
            "Location": [
              "index.php?act=login&redirect=%2Findex.php"
            ],
            "Content_Type": [
              "text/html; charset=UTF-8"
            ],
            "Connection": [
              "keep-alive"
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Set_Cookie": [
              "SOFTCookies398_sid=BzXCVB4XdCAMkijTZrkqDhhvs7dLOtBM; path=/sessBzXCVB4XdCAMkijT/"
            ],
            "X_Powered_By": [
              "PHP/7.4.33"
            ]
          },
          "body_size": 0
        },
        "supports_http2": false
      },
      "observed_at": "2024-09-14T01:34:03.638420321Z",
      "pending_removal_since": "2024-09-15T23:39:20.433942149Z",
      "perspective_id": "PERSPECTIVE_HE",
      "port": 2004,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:*:php:7.4.33:*:*:*:*:*:*:*",
          "part": "a",
          "product": "PHP",
          "version": "7.4.33",
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "162.142.125.198",
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 302 Found\r\nDate:  <REDACTED>\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/7.4.33\r\nServer: Webuzo\r\nSet-Cookie: SOFTCookies398_sid=TFyF29s7EHrqULQJnfR2i75VqRNZqM2R; path=/sessTFyF29s7EHrqULQJ/\r\nLocation: index.php?act=login&redirect=%2Findex.php\r\n",
      "banner_hashes": [
        "sha256:a06441319b54004661ac89aaa8c82fc96f44e7d6c936a5b870db29a23a53af69"
      ],
      "banner_hex": "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",
      "certificate": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
      "discovery_method": "PREDICTIVE_METHOD_25",
      "extended_service_name": "HTTPS",
      "http": {
        "request": {
          "method": "GET",
          "uri": "https://162.219.249.76:2005/index.php",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 302,
          "status_reason": "Found",
          "headers": {
            "Server": [
              "Webuzo"
            ],
            "_encoding": {
              "Server": "DISPLAY_UTF8",
              "Transfer_Encoding": "DISPLAY_UTF8",
              "Location": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Set_Cookie": "DISPLAY_UTF8",
              "X_Powered_By": "DISPLAY_UTF8"
            },
            "Transfer_Encoding": [
              "chunked"
            ],
            "Location": [
              "index.php?act=login&redirect=%2Findex.php"
            ],
            "Content_Type": [
              "text/html; charset=UTF-8"
            ],
            "Connection": [
              "keep-alive"
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Set_Cookie": [
              "SOFTCookies398_sid=TFyF29s7EHrqULQJnfR2i75VqRNZqM2R; path=/sessTFyF29s7EHrqULQJ/"
            ],
            "X_Powered_By": [
              "PHP/7.4.33"
            ]
          },
          "body_size": 0
        },
        "supports_http2": false
      },
      "observed_at": "2024-09-14T18:20:44.163084038Z",
      "perspective_id": "PERSPECTIVE_HE",
      "port": 2005,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:*:php:7.4.33:*:*:*:*:*:*:*",
          "part": "a",
          "product": "PHP",
          "version": "7.4.33",
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "162.142.125.208",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX",
            "chain_fps_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
          "chain_fps_sha_256": [
            "9d7c3f1aa6ad2b2ec0d5cf1e246f8d9ae6cbc9fd0755ad37bb974b1f2fb603f3"
          ],
          "leaf_data": {
            "names": [
              "cardinals.unisonplatform.com"
            ],
            "subject_dn": "CN=cardinals.unisonplatform.com",
            "issuer_dn": "C=US, O=Let's Encrypt, CN=R10",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "9ceb5b4f82a98b6e405a333b05a7f5c670d32862b9663c8b04c1a64c34228400",
            "fingerprint": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
            "issuer": {
              "common_name": [
                "R10"
              ],
              "organization": [
                "Let's Encrypt"
              ],
              "country": [
                "US"
              ]
            },
            "subject": {
              "common_name": [
                "cardinals.unisonplatform.com"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "tS44hDQlnTsfTx0O/RDfs8Sf5/POarC0crMejw5VAJFzSb3/4aRw5gpPKtioOPfTjUp7Ehj8uBwy2OLX+T+Pqnw5bkrF4ZIi99nig9fwwvJgNdc4KgDvtWpbxFuClu961elFAZ1YV+U4sLTKOYC7qXMHDdwaKUaxO8KD0SOXac1IJmK/Y+R4QY8S+JMKEFriy0zbqMn5WOsn1lqVYBCA00ToCfOda1gcQoRDWm3J3Al7Z/0xQIE5HaIFt3LA/mc3y9fW03Zb+BYvibAodsboGG8SNZ+XeW6HFdgKX0sQ+PJTVfyWL3ucaBKxh/zwdh0Crwr2YghNNOHgDhyOYIyV/w==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "7745105fc1953d613bdec14993c8cc3d83b829007d98a697c70b7fc984bf1745"
            },
            "signature": {
              "signature_algorithm": "SHA256-RSA",
              "self_signed": false
            }
          },
          "chain": [
            {
              "fingerprint": "9d7c3f1aa6ad2b2ec0d5cf1e246f8d9ae6cbc9fd0755ad37bb974b1f2fb603f3",
              "subject_dn": "C=US, O=Let's Encrypt, CN=R10",
              "issuer_dn": "C=US, O=Internet Security Research Group, CN=ISRG Root X1"
            }
          ]
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 29
          }
        },
        "session_ticket": {
          "length": 176,
          "lifetime_hint": 300
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "e35df3e00ca4ef31d42b34bebaa2f86e",
        "ja4s": "t120300_c030_bec8bdbaef8a",
        "versions": [
          {
            "tls_version": "TLSv1_2",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "e35df3e00ca4ef31d42b34bebaa2f86e",
            "ja4s": "t120300_c030_bec8bdbaef8a"
          }
        ]
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 302 Found\r\nDate:  <REDACTED>\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/7.4.33\r\nServer: Webuzo\r\nSet-Cookie: SOFTCookies398_sid=wkEVktHnHls0RDwG5lkgpaUNbSHYdL5W; path=/sesswkEVktHnHls0RDwG/\r\nLocation: index.php?act=login&redirect=%2Findex.php\r\n",
      "banner_hashes": [
        "sha256:fffd059f63c057fd971cddb5df1e373c9b1f6f6af687e9d8b4350862830d4a0b"
      ],
      "banner_hex": "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",
      "discovery_method": "PREDICTIVE_METHOD_20",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://162.219.249.76:2082/index.php",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 302,
          "status_reason": "Found",
          "headers": {
            "Server": [
              "Webuzo"
            ],
            "_encoding": {
              "Server": "DISPLAY_UTF8",
              "Transfer_Encoding": "DISPLAY_UTF8",
              "Location": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Set_Cookie": "DISPLAY_UTF8",
              "X_Powered_By": "DISPLAY_UTF8"
            },
            "Transfer_Encoding": [
              "chunked"
            ],
            "Location": [
              "index.php?act=login&redirect=%2Findex.php"
            ],
            "Content_Type": [
              "text/html; charset=UTF-8"
            ],
            "Connection": [
              "keep-alive"
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Set_Cookie": [
              "SOFTCookies398_sid=wkEVktHnHls0RDwG5lkgpaUNbSHYdL5W; path=/sesswkEVktHnHls0RDwG/"
            ],
            "X_Powered_By": [
              "PHP/7.4.33"
            ]
          },
          "body_size": 0
        },
        "supports_http2": false
      },
      "observed_at": "2024-09-12T19:48:54.536939714Z",
      "pending_removal_since": "2024-09-15T11:07:29.081211606Z",
      "perspective_id": "PERSPECTIVE_NTT_2",
      "port": 2082,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:*:php:7.4.33:*:*:*:*:*:*:*",
          "part": "a",
          "product": "PHP",
          "version": "7.4.33",
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "199.45.155.108",
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 302 Found\r\nDate:  <REDACTED>\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/7.4.33\r\nServer: Webuzo\r\nSet-Cookie: SOFTCookies398_sid=CIq1aIlNjTqzg4G3OlaXgnZVEZj8SuOx; path=/sessCIq1aIlNjTqzg4G3/\r\nLocation: index.php?act=login&redirect=%2Findex.php\r\n",
      "banner_hashes": [
        "sha256:5b2cf52c297b0c3ee0f182e7bda6a4453c516e6a10b893e123356b014e58849e"
      ],
      "banner_hex": "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",
      "certificate": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
      "discovery_method": "PREDICTIVE_METHOD_12",
      "extended_service_name": "HTTPS",
      "http": {
        "request": {
          "method": "GET",
          "uri": "https://162.219.249.76:2083/index.php",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 302,
          "status_reason": "Found",
          "headers": {
            "Server": [
              "Webuzo"
            ],
            "_encoding": {
              "Server": "DISPLAY_UTF8",
              "Transfer_Encoding": "DISPLAY_UTF8",
              "Location": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Set_Cookie": "DISPLAY_UTF8",
              "X_Powered_By": "DISPLAY_UTF8"
            },
            "Transfer_Encoding": [
              "chunked"
            ],
            "Location": [
              "index.php?act=login&redirect=%2Findex.php"
            ],
            "Content_Type": [
              "text/html; charset=UTF-8"
            ],
            "Connection": [
              "keep-alive"
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Set_Cookie": [
              "SOFTCookies398_sid=CIq1aIlNjTqzg4G3OlaXgnZVEZj8SuOx; path=/sessCIq1aIlNjTqzg4G3/"
            ],
            "X_Powered_By": [
              "PHP/7.4.33"
            ]
          },
          "body_size": 0
        },
        "supports_http2": false
      },
      "observed_at": "2024-09-15T16:55:40.524436338Z",
      "perspective_id": "PERSPECTIVE_HE",
      "port": 2083,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:*:php:7.4.33:*:*:*:*:*:*:*",
          "part": "a",
          "product": "PHP",
          "version": "7.4.33",
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "162.142.125.35",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX",
            "chain_fps_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
          "chain_fps_sha_256": [
            "9d7c3f1aa6ad2b2ec0d5cf1e246f8d9ae6cbc9fd0755ad37bb974b1f2fb603f3"
          ],
          "leaf_data": {
            "names": [
              "cardinals.unisonplatform.com"
            ],
            "subject_dn": "CN=cardinals.unisonplatform.com",
            "issuer_dn": "C=US, O=Let's Encrypt, CN=R10",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "9ceb5b4f82a98b6e405a333b05a7f5c670d32862b9663c8b04c1a64c34228400",
            "fingerprint": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
            "issuer": {
              "common_name": [
                "R10"
              ],
              "organization": [
                "Let's Encrypt"
              ],
              "country": [
                "US"
              ]
            },
            "subject": {
              "common_name": [
                "cardinals.unisonplatform.com"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "tS44hDQlnTsfTx0O/RDfs8Sf5/POarC0crMejw5VAJFzSb3/4aRw5gpPKtioOPfTjUp7Ehj8uBwy2OLX+T+Pqnw5bkrF4ZIi99nig9fwwvJgNdc4KgDvtWpbxFuClu961elFAZ1YV+U4sLTKOYC7qXMHDdwaKUaxO8KD0SOXac1IJmK/Y+R4QY8S+JMKEFriy0zbqMn5WOsn1lqVYBCA00ToCfOda1gcQoRDWm3J3Al7Z/0xQIE5HaIFt3LA/mc3y9fW03Zb+BYvibAodsboGG8SNZ+XeW6HFdgKX0sQ+PJTVfyWL3ucaBKxh/zwdh0Crwr2YghNNOHgDhyOYIyV/w==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "7745105fc1953d613bdec14993c8cc3d83b829007d98a697c70b7fc984bf1745"
            },
            "signature": {
              "signature_algorithm": "SHA256-RSA",
              "self_signed": false
            }
          },
          "chain": [
            {
              "fingerprint": "9d7c3f1aa6ad2b2ec0d5cf1e246f8d9ae6cbc9fd0755ad37bb974b1f2fb603f3",
              "subject_dn": "C=US, O=Let's Encrypt, CN=R10",
              "issuer_dn": "C=US, O=Internet Security Research Group, CN=ISRG Root X1"
            }
          ]
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 29
          }
        },
        "session_ticket": {
          "length": 176,
          "lifetime_hint": 300
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "e35df3e00ca4ef31d42b34bebaa2f86e",
        "ja4s": "t120300_c030_bec8bdbaef8a",
        "versions": [
          {
            "tls_version": "TLSv1_2",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "e35df3e00ca4ef31d42b34bebaa2f86e",
            "ja4s": "t120300_c030_bec8bdbaef8a"
          }
        ]
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 302 Found\r\nDate:  <REDACTED>\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/7.4.33\r\nServer: Webuzo\r\nSet-Cookie: SOFTCookies398_sid=TdnNDsKjsdUuyjT03Nb5nSttaNsUDnRK; path=/sessTdnNDsKjsdUuyjT0/\r\nLocation: index.php?act=login&redirect=%2Findex.php\r\n",
      "banner_hashes": [
        "sha256:6c2cd9c5cbfdb3014f33a1d0cddcd35a3cdf12616d1e9912e21c6f2109d98dc8"
      ],
      "banner_hex": "485454502f312e312033303220466f756e640d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d547970653a20746578742f68746d6c3b20636861727365743d5554462d380d0a5472616e736665722d456e636f64696e673a206368756e6b65640d0a436f6e6e656374696f6e3a206b6565702d616c6976650d0a582d506f77657265642d42793a205048502f372e342e33330d0a5365727665723a20576562757a6f0d0a5365742d436f6f6b69653a20534f4654436f6f6b6965733339385f7369643d54646e4e44734b6a73645575796a5430334e62356e537474614e7355446e524b3b20706174683d2f7365737354646e4e44734b6a73645575796a54302f0d0a4c6f636174696f6e3a20696e6465782e7068703f6163743d6c6f67696e2672656469726563743d253246696e6465782e7068700d0a",
      "discovery_method": "PREDICTIVE_METHOD_25",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://162.219.249.76:2086/index.php",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 302,
          "status_reason": "Found",
          "headers": {
            "Server": [
              "Webuzo"
            ],
            "_encoding": {
              "Server": "DISPLAY_UTF8",
              "Transfer_Encoding": "DISPLAY_UTF8",
              "Location": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Set_Cookie": "DISPLAY_UTF8",
              "X_Powered_By": "DISPLAY_UTF8"
            },
            "Transfer_Encoding": [
              "chunked"
            ],
            "Location": [
              "index.php?act=login&redirect=%2Findex.php"
            ],
            "Content_Type": [
              "text/html; charset=UTF-8"
            ],
            "Connection": [
              "keep-alive"
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Set_Cookie": [
              "SOFTCookies398_sid=TdnNDsKjsdUuyjT03Nb5nSttaNsUDnRK; path=/sessTdnNDsKjsdUuyjT0/"
            ],
            "X_Powered_By": [
              "PHP/7.4.33"
            ]
          },
          "body_size": 0
        },
        "supports_http2": false
      },
      "observed_at": "2024-09-15T21:23:09.837780568Z",
      "pending_removal_since": "2024-09-15T21:47:46.735938023Z",
      "perspective_id": "PERSPECTIVE_HE",
      "port": 2086,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:*:php:7.4.33:*:*:*:*:*:*:*",
          "part": "a",
          "product": "PHP",
          "version": "7.4.33",
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "162.142.125.216",
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 302 Found\r\nDate:  <REDACTED>\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/7.4.33\r\nServer: Webuzo\r\nSet-Cookie: SOFTCookies398_sid=XHsweDV1S87TXMFt5msy9CqhQJ5nwopc; path=/sessXHsweDV1S87TXMFt/\r\nLocation: index.php?act=login&redirect=%2Findex.php\r\n",
      "banner_hashes": [
        "sha256:432d6f3ec3aef40e9b2c31fe94be58881aeb596526c00228597025a250669fbc"
      ],
      "banner_hex": "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",
      "certificate": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
      "discovery_method": "PREDICTIVE_METHOD_7",
      "extended_service_name": "HTTPS",
      "http": {
        "request": {
          "method": "GET",
          "uri": "https://162.219.249.76:2087/index.php",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 302,
          "status_reason": "Found",
          "headers": {
            "Server": [
              "Webuzo"
            ],
            "_encoding": {
              "Server": "DISPLAY_UTF8",
              "Transfer_Encoding": "DISPLAY_UTF8",
              "Location": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Set_Cookie": "DISPLAY_UTF8",
              "X_Powered_By": "DISPLAY_UTF8"
            },
            "Transfer_Encoding": [
              "chunked"
            ],
            "Location": [
              "index.php?act=login&redirect=%2Findex.php"
            ],
            "Content_Type": [
              "text/html; charset=UTF-8"
            ],
            "Connection": [
              "keep-alive"
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Set_Cookie": [
              "SOFTCookies398_sid=XHsweDV1S87TXMFt5msy9CqhQJ5nwopc; path=/sessXHsweDV1S87TXMFt/"
            ],
            "X_Powered_By": [
              "PHP/7.4.33"
            ]
          },
          "body_size": 0
        },
        "supports_http2": false
      },
      "observed_at": "2024-09-16T01:27:02.119155924Z",
      "perspective_id": "PERSPECTIVE_HE",
      "port": 2087,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:*:php:7.4.33:*:*:*:*:*:*:*",
          "part": "a",
          "product": "PHP",
          "version": "7.4.33",
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "162.142.125.45",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX",
            "chain_fps_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
          "chain_fps_sha_256": [
            "9d7c3f1aa6ad2b2ec0d5cf1e246f8d9ae6cbc9fd0755ad37bb974b1f2fb603f3"
          ],
          "leaf_data": {
            "names": [
              "cardinals.unisonplatform.com"
            ],
            "subject_dn": "CN=cardinals.unisonplatform.com",
            "issuer_dn": "C=US, O=Let's Encrypt, CN=R10",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "9ceb5b4f82a98b6e405a333b05a7f5c670d32862b9663c8b04c1a64c34228400",
            "fingerprint": "5f14216496deecd7ff7369c008293a2c66bd17904ab65e8935803e55c6866cae",
            "issuer": {
              "common_name": [
                "R10"
              ],
              "organization": [
                "Let's Encrypt"
              ],
              "country": [
                "US"
              ]
            },
            "subject": {
              "common_name": [
                "cardinals.unisonplatform.com"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "tS44hDQlnTsfTx0O/RDfs8Sf5/POarC0crMejw5VAJFzSb3/4aRw5gpPKtioOPfTjUp7Ehj8uBwy2OLX+T+Pqnw5bkrF4ZIi99nig9fwwvJgNdc4KgDvtWpbxFuClu961elFAZ1YV+U4sLTKOYC7qXMHDdwaKUaxO8KD0SOXac1IJmK/Y+R4QY8S+JMKEFriy0zbqMn5WOsn1lqVYBCA00ToCfOda1gcQoRDWm3J3Al7Z/0xQIE5HaIFt3LA/mc3y9fW03Zb+BYvibAodsboGG8SNZ+XeW6HFdgKX0sQ+PJTVfyWL3ucaBKxh/zwdh0Crwr2YghNNOHgDhyOYIyV/w==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "7745105fc1953d613bdec14993c8cc3d83b829007d98a697c70b7fc984bf1745"
            },
            "signature": {
              "signature_algorithm": "SHA256-RSA",
              "self_signed": false
            }
          },
          "chain": [
            {
              "fingerprint": "9d7c3f1aa6ad2b2ec0d5cf1e246f8d9ae6cbc9fd0755ad37bb974b1f2fb603f3",
              "subject_dn": "C=US, O=Let's Encrypt, CN=R10",
              "issuer_dn": "C=US, O=Internet Security Research Group, CN=ISRG Root X1"
            }
          ]
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 29
          }
        },
        "session_ticket": {
          "length": 176,
          "lifetime_hint": 300
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "e35df3e00ca4ef31d42b34bebaa2f86e",
        "ja4s": "t120300_c030_bec8bdbaef8a",
        "versions": [
          {
            "tls_version": "TLSv1_2",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "e35df3e00ca4ef31d42b34bebaa2f86e",
            "ja4s": "t120300_c030_bec8bdbaef8a"
          }
        ]
      },
      "transport_protocol": "TCP",
      "truncated": false
    }
  ],
  "location": {
    "continent": "North America",
    "country": "United States",
    "country_code": "US",
    "city": "Salt Lake City",
    "postal_code": "84101",
    "timezone": "America/Denver",
    "province": "Utah",
    "coordinates": {
      "latitude": 40.76078,
      "longitude": -111.89105
    }
  },
  "location_updated_at": "2024-09-15T20:44:18.706888398Z",
  "autonomous_system": {
    "asn": 33494,
    "description": "IHNET",
    "bgp_prefix": "162.219.248.0/22",
    "name": "IHNET",
    "country_code": "US"
  },
  "autonomous_system_updated_at": "2024-09-15T20:44:18.707001980Z",
  "whois": {
    "network": {
      "handle": "IHNET-PI-6",
      "name": "IHNetworks, LLC",
      "cidrs": [
        "162.219.248.0/22"
      ],
      "created": "2013-08-21T00:00:00Z",
      "updated": "2013-08-21T00:00:00Z",
      "allocation_type": "ALLOCATION"
    },
    "organization": {
      "handle": "IHNET",
      "name": "IHNetworks, LLC",
      "street": "20339 Nordhoff Street",
      "city": "Chatsworth",
      "state": "CA",
      "postal_code": "91311",
      "country": "US",
      "abuse_contacts": [
        {
          "handle": "ABUSE5324-ARIN",
          "name": "Abuse",
          "email": "[email protected]"
        }
      ],
      "admin_contacts": [
        {
          "handle": "IHNET-ARIN",
          "name": "IH Networks",
          "email": "[email protected]"
        }
      ],
      "tech_contacts": [
        {
          "handle": "IHNET-ARIN",
          "name": "IH Networks",
          "email": "[email protected]"
        }
      ]
    }
  },
  "operating_system": {
    "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
    "part": "o",
    "product": "linux",
    "source": "OSI_TRANSPORT_LAYER"
  },
  "dns": {},
  "last_updated_at": "2024-09-16T01:40:32.233Z",
  "labels": [
    "email",
    "file-sharing",
    "remote-access"
  ]
}