163.172.255.230

As of: Sep 25, 2023 2:10am UTC | Latest
{
  "ip": "163.172.255.230",
  "services": [
    {
      "_decoded": "ftp",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "220 ProFTPD Server (ProFTPD) [163.172.255.230]\r\n",
      "banner_hashes": [
        "sha256:fc09ba89e18bc10729f3ecd26eab8424e4e9e1952fdae98b9e9740419559e902"
      ],
      "banner_hex": "3232302050726f4654504420536572766572202850726f4654504429205b3136332e3137322e3235352e3233305d0d0a",
      "certificate": "bca9f9d98a3466651a5640dc4c96f265b2f27be3a9fd396baf2bd06e3ebeaf99",
      "extended_service_name": "FTPes",
      "ftp": {
        "_encoding": {
          "banner": "DISPLAY_UTF8",
          "auth_tls_response": "DISPLAY_UTF8"
        },
        "banner": "220 ProFTPD Server (ProFTPD) [163.172.255.230]\r\n",
        "auth_tls_response": "234 AUTH TLS successful\r\n",
        "status_code": 220,
        "status_meaning": "Service ready for new user.",
        "implicit_tls": false
      },
      "labels": [
        "file-sharing"
      ],
      "observed_at": "2023-09-24T19:46:44.592989077Z",
      "perspective_id": "PERSPECTIVE_ORANGE",
      "port": 21,
      "service_name": "FTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:proftpd:proftpd:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "ProFTPD Project",
          "product": "ProFTPD",
          "other": {
            "family": "ProFTPD"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "product": "linux",
          "source": "OSI_TRANSPORT_LAYER"
        },
        {
          "other": {
            "ip": "163.172.255.230"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.145.52",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "bca9f9d98a3466651a5640dc4c96f265b2f27be3a9fd396baf2bd06e3ebeaf99",
          "leaf_data": {
            "names": [
              "swissdhpshop.ch"
            ],
            "subject_dn": "CN=swissdhpshop.ch",
            "issuer_dn": "C=US, O=Let's Encrypt, CN=Let's Encrypt Authority X3",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "8c51a2977bf105c7fc1ba9787c7139266e05992ded0f64a81cc53d5e142f41bb",
            "fingerprint": "bca9f9d98a3466651a5640dc4c96f265b2f27be3a9fd396baf2bd06e3ebeaf99",
            "issuer": {
              "common_name": [
                "Let's Encrypt Authority X3"
              ],
              "organization": [
                "Let's Encrypt"
              ],
              "country": [
                "US"
              ]
            },
            "subject": {
              "common_name": [
                "swissdhpshop.ch"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "uJ6yeh0ZmQc+Py8ZwCCIO7vldazrvTiVpIJF+mNeKcBmFMdmGr6YXwrD7ogPEPMn7WwP7prsa2LPGG0rtyyW6QPqtkUta0AMyP+AvjiepVFEhoBg1vuQ9+Pznp3uFCu8jHZrp0QdzM9APXmzyUP0IglOAf9JG8/NB0jNbag62EdDVRUasnbXxS/wGzs7GSPchGakUG3E3nve9NDb7+1JQlHeluZWEkEK8C0I1OQjT+SBPYH7+lREyZ6zCJKwVI2D6jgPeKsvoCFx23X6OJtOyp72VpXjbRmrpO62J82nZQju4JMFvgtXdfRhhmDCs0nY8fwg1iDRWiua3fMkic5+WQ==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "2542c4cd1630cc50f310a0d6019da08cc1d4f7a28069ec93e03596a1e37fe5b2"
            },
            "signature": {
              "signature_algorithm": "SHA256-RSA",
              "self_signed": false
            }
          }
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 23
          }
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "303951d4c50efb2e991652225a6f02b1"
      },
      "transport_fingerprint": {
        "id": 72,
        "os": "Ubuntu / Debian / CentOS",
        "raw": "28960,64,true,MSTNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "ssh",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "SSH-2.0-OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.13",
      "banner_hashes": [
        "sha256:d96d9b901bce1212483605f4da904e16f3f706ddd3faff985e708d42cb211cae"
      ],
      "banner_hex": "5353482d322e302d4f70656e5353485f362e362e317031205562756e74752d327562756e7475322e3133",
      "extended_service_name": "SSH",
      "labels": [
        "remote-access"
      ],
      "observed_at": "2023-09-24T19:59:10.331159664Z",
      "perspective_id": "PERSPECTIVE_NTT",
      "port": 22,
      "service_name": "SSH",
      "software": [
        {
          "product": "openssh",
          "other": {
            "comment": "Ubuntu-2ubuntu2.13"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "product": "linux",
          "source": "OSI_TRANSPORT_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:*:*:*:*",
          "part": "o",
          "vendor": "Ubuntu",
          "product": "Linux",
          "version": "14.04",
          "other": {
            "family": "Linux"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:openbsd:openssh:6.6.1p1:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "OpenBSD",
          "product": "OpenSSH",
          "version": "6.6.1p1",
          "other": {
            "family": "OpenSSH"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.248.133.33",
      "ssh": {
        "endpoint_id": {
          "_encoding": {
            "raw": "DISPLAY_UTF8"
          },
          "raw": "SSH-2.0-OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.13",
          "protocol_version": "2.0",
          "software_version": "OpenSSH_6.6.1p1",
          "comment": "Ubuntu-2ubuntu2.13"
        },
        "kex_init_message": {
          "kex_algorithms": [
            "[email protected]",
            "ecdh-sha2-nistp256",
            "ecdh-sha2-nistp384",
            "ecdh-sha2-nistp521",
            "diffie-hellman-group-exchange-sha256",
            "diffie-hellman-group-exchange-sha1",
            "diffie-hellman-group14-sha1",
            "diffie-hellman-group1-sha1"
          ],
          "host_key_algorithms": [
            "ssh-rsa",
            "ssh-dss",
            "ecdsa-sha2-nistp256",
            "ssh-ed25519"
          ],
          "client_to_server_ciphers": [
            "aes128-ctr",
            "aes192-ctr",
            "aes256-ctr",
            "arcfour256",
            "arcfour128",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "aes128-cbc",
            "3des-cbc",
            "blowfish-cbc",
            "cast128-cbc",
            "aes192-cbc",
            "aes256-cbc",
            "arcfour",
            "[email protected]"
          ],
          "server_to_client_ciphers": [
            "aes128-ctr",
            "aes192-ctr",
            "aes256-ctr",
            "arcfour256",
            "arcfour128",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "aes128-cbc",
            "3des-cbc",
            "blowfish-cbc",
            "cast128-cbc",
            "aes192-cbc",
            "aes256-cbc",
            "arcfour",
            "[email protected]"
          ],
          "client_to_server_macs": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "hmac-md5",
            "hmac-sha1",
            "[email protected]",
            "[email protected]",
            "hmac-sha2-256",
            "hmac-sha2-512",
            "hmac-ripemd160",
            "[email protected]",
            "hmac-sha1-96",
            "hmac-md5-96"
          ],
          "server_to_client_macs": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "hmac-md5",
            "hmac-sha1",
            "[email protected]",
            "[email protected]",
            "hmac-sha2-256",
            "hmac-sha2-512",
            "hmac-ripemd160",
            "[email protected]",
            "hmac-sha1-96",
            "hmac-md5-96"
          ],
          "client_to_server_compression": [
            "none",
            "[email protected]"
          ],
          "server_to_client_compression": [
            "none",
            "[email protected]"
          ],
          "first_kex_follows": false
        },
        "algorithm_selection": {
          "kex_algorithm": "[email protected]",
          "host_key_algorithm": "ecdsa-sha2-nistp256",
          "client_to_server_alg_group": {
            "cipher": "aes128-ctr",
            "mac": "hmac-sha2-256",
            "compression": "none"
          },
          "server_to_client_alg_group": {
            "cipher": "aes128-ctr",
            "mac": "hmac-sha2-256",
            "compression": "none"
          }
        },
        "server_host_key": {
          "fingerprint_sha256": "28d0444b8b4c122f8b103d4fd031e67a8f087f8697d9c76e27b447bab7c03446",
          "ecdsa_public_key": {
            "_encoding": {
              "b": "DISPLAY_BASE64",
              "gx": "DISPLAY_BASE64",
              "gy": "DISPLAY_BASE64",
              "n": "DISPLAY_BASE64",
              "p": "DISPLAY_BASE64",
              "x": "DISPLAY_BASE64",
              "y": "DISPLAY_BASE64"
            },
            "b": "WsY12Ko6k+ez671VdpiGvGUdBrDMU7D2O848PifSYEs=",
            "curve": "P-256",
            "gx": "axfR8uEsQkf4vOblY6RA8ncDfYEt6zOg9KE5RdiYwpY=",
            "gy": "T+NC4v4af5uO5+tKfA+eFivOM1drMV7Oy7ZAaDe/UfU=",
            "length": 256,
            "n": "/////wAAAAD//////////7zm+q2nF56E87nKwvxjJVE=",
            "p": "/////wAAAAEAAAAAAAAAAAAAAAD///////////////8=",
            "x": "Az/7CKUGWzCiE8BT+AkfDufJ4+GIztRs5E1mHybecaM=",
            "y": "tuveEYcM6wF4OJ2Y+J2POUmCzurrqx4+wbd3CL4f02g="
          }
        },
        "hassh_fingerprint": "ba6d3d2aecbd0d91b01dfa7828110d70"
      },
      "transport_fingerprint": {
        "id": 72,
        "os": "Ubuntu / Debian / CentOS",
        "raw": "28960,64,true,MSTNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "smtp",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "220 swissdhpshop.ch ESMTP Postfix (Ubuntu)\r\n",
      "banner_hashes": [
        "sha256:846d8a19638e5d5126963f17c7fb23650eac225b5b14c90d3dd95b1908d31811"
      ],
      "banner_hex": "32323020737769737364687073686f702e63682045534d545020506f737466697820285562756e7475290d0a",
      "certificate": "77fce4e8f6e5d905f20e0591def4c4187d1f255ee5a7f0e296ff00955870780b",
      "extended_service_name": "SMTP-STARTTLS",
      "labels": [
        "email"
      ],
      "observed_at": "2023-09-23T14:32:09.538199452Z",
      "perspective_id": "PERSPECTIVE_HE",
      "port": 25,
      "service_name": "SMTP",
      "smtp": {
        "_encoding": {
          "banner": "DISPLAY_UTF8",
          "ehlo": "DISPLAY_UTF8",
          "start_tls": "DISPLAY_UTF8"
        },
        "banner": "220 swissdhpshop.ch ESMTP Postfix (Ubuntu)\r\n",
        "ehlo": "250-swissdhpshop.ch\r\n250-PIPELINING\r\n250-SIZE 10240000\r\n250-ETRN\r\n250-STARTTLS\r\n250-AUTH DIGEST-MD5 CRAM-MD5 PLAIN LOGIN\r\n250-ENHANCEDSTATUSCODES\r\n250-8BITMIME\r\n250 DSN\r\n",
        "start_tls": "220 2.0.0 Ready to start TLS\r\n"
      },
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "product": "linux",
          "source": "OSI_TRANSPORT_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:postfix:postfix:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Postfix",
          "product": "Postfix",
          "other": {
            "family": "Postfix"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "vendor": "Ubuntu",
          "product": "Linux",
          "other": {
            "family": "Linux"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "162.142.125.215",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "77fce4e8f6e5d905f20e0591def4c4187d1f255ee5a7f0e296ff00955870780b",
          "leaf_data": {
            "names": [
              "sd-130492.dedibox.fr"
            ],
            "subject_dn": "CN=sd-130492.dedibox.fr",
            "issuer_dn": "CN=sd-130492.dedibox.fr",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "13a98c2f4b542512d6250893f0859ff598377ab13f2aa6f0bded65b4257864d9",
            "fingerprint": "77fce4e8f6e5d905f20e0591def4c4187d1f255ee5a7f0e296ff00955870780b",
            "issuer": {
              "common_name": [
                "sd-130492.dedibox.fr"
              ]
            },
            "subject": {
              "common_name": [
                "sd-130492.dedibox.fr"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "t0tMaya4JcZj3DDq4J+rLPiHdaTEqQJelmxnByI3+FBUsxzsqJEZQ70dqeG4mdtR2RZSFkLGr7ItmqNfgqp7Lpl+AAOcBX+kX0do9FGdtf6NbAUEQm82a6Slqn5W0zdG1sy6LPHgSgkjsrrImGlIjeorHyI0dizdjNe1Gom2ktzPSWdlCbRZnhvEQx+Y3kQYgaFvC3LtwsOJE1HdIH9NNgqBEyxJDNC/nlToic7lFEE+9wcFMwsNrGi59bqcHQXGnJeX4O6LVWgVeVmY2nXSQKfMyUW32XoEV1jlk3GKbkqy0N2xOevrkaRE6f7qepsCCv9Xw/m3FE8xzLB4x4jNyQ==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "c761237bc91b94e01a7048af0f10573fb8f851296caac635a007d53200a15453"
            },
            "signature": {
              "self_signed": true,
              "signature_algorithm": "SHA256-RSA"
            }
          }
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 23
          }
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "303951d4c50efb2e991652225a6f02b1"
      },
      "transport_fingerprint": {
        "id": 72,
        "os": "Ubuntu / Debian / CentOS",
        "raw": "28960,64,true,MSTNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "dns",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "none",
      "banner_hashes": [
        "sha256:140bedbf9c3f6d56a9846d2ba7088798683f4da0c248231336e6a05679e4fdfe"
      ],
      "banner_hex": "6e6f6e65",
      "dns": {
        "version": "none",
        "server_type": "AUTHORITATIVE",
        "r_code": "REFUSED",
        "resolves_correctly": false
      },
      "extended_service_name": "DNS",
      "observed_at": "2023-09-24T07:28:06.896008044Z",
      "perspective_id": "PERSPECTIVE_TATA",
      "port": 53,
      "service_name": "DNS",
      "source_ip": "167.94.138.33",
      "transport_protocol": "UDP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 200 OK\r\nServer: nginx\r\nDate:  <REDACTED>\r\nContent-Type: text/html\r\nContent-Length: 1220\r\nConnection: keep-alive\r\nLast-Modified: Wed, 07 Feb 2018 05:25:59 GMT\r\nETag: \"e7d-5649887c897cd-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n",
      "banner_hashes": [
        "sha256:b7e5f28cf5c22389dc64b1eb159a4b9ea48f77efa2ba3ae1402193de23827cfc"
      ],
      "banner_hex": "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",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://163.172.255.230/",
          "headers": {
            "Accept": [
              "*/*"
            ],
            "_encoding": {
              "Accept": "DISPLAY_UTF8",
              "User_Agent": "DISPLAY_UTF8"
            },
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 200,
          "status_reason": "OK",
          "headers": {
            "Connection": [
              "keep-alive"
            ],
            "_encoding": {
              "Connection": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8",
              "Vary": "DISPLAY_UTF8",
              "Content_Encoding": "DISPLAY_UTF8",
              "ETag": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Accept_Ranges": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Last_Modified": "DISPLAY_UTF8"
            },
            "Content_Length": [
              "1220"
            ],
            "Vary": [
              "Accept-Encoding"
            ],
            "Content_Encoding": [
              "gzip"
            ],
            "ETag": [
              "\"e7d-5649887c897cd-gzip\""
            ],
            "Content_Type": [
              "text/html"
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Accept_Ranges": [
              "bytes"
            ],
            "Server": [
              "nginx"
            ],
            "Last_Modified": [
              "Wed, 07 Feb 2018 05:25:59 GMT"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>Web Server's Default Page</title>",
            "<meta name=\"copyright\" content=\"Copyright 1999-2017. Parallels IP Holdings GmbH. All Rights Reserved.\">",
            "<meta charset=\"utf-8\">",
            "<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge,chrome=1\">",
            "<meta name=\"viewport\" content=\"width=device-width, initial-scale=1.0, maximum-scale=1.0\">",
            "<meta http-equiv=\"Cache-Control\" content=\"no-cache\">"
          ],
          "body_size": 3709,
          "body": "<!DOCTYPE html>\n<html lang=\"en\" dir=\"ltr\" class=\"sid-plesk\">\n<head>\n    <title>Web Server's Default Page</title>\n    <meta name=\"copyright\" content=\"Copyright 1999-2017. Parallels IP Holdings GmbH. All Rights Reserved.\">\n    <meta charset=\"utf-8\">\n    <meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge,chrome=1\">\n    <meta name=\"viewport\" content=\"width=device-width, initial-scale=1.0, maximum-scale=1.0\">\n    <meta http-equiv=\"Cache-Control\" content=\"no-cache\">\n    <link rel=\"shortcut icon\" href=\"favicon.ico\">\n    <link rel=\"stylesheet\" href=\"css/style.css\">\n</head>\n<body>\n\n<div class=\"page-container\">\n    <!-- start: PAGE HEADER-->\n    <div class=\"page-header-wrapper\">\n        <div class=\"page-header\">\n            <a class=\"product-logo\" href=\"https://www.plesk.com/\" target=\"_blank\"><img src=\"img/logo.png\" alt=\"Plesk\"></a>\n        </div>\n    </div>\n    <!-- end: PAGE HEADER-->\n\n    <!-- start: PAGE CONTENT-->\n    <div class=\"page-content-wrapper\">\n        <div class=\"page-content\">\n\n            <div class=\"page-info-wrapper\">\n                <div class=\"page-info\">\n                    <div class=\"page-info-heading\">Web Server's Default Page</div>\n                    <p>This page is generated by <a href=\"https://www.plesk.com\" target=\"_blank\">Plesk</a>, the leading hosting automation software. You see this page because there is no Web site at this address.</p>\n                    <p>You can do the following:</p>\n                    <ul>\n                        <li>Create domains and set up Web hosting using Plesk.</li>\n                    </ul>\n                </div>\n            </div>\n\n            <div class=\"product-info-wrapper\">\n                <div class=\"product-info\">\n                    <div class=\"product-info-heading\">What is Plesk</div>\n                    <div class=\"product-info-content\">\n                        <p><strong><a href=\"https://www.plesk.com\" target=\"_blank\">Plesk</a></strong> is a hosting control panel with simple and secure web server and website management tools. It was specially designed to help IT specialists manage web, DNS, mail and other services through a comprehensive and user-friendly GUI. <a class=\"more\" href=\"https://www.plesk.com\" target=\"_blank\">Learn more about Plesk</a>.</p>\n                        <ul class=\"links\">\n                            <li><a class=\"blog\" href=\"https://www.plesk.com/blog/\" target=\"_blank\"><span>Developer Blog</span></a></li>\n                            <li><a class=\"forum\" href=\"https://talk.plesk.com/\" target=\"_blank\"><span>Forum</span></a></li>\n                            <li><a class=\"knowledge-base\" href=\"https://support.plesk.com/\" target=\"_blank\"><span>Knowledge Base</span></a></li>\n                            <li><a class=\"facebook\" href=\"https://www.facebook.com/Plesk\" target=\"_blank\"><span>Facebook</span></a></li>\n                            <li><a class=\"twitter\" href=\"https://twitter.com/Plesk\" target=\"_blank\"><span>Twitter</span></a></li>\n                            <li><a class=\"google-plus\" href=\"https://plus.google.com/communities/109881979300958500728\" target=\"_blank\"><span>Google+</span></a></li>\n                        </ul>\n                    </div>\n                </div>\n            </div>\n\n        </div>\n    </div>\n    <!-- end: PAGE CONTENT-->\n\n    <!-- start: PAGE FOOTER-->\n    <div class=\"page-footer-wrapper\">\n        <div class=\"page-footer\">\n            This page was generated by Plesk. Plesk is the leading WebOps platform to run, automate and grow applications, websites and hosting businesses. Learn more at <a href=\"https://www.plesk.com\" target=\"_blank\">plesk.com</a>.\n        </div>\n    </div>\n    <!-- end: PAGE FOOTER-->\n</div>\n\n</body>\n</html>\n",
          "favicons": [
            {
              "size": 113459,
              "name": "http://163.172.255.230/favicon.ico",
              "md5_hash": "1db747255c64a30f9236e9d929e986ca"
            }
          ],
          "body_hashes": [
            "sha256:4521a1cba5f1d0b17de456cf9daf01c365d5f22a739d0cd985f8c0d6c0ef1dea",
            "sha1:ee37c8b3dc003582980938a919257d600a7f736a"
          ],
          "body_hash": "sha1:ee37c8b3dc003582980938a919257d600a7f736a",
          "html_title": "Web Server's Default Page"
        },
        "supports_http2": false
      },
      "observed_at": "2023-09-24T19:55:19.774586006Z",
      "perspective_id": "PERSPECTIVE_NTT",
      "port": 80,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "nginx",
          "product": "nginx",
          "other": {
            "family": "nginx"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.248.133.34",
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "banner_grab",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "200 poppassd hello, who are you?\r\n",
      "banner_hashes": [
        "sha256:08a6f9328640c3055da89f6302a771293ffbe2a2177e13cacde8b66f5d7d01b2"
      ],
      "banner_hex": "32303020706f7070617373642068656c6c6f2c2077686f2061726520796f753f0d0a",
      "extended_service_name": "POPPASSD",
      "labels": [
        "network-administration"
      ],
      "observed_at": "2023-09-24T00:28:07.908399981Z",
      "perspective_id": "PERSPECTIVE_HE",
      "port": 106,
      "service_name": "POPPASSD",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "product": "linux",
          "source": "OSI_TRANSPORT_LAYER"
        }
      ],
      "source_ip": "162.142.125.214",
      "transport_fingerprint": {
        "id": 72,
        "os": "Ubuntu / Debian / CentOS",
        "raw": "28960,64,true,MSTNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "pop3",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "+OK Dovecot ready. <57d1.1.6510daac.icvEjOGRWaeykQFK/[email protected]>\r\n",
      "banner_hashes": [
        "sha256:e5f6c7f098cab5d7277569c367a3966f1f346c928344cdeac874fef676e861de"
      ],
      "banner_hex": "2b4f4b20446f7665636f742072656164792e203c353764312e312e36353130646161632e696376456a4f4752576165796b51464b2f6e596b50413d3d40737769737364687073686f702e63683e0d0a",
      "certificate": "de82400cdc8cf6330459e2782fa2914fdb892f01cbb1213fbb8409e8d42b4263",
      "extended_service_name": "POP3S",
      "labels": [
        "email"
      ],
      "observed_at": "2023-09-25T00:56:12.625678746Z",
      "perspective_id": "PERSPECTIVE_TATA",
      "pop3": {
        "_encoding": {
          "banner": "DISPLAY_UTF8",
          "start_tls": "DISPLAY_UTF8"
        },
        "banner": "+OK Dovecot ready. <57d1.1.6510daac.icvEjOGRWaeykQFK/[email protected]>\r\n",
        "start_tls": "+OK Begin TLS negotiation now.\r\n"
      },
      "port": 110,
      "service_name": "POP3",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "product": "linux",
          "source": "OSI_TRANSPORT_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:dovecot:dovecot:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Dovecot",
          "product": "Dovecot",
          "other": {
            "family": "Dovecot"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.138.36",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "de82400cdc8cf6330459e2782fa2914fdb892f01cbb1213fbb8409e8d42b4263",
          "leaf_data": {
            "subject_dn": "C=CH, L=Schaffhausen, O=Plesk, CN=Plesk, [email protected]",
            "issuer_dn": "C=CH, L=Schaffhausen, O=Plesk, CN=Plesk, [email protected]",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "21622321b4cf96006a61db23321772200d01db3a4b94295ede858e8a502bfdc1",
            "fingerprint": "de82400cdc8cf6330459e2782fa2914fdb892f01cbb1213fbb8409e8d42b4263",
            "issuer": {
              "common_name": [
                "Plesk"
              ],
              "locality": [
                "Schaffhausen"
              ],
              "organization": [
                "Plesk"
              ],
              "country": [
                "CH"
              ],
              "email_address": [
                "[email protected]"
              ]
            },
            "subject": {
              "common_name": [
                "Plesk"
              ],
              "locality": [
                "Schaffhausen"
              ],
              "organization": [
                "Plesk"
              ],
              "country": [
                "CH"
              ],
              "email_address": [
                "[email protected]"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "oCJNCYI/2Wf4AIbcTBFecMkNtoULc7DZTC+GwzbCGLXBRFK8eny+KBtpjgya+epcz7oDKnUgRTK3u5Q/fCcdEEym485nC3SddMHJ+k2Jh1259zTxa6e9UeUPbza4gbnxamheARZ6yfByW4lHkhCvyTKIUf6VMhEOy6TwAkPxhnG7YsgAq8p3K01wPq4cICcvPvMQqQZremgfWYAcF3Rq5cHMFCZVWUdXMpZSOWnWQkbbFVg4k1fOgRRexlYB15LuazisB/BEWryMMLLTVUOsqgUHcIbZv94kMD///seX61lFFDohi4HSs/9ZvprArLsL6fn7ds2EW8bVsiKLhefOMQ==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "00c7968b05f5ed9aa0527fb719da86adcffd1c10221424f80067cdeaa7df91f8"
            },
            "signature": {
              "self_signed": true,
              "signature_algorithm": "SHA256-RSA"
            }
          }
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 24
          }
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "0debd3853f330c574b05e0b6d882dc27"
      },
      "transport_fingerprint": {
        "id": 72,
        "os": "Ubuntu / Debian / CentOS",
        "raw": "28960,64,true,MSTNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "imap",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5] Dovecot ready.\r\n",
      "banner_hashes": [
        "sha256:3535c1c91c9938cc78b1a93a8b510daff703245d7abc0d8ca0e217b0480eeca0"
      ],
      "banner_hex": "2a204f4b205b4341504142494c49545920494d41503472657631205341534c2d4952204c4f47494e2d524546455252414c5320494420454e41424c452049444c45204c49544552414c2b205354415254544c5320415554483d504c41494e20415554483d4c4f47494e20415554483d4449474553542d4d443520415554483d4352414d2d4d44355d20446f7665636f742072656164792e0d0a",
      "certificate": "de82400cdc8cf6330459e2782fa2914fdb892f01cbb1213fbb8409e8d42b4263",
      "extended_service_name": "IMAPS",
      "imap": {
        "_encoding": {
          "banner": "DISPLAY_UTF8"
        },
        "banner": "* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5] Dovecot ready.\r\n",
        "start_tls": "a001 OK Begin TLS negotiation now.\r\n"
      },
      "labels": [
        "email"
      ],
      "observed_at": "2023-09-24T10:24:05.802194870Z",
      "perspective_id": "PERSPECTIVE_NTT",
      "port": 143,
      "service_name": "IMAP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "product": "linux",
          "source": "OSI_TRANSPORT_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:dovecot:dovecot:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Dovecot",
          "product": "Dovecot",
          "other": {
            "family": "Dovecot"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.248.133.38",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "de82400cdc8cf6330459e2782fa2914fdb892f01cbb1213fbb8409e8d42b4263",
          "leaf_data": {
            "subject_dn": "C=CH, L=Schaffhausen, O=Plesk, CN=Plesk, [email protected]",
            "issuer_dn": "C=CH, L=Schaffhausen, O=Plesk, CN=Plesk, [email protected]",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "21622321b4cf96006a61db23321772200d01db3a4b94295ede858e8a502bfdc1",
            "fingerprint": "de82400cdc8cf6330459e2782fa2914fdb892f01cbb1213fbb8409e8d42b4263",
            "issuer": {
              "common_name": [
                "Plesk"
              ],
              "locality": [
                "Schaffhausen"
              ],
              "organization": [
                "Plesk"
              ],
              "country": [
                "CH"
              ],
              "email_address": [
                "[email protected]"
              ]
            },
            "subject": {
              "common_name": [
                "Plesk"
              ],
              "locality": [
                "Schaffhausen"
              ],
              "organization": [
                "Plesk"
              ],
              "country": [
                "CH"
              ],
              "email_address": [
                "[email protected]"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "oCJNCYI/2Wf4AIbcTBFecMkNtoULc7DZTC+GwzbCGLXBRFK8eny+KBtpjgya+epcz7oDKnUgRTK3u5Q/fCcdEEym485nC3SddMHJ+k2Jh1259zTxa6e9UeUPbza4gbnxamheARZ6yfByW4lHkhCvyTKIUf6VMhEOy6TwAkPxhnG7YsgAq8p3K01wPq4cICcvPvMQqQZremgfWYAcF3Rq5cHMFCZVWUdXMpZSOWnWQkbbFVg4k1fOgRRexlYB15LuazisB/BEWryMMLLTVUOsqgUHcIbZv94kMD///seX61lFFDohi4HSs/9ZvprArLsL6fn7ds2EW8bVsiKLhefOMQ==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "00c7968b05f5ed9aa0527fb719da86adcffd1c10221424f80067cdeaa7df91f8"
            },
            "signature": {
              "self_signed": true,
              "signature_algorithm": "SHA256-RSA"
            }
          }
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 24
          }
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "0debd3853f330c574b05e0b6d882dc27"
      },
      "transport_fingerprint": {
        "id": 72,
        "os": "Ubuntu / Debian / CentOS",
        "raw": "28960,64,true,MSTNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 200 OK\r\nServer: nginx\r\nDate:  <REDACTED>\r\nContent-Type: text/html\r\nContent-Length: 1220\r\nConnection: keep-alive\r\nLast-Modified: Wed, 07 Feb 2018 05:25:59 GMT\r\nETag: \"e7d-5649887c897cd-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n",
      "banner_hashes": [
        "sha256:b7e5f28cf5c22389dc64b1eb159a4b9ea48f77efa2ba3ae1402193de23827cfc"
      ],
      "banner_hex": "485454502f312e3120323030204f4b0d0a5365727665723a206e67696e780d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a436f6e74656e742d4c656e6774683a20313232300d0a436f6e6e656374696f6e3a206b6565702d616c6976650d0a4c6173742d4d6f6469666965643a205765642c2030372046656220323031382030353a32353a353920474d540d0a455461673a20226537642d353634393838376338393763642d677a6970220d0a4163636570742d52616e6765733a2062797465730d0a566172793a204163636570742d456e636f64696e670d0a436f6e74656e742d456e636f64696e673a20677a69700d0a",
      "certificate": "de82400cdc8cf6330459e2782fa2914fdb892f01cbb1213fbb8409e8d42b4263",
      "extended_service_name": "HTTPS",
      "http": {
        "request": {
          "method": "GET",
          "uri": "https://163.172.255.230/",
          "headers": {
            "Accept": [
              "*/*"
            ],
            "_encoding": {
              "Accept": "DISPLAY_UTF8",
              "User_Agent": "DISPLAY_UTF8"
            },
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 200,
          "status_reason": "OK",
          "headers": {
            "Vary": [
              "Accept-Encoding"
            ],
            "_encoding": {
              "Vary": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Accept_Ranges": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Last_Modified": "DISPLAY_UTF8",
              "Content_Encoding": "DISPLAY_UTF8",
              "ETag": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8"
            },
            "Date": [
              "<REDACTED>"
            ],
            "Accept_Ranges": [
              "bytes"
            ],
            "Content_Type": [
              "text/html"
            ],
            "Server": [
              "nginx"
            ],
            "Last_Modified": [
              "Wed, 07 Feb 2018 05:25:59 GMT"
            ],
            "Content_Encoding": [
              "gzip"
            ],
            "ETag": [
              "\"e7d-5649887c897cd-gzip\""
            ],
            "Connection": [
              "keep-alive"
            ],
            "Content_Length": [
              "1220"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>Web Server's Default Page</title>",
            "<meta name=\"copyright\" content=\"Copyright 1999-2017. Parallels IP Holdings GmbH. All Rights Reserved.\">",
            "<meta charset=\"utf-8\">",
            "<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge,chrome=1\">",
            "<meta name=\"viewport\" content=\"width=device-width, initial-scale=1.0, maximum-scale=1.0\">",
            "<meta http-equiv=\"Cache-Control\" content=\"no-cache\">"
          ],
          "body_size": 3709,
          "body": "<!DOCTYPE html>\n<html lang=\"en\" dir=\"ltr\" class=\"sid-plesk\">\n<head>\n    <title>Web Server's Default Page</title>\n    <meta name=\"copyright\" content=\"Copyright 1999-2017. Parallels IP Holdings GmbH. All Rights Reserved.\">\n    <meta charset=\"utf-8\">\n    <meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge,chrome=1\">\n    <meta name=\"viewport\" content=\"width=device-width, initial-scale=1.0, maximum-scale=1.0\">\n    <meta http-equiv=\"Cache-Control\" content=\"no-cache\">\n    <link rel=\"shortcut icon\" href=\"favicon.ico\">\n    <link rel=\"stylesheet\" href=\"css/style.css\">\n</head>\n<body>\n\n<div class=\"page-container\">\n    <!-- start: PAGE HEADER-->\n    <div class=\"page-header-wrapper\">\n        <div class=\"page-header\">\n            <a class=\"product-logo\" href=\"https://www.plesk.com/\" target=\"_blank\"><img src=\"img/logo.png\" alt=\"Plesk\"></a>\n        </div>\n    </div>\n    <!-- end: PAGE HEADER-->\n\n    <!-- start: PAGE CONTENT-->\n    <div class=\"page-content-wrapper\">\n        <div class=\"page-content\">\n\n            <div class=\"page-info-wrapper\">\n                <div class=\"page-info\">\n                    <div class=\"page-info-heading\">Web Server's Default Page</div>\n                    <p>This page is generated by <a href=\"https://www.plesk.com\" target=\"_blank\">Plesk</a>, the leading hosting automation software. You see this page because there is no Web site at this address.</p>\n                    <p>You can do the following:</p>\n                    <ul>\n                        <li>Create domains and set up Web hosting using Plesk.</li>\n                    </ul>\n                </div>\n            </div>\n\n            <div class=\"product-info-wrapper\">\n                <div class=\"product-info\">\n                    <div class=\"product-info-heading\">What is Plesk</div>\n                    <div class=\"product-info-content\">\n                        <p><strong><a href=\"https://www.plesk.com\" target=\"_blank\">Plesk</a></strong> is a hosting control panel with simple and secure web server and website management tools. It was specially designed to help IT specialists manage web, DNS, mail and other services through a comprehensive and user-friendly GUI. <a class=\"more\" href=\"https://www.plesk.com\" target=\"_blank\">Learn more about Plesk</a>.</p>\n                        <ul class=\"links\">\n                            <li><a class=\"blog\" href=\"https://www.plesk.com/blog/\" target=\"_blank\"><span>Developer Blog</span></a></li>\n                            <li><a class=\"forum\" href=\"https://talk.plesk.com/\" target=\"_blank\"><span>Forum</span></a></li>\n                            <li><a class=\"knowledge-base\" href=\"https://support.plesk.com/\" target=\"_blank\"><span>Knowledge Base</span></a></li>\n                            <li><a class=\"facebook\" href=\"https://www.facebook.com/Plesk\" target=\"_blank\"><span>Facebook</span></a></li>\n                            <li><a class=\"twitter\" href=\"https://twitter.com/Plesk\" target=\"_blank\"><span>Twitter</span></a></li>\n                            <li><a class=\"google-plus\" href=\"https://plus.google.com/communities/109881979300958500728\" target=\"_blank\"><span>Google+</span></a></li>\n                        </ul>\n                    </div>\n                </div>\n            </div>\n\n        </div>\n    </div>\n    <!-- end: PAGE CONTENT-->\n\n    <!-- start: PAGE FOOTER-->\n    <div class=\"page-footer-wrapper\">\n        <div class=\"page-footer\">\n            This page was generated by Plesk. Plesk is the leading WebOps platform to run, automate and grow applications, websites and hosting businesses. Learn more at <a href=\"https://www.plesk.com\" target=\"_blank\">plesk.com</a>.\n        </div>\n    </div>\n    <!-- end: PAGE FOOTER-->\n</div>\n\n</body>\n</html>\n",
          "favicons": [
            {
              "size": 113459,
              "name": "https://163.172.255.230/favicon.ico",
              "md5_hash": "1db747255c64a30f9236e9d929e986ca"
            }
          ],
          "body_hashes": [
            "sha256:4521a1cba5f1d0b17de456cf9daf01c365d5f22a739d0cd985f8c0d6c0ef1dea",
            "sha1:ee37c8b3dc003582980938a919257d600a7f736a"
          ],
          "body_hash": "sha1:ee37c8b3dc003582980938a919257d600a7f736a",
          "html_title": "Web Server's Default Page"
        },
        "supports_http2": true
      },
      "jarm": {
        "_encoding": {
          "fingerprint": "DISPLAY_HEX",
          "cipher_and_version_fingerprint": "DISPLAY_HEX",
          "tls_extensions_sha256": "DISPLAY_HEX"
        },
        "fingerprint": "2ad2ad0002ad2ad22c2ad2ad2ad2ad61178e2295aff621c4f2465a23c4364f",
        "cipher_and_version_fingerprint": "2ad2ad0002ad2ad22c2ad2ad2ad2ad",
        "tls_extensions_sha256": "61178e2295aff621c4f2465a23c4364f",
        "observed_at": "2023-09-14T22:53:16.830710282Z"
      },
      "observed_at": "2023-09-24T09:52:55.079243009Z",
      "perspective_id": "PERSPECTIVE_HE",
      "port": 443,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "nginx",
          "product": "nginx",
          "other": {
            "family": "nginx"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "162.142.125.213",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "de82400cdc8cf6330459e2782fa2914fdb892f01cbb1213fbb8409e8d42b4263",
          "leaf_data": {
            "subject_dn": "C=CH, L=Schaffhausen, O=Plesk, CN=Plesk, [email protected]",
            "issuer_dn": "C=CH, L=Schaffhausen, O=Plesk, CN=Plesk, [email protected]",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "21622321b4cf96006a61db23321772200d01db3a4b94295ede858e8a502bfdc1",
            "fingerprint": "de82400cdc8cf6330459e2782fa2914fdb892f01cbb1213fbb8409e8d42b4263",
            "issuer": {
              "common_name": [
                "Plesk"
              ],
              "locality": [
                "Schaffhausen"
              ],
              "organization": [
                "Plesk"
              ],
              "country": [
                "CH"
              ],
              "email_address": [
                "[email protected]"
              ]
            },
            "subject": {
              "common_name": [
                "Plesk"
              ],
              "locality": [
                "Schaffhausen"
              ],
              "organization": [
                "Plesk"
              ],
              "country": [
                "CH"
              ],
              "email_address": [
                "[email protected]"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "oCJNCYI/2Wf4AIbcTBFecMkNtoULc7DZTC+GwzbCGLXBRFK8eny+KBtpjgya+epcz7oDKnUgRTK3u5Q/fCcdEEym485nC3SddMHJ+k2Jh1259zTxa6e9UeUPbza4gbnxamheARZ6yfByW4lHkhCvyTKIUf6VMhEOy6TwAkPxhnG7YsgAq8p3K01wPq4cICcvPvMQqQZremgfWYAcF3Rq5cHMFCZVWUdXMpZSOWnWQkbbFVg4k1fOgRRexlYB15LuazisB/BEWryMMLLTVUOsqgUHcIbZv94kMD///seX61lFFDohi4HSs/9ZvprArLsL6fn7ds2EW8bVsiKLhefOMQ==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "00c7968b05f5ed9aa0527fb719da86adcffd1c10221424f80067cdeaa7df91f8"
            },
            "signature": {
              "self_signed": true,
              "signature_algorithm": "SHA256-RSA"
            }
          }
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 23
          }
        },
        "session_ticket": {
          "length": 176,
          "lifetime_hint": 300
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "e35df3e00ca4ef31d42b34bebaa2f86e"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "smtp",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "220 swissdhpshop.ch ESMTP Postfix (Ubuntu)\r\n",
      "banner_hashes": [
        "sha256:846d8a19638e5d5126963f17c7fb23650eac225b5b14c90d3dd95b1908d31811"
      ],
      "banner_hex": "32323020737769737364687073686f702e63682045534d545020506f737466697820285562756e7475290d0a",
      "certificate": "77fce4e8f6e5d905f20e0591def4c4187d1f255ee5a7f0e296ff00955870780b",
      "discovery_method": "IPV4_WALK_FULL_PRIORITY_1",
      "extended_service_name": "SMTPS",
      "jarm": {
        "_encoding": {
          "fingerprint": "DISPLAY_HEX",
          "cipher_and_version_fingerprint": "DISPLAY_HEX",
          "tls_extensions_sha256": "DISPLAY_HEX"
        },
        "fingerprint": "07d10d11d21d21d07c07d10d07d21df81841108a56803289beb36a0dd595dc",
        "cipher_and_version_fingerprint": "07d10d11d21d21d07c07d10d07d21d",
        "tls_extensions_sha256": "f81841108a56803289beb36a0dd595dc",
        "observed_at": "2023-09-16T08:47:20.755933137Z"
      },
      "labels": [
        "email"
      ],
      "observed_at": "2023-09-24T23:24:42.273240527Z",
      "perspective_id": "PERSPECTIVE_HE",
      "port": 465,
      "service_name": "SMTP",
      "smtp": {
        "_encoding": {
          "banner": "DISPLAY_UTF8",
          "ehlo": "DISPLAY_UTF8"
        },
        "banner": "220 swissdhpshop.ch ESMTP Postfix (Ubuntu)\r\n",
        "ehlo": "250-swissdhpshop.ch\r\n250-PIPELINING\r\n250-SIZE 10240000\r\n250-ETRN\r\n250-AUTH DIGEST-MD5 CRAM-MD5 PLAIN LOGIN\r\n250-ENHANCEDSTATUSCODES\r\n250-8BITMIME\r\n250 DSN\r\n"
      },
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "product": "linux",
          "source": "OSI_TRANSPORT_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:postfix:postfix:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Postfix",
          "product": "Postfix",
          "other": {
            "family": "Postfix"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "vendor": "Ubuntu",
          "product": "Linux",
          "other": {
            "family": "Linux"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "162.142.125.222",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "77fce4e8f6e5d905f20e0591def4c4187d1f255ee5a7f0e296ff00955870780b",
          "leaf_data": {
            "names": [
              "sd-130492.dedibox.fr"
            ],
            "subject_dn": "CN=sd-130492.dedibox.fr",
            "issuer_dn": "CN=sd-130492.dedibox.fr",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "13a98c2f4b542512d6250893f0859ff598377ab13f2aa6f0bded65b4257864d9",
            "fingerprint": "77fce4e8f6e5d905f20e0591def4c4187d1f255ee5a7f0e296ff00955870780b",
            "issuer": {
              "common_name": [
                "sd-130492.dedibox.fr"
              ]
            },
            "subject": {
              "common_name": [
                "sd-130492.dedibox.fr"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "t0tMaya4JcZj3DDq4J+rLPiHdaTEqQJelmxnByI3+FBUsxzsqJEZQ70dqeG4mdtR2RZSFkLGr7ItmqNfgqp7Lpl+AAOcBX+kX0do9FGdtf6NbAUEQm82a6Slqn5W0zdG1sy6LPHgSgkjsrrImGlIjeorHyI0dizdjNe1Gom2ktzPSWdlCbRZnhvEQx+Y3kQYgaFvC3LtwsOJE1HdIH9NNgqBEyxJDNC/nlToic7lFEE+9wcFMwsNrGi59bqcHQXGnJeX4O6LVWgVeVmY2nXSQKfMyUW32XoEV1jlk3GKbkqy0N2xOevrkaRE6f7qepsCCv9Xw/m3FE8xzLB4x4jNyQ==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "c761237bc91b94e01a7048af0f10573fb8f851296caac635a007d53200a15453"
            },
            "signature": {
              "self_signed": true,
              "signature_algorithm": "SHA256-RSA"
            }
          }
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 23
          }
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "303951d4c50efb2e991652225a6f02b1"
      },
      "transport_fingerprint": {
        "id": 72,
        "os": "Ubuntu / Debian / CentOS",
        "raw": "28960,64,true,MSTNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "smtp",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "220 swissdhpshop.ch ESMTP Postfix (Ubuntu)\r\n",
      "banner_hashes": [
        "sha256:846d8a19638e5d5126963f17c7fb23650eac225b5b14c90d3dd95b1908d31811"
      ],
      "banner_hex": "32323020737769737364687073686f702e63682045534d545020506f737466697820285562756e7475290d0a",
      "certificate": "77fce4e8f6e5d905f20e0591def4c4187d1f255ee5a7f0e296ff00955870780b",
      "extended_service_name": "SMTP-STARTTLS",
      "labels": [
        "email"
      ],
      "observed_at": "2023-09-24T07:38:38.068202777Z",
      "perspective_id": "PERSPECTIVE_NTT",
      "port": 587,
      "service_name": "SMTP",
      "smtp": {
        "_encoding": {
          "banner": "DISPLAY_UTF8",
          "ehlo": "DISPLAY_UTF8",
          "start_tls": "DISPLAY_UTF8"
        },
        "banner": "220 swissdhpshop.ch ESMTP Postfix (Ubuntu)\r\n",
        "ehlo": "250-swissdhpshop.ch\r\n250-PIPELINING\r\n250-SIZE 10240000\r\n250-ETRN\r\n250-STARTTLS\r\n250-ENHANCEDSTATUSCODES\r\n250-8BITMIME\r\n250 DSN\r\n",
        "start_tls": "220 2.0.0 Ready to start TLS\r\n"
      },
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "product": "linux",
          "source": "OSI_TRANSPORT_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:postfix:postfix:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Postfix",
          "product": "Postfix",
          "other": {
            "family": "Postfix"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "vendor": "Ubuntu",
          "product": "Linux",
          "other": {
            "family": "Linux"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.248.133.38",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "77fce4e8f6e5d905f20e0591def4c4187d1f255ee5a7f0e296ff00955870780b",
          "leaf_data": {
            "names": [
              "sd-130492.dedibox.fr"
            ],
            "subject_dn": "CN=sd-130492.dedibox.fr",
            "issuer_dn": "CN=sd-130492.dedibox.fr",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "13a98c2f4b542512d6250893f0859ff598377ab13f2aa6f0bded65b4257864d9",
            "fingerprint": "77fce4e8f6e5d905f20e0591def4c4187d1f255ee5a7f0e296ff00955870780b",
            "issuer": {
              "common_name": [
                "sd-130492.dedibox.fr"
              ]
            },
            "subject": {
              "common_name": [
                "sd-130492.dedibox.fr"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "t0tMaya4JcZj3DDq4J+rLPiHdaTEqQJelmxnByI3+FBUsxzsqJEZQ70dqeG4mdtR2RZSFkLGr7ItmqNfgqp7Lpl+AAOcBX+kX0do9FGdtf6NbAUEQm82a6Slqn5W0zdG1sy6LPHgSgkjsrrImGlIjeorHyI0dizdjNe1Gom2ktzPSWdlCbRZnhvEQx+Y3kQYgaFvC3LtwsOJE1HdIH9NNgqBEyxJDNC/nlToic7lFEE+9wcFMwsNrGi59bqcHQXGnJeX4O6LVWgVeVmY2nXSQKfMyUW32XoEV1jlk3GKbkqy0N2xOevrkaRE6f7qepsCCv9Xw/m3FE8xzLB4x4jNyQ==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "c761237bc91b94e01a7048af0f10573fb8f851296caac635a007d53200a15453"
            },
            "signature": {
              "self_signed": true,
              "signature_algorithm": "SHA256-RSA"
            }
          }
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 23
          }
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "303951d4c50efb2e991652225a6f02b1"
      },
      "transport_fingerprint": {
        "id": 72,
        "os": "Ubuntu / Debian / CentOS",
        "raw": "28960,64,true,MSTNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "imap",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5] Dovecot ready.\r\n",
      "banner_hashes": [
        "sha256:5200893fa5fc0d7030ad2e4a151c50852c895346b68e6176baf4c5efdbae3c96"
      ],
      "banner_hex": "2a204f4b205b4341504142494c49545920494d41503472657631205341534c2d4952204c4f47494e2d524546455252414c5320494420454e41424c452049444c45204c49544552414c2b20415554483d504c41494e20415554483d4c4f47494e20415554483d4449474553542d4d443520415554483d4352414d2d4d44355d20446f7665636f742072656164792e0d0a",
      "certificate": "de82400cdc8cf6330459e2782fa2914fdb892f01cbb1213fbb8409e8d42b4263",
      "extended_service_name": "IMAPS",
      "imap": {
        "_encoding": {
          "banner": "DISPLAY_UTF8"
        },
        "banner": "* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5] Dovecot ready.\r\n"
      },
      "jarm": {
        "_encoding": {
          "fingerprint": "DISPLAY_HEX",
          "cipher_and_version_fingerprint": "DISPLAY_HEX",
          "tls_extensions_sha256": "DISPLAY_HEX"
        },
        "fingerprint": "2ad2ad16d2ad2ad22c2ad2ad2ad2ad579b2ec9bfaf00aff9d6fe780b7932ae",
        "cipher_and_version_fingerprint": "2ad2ad16d2ad2ad22c2ad2ad2ad2ad",
        "tls_extensions_sha256": "579b2ec9bfaf00aff9d6fe780b7932ae",
        "observed_at": "2023-09-15T20:20:15.687365882Z"
      },
      "labels": [
        "email"
      ],
      "observed_at": "2023-09-24T14:58:17.410433576Z",
      "perspective_id": "PERSPECTIVE_TELIA",
      "port": 993,
      "service_name": "IMAP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "product": "linux",
          "source": "OSI_TRANSPORT_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:dovecot:dovecot:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Dovecot",
          "product": "Dovecot",
          "other": {
            "family": "Dovecot"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.146.55",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "de82400cdc8cf6330459e2782fa2914fdb892f01cbb1213fbb8409e8d42b4263",
          "leaf_data": {
            "subject_dn": "C=CH, L=Schaffhausen, O=Plesk, CN=Plesk, [email protected]",
            "issuer_dn": "C=CH, L=Schaffhausen, O=Plesk, CN=Plesk, [email protected]",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "21622321b4cf96006a61db23321772200d01db3a4b94295ede858e8a502bfdc1",
            "fingerprint": "de82400cdc8cf6330459e2782fa2914fdb892f01cbb1213fbb8409e8d42b4263",
            "issuer": {
              "common_name": [
                "Plesk"
              ],
              "locality": [
                "Schaffhausen"
              ],
              "organization": [
                "Plesk"
              ],
              "country": [
                "CH"
              ],
              "email_address": [
                "[email protected]"
              ]
            },
            "subject": {
              "common_name": [
                "Plesk"
              ],
              "locality": [
                "Schaffhausen"
              ],
              "organization": [
                "Plesk"
              ],
              "country": [
                "CH"
              ],
              "email_address": [
                "[email protected]"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "oCJNCYI/2Wf4AIbcTBFecMkNtoULc7DZTC+GwzbCGLXBRFK8eny+KBtpjgya+epcz7oDKnUgRTK3u5Q/fCcdEEym485nC3SddMHJ+k2Jh1259zTxa6e9UeUPbza4gbnxamheARZ6yfByW4lHkhCvyTKIUf6VMhEOy6TwAkPxhnG7YsgAq8p3K01wPq4cICcvPvMQqQZremgfWYAcF3Rq5cHMFCZVWUdXMpZSOWnWQkbbFVg4k1fOgRRexlYB15LuazisB/BEWryMMLLTVUOsqgUHcIbZv94kMD///seX61lFFDohi4HSs/9ZvprArLsL6fn7ds2EW8bVsiKLhefOMQ==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "00c7968b05f5ed9aa0527fb719da86adcffd1c10221424f80067cdeaa7df91f8"
            },
            "signature": {
              "self_signed": true,
              "signature_algorithm": "SHA256-RSA"
            }
          }
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 24
          }
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "0debd3853f330c574b05e0b6d882dc27"
      },
      "transport_fingerprint": {
        "id": 72,
        "os": "Ubuntu / Debian / CentOS",
        "raw": "28960,64,true,MSTNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "pop3",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "+OK Dovecot ready. <[email protected]>\r\n",
      "banner_hashes": [
        "sha256:df1e73063791ebdc6414393d5940336a8ec379f94f801706dbbf7a7f8c705a3a"
      ],
      "banner_hex": "2b4f4b20446f7665636f742072656164792e203c336264652e312e36353130376235312e5932617a3246454a78733362494975685168636c6d773d3d40737769737364687073686f702e63683e0d0a",
      "certificate": "de82400cdc8cf6330459e2782fa2914fdb892f01cbb1213fbb8409e8d42b4263",
      "discovery_method": "IPV4_WALK_FULL_PRIORITY_1",
      "extended_service_name": "POP3S",
      "jarm": {
        "_encoding": {
          "fingerprint": "DISPLAY_HEX",
          "cipher_and_version_fingerprint": "DISPLAY_HEX",
          "tls_extensions_sha256": "DISPLAY_HEX"
        },
        "fingerprint": "2ad2ad16d2ad2ad22c2ad2ad2ad2ad579b2ec9bfaf00aff9d6fe780b7932ae",
        "cipher_and_version_fingerprint": "2ad2ad16d2ad2ad22c2ad2ad2ad2ad",
        "tls_extensions_sha256": "579b2ec9bfaf00aff9d6fe780b7932ae",
        "observed_at": "2023-09-25T01:59:47.640994170Z"
      },
      "labels": [
        "email"
      ],
      "observed_at": "2023-09-24T18:09:21.741998768Z",
      "perspective_id": "PERSPECTIVE_NTT",
      "pop3": {
        "_encoding": {
          "banner": "DISPLAY_UTF8"
        },
        "banner": "+OK Dovecot ready. <[email protected]>\r\n"
      },
      "port": 995,
      "service_name": "POP3",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "product": "linux",
          "source": "OSI_TRANSPORT_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:dovecot:dovecot:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Dovecot",
          "product": "Dovecot",
          "other": {
            "family": "Dovecot"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.248.133.125",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "de82400cdc8cf6330459e2782fa2914fdb892f01cbb1213fbb8409e8d42b4263",
          "leaf_data": {
            "subject_dn": "C=CH, L=Schaffhausen, O=Plesk, CN=Plesk, [email protected]",
            "issuer_dn": "C=CH, L=Schaffhausen, O=Plesk, CN=Plesk, [email protected]",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "21622321b4cf96006a61db23321772200d01db3a4b94295ede858e8a502bfdc1",
            "fingerprint": "de82400cdc8cf6330459e2782fa2914fdb892f01cbb1213fbb8409e8d42b4263",
            "issuer": {
              "common_name": [
                "Plesk"
              ],
              "locality": [
                "Schaffhausen"
              ],
              "organization": [
                "Plesk"
              ],
              "country": [
                "CH"
              ],
              "email_address": [
                "[email protected]"
              ]
            },
            "subject": {
              "common_name": [
                "Plesk"
              ],
              "locality": [
                "Schaffhausen"
              ],
              "organization": [
                "Plesk"
              ],
              "country": [
                "CH"
              ],
              "email_address": [
                "[email protected]"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "oCJNCYI/2Wf4AIbcTBFecMkNtoULc7DZTC+GwzbCGLXBRFK8eny+KBtpjgya+epcz7oDKnUgRTK3u5Q/fCcdEEym485nC3SddMHJ+k2Jh1259zTxa6e9UeUPbza4gbnxamheARZ6yfByW4lHkhCvyTKIUf6VMhEOy6TwAkPxhnG7YsgAq8p3K01wPq4cICcvPvMQqQZremgfWYAcF3Rq5cHMFCZVWUdXMpZSOWnWQkbbFVg4k1fOgRRexlYB15LuazisB/BEWryMMLLTVUOsqgUHcIbZv94kMD///seX61lFFDohi4HSs/9ZvprArLsL6fn7ds2EW8bVsiKLhefOMQ==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "00c7968b05f5ed9aa0527fb719da86adcffd1c10221424f80067cdeaa7df91f8"
            },
            "signature": {
              "self_signed": true,
              "signature_algorithm": "SHA256-RSA"
            }
          }
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 24
          }
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "0debd3853f330c574b05e0b6d882dc27"
      },
      "transport_fingerprint": {
        "id": 72,
        "os": "Ubuntu / Debian / CentOS",
        "raw": "28960,64,true,MSTNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "banner_grab",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "\"IMPLEMENTATION\" \"Dovecot Pigeonhole\"\r\n\"SIEVE\" \"fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4",
      "banner_hashes": [
        "sha256:5ca8a64754b4a1a4d1d2d15aaae33aabdbbdac084a95e90bd4011c5e3f79ccc5"
      ],
      "banner_hex": "22494d504c454d454e544154494f4e222022446f7665636f7420506967656f6e686f6c65220d0a22534945564522202266696c65696e746f2072656a65637420656e76656c6f706520656e636f6465642d636861726163746572207661636174696f6e207375626164647265737320636f6d70617261746f722d693b61736369692d6e756d657269632072656c6174696f6e616c20726567657820696d617034",
      "extended_service_name": "PIGEONHOLE",
      "labels": [
        "email"
      ],
      "observed_at": "2023-09-24T21:28:28.131118164Z",
      "perspective_id": "PERSPECTIVE_NTT",
      "port": 4190,
      "service_name": "PIGEONHOLE",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "product": "linux",
          "source": "OSI_TRANSPORT_LAYER"
        }
      ],
      "source_ip": "167.248.133.191",
      "transport_fingerprint": {
        "id": 72,
        "os": "Ubuntu / Debian / CentOS",
        "raw": "28960,64,true,MSTNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 200 OK\r\nDate:  <REDACTED>\r\nServer: Apache\r\nLast-Modified: Wed, 07 Feb 2018 05:25:59 GMT\r\nETag: \"e7d-5649887c897cd-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nContent-Length: 1220\r\nContent-Type: text/html\r\n",
      "banner_hashes": [
        "sha256:89484f21deb876e5037002a4fe94cba9058fce5009706c967aa303c3831ab3ef"
      ],
      "banner_hex": "485454502f312e3120323030204f4b0d0a446174653a20203c52454441435445443e0d0a5365727665723a204170616368650d0a4c6173742d4d6f6469666965643a205765642c2030372046656220323031382030353a32353a353920474d540d0a455461673a20226537642d353634393838376338393763642d677a6970220d0a4163636570742d52616e6765733a2062797465730d0a566172793a204163636570742d456e636f64696e670d0a436f6e74656e742d456e636f64696e673a20677a69700d0a436f6e74656e742d4c656e6774683a20313232300d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://163.172.255.230:7080/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 200,
          "status_reason": "OK",
          "headers": {
            "Server": [
              "Apache"
            ],
            "_encoding": {
              "Server": "DISPLAY_UTF8",
              "Accept_Ranges": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "ETag": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Last_Modified": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8",
              "Vary": "DISPLAY_UTF8",
              "Content_Encoding": "DISPLAY_UTF8"
            },
            "Accept_Ranges": [
              "bytes"
            ],
            "Content_Type": [
              "text/html"
            ],
            "ETag": [
              "\"e7d-5649887c897cd-gzip\""
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Last_Modified": [
              "Wed, 07 Feb 2018 05:25:59 GMT"
            ],
            "Content_Length": [
              "1220"
            ],
            "Vary": [
              "Accept-Encoding"
            ],
            "Content_Encoding": [
              "gzip"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>Web Server's Default Page</title>",
            "<meta name=\"copyright\" content=\"Copyright 1999-2017. Parallels IP Holdings GmbH. All Rights Reserved.\">",
            "<meta charset=\"utf-8\">",
            "<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge,chrome=1\">",
            "<meta name=\"viewport\" content=\"width=device-width, initial-scale=1.0, maximum-scale=1.0\">",
            "<meta http-equiv=\"Cache-Control\" content=\"no-cache\">"
          ],
          "body_size": 3709,
          "body": "<!DOCTYPE html>\n<html lang=\"en\" dir=\"ltr\" class=\"sid-plesk\">\n<head>\n    <title>Web Server's Default Page</title>\n    <meta name=\"copyright\" content=\"Copyright 1999-2017. Parallels IP Holdings GmbH. All Rights Reserved.\">\n    <meta charset=\"utf-8\">\n    <meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge,chrome=1\">\n    <meta name=\"viewport\" content=\"width=device-width, initial-scale=1.0, maximum-scale=1.0\">\n    <meta http-equiv=\"Cache-Control\" content=\"no-cache\">\n    <link rel=\"shortcut icon\" href=\"favicon.ico\">\n    <link rel=\"stylesheet\" href=\"css/style.css\">\n</head>\n<body>\n\n<div class=\"page-container\">\n    <!-- start: PAGE HEADER-->\n    <div class=\"page-header-wrapper\">\n        <div class=\"page-header\">\n            <a class=\"product-logo\" href=\"https://www.plesk.com/\" target=\"_blank\"><img src=\"img/logo.png\" alt=\"Plesk\"></a>\n        </div>\n    </div>\n    <!-- end: PAGE HEADER-->\n\n    <!-- start: PAGE CONTENT-->\n    <div class=\"page-content-wrapper\">\n        <div class=\"page-content\">\n\n            <div class=\"page-info-wrapper\">\n                <div class=\"page-info\">\n                    <div class=\"page-info-heading\">Web Server's Default Page</div>\n                    <p>This page is generated by <a href=\"https://www.plesk.com\" target=\"_blank\">Plesk</a>, the leading hosting automation software. You see this page because there is no Web site at this address.</p>\n                    <p>You can do the following:</p>\n                    <ul>\n                        <li>Create domains and set up Web hosting using Plesk.</li>\n                    </ul>\n                </div>\n            </div>\n\n            <div class=\"product-info-wrapper\">\n                <div class=\"product-info\">\n                    <div class=\"product-info-heading\">What is Plesk</div>\n                    <div class=\"product-info-content\">\n                        <p><strong><a href=\"https://www.plesk.com\" target=\"_blank\">Plesk</a></strong> is a hosting control panel with simple and secure web server and website management tools. It was specially designed to help IT specialists manage web, DNS, mail and other services through a comprehensive and user-friendly GUI. <a class=\"more\" href=\"https://www.plesk.com\" target=\"_blank\">Learn more about Plesk</a>.</p>\n                        <ul class=\"links\">\n                            <li><a class=\"blog\" href=\"https://www.plesk.com/blog/\" target=\"_blank\"><span>Developer Blog</span></a></li>\n                            <li><a class=\"forum\" href=\"https://talk.plesk.com/\" target=\"_blank\"><span>Forum</span></a></li>\n                            <li><a class=\"knowledge-base\" href=\"https://support.plesk.com/\" target=\"_blank\"><span>Knowledge Base</span></a></li>\n                            <li><a class=\"facebook\" href=\"https://www.facebook.com/Plesk\" target=\"_blank\"><span>Facebook</span></a></li>\n                            <li><a class=\"twitter\" href=\"https://twitter.com/Plesk\" target=\"_blank\"><span>Twitter</span></a></li>\n                            <li><a class=\"google-plus\" href=\"https://plus.google.com/communities/109881979300958500728\" target=\"_blank\"><span>Google+</span></a></li>\n                        </ul>\n                    </div>\n                </div>\n            </div>\n\n        </div>\n    </div>\n    <!-- end: PAGE CONTENT-->\n\n    <!-- start: PAGE FOOTER-->\n    <div class=\"page-footer-wrapper\">\n        <div class=\"page-footer\">\n            This page was generated by Plesk. Plesk is the leading WebOps platform to run, automate and grow applications, websites and hosting businesses. Learn more at <a href=\"https://www.plesk.com\" target=\"_blank\">plesk.com</a>.\n        </div>\n    </div>\n    <!-- end: PAGE FOOTER-->\n</div>\n\n</body>\n</html>\n",
          "favicons": [
            {
              "size": 113459,
              "name": "http://163.172.255.230:7080/favicon.ico",
              "md5_hash": "1db747255c64a30f9236e9d929e986ca"
            }
          ],
          "body_hashes": [
            "sha256:4521a1cba5f1d0b17de456cf9daf01c365d5f22a739d0cd985f8c0d6c0ef1dea",
            "sha1:ee37c8b3dc003582980938a919257d600a7f736a"
          ],
          "body_hash": "sha1:ee37c8b3dc003582980938a919257d600a7f736a",
          "html_title": "Web Server's Default Page"
        },
        "supports_http2": false
      },
      "observed_at": "2023-09-24T21:45:57.098928189Z",
      "perspective_id": "PERSPECTIVE_NTT",
      "port": 7080,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Apache",
          "product": "HTTPD",
          "other": {
            "family": "Apache"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.248.133.49",
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 200 OK\r\nDate:  <REDACTED>\r\nServer: Apache\r\nLast-Modified: Wed, 07 Feb 2018 05:25:59 GMT\r\nETag: \"e7d-5649887c897cd-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nContent-Length: 1220\r\nContent-Type: text/html\r\n",
      "banner_hashes": [
        "sha256:89484f21deb876e5037002a4fe94cba9058fce5009706c967aa303c3831ab3ef"
      ],
      "banner_hex": "485454502f312e3120323030204f4b0d0a446174653a20203c52454441435445443e0d0a5365727665723a204170616368650d0a4c6173742d4d6f6469666965643a205765642c2030372046656220323031382030353a32353a353920474d540d0a455461673a20226537642d353634393838376338393763642d677a6970220d0a4163636570742d52616e6765733a2062797465730d0a566172793a204163636570742d456e636f64696e670d0a436f6e74656e742d456e636f64696e673a20677a69700d0a436f6e74656e742d4c656e6774683a20313232300d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a",
      "certificate": "de82400cdc8cf6330459e2782fa2914fdb892f01cbb1213fbb8409e8d42b4263",
      "extended_service_name": "HTTPS",
      "http": {
        "request": {
          "method": "GET",
          "uri": "https://163.172.255.230:7081/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 200,
          "status_reason": "OK",
          "headers": {
            "Date": [
              "<REDACTED>"
            ],
            "_encoding": {
              "Date": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Content_Encoding": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8",
              "Accept_Ranges": "DISPLAY_UTF8",
              "ETag": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Last_Modified": "DISPLAY_UTF8",
              "Vary": "DISPLAY_UTF8"
            },
            "Server": [
              "Apache"
            ],
            "Content_Encoding": [
              "gzip"
            ],
            "Content_Length": [
              "1220"
            ],
            "Accept_Ranges": [
              "bytes"
            ],
            "ETag": [
              "\"e7d-5649887c897cd-gzip\""
            ],
            "Content_Type": [
              "text/html"
            ],
            "Last_Modified": [
              "Wed, 07 Feb 2018 05:25:59 GMT"
            ],
            "Vary": [
              "Accept-Encoding"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>Web Server's Default Page</title>",
            "<meta name=\"copyright\" content=\"Copyright 1999-2017. Parallels IP Holdings GmbH. All Rights Reserved.\">",
            "<meta charset=\"utf-8\">",
            "<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge,chrome=1\">",
            "<meta name=\"viewport\" content=\"width=device-width, initial-scale=1.0, maximum-scale=1.0\">",
            "<meta http-equiv=\"Cache-Control\" content=\"no-cache\">"
          ],
          "body_size": 3709,
          "body": "<!DOCTYPE html>\n<html lang=\"en\" dir=\"ltr\" class=\"sid-plesk\">\n<head>\n    <title>Web Server's Default Page</title>\n    <meta name=\"copyright\" content=\"Copyright 1999-2017. Parallels IP Holdings GmbH. All Rights Reserved.\">\n    <meta charset=\"utf-8\">\n    <meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge,chrome=1\">\n    <meta name=\"viewport\" content=\"width=device-width, initial-scale=1.0, maximum-scale=1.0\">\n    <meta http-equiv=\"Cache-Control\" content=\"no-cache\">\n    <link rel=\"shortcut icon\" href=\"favicon.ico\">\n    <link rel=\"stylesheet\" href=\"css/style.css\">\n</head>\n<body>\n\n<div class=\"page-container\">\n    <!-- start: PAGE HEADER-->\n    <div class=\"page-header-wrapper\">\n        <div class=\"page-header\">\n            <a class=\"product-logo\" href=\"https://www.plesk.com/\" target=\"_blank\"><img src=\"img/logo.png\" alt=\"Plesk\"></a>\n        </div>\n    </div>\n    <!-- end: PAGE HEADER-->\n\n    <!-- start: PAGE CONTENT-->\n    <div class=\"page-content-wrapper\">\n        <div class=\"page-content\">\n\n            <div class=\"page-info-wrapper\">\n                <div class=\"page-info\">\n                    <div class=\"page-info-heading\">Web Server's Default Page</div>\n                    <p>This page is generated by <a href=\"https://www.plesk.com\" target=\"_blank\">Plesk</a>, the leading hosting automation software. You see this page because there is no Web site at this address.</p>\n                    <p>You can do the following:</p>\n                    <ul>\n                        <li>Create domains and set up Web hosting using Plesk.</li>\n                    </ul>\n                </div>\n            </div>\n\n            <div class=\"product-info-wrapper\">\n                <div class=\"product-info\">\n                    <div class=\"product-info-heading\">What is Plesk</div>\n                    <div class=\"product-info-content\">\n                        <p><strong><a href=\"https://www.plesk.com\" target=\"_blank\">Plesk</a></strong> is a hosting control panel with simple and secure web server and website management tools. It was specially designed to help IT specialists manage web, DNS, mail and other services through a comprehensive and user-friendly GUI. <a class=\"more\" href=\"https://www.plesk.com\" target=\"_blank\">Learn more about Plesk</a>.</p>\n                        <ul class=\"links\">\n                            <li><a class=\"blog\" href=\"https://www.plesk.com/blog/\" target=\"_blank\"><span>Developer Blog</span></a></li>\n                            <li><a class=\"forum\" href=\"https://talk.plesk.com/\" target=\"_blank\"><span>Forum</span></a></li>\n                            <li><a class=\"knowledge-base\" href=\"https://support.plesk.com/\" target=\"_blank\"><span>Knowledge Base</span></a></li>\n                            <li><a class=\"facebook\" href=\"https://www.facebook.com/Plesk\" target=\"_blank\"><span>Facebook</span></a></li>\n                            <li><a class=\"twitter\" href=\"https://twitter.com/Plesk\" target=\"_blank\"><span>Twitter</span></a></li>\n                            <li><a class=\"google-plus\" href=\"https://plus.google.com/communities/109881979300958500728\" target=\"_blank\"><span>Google+</span></a></li>\n                        </ul>\n                    </div>\n                </div>\n            </div>\n\n        </div>\n    </div>\n    <!-- end: PAGE CONTENT-->\n\n    <!-- start: PAGE FOOTER-->\n    <div class=\"page-footer-wrapper\">\n        <div class=\"page-footer\">\n            This page was generated by Plesk. Plesk is the leading WebOps platform to run, automate and grow applications, websites and hosting businesses. Learn more at <a href=\"https://www.plesk.com\" target=\"_blank\">plesk.com</a>.\n        </div>\n    </div>\n    <!-- end: PAGE FOOTER-->\n</div>\n\n</body>\n</html>\n",
          "favicons": [
            {
              "size": 113459,
              "name": "https://163.172.255.230:7081/favicon.ico",
              "md5_hash": "1db747255c64a30f9236e9d929e986ca"
            }
          ],
          "body_hashes": [
            "sha256:4521a1cba5f1d0b17de456cf9daf01c365d5f22a739d0cd985f8c0d6c0ef1dea",
            "sha1:ee37c8b3dc003582980938a919257d600a7f736a"
          ],
          "body_hash": "sha1:ee37c8b3dc003582980938a919257d600a7f736a",
          "html_title": "Web Server's Default Page"
        },
        "supports_http2": false
      },
      "jarm": {
        "_encoding": {
          "fingerprint": "DISPLAY_HEX",
          "cipher_and_version_fingerprint": "DISPLAY_HEX",
          "tls_extensions_sha256": "DISPLAY_HEX"
        },
        "fingerprint": "2ad2ad16d2ad2ad22c2ad2ad2ad2adc80334825071f8ff93376ac14c5a331f",
        "cipher_and_version_fingerprint": "2ad2ad16d2ad2ad22c2ad2ad2ad2ad",
        "tls_extensions_sha256": "c80334825071f8ff93376ac14c5a331f",
        "observed_at": "2023-09-22T00:24:18.130522103Z"
      },
      "observed_at": "2023-09-23T14:33:38.835756898Z",
      "perspective_id": "PERSPECTIVE_HE",
      "port": 7081,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Apache",
          "product": "HTTPD",
          "other": {
            "family": "Apache"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "162.142.125.226",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "de82400cdc8cf6330459e2782fa2914fdb892f01cbb1213fbb8409e8d42b4263",
          "leaf_data": {
            "subject_dn": "C=CH, L=Schaffhausen, O=Plesk, CN=Plesk, [email protected]",
            "issuer_dn": "C=CH, L=Schaffhausen, O=Plesk, CN=Plesk, [email protected]",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "21622321b4cf96006a61db23321772200d01db3a4b94295ede858e8a502bfdc1",
            "fingerprint": "de82400cdc8cf6330459e2782fa2914fdb892f01cbb1213fbb8409e8d42b4263",
            "issuer": {
              "common_name": [
                "Plesk"
              ],
              "locality": [
                "Schaffhausen"
              ],
              "organization": [
                "Plesk"
              ],
              "country": [
                "CH"
              ],
              "email_address": [
                "[email protected]"
              ]
            },
            "subject": {
              "common_name": [
                "Plesk"
              ],
              "locality": [
                "Schaffhausen"
              ],
              "organization": [
                "Plesk"
              ],
              "country": [
                "CH"
              ],
              "email_address": [
                "[email protected]"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "oCJNCYI/2Wf4AIbcTBFecMkNtoULc7DZTC+GwzbCGLXBRFK8eny+KBtpjgya+epcz7oDKnUgRTK3u5Q/fCcdEEym485nC3SddMHJ+k2Jh1259zTxa6e9UeUPbza4gbnxamheARZ6yfByW4lHkhCvyTKIUf6VMhEOy6TwAkPxhnG7YsgAq8p3K01wPq4cICcvPvMQqQZremgfWYAcF3Rq5cHMFCZVWUdXMpZSOWnWQkbbFVg4k1fOgRRexlYB15LuazisB/BEWryMMLLTVUOsqgUHcIbZv94kMD///seX61lFFDohi4HSs/9ZvprArLsL6fn7ds2EW8bVsiKLhefOMQ==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "00c7968b05f5ed9aa0527fb719da86adcffd1c10221424f80067cdeaa7df91f8"
            },
            "signature": {
              "self_signed": true,
              "signature_algorithm": "SHA256-RSA"
            }
          }
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 23
          }
        },
        "session_ticket": {
          "length": 192,
          "lifetime_hint": 300
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "e35df3e00ca4ef31d42b34bebaa2f86e"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 200 OK\r\nServer: sw-cp-server\r\nDate:  <REDACTED>\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nExpires: Fri, 28 May 1999 00:00:00 GMT\r\nLast-Modified: Sun, 24 Sep 2023 04:58:06 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nCache-Control: post-check=0, pre-check=0\r\nPragma: no-cache\r\nP3P: CP=\"NON COR CURa ADMa OUR NOR UNI COM NAV STA\"\r\nContent-Encoding: gzip\r\n",
      "banner_hashes": [
        "sha256:c97672b2d0aae4551b4a0e5f38be23f3266f8380450e4a4bfeaaebdaa22890cb"
      ],
      "banner_hex": "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",
      "certificate": "bca9f9d98a3466651a5640dc4c96f265b2f27be3a9fd396baf2bd06e3ebeaf99",
      "extended_service_name": "HTTPS",
      "http": {
        "request": {
          "method": "GET",
          "uri": "https://163.172.255.230:8443/",
          "headers": {
            "Accept": [
              "*/*"
            ],
            "_encoding": {
              "Accept": "DISPLAY_UTF8",
              "User_Agent": "DISPLAY_UTF8"
            },
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 200,
          "status_reason": "OK",
          "headers": {
            "Transfer_Encoding": [
              "chunked"
            ],
            "_encoding": {
              "Transfer_Encoding": "DISPLAY_UTF8",
              "Expires": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "P3P": "DISPLAY_UTF8",
              "Pragma": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Cache_Control": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Last_Modified": "DISPLAY_UTF8",
              "Content_Encoding": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8"
            },
            "Expires": [
              "Fri, 28 May 1999 00:00:00 GMT"
            ],
            "Connection": [
              "keep-alive"
            ],
            "P3P": [
              "CP=\"NON COR CURa ADMa OUR NOR UNI COM NAV STA\""
            ],
            "Pragma": [
              "no-cache"
            ],
            "Content_Type": [
              "text/html; charset=UTF-8"
            ],
            "Cache_Control": [
              "no-store, no-cache, must-revalidate",
              "post-check=0, pre-check=0"
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Last_Modified": [
              "Sun, 24 Sep 2023 04:58:06 GMT"
            ],
            "Content_Encoding": [
              "gzip"
            ],
            "Server": [
              "sw-cp-server"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>Plesk Onyx 17.8.11</title>",
            "<meta charset=\"utf-8\">",
            "<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge,chrome=1\">",
            "<meta name=\"plesk-build\" content=\"1708180301.19\">"
          ],
          "body_size": 1468,
          "body": "\n        <html><head>\n        <meta charset=\"utf-8\">\n        <meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge,chrome=1\">\n        <meta name=\"plesk-build\" content=\"1708180301.19\">\n        <title>Plesk Onyx 17.8.11</title>\n        <script language=\"javascript\" type=\"text/javascript\" src=\"/javascript/common.js?1519907528\"/></script>\n        <script language=\"javascript\" type=\"text/javascript\" src=\"/javascript/externals/prototype.js?1519907528\"/></script>\n        \n        </head><body onLoad=\";top.location='/login.php?success_redirect_url=https%3A%2F%2F163.172.255.230%3A8443%2F';\"></body><noscript>You will be redirected to the new address in 15 seconds... If you are not automatically taken to the new location, please enable javascript or click the hyperlink <a href=\"/login.php?success_redirect_url=https%3A%2F%2F163.172.255.230%3A8443%2F\" target=\"top\">/login.php?success_redirect_url=https%3A%2F%2F163.172.255.230%3A8443%2F</a>.</noscript></html><!--______________________________________________________________________________________________________________________________________________________________________________________________________________________________________________IE error page size limitation______________________________________________________________________________________________________________________________________________________________________________________________________________________________________________-->",
          "favicons": [
            {
              "size": 113459,
              "name": "https://163.172.255.230:8443/favicon.ico",
              "md5_hash": "1db747255c64a30f9236e9d929e986ca"
            }
          ],
          "body_hashes": [
            "sha256:7b0d5bc46c723730143817f78b42cd9b46913af1c70b8472a49a232d39307998",
            "sha1:a579341fe8f75301d7c13c6b19031768f50dbd93"
          ],
          "body_hash": "sha1:a579341fe8f75301d7c13c6b19031768f50dbd93",
          "html_title": "Plesk Onyx 17.8.11"
        },
        "supports_http2": false
      },
      "jarm": {
        "_encoding": {
          "fingerprint": "DISPLAY_HEX",
          "cipher_and_version_fingerprint": "DISPLAY_HEX",
          "tls_extensions_sha256": "DISPLAY_HEX"
        },
        "fingerprint": "2ad2ad0002ad2ad22c2ad2ad2ad2ad4d38a7b5ffb0e5536d09513d9de81205",
        "cipher_and_version_fingerprint": "2ad2ad0002ad2ad22c2ad2ad2ad2ad",
        "tls_extensions_sha256": "4d38a7b5ffb0e5536d09513d9de81205",
        "observed_at": "2023-09-09T00:50:59.911733498Z"
      },
      "labels": [
        "prototype",
        "web.control-panel.hosting"
      ],
      "observed_at": "2023-09-24T04:58:06.597668046Z",
      "perspective_id": "PERSPECTIVE_HE",
      "port": 8443,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Parallels",
          "product": "Parallels Plesk Panel",
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:parallels:parallels_plesk_panel:17.8.11:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Parallels",
          "product": "Plesk",
          "version": "17.8.11",
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "162.142.125.11",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX",
            "chain_fps_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "bca9f9d98a3466651a5640dc4c96f265b2f27be3a9fd396baf2bd06e3ebeaf99",
          "chain_fps_sha_256": [
            "25847d668eb4f04fdd40b12b6b0740c567da7d024308eb6c2c96fe41d9de218d"
          ],
          "leaf_data": {
            "names": [
              "swissdhpshop.ch"
            ],
            "subject_dn": "CN=swissdhpshop.ch",
            "issuer_dn": "C=US, O=Let's Encrypt, CN=Let's Encrypt Authority X3",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "8c51a2977bf105c7fc1ba9787c7139266e05992ded0f64a81cc53d5e142f41bb",
            "fingerprint": "bca9f9d98a3466651a5640dc4c96f265b2f27be3a9fd396baf2bd06e3ebeaf99",
            "issuer": {
              "common_name": [
                "Let's Encrypt Authority X3"
              ],
              "organization": [
                "Let's Encrypt"
              ],
              "country": [
                "US"
              ]
            },
            "subject": {
              "common_name": [
                "swissdhpshop.ch"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "uJ6yeh0ZmQc+Py8ZwCCIO7vldazrvTiVpIJF+mNeKcBmFMdmGr6YXwrD7ogPEPMn7WwP7prsa2LPGG0rtyyW6QPqtkUta0AMyP+AvjiepVFEhoBg1vuQ9+Pznp3uFCu8jHZrp0QdzM9APXmzyUP0IglOAf9JG8/NB0jNbag62EdDVRUasnbXxS/wGzs7GSPchGakUG3E3nve9NDb7+1JQlHeluZWEkEK8C0I1OQjT+SBPYH7+lREyZ6zCJKwVI2D6jgPeKsvoCFx23X6OJtOyp72VpXjbRmrpO62J82nZQju4JMFvgtXdfRhhmDCs0nY8fwg1iDRWiua3fMkic5+WQ==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "2542c4cd1630cc50f310a0d6019da08cc1d4f7a28069ec93e03596a1e37fe5b2"
            },
            "signature": {
              "signature_algorithm": "SHA256-RSA",
              "self_signed": false
            }
          },
          "chain": [
            {
              "fingerprint": "25847d668eb4f04fdd40b12b6b0740c567da7d024308eb6c2c96fe41d9de218d",
              "subject_dn": "C=US, O=Let's Encrypt, CN=Let's Encrypt Authority X3",
              "issuer_dn": "O=Digital Signature Trust Co., CN=DST Root CA X3"
            }
          ]
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 23
          }
        },
        "session_ticket": {
          "length": 176,
          "lifetime_hint": 300
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "e35df3e00ca4ef31d42b34bebaa2f86e"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 200 OK\r\nServer: sw-cp-server\r\nDate:  <REDACTED>\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nExpires: Fri, 28 May 1999 00:00:00 GMT\r\nLast-Modified: Sun, 24 Sep 2023 06:39:32 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nCache-Control: post-check=0, pre-check=0\r\nPragma: no-cache\r\nP3P: CP=\"NON COR CURa ADMa OUR NOR UNI COM NAV STA\"\r\nContent-Encoding: gzip\r\n",
      "banner_hashes": [
        "sha256:86196f81d16b6e2b894dc4077ffe37759ec898d7ae16d266713cff09e0a622c0"
      ],
      "banner_hex": "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",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://163.172.255.230:8880/",
          "headers": {
            "Accept": [
              "*/*"
            ],
            "_encoding": {
              "Accept": "DISPLAY_UTF8",
              "User_Agent": "DISPLAY_UTF8"
            },
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 200,
          "status_reason": "OK",
          "headers": {
            "Content_Type": [
              "text/html; charset=UTF-8"
            ],
            "_encoding": {
              "Content_Type": "DISPLAY_UTF8",
              "Cache_Control": "DISPLAY_UTF8",
              "Expires": "DISPLAY_UTF8",
              "Transfer_Encoding": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Pragma": "DISPLAY_UTF8",
              "Last_Modified": "DISPLAY_UTF8",
              "P3P": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "Content_Encoding": "DISPLAY_UTF8"
            },
            "Cache_Control": [
              "no-store, no-cache, must-revalidate",
              "post-check=0, pre-check=0"
            ],
            "Expires": [
              "Fri, 28 May 1999 00:00:00 GMT"
            ],
            "Transfer_Encoding": [
              "chunked"
            ],
            "Server": [
              "sw-cp-server"
            ],
            "Pragma": [
              "no-cache"
            ],
            "Last_Modified": [
              "Sun, 24 Sep 2023 06:39:32 GMT"
            ],
            "P3P": [
              "CP=\"NON COR CURa ADMa OUR NOR UNI COM NAV STA\""
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Connection": [
              "keep-alive"
            ],
            "Content_Encoding": [
              "gzip"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>Plesk Onyx 17.8.11</title>",
            "<meta charset=\"utf-8\">",
            "<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge,chrome=1\">",
            "<meta name=\"plesk-build\" content=\"1708180301.19\">"
          ],
          "body_size": 1465,
          "body": "\n        <html><head>\n        <meta charset=\"utf-8\">\n        <meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge,chrome=1\">\n        <meta name=\"plesk-build\" content=\"1708180301.19\">\n        <title>Plesk Onyx 17.8.11</title>\n        <script language=\"javascript\" type=\"text/javascript\" src=\"/javascript/common.js?1519907528\"/></script>\n        <script language=\"javascript\" type=\"text/javascript\" src=\"/javascript/externals/prototype.js?1519907528\"/></script>\n        \n        </head><body onLoad=\";top.location='/login.php?success_redirect_url=http%3A%2F%2F163.172.255.230%3A8880%2F';\"></body><noscript>You will be redirected to the new address in 15 seconds... If you are not automatically taken to the new location, please enable javascript or click the hyperlink <a href=\"/login.php?success_redirect_url=http%3A%2F%2F163.172.255.230%3A8880%2F\" target=\"top\">/login.php?success_redirect_url=http%3A%2F%2F163.172.255.230%3A8880%2F</a>.</noscript></html><!--______________________________________________________________________________________________________________________________________________________________________________________________________________________________________________IE error page size limitation______________________________________________________________________________________________________________________________________________________________________________________________________________________________________________-->",
          "favicons": [
            {
              "size": 113459,
              "name": "http://163.172.255.230:8880/favicon.ico",
              "md5_hash": "1db747255c64a30f9236e9d929e986ca"
            }
          ],
          "body_hashes": [
            "sha256:b27ae4e1f15cde4b9d114c4f172c085badb4d040007d9985daaf07bab2a8aabd",
            "sha1:a1973de4c02ba352e4dbebb9c6a18f8db5702e1b"
          ],
          "body_hash": "sha1:a1973de4c02ba352e4dbebb9c6a18f8db5702e1b",
          "html_title": "Plesk Onyx 17.8.11"
        },
        "supports_http2": false
      },
      "labels": [
        "prototype",
        "web.control-panel.hosting"
      ],
      "observed_at": "2023-09-24T06:39:32.518000055Z",
      "perspective_id": "PERSPECTIVE_HE",
      "port": 8880,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Parallels",
          "product": "Parallels Plesk Panel",
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:parallels:parallels_plesk_panel:17.8.11:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Parallels",
          "product": "Plesk",
          "version": "17.8.11",
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "162.142.125.226",
      "transport_protocol": "TCP",
      "truncated": false
    }
  ],
  "location": {
    "continent": "Europe",
    "country": "France",
    "country_code": "FR",
    "city": "Paris",
    "postal_code": "75000",
    "timezone": "Europe/Paris",
    "province": "\u00cele-de-France",
    "coordinates": {
      "latitude": 48.85341,
      "longitude": 2.3488
    }
  },
  "location_updated_at": "2023-09-12T13:37:03.574985Z",
  "autonomous_system": {
    "asn": 12876,
    "description": "Online SAS",
    "bgp_prefix": "163.172.0.0/16",
    "name": "Online SAS",
    "country_code": "FR"
  },
  "autonomous_system_updated_at": "2023-09-12T13:37:03.575032Z",
  "operating_system": {
    "uniform_resource_identifier": "cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*",
    "part": "o",
    "vendor": "Ubuntu",
    "product": "Linux",
    "other": {
      "family": "Linux"
    }
  },
  "dns": {
    "names": [
      "webmail.swissdhpshop.ch",
      "www.swissdhpshop.ch",
      "swissdhpshop.ch",
      "sd-130492.dedibox.fr"
    ],
    "records": {
      "sd-130492.dedibox.fr": {
        "record_type": "A",
        "resolved_at": "2023-09-17T18:27:02.334315497Z"
      },
      "swissdhpshop.ch": {
        "record_type": "A",
        "resolved_at": "2023-09-13T12:59:45.242858801Z"
      },
      "www.swissdhpshop.ch": {
        "record_type": "CNAME",
        "resolved_at": "2023-09-16T12:59:39.649048337Z"
      },
      "webmail.swissdhpshop.ch": {
        "record_type": "A",
        "resolved_at": "2023-09-16T12:59:39.564620276Z"
      }
    },
    "reverse_dns": {
      "names": [
        "swissdhpshop.ch"
      ],
      "resolved_at": "2023-09-13T05:21:48.985284680Z"
    }
  },
  "last_updated_at": "2023-09-25T02:10:18.766Z",
  "labels": [
    "email",
    "file-sharing",
    "network-administration",
    "prototype",
    "remote-access",
    "web.control-panel.hosting"
  ]
}