193.105.134.95
As of: Feb 13, 2025 12:15am UTC |
Latest
{
"ip": "193.105.134.95",
"services": [
{
"_decoded": "rdp",
"_encoding": {
"certificate": "DISPLAY_HEX"
},
"certificate": "67f6442939dbe3a7ed1a5d51c0f0d0bbc74b6216b70bbd658258ca23caea3772",
"extended_service_name": "RDP",
"jarm": {
"_encoding": {
"fingerprint": "DISPLAY_HEX",
"cipher_and_version_fingerprint": "DISPLAY_HEX",
"tls_extensions_sha256": "DISPLAY_HEX"
},
"fingerprint": "26d26d16d26d26d22c26d26d26d26dfd9c9d14e4f4f67f94f0359f8b28f532",
"cipher_and_version_fingerprint": "26d26d16d26d26d22c26d26d26d26d",
"tls_extensions_sha256": "fd9c9d14e4f4f67f94f0359f8b28f532",
"observed_at": "2025-02-03T13:30:44.418932239Z"
},
"labels": [
"network-administration",
"remote-access"
],
"observed_at": "2025-02-13T00:14:36.603318491Z",
"perspective_id": "PERSPECTIVE_UNKNOWN",
"port": 3389,
"rdp": {
"protocol_flags": {
"extended_client_data_supported": true,
"dynvc_graphics_pipeline": true,
"neg_resp_reserved": true,
"restricted_admin_mode": true,
"restricted_auth_mode": false
},
"selected_security_protocol": {
"rdstls": true,
"raw_value": 4,
"standard_rdp": false,
"tls": false,
"credssp": false,
"credssp_early_auth": false,
"error": false,
"error_ssl_required": false,
"error_ssl_forbidden": false,
"error_ssl_cert_missing": false,
"error_bad_flags": false,
"error_hybrid_required": false,
"error_ssl_user_auth_required": false,
"error_unknown": false
},
"x224_cc_pdu_srcref": 13330
},
"service_name": "RDP",
"source_ip": "162.142.125.39",
"tls": {
"version_selected": "TLSv1_2",
"cipher_selected": "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "67f6442939dbe3a7ed1a5d51c0f0d0bbc74b6216b70bbd658258ca23caea3772",
"leaf_data": {
"subject_dn": "CN=WIN-869B64EUD0A",
"issuer_dn": "CN=WIN-869B64EUD0A",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "3c5cc6c17284405296c35104219215f9e31e7c6cdcfb9085fd82d69b419e6954",
"fingerprint": "67f6442939dbe3a7ed1a5d51c0f0d0bbc74b6216b70bbd658258ca23caea3772",
"issuer": {
"common_name": [
"WIN-869B64EUD0A"
]
},
"subject": {
"common_name": [
"WIN-869B64EUD0A"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "vAMX1V+ZALr6DpXn3PDLz+G2jG83qYqcp9BayDgci2ECDX5VKvd0kSQEp7+xr9MmypDot8p4DnE+M9Bj0n18hIEMnwXqLHmMzhtle30ff2pG4DRKHCjeQtv7LRE5/x/vh018tZWFlLyR5XiSz/Cy3KGJMVVxuJtQ+MnVFRtQogGDL2m99tqhQvNLenWDiJcYwxHtke0MxQ/VsfWju9YrxEO0HhGep4M5TcUOh11T8xHTVtlOZJBGaf7WSI6sMRYipt+iazJBCo0EjNiqJ03pha9pghTLFwg+tNVQ1vwuEfsfiNeA5tenqw5doklMg5oi+JX6yYH7E3VFFov8X0dmQQ==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "2fd9e1b7a1a76f28a91b43a103b036540f9c9ffbe521177943badc8ffc42c2e1"
},
"signature": {
"self_signed": true,
"signature_algorithm": "SHA256-RSA"
}
}
},
"server_key_exchange": {
"ec_params": {
"named_curve": 23
}
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "8529fd8de0d7f73186ef5ea8b4531a76",
"ja4s": "t120100_c014_bc98f8e001b5",
"versions": [
{
"tls_version": "TLSv1_2",
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "8529fd8de0d7f73186ef5ea8b4531a76",
"ja4s": "t120100_c014_bc98f8e001b5"
},
{
"tls_version": "TLSv1_1",
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "1308be477c8afb355e2860ab89378ae5",
"ja4s": "t110100_c014_bc98f8e001b5"
},
{
"tls_version": "TLSv1_0",
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "bcf3a836c82d12ee988005fb0c011445",
"ja4s": "t100100_c014_bc98f8e001b5"
}
]
},
"transport_protocol": "TCP",
"truncated": false
}
],
"location": {
"continent": "Europe",
"country": "Sweden",
"country_code": "SE",
"city": "Stockholm",
"postal_code": "163 00",
"timezone": "Europe/Stockholm",
"province": "Stockholm",
"coordinates": {
"latitude": 59.3833,
"longitude": 17.9167
}
},
"location_updated_at": "2025-02-09T16:58:49.937054973Z",
"autonomous_system": {
"asn": 42237,
"description": "W1N",
"bgp_prefix": "193.105.134.0/24",
"name": "W1N",
"country_code": "GB"
},
"autonomous_system_updated_at": "2025-02-09T16:58:49.937154968Z",
"whois": {
"network": {
"handle": "UK-WIN",
"name": "w1n ltd",
"cidrs": [
"193.105.134.0/24"
],
"created": "2022-10-18T00:00:00Z",
"updated": "2023-02-25T00:00:00Z"
},
"organization": {
"handle": "ORG-WL303-RIPE",
"name": "w1n ltd",
"address": "Dept 302, 43 Owston Road, Carcroft\\nDN6 8DA\\nDoncaster\\nUNITED KINGDOM",
"abuse_contacts": [
{
"handle": "AR68644-RIPE",
"name": "Abuse-C Role",
"email": "[email protected]"
}
],
"admin_contacts": [
{
"handle": "AA39751-RIPE",
"name": "Anastasiia",
"email": "[email protected]"
}
]
}
},
"dns": {},
"last_updated_at": "2025-02-13T00:15:13.801Z",
"labels": [
"network-administration",
"remote-access"
]
}