193.142.146.220

As of: Feb 21, 2024 7:42am UTC | Latest
{
  "ip": "193.142.146.220",
  "services": [
    {
      "_decoded": "banner_grab",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "\u0005\u0000\f\u0003\u0010\u0000\u0000\u0000<\u0000\u0000\u0000\u0001\u0000\u0000\u0000\ufffd\u0010\ufffd\u0010\ufffd0\u0000\u0000\u0004\u0000135\u0000\u0000\u0000\u0001\u0000\u0000\u0000\u0000\u0000\u0000\u0000\u0004]\ufffd\ufffd\ufffd\u001c\ufffd\u0011\ufffd\ufffd\b\u0000+\u0010H`\u0002\u0000\u0000\u0000",
      "banner_hashes": [
        "sha256:9917e068fb86bcc0dde4aab3fcb7afd93b04a07579e36bb7820e29e9972bea03"
      ],
      "banner_hex": "05000c03100000003c00000001000000b810b810b330000004003133350000000100000000000000045d888aeb1cc9119fe808002b10486002000000",
      "discovery_method": "IPV4_WALK_FULL_PRIORITY_1",
      "extended_service_name": "DCERPC",
      "observed_at": "2024-02-20T14:23:20.590282999Z",
      "perspective_id": "PERSPECTIVE_TATA",
      "port": 135,
      "service_name": "DCERPC",
      "source_ip": "167.94.138.51",
      "transport_fingerprint": {
        "raw": "65535,128,true,MNWST,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "smb",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "SMB SMB 2.1",
      "banner_hashes": [
        "sha256:51d9f41a595c653b76dbff0adeec37710decd99e91825ba2de9ef6e273bfcaf0"
      ],
      "banner_hex": "534d4220534d4220322e31",
      "discovery_method": "IPV4_WALK_FULL_PRIORITY_1",
      "extended_service_name": "SMB",
      "labels": [
        "file-sharing"
      ],
      "observed_at": "2024-02-21T05:30:58.921140755Z",
      "perspective_id": "PERSPECTIVE_TELIA",
      "port": 445,
      "service_name": "SMB",
      "smb": {
        "smb_version": {
          "major": 2,
          "minor": 1,
          "version_string": "SMB 2.1",
          "revision": 0
        },
        "smb_capabilities": {
          "smb_dfs_support": true,
          "smb_leasing_support": true,
          "smb_multicredit_support": true,
          "smb_multichan_support": false,
          "smb_persistent_handle_support": false,
          "smb_directory_leasing_support": false,
          "smb_encryption_support": false
        },
        "has_ntlm": true,
        "negotiation_log": {
          "header_log": {
            "_encoding": {
              "protocol_id": "DISPLAY_HEX"
            },
            "protocol_id": "00000000fe534d42",
            "credits": 1,
            "flags": 1,
            "status": 0,
            "command": 0
          },
          "security_mode": 1,
          "dialect_revision": 528,
          "_encoding": {
            "server_guid": "DISPLAY_HEX"
          },
          "server_guid": "00000000000000000000000000000000b79a01493f987e48a071a08a759ad48b",
          "capabilities": 7,
          "system_time": 1708493458,
          "server_start_time": 1240428288,
          "authentication_types": [
            "1.3.6.1.4.1.311.2.2.30",
            "1.3.6.1.4.1.311.2.2.10"
          ]
        },
        "session_setup_log": {
          "header_log": {
            "_encoding": {
              "protocol_id": "DISPLAY_HEX"
            },
            "protocol_id": "00000000fe534d42",
            "status": 3221225494,
            "command": 1,
            "credits": 1,
            "flags": 1
          },
          "target_name": "WINDOWS-1BBOQBP",
          "negotiate_flags": 2726953477,
          "setup_flags": 0
        },
        "smbv1_support": false
      },
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
          "part": "o",
          "vendor": "Microsoft",
          "product": "Windows",
          "other": {
            "family": "Windows"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.146.59",
      "transport_fingerprint": {
        "raw": "65535,128,true,MNWST,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "banner_grab",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "{\"packetID\":0}\n",
      "banner_hashes": [
        "sha256:f28f002492ce9c0681832d540093951397619636a9ac36caf6081c28d26b2653"
      ],
      "banner_hex": "7b227061636b65744944223a307d0a",
      "discovery_method": "IPV4_WALK_FULL_PRIORITY_3",
      "extended_service_name": "UNKNOWN",
      "observed_at": "2024-02-21T00:42:16.002716245Z",
      "perspective_id": "PERSPECTIVE_NTT",
      "port": 2244,
      "service_name": "UNKNOWN",
      "source_ip": "167.248.133.182",
      "transport_fingerprint": {
        "raw": "65535,128,true,MNWST,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "rdp",
      "_encoding": {
        "certificate": "DISPLAY_HEX"
      },
      "certificate": "b945b542602e40a9f4ef52568232f489610fb4d74c6ca3c5a5186ae7b7a75186",
      "discovery_method": "IPV4_WALK_FULL_PRIORITY_1",
      "extended_service_name": "RDP",
      "jarm": {
        "_encoding": {
          "fingerprint": "DISPLAY_HEX",
          "cipher_and_version_fingerprint": "DISPLAY_HEX",
          "tls_extensions_sha256": "DISPLAY_HEX"
        },
        "fingerprint": "14d14d16d14d14d08c14d14d14d14dfd9c9d14e4f4f67f94f0359f8b28f532",
        "cipher_and_version_fingerprint": "14d14d16d14d14d08c14d14d14d14d",
        "tls_extensions_sha256": "fd9c9d14e4f4f67f94f0359f8b28f532",
        "observed_at": "2024-01-29T08:00:39.360335174Z"
      },
      "labels": [
        "network-administration",
        "remote-access"
      ],
      "observed_at": "2024-02-20T20:04:25.989321305Z",
      "perspective_id": "PERSPECTIVE_NTT",
      "port": 3389,
      "rdp": {
        "protocol_flags": {
          "extended_client_data_supported": true,
          "dynvc_graphics_pipeline": true,
          "neg_resp_reserved": true,
          "restricted_admin_mode": true,
          "restricted_auth_mode": true
        },
        "selected_security_protocol": {
          "rdstls": true,
          "raw_value": 4,
          "standard_rdp": false,
          "tls": false,
          "credssp": false,
          "credssp_early_auth": false,
          "error": false,
          "error_ssl_required": false,
          "error_ssl_forbidden": false,
          "error_ssl_cert_missing": false,
          "error_bad_flags": false,
          "error_hybrid_required": false,
          "error_ssl_user_auth_required": false,
          "error_unknown": false
        },
        "x224_cc_pdu_srcref": 13330
      },
      "service_name": "RDP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
          "part": "o",
          "vendor": "Microsoft",
          "product": "Windows",
          "other": {
            "family": "Windows"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.248.133.33",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_RSA_WITH_AES_256_GCM_SHA384",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "b945b542602e40a9f4ef52568232f489610fb4d74c6ca3c5a5186ae7b7a75186",
          "leaf_data": {
            "subject_dn": "CN=WINDOWS-1BBOQBP",
            "issuer_dn": "CN=WINDOWS-1BBOQBP",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "9e5c1b480f6316f3de810735b0195da6121b0b32a86059ef326804f781b10050",
            "fingerprint": "b945b542602e40a9f4ef52568232f489610fb4d74c6ca3c5a5186ae7b7a75186",
            "issuer": {
              "common_name": [
                "WINDOWS-1BBOQBP"
              ]
            },
            "subject": {
              "common_name": [
                "WINDOWS-1BBOQBP"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "ylPlvjXwd4+yqld4UOmH1soQ6RCPAT5jUkB15dviF4cX+yzgCsH/YsFZwG11iyt2UDtkkGgwg3Ge5CKkvBtFyNI3Ce87OLpWUM10cLak85CSa8loTiver+/qOin5DJ63i6VmmV7t38FHkPEcMJl/s/X1SJoOOgaze9GWnCUJg/0YKlIZxRuTjs13N+LnNCcwE4E3g5a5oMQzgnMCrI5nljo6hImL9HeznPlQobJVvRH+IFdfbwZ1uB5GIErCqKp0nBkszNKG0v/9seYJr34d5HL9ojPFXUF1ZX8x7AIqXR6ntyTJj/BTpksXCUW7+XYhtQlYFEXwrqKBGKvqRa55KQ==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "90e47a850d5c14ffb16ccd70d19246eb5a431a22716446e6898622635a24e137"
            },
            "signature": {
              "self_signed": true,
              "signature_algorithm": "SHA256-RSA"
            }
          }
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "f75082535b4a79c07b31bdd0e2b7eb87"
      },
      "transport_fingerprint": {
        "raw": "64000,128,true,MNWST,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 404 Not Found\r\nContent-Type: text/html; charset=us-ascii\r\nServer: Microsoft-HTTPAPI/2.0\r\nDate:  <REDACTED>\r\nConnection: close\r\nContent-Length: 315\r\n",
      "banner_hashes": [
        "sha256:d7de42c1e8c09cf951e3ad6248fda3ab48a60ca3eac8b25effd4b3067df8f362"
      ],
      "banner_hex": "485454502f312e3120343034204e6f7420466f756e640d0a436f6e74656e742d547970653a20746578742f68746d6c3b20636861727365743d75732d61736369690d0a5365727665723a204d6963726f736f66742d485454504150492f322e300d0a446174653a20203c52454441435445443e0d0a436f6e6e656374696f6e3a20636c6f73650d0a436f6e74656e742d4c656e6774683a203331350d0a",
      "discovery_method": "PREDICTIVE_METHOD_18",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://193.142.146.220:5985/",
          "headers": {
            "Accept": [
              "*/*"
            ],
            "_encoding": {
              "Accept": "DISPLAY_UTF8",
              "User_Agent": "DISPLAY_UTF8"
            },
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 404,
          "status_reason": "Not Found",
          "headers": {
            "Server": [
              "Microsoft-HTTPAPI/2.0"
            ],
            "_encoding": {
              "Server": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8"
            },
            "Date": [
              "<REDACTED>"
            ],
            "Connection": [
              "close"
            ],
            "Content_Length": [
              "315"
            ],
            "Content_Type": [
              "text/html; charset=us-ascii"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<TITLE>Not Found</TITLE>",
            "<META HTTP-EQUIV=\"Content-Type\" Content=\"text/html; charset=us-ascii\">"
          ],
          "body_size": 315,
          "body": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01//EN\"\"http://www.w3.org/TR/html4/strict.dtd\">\r\n<HTML><HEAD><TITLE>Not Found</TITLE>\r\n<META HTTP-EQUIV=\"Content-Type\" Content=\"text/html; charset=us-ascii\"></HEAD>\r\n<BODY><h2>Not Found</h2>\r\n<hr><p>HTTP Error 404. The requested resource is not found.</p>\r\n</BODY></HTML>\r\n",
          "body_hashes": [
            "sha256:ce7127c38e30e92a021ed2bd09287713c6a923db9ffdb43f126e8965d777fbf0",
            "sha1:a66898b36c94c53766e66c1a7aaeb149447ec083"
          ],
          "body_hash": "sha1:a66898b36c94c53766e66c1a7aaeb149447ec083",
          "html_title": "Not Found"
        },
        "supports_http2": false
      },
      "observed_at": "2024-02-20T13:37:06.236223820Z",
      "perspective_id": "PERSPECTIVE_TATA",
      "port": 5985,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
          "part": "o",
          "vendor": "Microsoft",
          "product": "Windows",
          "other": {
            "family": "Windows"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:microsoft:http_api:2.0:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Microsoft",
          "product": "HTTP API",
          "version": "2.0",
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.138.52",
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 404 Not Found\r\nContent-Type: text/html; charset=us-ascii\r\nServer: Microsoft-HTTPAPI/2.0\r\nDate:  <REDACTED>\r\nConnection: close\r\nContent-Length: 315\r\n",
      "banner_hashes": [
        "sha256:d7de42c1e8c09cf951e3ad6248fda3ab48a60ca3eac8b25effd4b3067df8f362"
      ],
      "banner_hex": "485454502f312e3120343034204e6f7420466f756e640d0a436f6e74656e742d547970653a20746578742f68746d6c3b20636861727365743d75732d61736369690d0a5365727665723a204d6963726f736f66742d485454504150492f322e300d0a446174653a20203c52454441435445443e0d0a436f6e6e656374696f6e3a20636c6f73650d0a436f6e74656e742d4c656e6774683a203331350d0a",
      "discovery_method": "IPV4_WALK_FULL_PRIORITY_1",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://193.142.146.220:47001/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 404,
          "status_reason": "Not Found",
          "headers": {
            "Date": [
              "<REDACTED>"
            ],
            "_encoding": {
              "Date": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8"
            },
            "Content_Type": [
              "text/html; charset=us-ascii"
            ],
            "Connection": [
              "close"
            ],
            "Server": [
              "Microsoft-HTTPAPI/2.0"
            ],
            "Content_Length": [
              "315"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<TITLE>Not Found</TITLE>",
            "<META HTTP-EQUIV=\"Content-Type\" Content=\"text/html; charset=us-ascii\">"
          ],
          "body_size": 315,
          "body": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01//EN\"\"http://www.w3.org/TR/html4/strict.dtd\">\r\n<HTML><HEAD><TITLE>Not Found</TITLE>\r\n<META HTTP-EQUIV=\"Content-Type\" Content=\"text/html; charset=us-ascii\"></HEAD>\r\n<BODY><h2>Not Found</h2>\r\n<hr><p>HTTP Error 404. The requested resource is not found.</p>\r\n</BODY></HTML>\r\n",
          "body_hashes": [
            "sha256:ce7127c38e30e92a021ed2bd09287713c6a923db9ffdb43f126e8965d777fbf0",
            "sha1:a66898b36c94c53766e66c1a7aaeb149447ec083"
          ],
          "body_hash": "sha1:a66898b36c94c53766e66c1a7aaeb149447ec083",
          "html_title": "Not Found"
        },
        "supports_http2": false
      },
      "observed_at": "2024-02-20T23:16:33.561539775Z",
      "perspective_id": "PERSPECTIVE_TELIA",
      "port": 47001,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
          "part": "o",
          "vendor": "Microsoft",
          "product": "Windows",
          "other": {
            "family": "Windows"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:microsoft:http_api:2.0:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Microsoft",
          "product": "HTTP API",
          "version": "2.0",
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.146.51",
      "transport_protocol": "TCP",
      "truncated": false
    }
  ],
  "location": {
    "continent": "Europe",
    "country": "Netherlands",
    "country_code": "NL",
    "city": "Amsterdam",
    "postal_code": "1012",
    "timezone": "Europe/Amsterdam",
    "province": "North Holland",
    "coordinates": {
      "latitude": 52.37403,
      "longitude": 4.88969
    }
  },
  "location_updated_at": "2024-02-08T04:18:50.780513657Z",
  "autonomous_system": {
    "asn": 208046,
    "description": "COLOCATIONX-DATACENTER Dedicated Server Provider",
    "bgp_prefix": "193.142.146.0/24",
    "name": "COLOCATIONX-DATACENTER Dedicated Server Provider",
    "country_code": "GB"
  },
  "autonomous_system_updated_at": "2024-02-08T04:18:50.782276846Z",
  "operating_system": {
    "uniform_resource_identifier": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
    "part": "o",
    "vendor": "Microsoft",
    "product": "Windows",
    "other": {
      "family": "Windows"
    }
  },
  "dns": {},
  "last_updated_at": "2024-02-21T07:42:57.289Z",
  "labels": [
    "file-sharing",
    "network-administration",
    "remote-access"
  ]
}