194.247.12.13
As of: Sep 12, 2024 5:20am UTC |
Latest
{
"ip": "194.247.12.13",
"services": [
{
"_decoded": "ftp",
"_encoding": {
"banner": "DISPLAY_UTF8",
"banner_hex": "DISPLAY_HEX"
},
"banner": "220 ProFTPD Server (Debian) [::ffff:194.247.12.13]\r\n",
"banner_hashes": [
"sha256:0cd7fe7c2bb91b4883382f38bcd87c1c3a881703a29dbe415df8873ba8a80f80"
],
"banner_hex": "3232302050726f4654504420536572766572202844656269616e29205b3a3a666666663a3139342e3234372e31322e31335d0d0a",
"discovery_method": "IPV4_WALK_FULL_PRIORITY_1",
"extended_service_name": "FTP",
"ftp": {
"_encoding": {
"banner": "DISPLAY_UTF8",
"auth_tls_response": "DISPLAY_UTF8",
"auth_ssl_response": "DISPLAY_UTF8"
},
"banner": "220 ProFTPD Server (Debian) [::ffff:194.247.12.13]\r\n",
"auth_tls_response": "500 AUTH not understood\r\n",
"auth_ssl_response": "500 AUTH not understood\r\n",
"status_code": 220,
"status_meaning": "Service ready for new user.",
"implicit_tls": false
},
"labels": [
"file-sharing"
],
"observed_at": "2024-09-11T03:49:50.724490838Z",
"perspective_id": "PERSPECTIVE_PCCW",
"port": 21,
"service_name": "FTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:proftpd:proftpd:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "ProFTPD Project",
"product": "ProFTPD",
"other": {
"family": "ProFTPD"
},
"source": "OSI_APPLICATION_LAYER"
},
{
"other": {
"ip": "::ffff:194.247.12.13"
},
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "199.45.154.152",
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "ssh",
"_encoding": {
"banner": "DISPLAY_UTF8",
"banner_hex": "DISPLAY_HEX"
},
"banner": "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11",
"banner_hashes": [
"sha256:2bf2033dbf501c6d1f063e64b737f30c2ab11dd1fb2e65a7dd4b2a88c71f23e5"
],
"banner_hex": "5353482d322e302d4f70656e5353485f382e327031205562756e74752d347562756e7475302e3131",
"discovery_method": "IPV4_WALK_FULL_PRIORITY_1",
"extended_service_name": "SSH",
"labels": [
"remote-access"
],
"observed_at": "2024-09-11T16:20:46.748229666Z",
"perspective_id": "PERSPECTIVE_TELIA",
"port": 22,
"service_name": "SSH",
"software": [
{
"product": "openssh",
"other": {
"comment": "Ubuntu-4ubuntu0.11"
},
"source": "OSI_APPLICATION_LAYER"
},
{
"uniform_resource_identifier": "cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:*:*:*:*",
"part": "o",
"vendor": "Ubuntu",
"product": "Linux",
"version": "20.04",
"other": {
"family": "Linux"
},
"source": "OSI_APPLICATION_LAYER"
},
{
"uniform_resource_identifier": "cpe:2.3:a:openbsd:openssh:8.2:p1:*:*:*:*:*:*",
"part": "a",
"vendor": "OpenBSD",
"product": "OpenSSH",
"version": "8.2",
"update": "p1",
"other": {
"family": "OpenSSH"
},
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "167.94.146.54",
"ssh": {
"endpoint_id": {
"_encoding": {
"raw": "DISPLAY_UTF8"
},
"raw": "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11",
"protocol_version": "2.0",
"software_version": "OpenSSH_8.2p1",
"comment": "Ubuntu-4ubuntu0.11"
},
"kex_init_message": {
"kex_algorithms": [
"curve25519-sha256",
"[email protected]",
"ecdh-sha2-nistp256",
"ecdh-sha2-nistp384",
"ecdh-sha2-nistp521",
"diffie-hellman-group-exchange-sha256",
"diffie-hellman-group16-sha512",
"diffie-hellman-group18-sha512",
"diffie-hellman-group14-sha256",
"[email protected]"
],
"host_key_algorithms": [
"rsa-sha2-512",
"rsa-sha2-256",
"ssh-rsa",
"ecdsa-sha2-nistp256",
"ssh-ed25519"
],
"client_to_server_ciphers": [
"[email protected]",
"aes128-ctr",
"aes192-ctr",
"aes256-ctr",
"[email protected]",
"[email protected]"
],
"server_to_client_ciphers": [
"[email protected]",
"aes128-ctr",
"aes192-ctr",
"aes256-ctr",
"[email protected]",
"[email protected]"
],
"client_to_server_macs": [
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"hmac-sha2-256",
"hmac-sha2-512",
"hmac-sha1"
],
"server_to_client_macs": [
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"hmac-sha2-256",
"hmac-sha2-512",
"hmac-sha1"
],
"client_to_server_compression": [
"none",
"[email protected]"
],
"server_to_client_compression": [
"none",
"[email protected]"
],
"first_kex_follows": false
},
"algorithm_selection": {
"kex_algorithm": "[email protected]",
"host_key_algorithm": "ecdsa-sha2-nistp256",
"client_to_server_alg_group": {
"cipher": "aes128-ctr",
"mac": "hmac-sha2-256",
"compression": "none"
},
"server_to_client_alg_group": {
"cipher": "aes128-ctr",
"mac": "hmac-sha2-256",
"compression": "none"
}
},
"server_host_key": {
"fingerprint_sha256": "ea978c2a1a325f1ac54c1d5e1584fa8100d6e9e2c454b7c545dff68ba19f2549",
"ecdsa_public_key": {
"_encoding": {
"b": "DISPLAY_BASE64",
"gx": "DISPLAY_BASE64",
"gy": "DISPLAY_BASE64",
"n": "DISPLAY_BASE64",
"p": "DISPLAY_BASE64",
"x": "DISPLAY_BASE64",
"y": "DISPLAY_BASE64"
},
"b": "WsY12Ko6k+ez671VdpiGvGUdBrDMU7D2O848PifSYEs=",
"curve": "P-256",
"gx": "axfR8uEsQkf4vOblY6RA8ncDfYEt6zOg9KE5RdiYwpY=",
"gy": "T+NC4v4af5uO5+tKfA+eFivOM1drMV7Oy7ZAaDe/UfU=",
"length": 256,
"n": "/////wAAAAD//////////7zm+q2nF56E87nKwvxjJVE=",
"p": "/////wAAAAEAAAAAAAAAAAAAAAD///////////////8=",
"x": "Ht8sXYt7+w57d76KrILqu+1ve0b/Qu6HHWjwCVB8V2M=",
"y": "dCTQw139C61bH/UzNZXGACfWN2PjTr9DkhB8/+OJR+Q="
}
},
"hassh_fingerprint": "779664e66160bf75999f091fce5edb5a"
},
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "smtp",
"_encoding": {
"banner": "DISPLAY_UTF8",
"certificate": "DISPLAY_HEX",
"banner_hex": "DISPLAY_HEX"
},
"banner": "220 mx.donnael.com ESMTP Postfix (Ubuntu)\r\n",
"banner_hashes": [
"sha256:c953ab23e1e99e0410fd9d94baebbf23ff3c5eeb1b7bf92086f627babb7f9018"
],
"banner_hex": "323230206d782e646f6e6e61656c2e636f6d2045534d545020506f737466697820285562756e7475290d0a",
"certificate": "df25f263cebe9dc5b28de5bfb08dd8bcdadc11792337f90397346cec7a6702c1",
"extended_service_name": "SMTP-STARTTLS",
"labels": [
"email"
],
"observed_at": "2024-09-12T05:20:41.320515795Z",
"perspective_id": "PERSPECTIVE_ORANGE",
"port": 25,
"service_name": "SMTP",
"smtp": {
"_encoding": {
"banner": "DISPLAY_UTF8",
"ehlo": "DISPLAY_UTF8",
"start_tls": "DISPLAY_UTF8"
},
"banner": "220 mx.donnael.com ESMTP Postfix (Ubuntu)\r\n",
"ehlo": "250-mx.donnael.com\r\n250-PIPELINING\r\n250-SIZE 10240000\r\n250-ETRN\r\n250-STARTTLS\r\n250-AUTH PLAIN LOGIN\r\n250-ENHANCEDSTATUSCODES\r\n250-8BITMIME\r\n250-DSN\r\n250 SMTPUTF8\r\n",
"start_tls": "220 2.0.0 Ready to start TLS\r\n"
},
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:postfix:postfix:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Postfix",
"product": "Postfix",
"other": {
"family": "Postfix"
},
"source": "OSI_APPLICATION_LAYER"
},
{
"uniform_resource_identifier": "cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*",
"part": "o",
"vendor": "Ubuntu",
"product": "Linux",
"other": {
"family": "Linux"
},
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "167.94.145.99",
"tls": {
"version_selected": "TLSv1_3",
"cipher_selected": "TLS_CHACHA20_POLY1305_SHA256",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX",
"chain_fps_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "df25f263cebe9dc5b28de5bfb08dd8bcdadc11792337f90397346cec7a6702c1",
"chain_fps_sha_256": [
"9d7c3f1aa6ad2b2ec0d5cf1e246f8d9ae6cbc9fd0755ad37bb974b1f2fb603f3"
],
"leaf_data": {
"names": [
"mx.donnael.com"
],
"subject_dn": "CN=mx.donnael.com",
"issuer_dn": "C=US, O=Let's Encrypt, CN=R10",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "fde0734db3bd0e308db79ac05562b3ab0ed2631db9aa5c56a7b1bc23759179eb",
"fingerprint": "df25f263cebe9dc5b28de5bfb08dd8bcdadc11792337f90397346cec7a6702c1",
"issuer": {
"common_name": [
"R10"
],
"organization": [
"Let's Encrypt"
],
"country": [
"US"
]
},
"subject": {
"common_name": [
"mx.donnael.com"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "9wx8CJvMYkqWdQYFMR8vPabPZ8OWQOGDMAOfCbdmom0HU5vy2zdnpg0OjWQTRE33l1BU8WPDhqpwqSBUgQlTRqThlbBESS3p4quA9FWqmlIwrlH4kFTMsNN/BaMmqAgLTxfojaXq458Yn6SABMdtuoEOkV/kvnZR79Gg9+9dOQZI6/+z7kBi99YN1pkNqUMRkw4Lv+bTz1m1j/zDTtsULqQZhMGSaQC3aSTaymhHpeVDwb0EArLO7K17uPDrFRCYTaH9LOQzG3UuxYOfKOGu6rltCbOG+jZIxqBc+hnknwBEuJBAlKhlORQq6CEDBGoByx0JRE63mm7nmQmx9BUjfQ==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "5fb969e43d715c8661bc03528e1c4ecc7cdeb92d270ca5db676279ce4dc0cabc"
},
"signature": {
"signature_algorithm": "SHA256-RSA",
"self_signed": false
}
},
"chain": [
{
"fingerprint": "9d7c3f1aa6ad2b2ec0d5cf1e246f8d9ae6cbc9fd0755ad37bb974b1f2fb603f3",
"subject_dn": "C=US, O=Let's Encrypt, CN=R10",
"issuer_dn": "C=US, O=Internet Security Research Group, CN=ISRG Root X1"
}
]
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "475c9302dc42b2751db9edcac3b74891",
"ja4s": "t130200_1303_a56c5b993250"
},
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "http",
"_encoding": {
"banner": "DISPLAY_UTF8",
"banner_hex": "DISPLAY_HEX"
},
"banner": "HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: <REDACTED>\r\nContent-Type: text/html\r\nContent-Length: 12\r\nLast-Modified: Fri, 16 Sep 2022 07:48:09 GMT\r\nConnection: keep-alive\r\nETag: \"63242a39-c\"\r\nAccept-Ranges: bytes\r\n",
"banner_hashes": [
"sha256:59a5950c4236bb8f7d77936ac2439351ac2306cdce5442e9df140b46d50941da"
],
"banner_hex": "485454502f312e3120323030204f4b0d0a5365727665723a206e67696e782f312e31382e3020285562756e7475290d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a436f6e74656e742d4c656e6774683a2031320d0a4c6173742d4d6f6469666965643a204672692c2031362053657020323032322030373a34383a303920474d540d0a436f6e6e656374696f6e3a206b6565702d616c6976650d0a455461673a202236333234326133392d63220d0a4163636570742d52616e6765733a2062797465730d0a",
"extended_service_name": "HTTP",
"http": {
"request": {
"method": "GET",
"uri": "http://194.247.12.13/",
"headers": {
"User_Agent": [
"Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
],
"_encoding": {
"User_Agent": "DISPLAY_UTF8",
"Accept": "DISPLAY_UTF8"
},
"Accept": [
"*/*"
]
}
},
"response": {
"protocol": "HTTP/1.1",
"status_code": 200,
"status_reason": "OK",
"headers": {
"Server": [
"nginx/1.18.0 (Ubuntu)"
],
"_encoding": {
"Server": "DISPLAY_UTF8",
"Content_Length": "DISPLAY_UTF8",
"Content_Type": "DISPLAY_UTF8",
"Accept_Ranges": "DISPLAY_UTF8",
"Connection": "DISPLAY_UTF8",
"Date": "DISPLAY_UTF8",
"ETag": "DISPLAY_UTF8",
"Last_Modified": "DISPLAY_UTF8"
},
"Content_Length": [
"12"
],
"Content_Type": [
"text/html"
],
"Accept_Ranges": [
"bytes"
],
"Connection": [
"keep-alive"
],
"Date": [
"<REDACTED>"
],
"ETag": [
"\"63242a39-c\""
],
"Last_Modified": [
"Fri, 16 Sep 2022 07:48:09 GMT"
]
},
"body_size": 12,
"_encoding": {
"body": "DISPLAY_UTF8",
"body_hash": "DISPLAY_UTF8"
},
"body": "Loading ...\n",
"body_hashes": [
"sha256:68bb40547dd87d3fa79f820c9203b7b073871acd6513aa1c12cdb5f2d2a07c4a",
"sha1:05b06d5b8d14cb38071aa5e13652aec1bebb6b4f"
],
"body_hash": "sha1:05b06d5b8d14cb38071aa5e13652aec1bebb6b4f"
},
"supports_http2": false
},
"observed_at": "2024-09-12T02:57:59.259780068Z",
"perspective_id": "PERSPECTIVE_NTT",
"port": 80,
"service_name": "HTTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:f5:nginx:1.18.0:*:*:*:*:*:*:*",
"part": "a",
"vendor": "nginx",
"product": "nginx",
"version": "1.18.0",
"other": {
"family": "nginx"
},
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "206.168.34.127",
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "banner_grab",
"_encoding": {
"banner": "DISPLAY_UTF8"
},
"banner": "",
"banner_hashes": [
"sha256:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855"
],
"discovery_method": "PREDICTIVE_METHOD_23",
"extended_service_name": "PORTMAP",
"observed_at": "2024-09-11T12:15:08.503068354Z",
"parsed": {
"portmap": {
"portmap_entries_v2": null,
"portmap_entries_v3": [
{
"shorthand": "pmapprog portmap rpcbind",
"desc": "portmapper",
"version": 4,
"network_id": "tcp6",
"universal_address": "::.0.111",
"owner": "superuser"
},
{
"shorthand": "pmapprog portmap rpcbind",
"desc": "portmapper",
"version": 3,
"network_id": "tcp6",
"universal_address": "::.0.111",
"owner": "superuser"
},
{
"shorthand": "pmapprog portmap rpcbind",
"desc": "portmapper",
"version": 4,
"network_id": "udp6",
"universal_address": "::.0.111",
"owner": "superuser"
},
{
"shorthand": "pmapprog portmap rpcbind",
"desc": "portmapper",
"version": 3,
"network_id": "udp6",
"universal_address": "::.0.111",
"owner": "superuser"
},
{
"shorthand": "pmapprog portmap rpcbind",
"desc": "portmapper",
"version": 4,
"network_id": "tcp",
"universal_address": "0.0.0.0.0.111",
"owner": "superuser"
},
{
"shorthand": "pmapprog portmap rpcbind",
"desc": "portmapper",
"version": 3,
"network_id": "tcp",
"universal_address": "0.0.0.0.0.111",
"owner": "superuser"
},
{
"shorthand": "pmapprog portmap rpcbind",
"desc": "portmapper",
"version": 2,
"network_id": "tcp",
"universal_address": "0.0.0.0.0.111",
"owner": "superuser"
},
{
"shorthand": "pmapprog portmap rpcbind",
"desc": "portmapper",
"version": 4,
"network_id": "udp",
"universal_address": "0.0.0.0.0.111",
"owner": "superuser"
},
{
"shorthand": "pmapprog portmap rpcbind",
"desc": "portmapper",
"version": 3,
"network_id": "udp",
"universal_address": "0.0.0.0.0.111",
"owner": "superuser"
},
{
"shorthand": "pmapprog portmap rpcbind",
"desc": "portmapper",
"version": 2,
"network_id": "udp",
"universal_address": "0.0.0.0.0.111",
"owner": "superuser"
},
{
"shorthand": "pmapprog portmap rpcbind",
"desc": "portmapper",
"version": 4,
"network_id": "local",
"universal_address": "/run/rpcbind.sock",
"owner": "superuser"
},
{
"shorthand": "pmapprog portmap rpcbind",
"desc": "portmapper",
"version": 3,
"network_id": "local",
"universal_address": "/run/rpcbind.sock",
"owner": "superuser"
}
]
}
},
"perspective_id": "PERSPECTIVE_HE",
"port": 111,
"service_name": "PORTMAP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
"part": "o",
"product": "linux",
"source": "OSI_TRANSPORT_LAYER"
}
],
"source_ip": "162.142.125.36",
"transport_fingerprint": {
"id": 262,
"os": "CentOS",
"raw": "65160,64,true,MSTNW,1460,false,false"
},
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "ntp",
"extended_service_name": "NTP",
"ntp": {
"get_time_header": {
"version": 3,
"mode": 4,
"stratum": 3,
"poll": 3,
"precision": -23,
"_encoding": {
"reference_id": "DISPLAY_UTF8"
},
"reference_id": "\ufffdj\ufffd\u0006",
"leap_indicator": 0
}
},
"observed_at": "2024-09-11T11:57:32.138189104Z",
"perspective_id": "PERSPECTIVE_NTT",
"port": 123,
"service_name": "NTP",
"source_ip": "206.168.34.218",
"transport_protocol": "UDP",
"truncated": false
},
{
"_decoded": "http",
"_encoding": {
"banner": "DISPLAY_UTF8",
"certificate": "DISPLAY_HEX",
"banner_hex": "DISPLAY_HEX"
},
"banner": "HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: <REDACTED>\r\nContent-Type: text/html\r\nContent-Length: 3041\r\nConnection: keep-alive\r\nLast-Modified: Fri, 08 Dec 2023 14:35:37 GMT\r\nETag: \"29cd-60c007f6a9971-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n",
"banner_hashes": [
"sha256:2dec3cf1535d90e58005420368f10724aac8a92781534efe2d6a7d6e64ce6950"
],
"banner_hex": "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",
"certificate": "c7e43e6db29580e6e522b956ab5c463771e78953c05b369c5fb06d89b04c5679",
"extended_service_name": "HTTPS",
"http": {
"request": {
"method": "GET",
"uri": "https://194.247.12.13/",
"headers": {
"User_Agent": [
"Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
],
"_encoding": {
"User_Agent": "DISPLAY_UTF8",
"Accept": "DISPLAY_UTF8"
},
"Accept": [
"*/*"
]
}
},
"response": {
"protocol": "HTTP/1.1",
"status_code": 200,
"status_reason": "OK",
"headers": {
"Vary": [
"Accept-Encoding"
],
"_encoding": {
"Vary": "DISPLAY_UTF8",
"Server": "DISPLAY_UTF8",
"Content_Length": "DISPLAY_UTF8",
"Content_Type": "DISPLAY_UTF8",
"Accept_Ranges": "DISPLAY_UTF8",
"Connection": "DISPLAY_UTF8",
"Date": "DISPLAY_UTF8",
"Content_Encoding": "DISPLAY_UTF8",
"ETag": "DISPLAY_UTF8",
"Last_Modified": "DISPLAY_UTF8"
},
"Server": [
"nginx/1.18.0 (Ubuntu)"
],
"Content_Length": [
"3041"
],
"Content_Type": [
"text/html"
],
"Accept_Ranges": [
"bytes"
],
"Connection": [
"keep-alive"
],
"Date": [
"<REDACTED>"
],
"Content_Encoding": [
"gzip"
],
"ETag": [
"\"29cd-60c007f6a9971-gzip\""
],
"Last_Modified": [
"Fri, 08 Dec 2023 14:35:37 GMT"
]
},
"_encoding": {
"html_tags": "DISPLAY_UTF8",
"body": "DISPLAY_UTF8",
"body_hash": "DISPLAY_UTF8",
"html_title": "DISPLAY_UTF8"
},
"html_tags": [
"<title>Apache2 Debian Default Page: It works</title>",
"<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />"
],
"body_size": 10701,
"body": "\n<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">\n<html xmlns=\"http://www.w3.org/1999/xhtml\">\n <head>\n <meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />\n <title>Apache2 Debian Default Page: It works</title>\n <style type=\"text/css\" media=\"screen\">\n * {\n margin: 0px 0px 0px 0px;\n padding: 0px 0px 0px 0px;\n }\n\n body, html {\n padding: 3px 3px 3px 3px;\n\n background-color: #D8DBE2;\n\n font-family: Verdana, sans-serif;\n font-size: 11pt;\n text-align: center;\n }\n\n div.main_page {\n position: relative;\n display: table;\n\n width: 800px;\n\n margin-bottom: 3px;\n margin-left: auto;\n margin-right: auto;\n padding: 0px 0px 0px 0px;\n\n border-width: 2px;\n border-color: #212738;\n border-style: solid;\n\n background-color: #FFFFFF;\n\n text-align: center;\n }\n\n div.page_header {\n height: 99px;\n width: 100%;\n\n background-color: #F5F6F7;\n }\n\n div.page_header span {\n margin: 15px 0px 0px 50px;\n\n font-size: 180%;\n font-weight: bold;\n }\n\n div.page_header img {\n margin: 3px 0px 0px 40px;\n\n border: 0px 0px 0px;\n }\n\n div.table_of_contents {\n clear: left;\n\n min-width: 200px;\n\n margin: 3px 3px 3px 3px;\n\n background-color: #FFFFFF;\n\n text-align: left;\n }\n\n div.table_of_contents_item {\n clear: left;\n\n width: 100%;\n\n margin: 4px 0px 0px 0px;\n\n background-color: #FFFFFF;\n\n color: #000000;\n text-align: left;\n }\n\n div.table_of_contents_item a {\n margin: 6px 0px 0px 6px;\n }\n\n div.content_section {\n margin: 3px 3px 3px 3px;\n\n background-color: #FFFFFF;\n\n text-align: left;\n }\n\n div.content_section_text {\n padding: 4px 8px 4px 8px;\n\n color: #000000;\n font-size: 100%;\n }\n\n div.content_section_text pre {\n margin: 8px 0px 8px 0px;\n padding: 8px 8px 8px 8px;\n\n border-width: 1px;\n border-style: dotted;\n border-color: #000000;\n\n background-color: #F5F6F7;\n\n font-style: italic;\n }\n\n div.content_section_text p {\n margin-bottom: 6px;\n }\n\n div.content_section_text ul, div.content_section_text li {\n padding: 4px 8px 4px 16px;\n }\n\n div.section_header {\n padding: 3px 6px 3px 6px;\n\n background-color: #8E9CB2;\n\n color: #FFFFFF;\n font-weight: bold;\n font-size: 112%;\n text-align: center;\n }\n\n div.section_header_red {\n background-color: #CD214F;\n }\n\n div.section_header_grey {\n background-color: #9F9386;\n }\n\n .floating_element {\n position: relative;\n float: left;\n }\n\n div.table_of_contents_item a,\n div.content_section_text a {\n text-decoration: none;\n font-weight: bold;\n }\n\n div.table_of_contents_item a:link,\n div.table_of_contents_item a:visited,\n div.table_of_contents_item a:active {\n color: #000000;\n }\n\n div.table_of_contents_item a:hover {\n background-color: #000000;\n\n color: #FFFFFF;\n }\n\n div.content_section_text a:link,\n div.content_section_text a:visited,\n div.content_section_text a:active {\n background-color: #DCDFE6;\n\n color: #000000;\n }\n\n div.content_section_text a:hover {\n background-color: #000000;\n\n color: #DCDFE6;\n }\n\n div.validator {\n }\n </style>\n </head>\n <body>\n <div class=\"main_page\">\n <div class=\"page_header floating_element\">\n <img src=\"/icons/openlogo-75.png\" alt=\"Debian Logo\" class=\"floating_element\"/>\n <span class=\"floating_element\">\n Apache2 Debian Default Page\n </span>\n </div>\n<!-- <div class=\"table_of_contents floating_element\">\n <div class=\"section_header section_header_grey\">\n TABLE OF CONTENTS\n </div>\n <div class=\"table_of_contents_item floating_element\">\n <a href=\"#about\">About</a>\n </div>\n <div class=\"table_of_contents_item floating_element\">\n <a href=\"#changes\">Changes</a>\n </div>\n <div class=\"table_of_contents_item floating_element\">\n <a href=\"#scope\">Scope</a>\n </div>\n <div class=\"table_of_contents_item floating_element\">\n <a href=\"#files\">Config files</a>\n </div>\n </div>\n-->\n <div class=\"content_section floating_element\">\n\n\n <div class=\"section_header section_header_red\">\n <div id=\"about\"></div>\n It works!\n </div>\n <div class=\"content_section_text\">\n <p>\n This is the default welcome page used to test the correct \n operation of the Apache2 server after installation on Debian systems.\n If you can read this page, it means that the Apache HTTP server installed at\n this site is working properly. You should <b>replace this file</b> (located at\n <tt>/var/www/html/index.html</tt>) before continuing to operate your HTTP server.\n </p>\n\n\n <p>\n If you are a normal user of this web site and don't know what this page is\n about, this probably means that the site is currently unavailable due to\n maintenance.\n If the problem persists, please contact the site's administrator.\n </p>\n\n </div>\n <div class=\"section_header\">\n <div id=\"changes\"></div>\n Configuration Overview\n </div>\n <div class=\"content_section_text\">\n <p>\n Debian's Apache2 default configuration is different from the\n upstream default configuration, and split into several files optimized for\n interaction with Debian tools. The configuration system is\n <b>fully documented in\n /usr/share/doc/apache2/README.Debian.gz</b>. Refer to this for the full\n documentation. Documentation for the web server itself can be\n found by accessing the <a href=\"/manual\">manual</a> if the <tt>apache2-doc</tt>\n package was installed on this server.\n\n </p>\n <p>\n The configuration layout for an Apache2 web server installation on Debian systems is as follows:\n </p>\n <pre>\n/etc/apache2/\n|-- apache2.conf\n| `-- ports.conf\n|-- mods-enabled\n| |-- *.load\n| `-- *.conf\n|-- conf-enabled\n| `-- *.conf\n|-- sites-enabled\n| `-- *.conf\n </pre>\n <ul>\n <li>\n <tt>apache2.conf</tt> is the main configuration\n file. It puts the pieces together by including all remaining configuration\n files when starting up the web server.\n </li>\n\n <li>\n <tt>ports.conf</tt> is always included from the\n main configuration file. It is used to determine the listening ports for\n incoming connections, and this file can be customized anytime.\n </li>\n\n <li>\n Configuration files in the <tt>mods-enabled/</tt>,\n <tt>conf-enabled/</tt> and <tt>sites-enabled/</tt> directories contain\n particular configuration snippets which manage modules, global configuration\n fragments, or virtual host configurations, respectively.\n </li>\n\n <li>\n They are activated by symlinking available\n configuration files from their respective\n *-available/ counterparts. These should be managed\n by using our helpers\n <tt>\n a2enmod,\n a2dismod,\n </tt>\n <tt>\n a2ensite,\n a2dissite,\n </tt>\n and\n <tt>\n a2enconf,\n a2disconf\n </tt>. See their respective man pages for detailed information.\n </li>\n\n <li>\n The binary is called apache2. Due to the use of\n environment variables, in the default configuration, apache2 needs to be\n started/stopped with <tt>/etc/init.d/apache2</tt> or <tt>apache2ctl</tt>.\n <b>Calling <tt>/usr/bin/apache2</tt> directly will not work</b> with the\n default configuration.\n </li>\n </ul>\n </div>\n\n <div class=\"section_header\">\n <div id=\"docroot\"></div>\n Document Roots\n </div>\n\n <div class=\"content_section_text\">\n <p>\n By default, Debian does not allow access through the web browser to\n <em>any</em> file apart of those located in <tt>/var/www</tt>,\n <a href=\"http://httpd.apache.org/docs/2.4/mod/mod_userdir.html\" rel=\"nofollow\">public_html</a>\n directories (when enabled) and <tt>/usr/share</tt> (for web\n applications). If your site is using a web document root\n located elsewhere (such as in <tt>/srv</tt>) you may need to whitelist your\n document root directory in <tt>/etc/apache2/apache2.conf</tt>.\n </p>\n <p>\n The default Debian document root is <tt>/var/www/html</tt>. You\n can make your own virtual hosts under /var/www. This is different\n to previous releases which provides better security out of the box.\n </p>\n </div>\n\n <div class=\"section_header\">\n <div id=\"bugs\"></div>\n Reporting Problems\n </div>\n <div class=\"content_section_text\">\n <p>\n Please use the <tt>reportbug</tt> tool to report bugs in the\n Apache2 package with Debian. However, check <a\n href=\"http://bugs.debian.org/cgi-bin/pkgreport.cgi?ordering=normal;archive=0;src=apache2;repeatmerged=0\"\n rel=\"nofollow\">existing bug reports</a> before reporting a new bug.\n </p>\n <p>\n Please report bugs specific to modules (such as PHP and others)\n to respective packages, not to the web server itself.\n </p>\n </div>\n\n\n\n\n </div>\n </div>\n <div class=\"validator\">\n </div>\n </body>\n</html>\n\n",
"body_hashes": [
"sha256:f14e8167f12be74330c1b881b5aa3df95f5bd66d26f42cc03b87a7c38946c571",
"sha1:d23f3a5389aee902652b149cbe2474a12c57fa5a"
],
"body_hash": "sha1:d23f3a5389aee902652b149cbe2474a12c57fa5a",
"html_title": "Apache2 Debian Default Page: It works"
},
"supports_http2": true
},
"jarm": {
"_encoding": {
"fingerprint": "DISPLAY_HEX",
"cipher_and_version_fingerprint": "DISPLAY_HEX",
"tls_extensions_sha256": "DISPLAY_HEX"
},
"fingerprint": "2ad2ad0002ad2ad0002ad2ad2ad2ad83c2e51da709c877942c98b10a5e814a",
"cipher_and_version_fingerprint": "2ad2ad0002ad2ad0002ad2ad2ad2ad",
"tls_extensions_sha256": "83c2e51da709c877942c98b10a5e814a",
"observed_at": "2024-09-10T22:42:21.977568115Z"
},
"labels": [
"default-landing-page"
],
"observed_at": "2024-09-12T02:40:30.560628332Z",
"perspective_id": "PERSPECTIVE_ORANGE",
"port": 443,
"service_name": "HTTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Apache",
"product": "HTTPD",
"other": {
"family": "Apache"
},
"source": "OSI_APPLICATION_LAYER"
},
{
"uniform_resource_identifier": "cpe:2.3:o:debian:debian_linux:*:*:*:*:*:*:*:*",
"part": "o",
"vendor": "Debian",
"product": "Linux",
"source": "OSI_APPLICATION_LAYER"
},
{
"uniform_resource_identifier": "cpe:2.3:a:f5:nginx:1.18.0:*:*:*:*:*:*:*",
"part": "a",
"vendor": "nginx",
"product": "nginx",
"version": "1.18.0",
"other": {
"family": "nginx"
},
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "167.94.145.103",
"tls": {
"version_selected": "TLSv1_2",
"cipher_selected": "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX",
"chain_fps_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "c7e43e6db29580e6e522b956ab5c463771e78953c05b369c5fb06d89b04c5679",
"chain_fps_sha_256": [
"9d7c3f1aa6ad2b2ec0d5cf1e246f8d9ae6cbc9fd0755ad37bb974b1f2fb603f3"
],
"leaf_data": {
"names": [
"agrogas.net",
"www.agrogas.net"
],
"subject_dn": "CN=agrogas.net",
"issuer_dn": "C=US, O=Let's Encrypt, CN=R10",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "5b35b2dbf267e51ab179b6cdfa6cb36c1e0b0c35251eb4fe2671819577830a26",
"fingerprint": "c7e43e6db29580e6e522b956ab5c463771e78953c05b369c5fb06d89b04c5679",
"issuer": {
"common_name": [
"R10"
],
"organization": [
"Let's Encrypt"
],
"country": [
"US"
]
},
"subject": {
"common_name": [
"agrogas.net"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "rjfoQejC9eVQUvfvnn23UEC/MebpUPaEi/Z6aFdTuBnNy8Y737rQ9x1e9yP2SX+ym0cydPL8eHVuC37oCFF6KaiPMjp0LD+CiUmhPvCZkYo5fa8ROBLq2JnLF5DWORucA0daJoqohFy6Yw6Qq3Pj9L16wBnspbWtUwpZW4qz/DS8Ko6aEb0cVzSygeeQ20VsWp2HxRx68jEhC1r3XadpCfDHiYPBtwCf8rwYIvG56RwFFiCMqh85IqRT5ZScnZnGVYiekz4MAlhfXIeXmLXwIQnCgy6idY15b+oTzcp5zy8TUSBLec3jGThA9n1IcLBGBWa4ZNqR9ajr/p8H6caYNw==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "901aa37bc2b650798544a20c1940e5a2dadfdcc492c9ff2d7fd35cb9415cbc4e"
},
"signature": {
"signature_algorithm": "SHA256-RSA",
"self_signed": false
}
},
"chain": [
{
"fingerprint": "9d7c3f1aa6ad2b2ec0d5cf1e246f8d9ae6cbc9fd0755ad37bb974b1f2fb603f3",
"subject_dn": "C=US, O=Let's Encrypt, CN=R10",
"issuer_dn": "C=US, O=Internet Security Research Group, CN=ISRG Root X1"
}
]
},
"server_key_exchange": {
"ec_params": {
"named_curve": 29
}
},
"session_ticket": {
"length": 176,
"lifetime_hint": 300
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "e35df3e00ca4ef31d42b34bebaa2f86e",
"ja4s": "t120300_c030_bec8bdbaef8a",
"versions": [
{
"tls_version": "TLSv1_2",
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "e35df3e00ca4ef31d42b34bebaa2f86e",
"ja4s": "t120300_c030_bec8bdbaef8a"
}
]
},
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "http",
"_encoding": {
"banner": "DISPLAY_UTF8",
"banner_hex": "DISPLAY_HEX"
},
"banner": "HTTP/1.1 400 Bad Request\r\nServer: squid/4.10\r\nMime-Version: 1.0\r\nDate: <REDACTED>\r\nContent-Type: text/html;charset=utf-8\r\nContent-Length: 3517\r\nX-Squid-Error: ERR_INVALID_URL 0\r\nVary: Accept-Language\r\nContent-Language: en\r\nX-Cache: MISS from gw.donnael.com\r\nX-Cache-Lookup: NONE from gw.donnael.com:3128\r\nConnection: close\r\n",
"banner_hashes": [
"sha256:00a09c2d9b3bc21216ce5110eb37ecbd6ca45cc2611659dc610b09f664f51fd8"
],
"banner_hex": "485454502f312e31203430302042616420526571756573740d0a5365727665723a2073717569642f342e31300d0a4d696d652d56657273696f6e3a20312e300d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d547970653a20746578742f68746d6c3b636861727365743d7574662d380d0a436f6e74656e742d4c656e6774683a20333531370d0a582d53717569642d4572726f723a204552525f494e56414c49445f55524c20300d0a566172793a204163636570742d4c616e67756167650d0a436f6e74656e742d4c616e67756167653a20656e0d0a582d43616368653a204d4953532066726f6d2067772e646f6e6e61656c2e636f6d0d0a582d43616368652d4c6f6f6b75703a204e4f4e452066726f6d2067772e646f6e6e61656c2e636f6d3a333132380d0a436f6e6e656374696f6e3a20636c6f73650d0a",
"extended_service_name": "HTTP",
"http": {
"request": {
"method": "GET",
"uri": "http://194.247.12.13:3128/",
"headers": {
"User_Agent": [
"Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
],
"_encoding": {
"User_Agent": "DISPLAY_UTF8",
"Accept": "DISPLAY_UTF8"
},
"Accept": [
"*/*"
]
}
},
"response": {
"protocol": "HTTP/1.1",
"status_code": 400,
"status_reason": "Bad Request",
"headers": {
"Vary": [
"Accept-Language"
],
"_encoding": {
"Vary": "DISPLAY_UTF8",
"Server": "DISPLAY_UTF8",
"Content_Length": "DISPLAY_UTF8",
"Content_Language": "DISPLAY_UTF8",
"X_Cache_Lookup": "DISPLAY_UTF8",
"Content_Type": "DISPLAY_UTF8",
"Mime_Version": "DISPLAY_UTF8",
"Connection": "DISPLAY_UTF8",
"Date": "DISPLAY_UTF8",
"X_Squid_Error": "DISPLAY_UTF8",
"X_Cache": "DISPLAY_UTF8"
},
"Server": [
"squid/4.10"
],
"Content_Length": [
"3517"
],
"Content_Language": [
"en"
],
"X_Cache_Lookup": [
"NONE from gw.donnael.com:3128"
],
"Content_Type": [
"text/html;charset=utf-8"
],
"Mime_Version": [
"1.0"
],
"Connection": [
"close"
],
"Date": [
"<REDACTED>"
],
"X_Squid_Error": [
"ERR_INVALID_URL 0"
],
"X_Cache": [
"MISS from gw.donnael.com"
]
},
"_encoding": {
"html_tags": "DISPLAY_UTF8",
"body": "DISPLAY_UTF8",
"body_hash": "DISPLAY_UTF8",
"html_title": "DISPLAY_UTF8"
},
"html_tags": [
"<title>ERROR: The requested URL could not be retrieved</title>",
"<meta type=\"copyright\" content=\"Copyright (C) 1996-2019 The Squid Software Foundation and contributors\">",
"<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">"
],
"body_size": 3517,
"body": "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01//EN\" \"http://www.w3.org/TR/html4/strict.dtd\">\n<html><head>\n<meta type=\"copyright\" content=\"Copyright (C) 1996-2019 The Squid Software Foundation and contributors\">\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">\n<title>ERROR: The requested URL could not be retrieved</title>\n<style type=\"text/css\"><!-- \n /*\n * Copyright (C) 1996-2020 The Squid Software Foundation and contributors\n *\n * Squid software is distributed under GPLv2+ license and includes\n * contributions from numerous individuals and organizations.\n * Please see the COPYING and CONTRIBUTORS files for details.\n */\n\n/*\n Stylesheet for Squid Error pages\n Adapted from design by Free CSS Templates\n http://www.freecsstemplates.org\n Released for free under a Creative Commons Attribution 2.5 License\n*/\n\n/* Page basics */\n* {\n\tfont-family: verdana, sans-serif;\n}\n\nhtml body {\n\tmargin: 0;\n\tpadding: 0;\n\tbackground: #efefef;\n\tfont-size: 12px;\n\tcolor: #1e1e1e;\n}\n\n/* Page displayed title area */\n#titles {\n\tmargin-left: 15px;\n\tpadding: 10px;\n\tpadding-left: 100px;\n\tbackground: url('/squid-internal-static/icons/SN.png') no-repeat left;\n}\n\n/* initial title */\n#titles h1 {\n\tcolor: #000000;\n}\n#titles h2 {\n\tcolor: #000000;\n}\n\n/* special event: FTP success page titles */\n#titles ftpsuccess {\n\tbackground-color:#00ff00;\n\twidth:100%;\n}\n\n/* Page displayed body content area */\n#content {\n\tpadding: 10px;\n\tbackground: #ffffff;\n}\n\n/* General text */\np {\n}\n\n/* error brief description */\n#error p {\n}\n\n/* some data which may have caused the problem */\n#data {\n}\n\n/* the error message received from the system or other software */\n#sysmsg {\n}\n\npre {\n}\n\n/* special event: FTP / Gopher directory listing */\n#dirmsg {\n font-family: courier, monospace;\n color: black;\n font-size: 10pt;\n}\n#dirlisting {\n margin-left: 2%;\n margin-right: 2%;\n}\n#dirlisting tr.entry td.icon,td.filename,td.size,td.date {\n border-bottom: groove;\n}\n#dirlisting td.size {\n width: 50px;\n text-align: right;\n padding-right: 5px;\n}\n\n/* horizontal lines */\nhr {\n\tmargin: 0;\n}\n\n/* page displayed footer area */\n#footer {\n\tfont-size: 9px;\n\tpadding-left: 10px;\n}\n\n\nbody\n:lang(fa) { direction: rtl; font-size: 100%; font-family: Tahoma, Roya, sans-serif; float: right; }\n:lang(he) { direction: rtl; }\n --></style>\n</head><body id=ERR_INVALID_URL>\n<div id=\"titles\">\n<h1>ERROR</h1>\n<h2>The requested URL could not be retrieved</h2>\n</div>\n<hr>\n\n<div id=\"content\">\n<p>The following error was encountered while trying to retrieve the URL: <a href=\"/\">/</a></p>\n\n<blockquote id=\"error\">\n<p><b>Invalid URL</b></p>\n</blockquote>\n\n<p>Some aspect of the requested URL is incorrect.</p>\n\n<p>Some possible problems are:</p>\n<ul>\n<li><p>Missing or incorrect access protocol (should be <q>http://</q> or similar)</p></li>\n<li><p>Missing hostname</p></li>\n<li><p>Illegal double-escape in the URL-Path</p></li>\n<li><p>Illegal character in hostname; underscores are not allowed.</p></li>\n</ul>\n\n<p>Your cache administrator is <a href=\"mailto:webmaster?subject=CacheErrorInfo%20-%20ERR_INVALID_URL&body=CacheHost%3A%20gw.donnael.com%0D%0AErrPage%3A%20ERR_INVALID_URL%0D%0AErr%3A%20%5Bnone%5D%0D%0ATimeStamp%3A%20Wed,%2011%20Sep%202024%2005%3A03%3A06%20GMT%0D%0A%0D%0AClientIP%3A%20199.45.154.117%0D%0A%0D%0AHTTP%20Request%3A%0D%0A%0D%0A%0D%0A\">webmaster</a>.</p>\n<br>\n</div>\n\n<hr>\n<div id=\"footer\">\n<p>Generated Wed, 11 Sep 2024 05:03:06 GMT by gw.donnael.com (squid/4.10)</p>\n<!-- ERR_INVALID_URL -->\n</div>\n</body></html>\n",
"body_hashes": [
"sha256:4a25c83f3220fd1b6dba39d3089abcf0c59a2722a184b256a3d96855d51af451",
"sha1:7743b5ca15cb787e934247fa5f0bf15209d39a2e"
],
"body_hash": "sha1:7743b5ca15cb787e934247fa5f0bf15209d39a2e",
"html_title": "ERROR: The requested URL could not be retrieved"
},
"supports_http2": false
},
"labels": [
"proxy"
],
"observed_at": "2024-09-11T05:03:05.156139022Z",
"perspective_id": "PERSPECTIVE_PCCW",
"port": 3128,
"service_name": "HTTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:squid\\-cache:squid:4.10:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Squid Cache",
"product": "Squid",
"version": "4.10",
"other": {
"family": "Squid"
},
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "199.45.154.117",
"transport_protocol": "TCP",
"truncated": false
}
],
"location": {
"continent": "Europe",
"country": "Ukraine",
"country_code": "UA",
"city": "Boiarka",
"postal_code": "01001",
"timezone": "Europe/Kyiv",
"province": "Kiev",
"coordinates": {
"latitude": 50.31911,
"longitude": 30.29728
}
},
"location_updated_at": "2024-09-01T16:27:28.023351166Z",
"autonomous_system": {
"asn": 200000,
"description": "UKRAINE-AS",
"bgp_prefix": "194.247.12.0/23",
"name": "UKRAINE-AS",
"country_code": "UA"
},
"autonomous_system_updated_at": "2024-09-11T03:49:53.573501115Z",
"whois": {
"network": {
"handle": "HOSTING",
"name": "DELTA-X LTD",
"cidrs": [
"194.247.12.0/23"
],
"created": "2010-04-06T00:00:00Z",
"updated": "2016-04-14T00:00:00Z"
},
"organization": {
"handle": "ORG-LA230-RIPE",
"name": "DELTA-X LTD",
"address": "Ukriane, Kyiv\\nPO Box 65, 03065",
"abuse_contacts": [
{
"handle": "DX2008-RIPE",
"name": "Delta-X Netmaster",
"email": "[email protected]"
}
],
"admin_contacts": [
{
"handle": "DX2008-RIPE",
"name": "Delta-X Netmaster",
"email": "[email protected]"
}
]
}
},
"operating_system": {
"uniform_resource_identifier": "cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:*:*:*:*",
"part": "o",
"vendor": "Ubuntu",
"product": "Linux",
"version": "20.04",
"other": {
"family": "Linux"
}
},
"dns": {
"names": [
"www.bjgayspa.com",
"svoya-pravda.com.ua",
"schedule1.liveevents.name",
"blogevent.club",
"hc.lviv.ua",
"www.blogevent.club",
"liveevents.name",
"www.svoya-pravda.com.ua",
"r003.welcome.bet",
"bjgayspa.com",
"tvevents.org",
"welcome.bet",
"r041.welcome.bet",
"www.tvevents.org",
"pzvpeaccinfo.erp.biz.ua",
"r005.welcome.bet",
"_._tcp.svoya-pravda.com.ua",
"www.hc.lviv.ua",
"www.welcome.bet",
"live.welcome.bet",
"r004.welcome.bet",
"r002.welcome.bet",
"r001.welcome.bet",
"_tcp.svoya-pravda.com.ua",
"059879e5-b2e8-4f58-aa46-95f69d92aa34.random.svoya-pravda.com.ua"
],
"records": {
"bjgayspa.com": {
"record_type": "A",
"resolved_at": "2024-08-26T14:56:05.937011956Z"
},
"r003.welcome.bet": {
"record_type": "A",
"resolved_at": "2024-08-27T12:27:19.689756822Z"
},
"r005.welcome.bet": {
"record_type": "A",
"resolved_at": "2024-09-01T12:24:20.395083726Z"
},
"blogevent.club": {
"record_type": "A",
"resolved_at": "2024-08-14T13:02:11.813764535Z"
},
"liveevents.name": {
"record_type": "A",
"resolved_at": "2024-08-25T18:35:44.564949078Z"
},
"_tcp.svoya-pravda.com.ua": {
"record_type": "A",
"resolved_at": "2024-09-12T02:26:27.602457016Z"
},
"live.welcome.bet": {
"record_type": "A",
"resolved_at": "2024-09-01T12:24:18.627229725Z"
},
"pzvpeaccinfo.erp.biz.ua": {
"record_type": "A",
"resolved_at": "2024-09-12T02:25:39.052128259Z"
},
"r001.welcome.bet": {
"record_type": "A",
"resolved_at": "2024-08-23T12:24:58.328851953Z"
},
"schedule1.liveevents.name": {
"record_type": "A",
"resolved_at": "2024-09-07T20:47:39.627676493Z"
},
"www.tvevents.org": {
"record_type": "CNAME",
"resolved_at": "2024-09-02T10:45:12.736786328Z"
},
"_._tcp.svoya-pravda.com.ua": {
"record_type": "A",
"resolved_at": "2024-09-08T23:12:45.134314460Z"
},
"r002.welcome.bet": {
"record_type": "A",
"resolved_at": "2024-08-20T12:31:43.176975008Z"
},
"www.blogevent.club": {
"record_type": "CNAME",
"resolved_at": "2024-08-21T13:03:30.541800671Z"
},
"tvevents.org": {
"record_type": "A",
"resolved_at": "2024-09-07T23:00:29.430338121Z"
},
"www.bjgayspa.com": {
"record_type": "CNAME",
"resolved_at": "2024-08-27T14:33:31.452260242Z"
},
"www.svoya-pravda.com.ua": {
"record_type": "A",
"resolved_at": "2024-08-25T20:37:38.878262010Z"
},
"059879e5-b2e8-4f58-aa46-95f69d92aa34.random.svoya-pravda.com.ua": {
"record_type": "A",
"resolved_at": "2024-08-25T20:37:38.138835656Z"
},
"www.hc.lviv.ua": {
"record_type": "CNAME",
"resolved_at": "2024-08-19T22:52:09.943582729Z"
},
"svoya-pravda.com.ua": {
"record_type": "A",
"resolved_at": "2024-09-08T23:12:44.604968297Z"
},
"welcome.bet": {
"record_type": "A",
"resolved_at": "2024-08-25T12:23:22.657331413Z"
},
"hc.lviv.ua": {
"record_type": "A",
"resolved_at": "2024-09-10T00:03:38.213978386Z"
},
"r004.welcome.bet": {
"record_type": "A",
"resolved_at": "2024-09-04T12:26:47.959991724Z"
},
"r041.welcome.bet": {
"record_type": "A",
"resolved_at": "2024-09-03T12:28:50.022830708Z"
},
"www.welcome.bet": {
"record_type": "CNAME",
"resolved_at": "2024-08-23T12:24:58.718181914Z"
}
},
"reverse_dns": {
"names": [
"web113.default-host.net"
],
"resolved_at": "2024-08-27T10:01:21.892057023Z"
}
},
"last_updated_at": "2024-09-12T05:20:44.082Z",
"labels": [
"default-landing-page",
"email",
"file-sharing",
"proxy",
"remote-access"
]
}