45.61.136.141
As of: Jan 25, 2025 4:44am UTC |
Latest
{
"ip": "45.61.136.141",
"services": [
{
"_decoded": "http",
"_encoding": {
"banner": "DISPLAY_UTF8",
"banner_hex": "DISPLAY_HEX"
},
"banner": "HTTP/1.1 200 OK\r\nContent-Type: text/html\r\nLast-Modified: Tue, 14 Mar 2023 06:32:49 GMT\r\nAccept-Ranges: bytes\r\nETag: \"3ef37cc3e56d91:0\"\r\nServer: Microsoft-IIS/10.0\r\nX-Powered-By: ASP.NET\r\nDate: <REDACTED>\r\nContent-Length: 696\r\n",
"banner_hashes": [
"sha256:f724a17b1ce066230cece9d8ff2d790e519544f532c685b469bd0087c4d52afe"
],
"banner_hex": "485454502f312e3120323030204f4b0d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a4c6173742d4d6f6469666965643a205475652c203134204d617220323032332030363a33323a343920474d540d0a4163636570742d52616e6765733a2062797465730d0a455461673a202233656633376363336535366439313a30220d0a5365727665723a204d6963726f736f66742d4949532f31302e300d0a582d506f77657265642d42793a204153502e4e45540d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d4c656e6774683a203639360d0a",
"discovery_method": "IPV4_WALK_FULL_PRIORITY_1",
"extended_service_name": "HTTP",
"http": {
"request": {
"method": "GET",
"uri": "http://45.61.136.141/",
"headers": {
"User_Agent": [
"Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
],
"_encoding": {
"User_Agent": "DISPLAY_UTF8",
"Accept": "DISPLAY_UTF8"
},
"Accept": [
"*/*"
]
}
},
"response": {
"protocol": "HTTP/1.1",
"status_code": 200,
"status_reason": "OK",
"headers": {
"Server": [
"Microsoft-IIS/10.0"
],
"_encoding": {
"Server": "DISPLAY_UTF8",
"Content_Length": "DISPLAY_UTF8",
"Content_Type": "DISPLAY_UTF8",
"Accept_Ranges": "DISPLAY_UTF8",
"Date": "DISPLAY_UTF8",
"ETag": "DISPLAY_UTF8",
"X_Powered_By": "DISPLAY_UTF8",
"Last_Modified": "DISPLAY_UTF8"
},
"Content_Length": [
"696"
],
"Content_Type": [
"text/html"
],
"Accept_Ranges": [
"bytes"
],
"Date": [
"<REDACTED>"
],
"ETag": [
"\"3ef37cc3e56d91:0\""
],
"X_Powered_By": [
"ASP.NET"
],
"Last_Modified": [
"Tue, 14 Mar 2023 06:32:49 GMT"
]
},
"_encoding": {
"html_tags": "DISPLAY_UTF8",
"body": "DISPLAY_UTF8",
"body_hash": "DISPLAY_UTF8",
"html_title": "DISPLAY_UTF8"
},
"html_tags": [
"<title>IIS Windows</title>",
"<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-1\" />"
],
"body_size": 696,
"body": "<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Strict//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd\">\r\n<html xmlns=\"http://www.w3.org/1999/xhtml\">\r\n<head>\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-1\" />\r\n<title>IIS Windows</title>\r\n<style type=\"text/css\">\r\n<!--\r\nbody {\r\n\tcolor:#000000;\r\n\tbackground-color:#0072C6;\r\n\tmargin:0;\r\n}\r\n\r\n#container {\r\n\tmargin-left:auto;\r\n\tmargin-right:auto;\r\n\ttext-align:center;\r\n\t}\r\n\r\na img {\r\n\tborder:none;\r\n}\r\n\r\n-->\r\n</style>\r\n</head>\r\n<body>\r\n<div id=\"container\">\r\n<a href=\"http://go.microsoft.com/fwlink/?linkid=66138&clcid=0x409\"><img src=\"iisstart.png\" alt=\"IIS\" width=\"960\" height=\"600\" /></a>\r\n</div>\r\n</body>\r\n</html>",
"body_hashes": [
"sha256:beab13194dbde745c9fc12b8941fb2269da636f1c9c2099ee0bd88a487280db5",
"sha1:c4ab50846fb8b5c3044debbf1ee37eaf51146808"
],
"body_hash": "sha1:c4ab50846fb8b5c3044debbf1ee37eaf51146808",
"html_title": "IIS Windows"
},
"supports_http2": false
},
"observed_at": "2025-01-25T04:43:58.716638753Z",
"perspective_id": "PERSPECTIVE_UNKNOWN",
"port": 80,
"service_name": "HTTP",
"software": [
{
"part": "o",
"vendor": "Microsoft",
"other": {
"family": "Windows"
},
"source": "OSI_APPLICATION_LAYER"
},
{
"uniform_resource_identifier": "cpe:2.3:a:microsoft:internet_information_services:10.0:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Microsoft",
"product": "IIS",
"version": "10.0",
"other": {
"family": "IIS"
},
"source": "OSI_APPLICATION_LAYER"
},
{
"uniform_resource_identifier": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
"part": "o",
"vendor": "Microsoft",
"product": "Windows",
"other": {
"family": "Windows"
},
"source": "OSI_APPLICATION_LAYER"
},
{
"uniform_resource_identifier": "cpe:2.3:a:microsoft:asp.net:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Microsoft",
"product": "ASP.NET",
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "199.45.154.146",
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "rdp",
"_encoding": {
"certificate": "DISPLAY_HEX"
},
"certificate": "8934e7fb4ef2ee8afc91b4667fec56151683558b84e0e617a030248ce35db62a",
"discovery_method": "IPV4_WALK_FULL_PRIORITY_1",
"extended_service_name": "RDP",
"jarm": {
"_encoding": {
"fingerprint": "DISPLAY_HEX",
"cipher_and_version_fingerprint": "DISPLAY_HEX",
"tls_extensions_sha256": "DISPLAY_HEX"
},
"fingerprint": "14d14d16d14d14d08c14d14d14d14dfd9c9d14e4f4f67f94f0359f8b28f532",
"cipher_and_version_fingerprint": "14d14d16d14d14d08c14d14d14d14d",
"tls_extensions_sha256": "fd9c9d14e4f4f67f94f0359f8b28f532",
"observed_at": "2025-01-18T09:58:04.262318091Z"
},
"labels": [
"network-administration",
"remote-access"
],
"observed_at": "2025-01-25T00:30:20.741757498Z",
"perspective_id": "PERSPECTIVE_UNKNOWN",
"port": 3389,
"rdp": {
"protocol_flags": {
"extended_client_data_supported": true,
"dynvc_graphics_pipeline": true,
"neg_resp_reserved": true,
"restricted_admin_mode": true,
"restricted_auth_mode": true
},
"selected_security_protocol": {
"rdstls": true,
"raw_value": 4,
"standard_rdp": false,
"tls": false,
"credssp": false,
"credssp_early_auth": false,
"error": false,
"error_ssl_required": false,
"error_ssl_forbidden": false,
"error_ssl_cert_missing": false,
"error_bad_flags": false,
"error_hybrid_required": false,
"error_ssl_user_auth_required": false,
"error_unknown": false
},
"x224_cc_pdu_srcref": 13330
},
"service_name": "RDP",
"source_ip": "167.94.145.98",
"tls": {
"version_selected": "TLSv1_2",
"cipher_selected": "TLS_RSA_WITH_AES_256_GCM_SHA384",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "8934e7fb4ef2ee8afc91b4667fec56151683558b84e0e617a030248ce35db62a",
"leaf_data": {
"subject_dn": "CN=640ffc58487e6f0",
"issuer_dn": "CN=640ffc58487e6f0",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "906f20b0fff355c48b8670142ef0986921548aabd01fbb23045a295a53fb6a32",
"fingerprint": "8934e7fb4ef2ee8afc91b4667fec56151683558b84e0e617a030248ce35db62a",
"issuer": {
"common_name": [
"640ffc58487e6f0"
]
},
"subject": {
"common_name": [
"640ffc58487e6f0"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "1ySMmB9tf//vGkOU81Ykht9Ia360bEhi8d4wN0F5omr0a7NegzTLOFVKD9pbSVhpIR3KUqVTm5ZZypPwMIhMZtkYSy5/PiPq0SAONszTtKFu6bcBu00/7tk7hv/3jS3Ab9s8hZQ7CW/E+kvKXGMPsWzpg7t9ziRqdA223Z8UrHWw+2pSvycB7ALHeA6Gclob/DdRnQvQ098lOATFGo5/ZrFv00FEw6RBxYcBdXjM4jXVmDUD72/FQSKVG1jSqAafRctF2Q0QFSYuHsk8o8rEZffLwplnuI5g1DEFV/8i0SXWHg8RA8F5QG55uODt2ilOnijoxC2ta9LsoIQuVuj8hQ==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "8d1c20aca901a116979feec90ff606300b7aebd8ae9eebcd71ce8aedbf8d092b"
},
"signature": {
"self_signed": true,
"signature_algorithm": "SHA256-RSA"
}
}
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "f75082535b4a79c07b31bdd0e2b7eb87",
"ja4s": "t120100_009d_bc98f8e001b5",
"versions": [
{
"tls_version": "TLSv1_2",
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "f75082535b4a79c07b31bdd0e2b7eb87",
"ja4s": "t120100_009d_bc98f8e001b5"
},
{
"tls_version": "TLSv1_1",
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "9f2e2080c0409c26ea913d9273e88773",
"ja4s": "t110100_0035_bc98f8e001b5"
},
{
"tls_version": "TLSv1_0",
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "91589ea825a2ee41810c85fab06d2ef6",
"ja4s": "t100100_0035_bc98f8e001b5"
}
]
},
"transport_fingerprint": {
"raw": "64000,128,true,MNWNNS,1460,false,false"
},
"transport_protocol": "TCP",
"truncated": false
}
],
"location": {
"continent": "North America",
"country": "United States",
"country_code": "US",
"city": "Los Angeles",
"postal_code": "90009",
"timezone": "America/Los_Angeles",
"province": "California",
"coordinates": {
"latitude": 34.05223,
"longitude": -118.24368
}
},
"location_updated_at": "2025-01-22T05:40:25.615742346Z",
"autonomous_system": {
"asn": 399629,
"description": "BLNWX",
"bgp_prefix": "45.61.136.0/24",
"name": "BLNWX",
"country_code": "US"
},
"autonomous_system_updated_at": "2025-01-22T05:40:25.616222264Z",
"whois": {
"network": {
"handle": "BLNETWORKS-01",
"name": "BL Networks",
"cidrs": [
"45.61.136.0/24"
],
"created": "2019-11-08T00:00:00Z",
"updated": "2024-02-18T00:00:00Z",
"allocation_type": "REALLOCATION"
},
"organization": {
"handle": "BNL-77",
"name": "BL Networks",
"street": "30 N Gould St\\nSte R",
"city": "Sheridan",
"state": "WY",
"postal_code": "82801",
"country": "US",
"abuse_contacts": [
{
"handle": "ADMIN7234-ARIN",
"name": "Admin",
"email": "[email protected]"
}
],
"admin_contacts": [
{
"handle": "ADMIN7234-ARIN",
"name": "Admin",
"email": "[email protected]"
}
],
"tech_contacts": [
{
"handle": "ADMIN7234-ARIN",
"name": "Admin",
"email": "[email protected]"
}
]
}
},
"operating_system": {
"uniform_resource_identifier": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
"part": "o",
"vendor": "Microsoft",
"product": "Windows",
"other": {
"family": "Windows"
}
},
"dns": {
"names": [
"cc-analytis.com",
"util-analytics.com",
"www.getejs.com",
"www.cc-analytics.com",
"getnjs.com",
"www.util-analytics.com",
"www.getvjs.com",
"www.getnjs.com",
"getejs.com",
"www.cc-analytis.com",
"www.45-61-136-141.cprapid.com",
"mail.45-61-136-141.cprapid.com",
"45-61-136-141.cprapid.com",
"www.jgetjs.com",
"cc-analytics.com",
"jgetjs.com",
"getvjs.com"
],
"records": {
"www.jgetjs.com": {
"record_type": "A",
"resolved_at": "2025-01-24T17:54:35.955779242Z"
},
"mail.45-61-136-141.cprapid.com": {
"record_type": "A",
"resolved_at": "2025-01-19T16:20:13.219974414Z"
},
"cc-analytis.com": {
"record_type": "A",
"resolved_at": "2025-01-21T15:39:01.513599268Z"
},
"www.cc-analytis.com": {
"record_type": "A",
"resolved_at": "2025-01-24T15:59:48.871608913Z"
},
"util-analytics.com": {
"record_type": "A",
"resolved_at": "2025-01-20T20:37:05.627838087Z"
},
"jgetjs.com": {
"record_type": "A",
"resolved_at": "2025-01-19T17:56:47.193354127Z"
},
"www.getnjs.com": {
"record_type": "A",
"resolved_at": "2025-01-19T17:12:48.710577443Z"
},
"www.45-61-136-141.cprapid.com": {
"record_type": "A",
"resolved_at": "2025-01-23T16:46:49.566703279Z"
},
"getvjs.com": {
"record_type": "A",
"resolved_at": "2025-01-07T17:33:36.354426441Z"
},
"45-61-136-141.cprapid.com": {
"record_type": "A",
"resolved_at": "2025-01-23T16:46:49.127893508Z"
},
"getejs.com": {
"record_type": "A",
"resolved_at": "2025-01-09T17:28:33.010451385Z"
},
"www.getejs.com": {
"record_type": "A",
"resolved_at": "2025-01-13T17:02:51.702282269Z"
},
"cc-analytics.com": {
"record_type": "A",
"resolved_at": "2025-01-04T16:30:47.043936039Z"
},
"www.util-analytics.com": {
"record_type": "A",
"resolved_at": "2025-01-16T19:49:59.547328254Z"
},
"www.cc-analytics.com": {
"record_type": "A",
"resolved_at": "2025-01-17T16:13:28.044925830Z"
},
"www.getvjs.com": {
"record_type": "A",
"resolved_at": "2025-01-23T17:34:01.284280681Z"
},
"getnjs.com": {
"record_type": "A",
"resolved_at": "2025-01-16T16:43:20.890065052Z"
}
}
},
"last_updated_at": "2025-01-25T04:44:07.305Z",
"labels": [
"network-administration",
"remote-access"
]
}