45.89.55.118
As of: Dec 11, 2023 1:34pm UTC |
Latest
{
"ip": "45.89.55.118",
"services": [
{
"_decoded": "rdp",
"_encoding": {
"certificate": "DISPLAY_HEX"
},
"certificate": "73affba5c44b63792974412ba8abf537e1d5653a2323287797db85251bc79d9c",
"discovery_method": "PREDICTIVE_METHOD_7",
"extended_service_name": "RDP",
"jarm": {
"_encoding": {
"fingerprint": "DISPLAY_HEX",
"cipher_and_version_fingerprint": "DISPLAY_HEX",
"tls_extensions_sha256": "DISPLAY_HEX"
},
"fingerprint": "2ad2ad16d2ad2ad22c2ad2ad2ad2adfd9c9d14e4f4f67f94f0359f8b28f532",
"cipher_and_version_fingerprint": "2ad2ad16d2ad2ad22c2ad2ad2ad2ad",
"tls_extensions_sha256": "fd9c9d14e4f4f67f94f0359f8b28f532",
"observed_at": "2023-11-30T08:58:12.833604628Z"
},
"labels": [
"network-administration",
"remote-access"
],
"observed_at": "2023-12-11T13:34:52.375182094Z",
"perspective_id": "PERSPECTIVE_TATA",
"port": 3389,
"rdp": {
"protocol_flags": {
"extended_client_data_supported": true,
"dynvc_graphics_pipeline": true,
"neg_resp_reserved": true,
"restricted_admin_mode": true,
"restricted_auth_mode": true
},
"selected_security_protocol": {
"rdstls": true,
"raw_value": 4,
"standard_rdp": false,
"tls": false,
"credssp": false,
"credssp_early_auth": false,
"error": false,
"error_ssl_required": false,
"error_ssl_forbidden": false,
"error_ssl_cert_missing": false,
"error_bad_flags": false,
"error_hybrid_required": false,
"error_ssl_user_auth_required": false,
"error_unknown": false
},
"x224_cc_pdu_srcref": 13330
},
"service_name": "RDP",
"source_ip": "167.94.138.125",
"tls": {
"version_selected": "TLSv1_2",
"cipher_selected": "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "73affba5c44b63792974412ba8abf537e1d5653a2323287797db85251bc79d9c",
"leaf_data": {
"subject_dn": "CN=WIN-LIVFRVQFMKO",
"issuer_dn": "CN=WIN-LIVFRVQFMKO",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "04426210de688283d0dd5d990a50a00bff808c0d172dde407688bf524e1f1406",
"fingerprint": "73affba5c44b63792974412ba8abf537e1d5653a2323287797db85251bc79d9c",
"issuer": {
"common_name": [
"WIN-LIVFRVQFMKO"
]
},
"subject": {
"common_name": [
"WIN-LIVFRVQFMKO"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "v+EPWk/oRHiWc2izqzVb0GLqz/cN6qUkAW45aKEx7a/rg0BGxJlCJCj+UrG6QQhE3iPHhH74yATUEyNoOyqbwC19WVKlIQPRcAVbkSkne9TveQW7ooNVpRge9QWkOPnNLirWJj3rLKEfP8Jr5OCQhqAWGXBXOzirUpoXflMf/60fvBJkab9WUThAE9awkNbN4hpb8xpm9PS1xKmbQiDfBf/nIbT/WJN1pUhDkKTsqIcnKuqCLR1T9xLii9QlIG6UusQK7Pu1cVdwyRWnpBgvHiDagyRhD8iGHcYZ6JfkAzkofx7gyMNdvExjnSL8mbGXyMdqRgtOTJhMasRsMfM/NQ==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "67f386d699ae79dfe0e1b7b49524dbbf4714468bb6b3df059dd5c74876363ae6"
},
"signature": {
"self_signed": true,
"signature_algorithm": "SHA256-RSA"
}
}
},
"server_key_exchange": {
"ec_params": {
"named_curve": 24
}
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "364ff14b04ef93c3b4cfa429d729c0d9"
},
"transport_fingerprint": {
"raw": "64000,128,true,MNWNNS,1460,false,false"
},
"transport_protocol": "TCP",
"truncated": false
}
],
"location": {
"continent": "Europe",
"country": "Serbia",
"country_code": "RS",
"city": "Belgrade",
"postal_code": "11000",
"timezone": "Europe/Belgrade",
"province": "Central Serbia",
"coordinates": {
"latitude": 44.80401,
"longitude": 20.46513
}
},
"location_updated_at": "2023-11-30T05:10:12.782111Z",
"autonomous_system": {
"asn": 205007,
"description": "ESERVER-",
"bgp_prefix": "45.89.55.0/24",
"name": "ESERVER-",
"country_code": "RS"
},
"autonomous_system_updated_at": "2023-11-30T05:10:12.782124Z",
"dns": {},
"last_updated_at": "2023-12-11T13:34:53.362Z",
"labels": [
"network-administration",
"remote-access"
]
}