5.161.92.23
As of: Dec 03, 2023 10:45pm UTC |
Latest
{
"ip": "5.161.92.23",
"services": [
{
"_decoded": "rdp",
"_encoding": {
"certificate": "DISPLAY_HEX"
},
"certificate": "020de9fe3778bf23f55e32b948f8e11a162bf24d4ed414f12a97d1c25356d807",
"discovery_method": "IPV4_WALK_FULL_PRIORITY_1",
"extended_service_name": "RDP",
"jarm": {
"_encoding": {
"fingerprint": "DISPLAY_HEX",
"cipher_and_version_fingerprint": "DISPLAY_HEX",
"tls_extensions_sha256": "DISPLAY_HEX"
},
"fingerprint": "14d14d16d14d14d08c14d14d14d14dfd9c9d14e4f4f67f94f0359f8b28f532",
"cipher_and_version_fingerprint": "14d14d16d14d14d08c14d14d14d14d",
"tls_extensions_sha256": "fd9c9d14e4f4f67f94f0359f8b28f532",
"observed_at": "2023-12-03T22:45:00.554359195Z"
},
"labels": [
"network-administration",
"remote-access"
],
"observed_at": "2023-12-03T15:42:01.124051336Z",
"perspective_id": "PERSPECTIVE_TATA",
"port": 3389,
"rdp": {
"version": {
"raw": 524302,
"major": -1,
"minor": -1
},
"protocol_flags": {
"extended_client_data_supported": true,
"dynvc_graphics_pipeline": true,
"neg_resp_reserved": true,
"restricted_admin_mode": true,
"restricted_auth_mode": true
},
"selected_security_protocol": {
"standard_rdp": true,
"tls": true,
"raw_value": 1,
"credssp": false,
"rdstls": false,
"credssp_early_auth": false,
"error": false,
"error_ssl_required": false,
"error_ssl_forbidden": false,
"error_ssl_cert_missing": false,
"error_bad_flags": false,
"error_hybrid_required": false,
"error_ssl_user_auth_required": false,
"error_unknown": false
},
"x224_cc_pdu_srcref": 13330,
"connect_response": {
"domain_parameters": {
"max_channel_ids": 34,
"max_user_id_channels": 3,
"num_priorities": 1,
"max_provider_height": 1,
"max_mcspdu_size": 65528,
"domain_protocol_version": 2,
"max_token_ids": 0,
"min_throughput": 0
},
"connect_id": 0
},
"certificate_info": {}
},
"service_name": "RDP",
"source_ip": "167.94.138.127",
"tls": {
"version_selected": "TLSv1_2",
"cipher_selected": "TLS_RSA_WITH_AES_256_GCM_SHA384",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "020de9fe3778bf23f55e32b948f8e11a162bf24d4ed414f12a97d1c25356d807",
"leaf_data": {
"subject_dn": "CN=LLite",
"issuer_dn": "CN=LLite",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "ca880f96bb52ba4a12f3ebb945b3eb219467eacd1a1ac95829849985531f5866",
"fingerprint": "020de9fe3778bf23f55e32b948f8e11a162bf24d4ed414f12a97d1c25356d807",
"issuer": {
"common_name": [
"LLite"
]
},
"subject": {
"common_name": [
"LLite"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "yKRORAfu1x5ahO5e2bMXQ8mkRm1cFfM6jFgSHij8AV58Righ3PCpE6PJZceOuGJ7tiyu8gPpDhcGjfxht8Y+kfiE4X/qbfWZn8iQZLJnISzqacmZQSVLQkFYZKsqyCPcSzotKxWUFGuNnFPscaf1cs+8FSULOrFsWx/dKdoCg92NozjOGW/C1oIfFue3fZ7vGOWl3JeK+1aGVxZH9U8mxvoPQjxIrygYnPQx060rVzuSw5TqUvoz1QowedeFus4+hhdrj1S9C9QUhoUNzOj7qjAWTdI5FSD1YOaPxd3LymKuNfuM6XDe2pnAtImoF1aVegz+1cA+5XqlyBzUmhx+5Q==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "55782200d7f8ea9c2d00fe3918412a5b23d6af7048a5b556e5e97a18c456cd35"
},
"signature": {
"self_signed": true,
"signature_algorithm": "SHA256-RSA"
}
}
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "f75082535b4a79c07b31bdd0e2b7eb87"
},
"transport_protocol": "TCP",
"truncated": false
}
],
"location": {
"continent": "North America",
"country": "United States",
"country_code": "US",
"city": "Ashburn",
"postal_code": "20147",
"timezone": "America/New_York",
"province": "Virginia",
"coordinates": {
"latitude": 39.04372,
"longitude": -77.48749
}
},
"location_updated_at": "2023-12-03T22:45:06.562134Z",
"autonomous_system": {
"asn": 213230,
"description": "HETZNER-CLOUD2-AS",
"bgp_prefix": "5.161.92.0/24",
"name": "HETZNER-CLOUD2-AS",
"country_code": "DE"
},
"autonomous_system_updated_at": "2023-12-03T22:45:06.562202Z",
"dns": {
"names": [
"static.23.92.161.5.clients.your-server.de",
"xn--mgbcgsjegfbfam7sqaoeedb83q7ubm.necotips.cfd"
],
"records": {
"xn--mgbcgsjegfbfam7sqaoeedb83q7ubm.necotips.cfd": {
"record_type": "A",
"resolved_at": "2023-11-23T18:32:16.935795706Z"
},
"static.23.92.161.5.clients.your-server.de": {
"record_type": "A",
"resolved_at": "2023-11-19T17:41:43.848347440Z"
}
},
"reverse_dns": {
"names": [
"static.23.92.161.5.clients.your-server.de"
],
"resolved_at": "2023-11-23T02:55:57.195012548Z"
}
},
"last_updated_at": "2023-12-03T22:45:06.779Z",
"labels": [
"network-administration",
"remote-access"
]
}