5.161.92.23

As of: Feb 03, 2023 12:42am UTC | Latest
{
  "ip": "5.161.92.23",
  "services": [
    {
      "_decoded": "ssh",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.5",
      "banner_hashes": [
        "sha256:06fb0c01d3a2a962b56d99bbce69166fe6ceb99184ee4d7f3cbc62739a480bd4"
      ],
      "banner_hex": "5353482d322e302d4f70656e5353485f382e327031205562756e74752d347562756e7475302e35",
      "extended_service_name": "SSH",
      "observed_at": "2023-02-02T20:12:07.816819788Z",
      "perspective_id": "PERSPECTIVE_TELIA",
      "port": 22,
      "service_name": "SSH",
      "software": [
        {
          "product": "openssh",
          "other": {
            "comment": "Ubuntu-4ubuntu0.5"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "product": "linux",
          "source": "OSI_TRANSPORT_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:*:*:*:*",
          "part": "o",
          "vendor": "Ubuntu",
          "product": "Linux",
          "version": "20.04",
          "other": {
            "family": "Linux"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:openbsd:openssh:8.2:p1:*:*:*:*:*:*",
          "part": "a",
          "vendor": "OpenBSD",
          "product": "OpenSSH",
          "version": "8.2",
          "update": "p1",
          "other": {
            "family": "OpenSSH"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.146.57",
      "ssh": {
        "endpoint_id": {
          "_encoding": {
            "raw": "DISPLAY_UTF8"
          },
          "raw": "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.5",
          "protocol_version": "2.0",
          "software_version": "OpenSSH_8.2p1",
          "comment": "Ubuntu-4ubuntu0.5"
        },
        "kex_init_message": {
          "kex_algorithms": [
            "curve25519-sha256",
            "[email protected]",
            "ecdh-sha2-nistp256",
            "ecdh-sha2-nistp384",
            "ecdh-sha2-nistp521",
            "diffie-hellman-group-exchange-sha256",
            "diffie-hellman-group16-sha512",
            "diffie-hellman-group18-sha512",
            "diffie-hellman-group14-sha256"
          ],
          "host_key_algorithms": [
            "rsa-sha2-512",
            "rsa-sha2-256",
            "ssh-rsa",
            "ecdsa-sha2-nistp256",
            "ssh-ed25519"
          ],
          "client_to_server_ciphers": [
            "[email protected]",
            "aes128-ctr",
            "aes192-ctr",
            "aes256-ctr",
            "[email protected]",
            "[email protected]"
          ],
          "server_to_client_ciphers": [
            "[email protected]",
            "aes128-ctr",
            "aes192-ctr",
            "aes256-ctr",
            "[email protected]",
            "[email protected]"
          ],
          "client_to_server_macs": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "hmac-sha2-256",
            "hmac-sha2-512",
            "hmac-sha1"
          ],
          "server_to_client_macs": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "hmac-sha2-256",
            "hmac-sha2-512",
            "hmac-sha1"
          ],
          "client_to_server_compression": [
            "none",
            "[email protected]"
          ],
          "server_to_client_compression": [
            "none",
            "[email protected]"
          ],
          "first_kex_follows": false
        },
        "algorithm_selection": {
          "kex_algorithm": "[email protected]",
          "host_key_algorithm": "ecdsa-sha2-nistp256",
          "client_to_server_alg_group": {
            "cipher": "aes128-ctr",
            "mac": "hmac-sha2-256",
            "compression": "none"
          },
          "server_to_client_alg_group": {
            "cipher": "aes128-ctr",
            "mac": "hmac-sha2-256",
            "compression": "none"
          }
        },
        "server_host_key": {
          "fingerprint_sha256": "2cc84ea5c9ca0370bf7bcb8929f5adf74a4b2ff5eb61f5cb8c68cede3b72d78e",
          "ecdsa_public_key": {
            "_encoding": {
              "b": "DISPLAY_BASE64",
              "gx": "DISPLAY_BASE64",
              "gy": "DISPLAY_BASE64",
              "n": "DISPLAY_BASE64",
              "p": "DISPLAY_BASE64",
              "x": "DISPLAY_BASE64",
              "y": "DISPLAY_BASE64"
            },
            "b": "WsY12Ko6k+ez671VdpiGvGUdBrDMU7D2O848PifSYEs=",
            "curve": "P-256",
            "gx": "axfR8uEsQkf4vOblY6RA8ncDfYEt6zOg9KE5RdiYwpY=",
            "gy": "T+NC4v4af5uO5+tKfA+eFivOM1drMV7Oy7ZAaDe/UfU=",
            "length": 256,
            "n": "/////wAAAAD//////////7zm+q2nF56E87nKwvxjJVE=",
            "p": "/////wAAAAEAAAAAAAAAAAAAAAD///////////////8=",
            "x": "7mM01PSvhCC9U+9wn3JEGcs2ZkbM0l7MIob5tgzwVFY=",
            "y": "/5kPt1XoppHWyK6YDvuL6ubrlo88ia4dlzWibNauvBc="
          }
        },
        "hassh_fingerprint": "3ccd1778a76049721c71ad7d2bf62bbc"
      },
      "transport_fingerprint": {
        "id": 262,
        "os": "CentOS",
        "raw": "65160,64,true,MSTNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 301 Moved Permanently\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate:  <REDACTED>\r\nContent-Type: text/html\r\nContent-Length: 178\r\nConnection: keep-alive\r\nLocation: https://5.161.92.23/\r\n",
      "banner_hashes": [
        "sha256:f81446370741abb8bb7d13c6cdbd47b818754f99853b54d352eded67c3bddfb5"
      ],
      "banner_hex": "485454502f312e3120333031204d6f766564205065726d616e656e746c790d0a5365727665723a206e67696e782f312e31382e3020285562756e7475290d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a436f6e74656e742d4c656e6774683a203137380d0a436f6e6e656374696f6e3a206b6565702d616c6976650d0a4c6f636174696f6e3a2068747470733a2f2f352e3136312e39322e32332f0d0a",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://5.161.92.23/",
          "headers": {
            "Accept": [
              "*/*"
            ],
            "_encoding": {
              "Accept": "DISPLAY_UTF8",
              "User_Agent": "DISPLAY_UTF8"
            },
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 301,
          "status_reason": "Moved Permanently",
          "headers": {
            "Content_Type": [
              "text/html"
            ],
            "_encoding": {
              "Content_Type": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8",
              "Location": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8"
            },
            "Server": [
              "nginx/1.18.0 (Ubuntu)"
            ],
            "Connection": [
              "keep-alive"
            ],
            "Content_Length": [
              "178"
            ],
            "Location": [
              "https://5.161.92.23/"
            ],
            "Date": [
              "<REDACTED>"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>301 Moved Permanently</title>"
          ],
          "body_size": 178,
          "body": "<html>\r\n<head><title>301 Moved Permanently</title></head>\r\n<body>\r\n<center><h1>301 Moved Permanently</h1></center>\r\n<hr><center>nginx/1.18.0 (Ubuntu)</center>\r\n</body>\r\n</html>\r\n",
          "body_hashes": [
            "sha256:2e04a18ff185ba5b16f762a0538339bc4049aceaef9738edd43af77d2ceb788b",
            "sha1:733c05da132193d6cf1d8e242d12e2525c03bab4"
          ],
          "body_hash": "sha1:733c05da132193d6cf1d8e242d12e2525c03bab4",
          "html_title": "301 Moved Permanently"
        },
        "supports_http2": false
      },
      "observed_at": "2023-02-02T21:10:54.078288148Z",
      "perspective_id": "PERSPECTIVE_HE",
      "port": 80,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:nginx:nginx:1.18.0:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "nginx",
          "product": "nginx",
          "version": "1.18.0",
          "other": {
            "family": "nginx"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "162.142.125.213",
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 301 Moved Permanently\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate:  <REDACTED>\r\nContent-Type: text/html\r\nContent-Length: 178\r\nConnection: keep-alive\r\nLocation: https://ash1db.doers.ph/\r\n",
      "banner_hashes": [
        "sha256:66d491d89556de5f56a639949dd7829bfb2e774ee8c7fe3b3d062aa8b3c98ec0"
      ],
      "banner_hex": "485454502f312e3120333031204d6f766564205065726d616e656e746c790d0a5365727665723a206e67696e782f312e31382e3020285562756e7475290d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a436f6e74656e742d4c656e6774683a203137380d0a436f6e6e656374696f6e3a206b6565702d616c6976650d0a4c6f636174696f6e3a2068747470733a2f2f6173683164622e646f6572732e70682f0d0a",
      "certificate": "c865211479d5116d8179b5b0d521b9a1d3bd9c4231e8f1ab1dedaadb6939fdba",
      "extended_service_name": "HTTPS",
      "http": {
        "request": {
          "method": "GET",
          "uri": "https://5.161.92.23/",
          "headers": {
            "Accept": [
              "*/*"
            ],
            "_encoding": {
              "Accept": "DISPLAY_UTF8",
              "User_Agent": "DISPLAY_UTF8"
            },
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 301,
          "status_reason": "Moved Permanently",
          "headers": {
            "Connection": [
              "keep-alive"
            ],
            "_encoding": {
              "Connection": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Location": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8"
            },
            "Content_Length": [
              "178"
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Location": [
              "https://ash1db.doers.ph/"
            ],
            "Content_Type": [
              "text/html"
            ],
            "Server": [
              "nginx/1.18.0 (Ubuntu)"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>301 Moved Permanently</title>"
          ],
          "body_size": 178,
          "body": "<html>\r\n<head><title>301 Moved Permanently</title></head>\r\n<body>\r\n<center><h1>301 Moved Permanently</h1></center>\r\n<hr><center>nginx/1.18.0 (Ubuntu)</center>\r\n</body>\r\n</html>\r\n",
          "body_hashes": [
            "sha256:2e04a18ff185ba5b16f762a0538339bc4049aceaef9738edd43af77d2ceb788b",
            "sha1:733c05da132193d6cf1d8e242d12e2525c03bab4"
          ],
          "body_hash": "sha1:733c05da132193d6cf1d8e242d12e2525c03bab4",
          "html_title": "301 Moved Permanently"
        },
        "supports_http2": true
      },
      "jarm": {
        "_encoding": {
          "fingerprint": "DISPLAY_HEX",
          "cipher_and_version_fingerprint": "DISPLAY_HEX",
          "tls_extensions_sha256": "DISPLAY_HEX"
        },
        "fingerprint": "29d29d15d29d29d00029d29d29d29de58cf93292ac388f015f112b48278862",
        "cipher_and_version_fingerprint": "29d29d15d29d29d00029d29d29d29d",
        "tls_extensions_sha256": "e58cf93292ac388f015f112b48278862",
        "observed_at": "2023-01-19T15:56:42.168217419Z"
      },
      "observed_at": "2023-02-02T21:11:10.905898044Z",
      "perspective_id": "PERSPECTIVE_TATA",
      "port": 443,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:nginx:nginx:1.18.0:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "nginx",
          "product": "nginx",
          "version": "1.18.0",
          "other": {
            "family": "nginx"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.138.118",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX",
            "chain_fps_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "c865211479d5116d8179b5b0d521b9a1d3bd9c4231e8f1ab1dedaadb6939fdba",
          "chain_fps_sha_256": [
            "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd"
          ],
          "leaf_data": {
            "names": [
              "ash1db.doers.ph"
            ],
            "subject_dn": "CN=ash1db.doers.ph",
            "issuer_dn": "C=US, O=Let's Encrypt, CN=R3",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "4b1b7e5be4b457f806c19ab6750899f5121b329107831da3526e28d284c3454a",
            "fingerprint": "c865211479d5116d8179b5b0d521b9a1d3bd9c4231e8f1ab1dedaadb6939fdba",
            "issuer": {
              "common_name": [
                "R3"
              ],
              "organization": [
                "Let's Encrypt"
              ],
              "country": [
                "US"
              ]
            },
            "subject": {
              "common_name": [
                "ash1db.doers.ph"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "qAuWTGK+xuN5xS9bQ39AXL/GRCT6SaMeIQIjleMWGVYJQ4jlL9UgiXthwoGn4KHJ20CcjAsj6ztnm9Gg38K1pKmnT9nd+w/eWvDneKVwLAt1URZTApgNCMws4se1JufV3DDDvxHV6TrUfjrEUmtVz2vNLcZXLVzLL8D1p3/MBofBtagtiURGjhaIlefDS5YsFHbCNPhRg4WhygpO8boHyLO3SzeDx5ysBK69QUXdfucfWqsAHfQBdqce0QqKIqyone29x2b13xz4afFZU+DlSF+GAXw+abYumjC1yTHeRPT2Ot/niAOyGVhGKLyTdZ4iZbUm1zUj2kd0ICvOGgA65Q==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "b6e1c47f5469b0c1165ece9836fcc5dae8eaf67e66e386d4f1cc355416c6ced8"
            },
            "signature": {
              "signature_algorithm": "SHA256-RSA",
              "self_signed": false
            }
          },
          "chain": [
            {
              "fingerprint": "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
              "subject_dn": "C=US, O=Let's Encrypt, CN=R3",
              "issuer_dn": "C=US, O=Internet Security Research Group, CN=ISRG Root X1"
            }
          ]
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 29
          }
        },
        "session_ticket": {
          "length": 176,
          "lifetime_hint": 86400
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "ccc514751b175866924439bdbb5bba34"
      },
      "transport_protocol": "TCP",
      "truncated": false
    }
  ],
  "location": {
    "continent": "North America",
    "country": "United States",
    "country_code": "US",
    "postal_code": "",
    "timezone": "America/Chicago",
    "coordinates": {
      "latitude": 37.751,
      "longitude": -97.822
    },
    "registered_country": "Germany",
    "registered_country_code": "DE"
  },
  "location_updated_at": "2023-01-29T08:11:21.666742Z",
  "autonomous_system": {
    "asn": 213230,
    "description": "HETZNER-CLOUD2-AS",
    "bgp_prefix": "5.161.92.0/24",
    "name": "HETZNER-CLOUD2-AS",
    "country_code": "DE"
  },
  "autonomous_system_updated_at": "2023-01-29T08:11:21.666940Z",
  "operating_system": {
    "uniform_resource_identifier": "cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:*:*:*:*",
    "part": "o",
    "vendor": "Ubuntu",
    "product": "Linux",
    "version": "20.04",
    "other": {
      "family": "Linux"
    }
  },
  "dns": {
    "names": [
      "static.23.92.161.5.clients.your-server.de"
    ],
    "records": {
      "static.23.92.161.5.clients.your-server.de": {
        "record_type": "A",
        "resolved_at": "2023-01-29T14:47:10.214373468Z"
      }
    },
    "reverse_dns": {
      "names": [
        "static.23.92.161.5.clients.your-server.de"
      ],
      "resolved_at": "2023-01-28T12:20:13.298710068Z"
    }
  },
  "last_updated_at": "2023-02-03T00:42:32.498Z"
}