89.161.136.214

As of: Apr 18, 2025 7:19am UTC | Latest
{
  "ip": "89.161.136.214",
  "services": [
    {
      "_decoded": "imap",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN] Dovecot ready.\r\n",
      "banner_hashes": [
        "sha256:9fa634d81d68ef4e1e3b5f551a9e29411262794be17b6dff29abacd32d69acd2"
      ],
      "banner_hex": "2a204f4b205b4341504142494c49545920494d41503472657631205341534c2d4952204c4f47494e2d524546455252414c5320494420454e41424c452049444c45204c49544552414c2b20415554483d504c41494e20415554483d4c4f47494e5d20446f7665636f742072656164792e0d0a",
      "certificate": "1c12ea601b0bf59cc7ba2a74fffdd93691d97bcd2af411df7f1b4e7dc36214d8",
      "discovery_method": "IPV4_WALK_FULL_PRIORITY_1",
      "extended_service_name": "IMAPS",
      "imap": {
        "_encoding": {
          "banner": "DISPLAY_UTF8"
        },
        "banner": "* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN] Dovecot ready.\r\n"
      },
      "labels": [
        "email"
      ],
      "observed_at": "2025-04-16T19:26:10.751016771Z",
      "pending_removal_since": "2025-04-18T07:19:21.148366182Z",
      "perspective_id": "PERSPECTIVE_UNKNOWN",
      "port": 993,
      "service_name": "IMAP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:dovecot:dovecot:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Dovecot",
          "product": "Dovecot",
          "other": {
            "family": "Dovecot"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "206.168.34.72",
      "tls": {
        "version_selected": "TLSv1_3",
        "cipher_selected": "TLS_CHACHA20_POLY1305_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX",
            "chain_fps_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "1c12ea601b0bf59cc7ba2a74fffdd93691d97bcd2af411df7f1b4e7dc36214d8",
          "chain_fps_sha_256": [
            "a95f23b52af10895886fb65323d29a9876ea7d396f805e4ca280d561c26e3dad",
            "9e852c59dfc6fd6abd4e17ea80b5f4e56fc04192d107258d54da8a92528670d6",
            "5c58468d55f58e497e743982d2b50010b6d165374acf83a7d4a32db768c4408e"
          ],
          "leaf_data": {
            "names": [
              "*.home.pl",
              "home.pl"
            ],
            "subject_dn": "CN=*.home.pl",
            "issuer_dn": "C=PL, O=home.pl S.A., CN=Certyfikat SSL",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "b807971c7c77a9b1d29605c36800a6de0b187340a2aa0086a88d70656f313845",
            "fingerprint": "1c12ea601b0bf59cc7ba2a74fffdd93691d97bcd2af411df7f1b4e7dc36214d8",
            "issuer": {
              "common_name": [
                "Certyfikat SSL"
              ],
              "organization": [
                "home.pl S.A."
              ],
              "country": [
                "PL"
              ]
            },
            "subject": {
              "common_name": [
                "*.home.pl"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "5vsb3m8t53OmPOeuFMuLbTjRCOvJq87kcgnhz1EuMJPGFenPS+TqlgjPmDaTqyFIas1ouLzMA/WOXOA3oRsAKGJ9b/Bo9hb1JikVqjwIEMYrQQa8M9d4e0LrPr0Dv539XsfkOU+tOETU7isAaDtqmEaPaaHyMr2UgQHAIwN5WgYKrvGJKnk8199QNSV8Xq5bO5qxg6LMysAM6yicQIp1QrRgd6HqsgPb+kM51UFAkySCbU0JGdgSkUVmGatxALl/jpLcBGDTxFPFcPgrXOl2qe1Ub4OrXM/GCTgmDrEXOJPzhdnEHqI0fjfpT9JCDBs6e/ZKnlq1dAU/3IxiGavz5w==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "1a7e3e768f8709c2b3a45327e0af99ea1429f0ee8f081c085c3a271340b09ce7"
            },
            "signature": {
              "signature_algorithm": "SHA256-RSA",
              "self_signed": false
            }
          },
          "chain": [
            {
              "fingerprint": "a95f23b52af10895886fb65323d29a9876ea7d396f805e4ca280d561c26e3dad",
              "subject_dn": "C=PL, O=home.pl S.A., CN=Certyfikat SSL",
              "issuer_dn": "C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Global Services CA SHA2"
            },
            {
              "fingerprint": "9e852c59dfc6fd6abd4e17ea80b5f4e56fc04192d107258d54da8a92528670d6",
              "subject_dn": "C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Global Services CA SHA2",
              "issuer_dn": "C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Trusted Network CA"
            },
            {
              "fingerprint": "5c58468d55f58e497e743982d2b50010b6d165374acf83a7d4a32db768c4408e",
              "subject_dn": "C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Trusted Network CA",
              "issuer_dn": "C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Trusted Network CA"
            }
          ]
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "475c9302dc42b2751db9edcac3b74891",
        "ja4s": "t130200_1303_a56c5b993250",
        "versions": [
          {
            "tls_version": "TLSv1_3",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "475c9302dc42b2751db9edcac3b74891",
            "ja4s": "t130200_1303_a56c5b993250"
          },
          {
            "tls_version": "TLSv1_2",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "d25619cb77d3219fc9fc14cb6b35eacc",
            "ja4s": "t120200_cca8_344b4dce5a52"
          }
        ]
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "mysql",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "8.0.33-25",
      "banner_hashes": [
        "sha256:d5674732b9fa0f4c3ae138b0502269b6b1ee010cca46aededc4727b0a892f3a9"
      ],
      "banner_hex": "382e302e33332d3235",
      "certificate": "ebf5c582389cdf13a7ff9da697659e9f68e1a06a8622ff575c544c0cdbf6bb21",
      "discovery_method": "PREDICTIVE_METHOD_23",
      "extended_service_name": "MYSQL",
      "labels": [
        "database"
      ],
      "mysql": {
        "protocol_version": 10,
        "server_version": "8.0.33-25",
        "connection_id": 6311086,
        "_encoding": {
          "auth_plugin_data": "DISPLAY_HEX"
        },
        "auth_plugin_data": "4761017759734171393a072e7b1752291551417b00",
        "character_set": 45,
        "status_flags": {
          "SERVER_STATUS_AUTOCOMMIT": true
        },
        "capability_flags": {
          "CLIENT_RESERVED": true,
          "CLIENT_MULTI_STATEMENTS": true,
          "CLIENT_PROTOCOL_41": true,
          "CLIENT_CAN_HANDLE_EXPIRED_PASSWORDS": true,
          "CLIENT_CONNECT_WITH_DB": true,
          "CLIENT_SECURE_CONNECTION": true,
          "CLIENT_ODBC": true,
          "CLIENT_LONG_PASSWORD": true,
          "CLIENT_IGNORE_SPACE": true,
          "CLIENT_LOCAL_FILES": true,
          "CLIENT_PLUGIN_AUTH_LEN_ENC_CLIENT_DATA": true,
          "CLIENT_SSL": true,
          "CLIENT_DEPRECATED_EOF": true,
          "CLIENT_FOUND_ROWS": true,
          "CLIENT_SESSION_TRACK": true,
          "CLIENT_INTERACTIVE": true,
          "CLIENT_IGNORE_SIGPIPE": true,
          "CLIENT_PLUGIN_AUTH": true,
          "CLIENT_MULTI_RESULTS": true,
          "CLIENT_CONNECT_ATTRS": true,
          "CLIENT_LONG_FLAG": true,
          "CLIENT_TRANSACTIONS": true,
          "CLIENT_COMPRESS": true,
          "CLIENT_PS_MULTI_RESULTS": true,
          "CLIENT_NO_SCHEMA": true
        },
        "auth_plugin_name": "mysql_native_password",
        "error_code": 0
      },
      "observed_at": "2025-04-17T16:53:04.881877614Z",
      "perspective_id": "PERSPECTIVE_UNKNOWN",
      "port": 3380,
      "service_name": "MYSQL",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:oracle:mysql:8.0.33\\-25:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Oracle",
          "product": "MySQL",
          "version": "8.0.33-25",
          "other": {
            "family": "MySQL"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "206.168.34.125",
      "tls": {
        "version_selected": "TLSv1_3",
        "cipher_selected": "TLS_CHACHA20_POLY1305_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX",
            "chain_fps_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "ebf5c582389cdf13a7ff9da697659e9f68e1a06a8622ff575c544c0cdbf6bb21",
          "chain_fps_sha_256": [
            "a2810bf48eb7fe4b85548da09b4029efd86527b1aeb234eff5b9c6596a1ae43d"
          ],
          "leaf_data": {
            "subject_dn": "CN=MySQL_Server_8.0.31-23_Auto_Generated_Server_Certificate",
            "issuer_dn": "CN=MySQL_Server_8.0.31-23_Auto_Generated_CA_Certificate",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "a0ca3932fcc1e8154912f318ea362e93260d79a57c6cce9fc338743b613db8e4",
            "fingerprint": "ebf5c582389cdf13a7ff9da697659e9f68e1a06a8622ff575c544c0cdbf6bb21",
            "issuer": {
              "common_name": [
                "MySQL_Server_8.0.31-23_Auto_Generated_CA_Certificate"
              ]
            },
            "subject": {
              "common_name": [
                "MySQL_Server_8.0.31-23_Auto_Generated_Server_Certificate"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "v0tofZkS5KV+pnl/As/IMIauae8OsmLkp25CtmUYuAkF2ZUN8guGTny1pK3uiiHEFbApzgZFJltRSlK+vjhS8q0LuQuvAf+HsjQbPb+XzNxZFtuuM8yMwIMpEaRJSClgerdUmOk+zAPyU2NjicZ8o+9JxbvrJvITxaH1nHBg2MyH06JEBTEbPjxvxy4Fd5S7VYrKpG9SuKzsM9/aX9JbnoY0Y4RCwdFhS/hlFLG14IdiFW6tAi2lMQ0WXkIhVjj5e0rh5TjsXDlGgStP89xIxWwz34qdLRcZSOxgDF4v+vW7JrAApoxGfv4w5m+a0OQsDeO1pbG06HAVtw5399Doyw==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "b1fe5dfa5f408da7c5a17a62acc9cc7a97f5c23a92954a3d598879dbd746d192"
            },
            "signature": {
              "signature_algorithm": "SHA256-RSA",
              "self_signed": false
            }
          },
          "chain": [
            {
              "fingerprint": "a2810bf48eb7fe4b85548da09b4029efd86527b1aeb234eff5b9c6596a1ae43d",
              "subject_dn": "CN=MySQL_Server_8.0.31-23_Auto_Generated_CA_Certificate",
              "issuer_dn": "CN=MySQL_Server_8.0.31-23_Auto_Generated_CA_Certificate"
            }
          ]
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "475c9302dc42b2751db9edcac3b74891",
        "ja4s": "t130200_1303_a56c5b993250",
        "versions": [
          {
            "tls_version": "TLSv1_3",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "475c9302dc42b2751db9edcac3b74891",
            "ja4s": "t130200_1303_a56c5b993250"
          }
        ]
      },
      "transport_protocol": "TCP",
      "truncated": false
    }
  ],
  "location": {
    "continent": "Europe",
    "country": "Poland",
    "country_code": "PL",
    "city": "Warsaw",
    "postal_code": "00-002",
    "timezone": "Europe/Warsaw",
    "province": "Mazovia",
    "coordinates": {
      "latitude": 52.22977,
      "longitude": 21.01178
    }
  },
  "location_updated_at": "2025-04-16T19:26:34.512766482Z",
  "autonomous_system": {
    "asn": 12824,
    "description": "HOMEPL-AS",
    "bgp_prefix": "89.161.128.0/17",
    "name": "HOMEPL-AS",
    "country_code": "PL"
  },
  "autonomous_system_updated_at": "2025-04-16T19:26:34.512932166Z",
  "whois": {
    "network": {
      "handle": "HOMEPL",
      "name": "home.pl webhosting farm - static allocation",
      "cidrs": [
        "89.161.128.0/18"
      ],
      "created": "2006-02-15T00:00:00Z",
      "updated": "2009-07-08T00:00:00Z"
    },
    "organization": {
      "handle": "ORG-HA12-RIPE",
      "name": "home.pl S.A.",
      "address": "ul. Zbozowa 4\\n70-653\\nSzczecin\\nPOLAND",
      "abuse_contacts": [
        {
          "handle": "HA2866-RIPE",
          "name": "home.pl abuse",
          "email": "[email protected]"
        }
      ],
      "admin_contacts": [
        {
          "handle": "HNA8-RIPE",
          "name": "home.pl Network Administrators",
          "email": "[email protected]"
        }
      ]
    }
  },
  "dns": {},
  "last_updated_at": "2025-04-18T07:19:36.507Z",
  "labels": [
    "database",
    "email"
  ]
}