89.248.167.150
As of: Jul 20, 2025 12:57am UTC |
Latest
{
"ip": "89.248.167.150",
"services": [
{
"_decoded": "ssh",
"_encoding": {
"banner": "DISPLAY_UTF8",
"banner_hex": "DISPLAY_HEX"
},
"banner": "SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3",
"banner_hashes": [
"sha256:338da0adfba65b78bd7df4aa447942f345e3a176ba08fce589f3c34d13a2bf40"
],
"banner_hex": "5353482d322e302d4f70656e5353485f372e367031205562756e74752d347562756e7475302e33",
"extended_service_name": "SSH",
"labels": [
"remote-access"
],
"observed_at": "2025-07-19T22:31:31.723229257Z",
"perspective_id": "PERSPECTIVE_UNKNOWN",
"port": 22,
"service_name": "SSH",
"software": [
{
"product": "openssh",
"other": {
"comment": "Ubuntu-4ubuntu0.3"
},
"source": "OSI_APPLICATION_LAYER"
},
{
"uniform_resource_identifier": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:*:*:*:*",
"part": "o",
"vendor": "Ubuntu",
"product": "Linux",
"version": "18.04",
"other": {
"family": "Linux"
},
"source": "OSI_APPLICATION_LAYER"
},
{
"uniform_resource_identifier": "cpe:2.3:a:openbsd:openssh:7.6:p1:*:*:*:*:*:*",
"part": "a",
"vendor": "OpenBSD",
"product": "OpenSSH",
"version": "7.6",
"update": "p1",
"other": {
"family": "OpenSSH"
},
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "206.168.34.206",
"ssh": {
"endpoint_id": {
"_encoding": {
"raw": "DISPLAY_UTF8"
},
"raw": "SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3",
"protocol_version": "2.0",
"software_version": "OpenSSH_7.6p1",
"comment": "Ubuntu-4ubuntu0.3"
},
"kex_init_message": {
"kex_algorithms": [
"curve25519-sha256",
"[email protected]",
"ecdh-sha2-nistp256",
"ecdh-sha2-nistp384",
"ecdh-sha2-nistp521",
"diffie-hellman-group-exchange-sha256",
"diffie-hellman-group16-sha512",
"diffie-hellman-group18-sha512",
"diffie-hellman-group14-sha256",
"diffie-hellman-group14-sha1"
],
"host_key_algorithms": [
"ssh-rsa",
"rsa-sha2-512",
"rsa-sha2-256",
"ecdsa-sha2-nistp256",
"ssh-ed25519"
],
"client_to_server_ciphers": [
"[email protected]",
"aes128-ctr",
"aes192-ctr",
"aes256-ctr",
"[email protected]",
"[email protected]"
],
"server_to_client_ciphers": [
"[email protected]",
"aes128-ctr",
"aes192-ctr",
"aes256-ctr",
"[email protected]",
"[email protected]"
],
"client_to_server_macs": [
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"hmac-sha2-256",
"hmac-sha2-512",
"hmac-sha1"
],
"server_to_client_macs": [
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"hmac-sha2-256",
"hmac-sha2-512",
"hmac-sha1"
],
"client_to_server_compression": [
"none",
"[email protected]"
],
"server_to_client_compression": [
"none",
"[email protected]"
],
"first_kex_follows": false
},
"algorithm_selection": {
"kex_algorithm": "[email protected]",
"host_key_algorithm": "ecdsa-sha2-nistp256",
"client_to_server_alg_group": {
"cipher": "aes128-ctr",
"mac": "hmac-sha2-256",
"compression": "none"
},
"server_to_client_alg_group": {
"cipher": "aes128-ctr",
"mac": "hmac-sha2-256",
"compression": "none"
}
},
"server_host_key": {
"fingerprint_sha256": "0e530d9c204628d06efbe5656637d5e0ec7311f1134fcbca21aa58688ba0c917",
"ecdsa_public_key": {
"_encoding": {
"b": "DISPLAY_BASE64",
"gx": "DISPLAY_BASE64",
"gy": "DISPLAY_BASE64",
"n": "DISPLAY_BASE64",
"p": "DISPLAY_BASE64",
"x": "DISPLAY_BASE64",
"y": "DISPLAY_BASE64"
},
"b": "WsY12Ko6k+ez671VdpiGvGUdBrDMU7D2O848PifSYEs=",
"curve": "P-256",
"gx": "axfR8uEsQkf4vOblY6RA8ncDfYEt6zOg9KE5RdiYwpY=",
"gy": "T+NC4v4af5uO5+tKfA+eFivOM1drMV7Oy7ZAaDe/UfU=",
"length": 256,
"n": "/////wAAAAD//////////7zm+q2nF56E87nKwvxjJVE=",
"p": "/////wAAAAEAAAAAAAAAAAAAAAD///////////////8=",
"x": "zBOFtA8+B2cQKUy1gREZ/3iQtlXBET6rs7yBKlrfJks=",
"y": "og3CAQ2jt/nXD/lpS33fkWQtaf+jPMaTX8J+2AZnWug="
}
},
"hassh_fingerprint": "b12d2871a1189eff20364cf5333619ee"
},
"transport_fingerprint": {
"raw": "62636,64,true,MSTNW,8960,false,false"
},
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "http",
"_encoding": {
"banner": "DISPLAY_UTF8",
"banner_hex": "DISPLAY_HEX"
},
"banner": "HTTP/1.1 200 OK\r\nServer: nginx/1.14.0 (Ubuntu)\r\nDate: <REDACTED>\r\nContent-Type: text/html\r\nLast-Modified: Tue, 20 Apr 2021 13:03:07 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"607ed10b-2ce\"\r\nContent-Encoding: gzip\r\n",
"banner_hashes": [
"sha256:2f4ded901549105724d433c596abcbdf777e84cc6d2798fe14068b3bd6c69b90"
],
"banner_hex": "485454502f312e3120323030204f4b0d0a5365727665723a206e67696e782f312e31342e3020285562756e7475290d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a4c6173742d4d6f6469666965643a205475652c2032302041707220323032312031333a30333a303720474d540d0a5472616e736665722d456e636f64696e673a206368756e6b65640d0a436f6e6e656374696f6e3a206b6565702d616c6976650d0a455461673a20572f2236303765643130622d326365220d0a436f6e74656e742d456e636f64696e673a20677a69700d0a",
"extended_service_name": "HTTP",
"http": {
"request": {
"method": "GET",
"uri": "http://89.248.167.150/",
"headers": {
"User_Agent": [
"Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
],
"_encoding": {
"User_Agent": "DISPLAY_UTF8",
"Accept": "DISPLAY_UTF8"
},
"Accept": [
"*/*"
]
}
},
"response": {
"protocol": "HTTP/1.1",
"status_code": 200,
"status_reason": "OK",
"headers": {
"Server": [
"nginx/1.14.0 (Ubuntu)"
],
"_encoding": {
"Server": "DISPLAY_UTF8",
"Content_Type": "DISPLAY_UTF8",
"Transfer_Encoding": "DISPLAY_UTF8",
"Connection": "DISPLAY_UTF8",
"Date": "DISPLAY_UTF8",
"Content_Encoding": "DISPLAY_UTF8",
"ETag": "DISPLAY_UTF8",
"Last_Modified": "DISPLAY_UTF8"
},
"Content_Type": [
"text/html"
],
"Transfer_Encoding": [
"chunked"
],
"Connection": [
"keep-alive"
],
"Date": [
"<REDACTED>"
],
"Content_Encoding": [
"gzip"
],
"ETag": [
"W/\"607ed10b-2ce\""
],
"Last_Modified": [
"Tue, 20 Apr 2021 13:03:07 GMT"
]
},
"_encoding": {
"html_tags": "DISPLAY_UTF8",
"body": "DISPLAY_UTF8",
"body_hash": "DISPLAY_UTF8",
"html_title": "DISPLAY_UTF8"
},
"html_tags": [
"<title>scanning research</title>",
"<meta charset=\"utf-8\" />"
],
"body_size": 718,
"body": "<!DOCTYPE html>\n<html lang=\"en\">\n<head>\n<meta charset=\"utf-8\" />\n<title>scanning research</title>\n\n<link rel=\"stylesheet\" href=\"spectre.min.css\" type=\"text/css\" />\n\n</head>\n\n<body>\n\t<div class=\"container grid-xl\">\n\t\t\t<div class=\"hero bg-gray\">\n\t\t\t\t<div class=\"hero-body\">\n\t\t\t\t <h2>This is a non-malicious academic research scanning node</h2>\n\t\t\t\t <h4>We scan for publicly reachable services across the IPv4 address range. For remediation purposes, we are particularly interested in reflectors abusable for DDoS attacks.</h4>\n\t\t\t\t <p>To exclude your network ranges from future scans please email us <span class=\"bg-dark\">research {at} netsecscan {dot} net</span> </p>\n\t\t\t\t</div>\n\t\t\t</div>\n\t </div>\n\n</body>\n</html>\n",
"body_hashes": [
"sha256:247ad1bad53107dec5b16ab81a0900734e2a6148ad45e97fda36614cfa0a5b65",
"sha1:b83f22b384ff478afb62abbdffbde83b5077d396",
"tlsh:b601444466c61d2a413742e429c137a6b5ceaf8543a440e2d36f421e56d4d8fe91b571"
],
"body_hash": "sha1:b83f22b384ff478afb62abbdffbde83b5077d396",
"html_title": "scanning research"
},
"supports_http2": false
},
"observed_at": "2025-07-20T00:56:16.427145729Z",
"perspective_id": "PERSPECTIVE_UNKNOWN",
"port": 80,
"service_name": "HTTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:f5:nginx:1.14.0:*:*:*:*:*:*:*",
"part": "a",
"vendor": "nginx",
"product": "nginx",
"version": "1.14.0",
"other": {
"family": "nginx"
},
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "167.94.138.169",
"transport_protocol": "TCP",
"truncated": false
}
],
"location": {
"continent": "Europe",
"country": "Netherlands",
"country_code": "NL",
"city": "Amsterdam",
"postal_code": "1012",
"timezone": "Europe/Amsterdam",
"province": "North Holland",
"coordinates": {
"latitude": 52.37403,
"longitude": 4.88969
}
},
"location_updated_at": "2025-07-13T22:31:40.100154797Z",
"autonomous_system": {
"asn": 202425,
"description": "INT-NETWORK",
"bgp_prefix": "89.248.167.0/24",
"name": "INT-NETWORK",
"country_code": "SC"
},
"autonomous_system_updated_at": "2025-07-13T22:31:40.100186437Z",
"whois": {
"network": {
"handle": "NET-2-167",
"name": "IPV NETBLOCK",
"cidrs": [
"89.248.167.0/24"
],
"created": "2008-03-17T00:00:00Z",
"updated": "2019-02-03T00:00:00Z"
},
"organization": {
"handle": "ORG-IVI1-RIPE",
"name": "IP Volume inc",
"address": "Seychelles",
"abuse_contacts": [
{
"handle": "IVNO1-RIPE",
"name": "IPV ABUSE ROLE",
"email": "[email protected]"
}
]
}
},
"operating_system": {
"uniform_resource_identifier": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:*:*:*:*",
"part": "o",
"vendor": "Ubuntu",
"product": "Linux",
"version": "18.04",
"other": {
"family": "Linux"
}
},
"dns": {
"reverse_dns": {
"names": [
"netsecscan.net"
],
"resolved_at": "2025-06-28T19:13:29.311851240Z"
}
},
"last_updated_at": "2025-07-20T00:57:12.989Z",
"labels": [
"remote-access"
]
}