Introducing Censys Search Solo  •  Learn More
Community API Access is now limited to 60 days.

91.191.209.202

As of: Dec 09, 2023 4:15pm UTC | Latest

Basic Information

Routing
91.191.209.0/24  via LL-INVESTMENT-LTD, BG (AS57509)
OS
Microsoft Windows
Services (6)
137/NETBIOS, 139/NETBIOS, 445/SMB, 3389/RDP, 5985/HTTP, 47001/HTTP
Labels
File Sharing Network Administration Remote Access

NETBIOS 137/UDP
12/09/2023 13:33 UTC

Details

Banner (Hex)
  
00000000
00000010
00000020
00000030
00000040
00000050
00000060
00000070
00000080
00000090
e5 d8 84 00 00 00 00 01  00 00 00 00 20 43 4b 41 
41 41 41 41 41 41 41 41  41 41 41 41 41 41 41 41 
41 41 41 41 41 41 41 41  41 41 41 41 41 00 00 21 
00 01 00 00 00 00 00 65  03 57 49 4e 2d 30 33 45 
55 48 47 38 4f 33 56 4f  00 04 00 57 4f 52 4b 47 
52 4f 55 50 20 20 20 20  20 20 00 84 00 57 49 4e 
2d 30 33 45 55 48 47 38  4f 33 56 4f 20 04 00 0c 
c4 7a 92 89 92 00 00 00  00 00 00 00 00 00 00 00 
00 00 00 00 00 00 00 00  00 00 00 00 00 00 00 00 
00 00 00 00 00 00 00 00  00 00 00 00 00          
............ CKA
AAAAAAAAAAAAAAAA
AAAAAAAAAAAAA..!
.......e.WIN-03E
UHG8O3VO...WORKG
ROUP      ...WIN
-03EUHG8O3VO ...
.z..............
................
.............

NETBIOS 139/TCP
12/09/2023 16:15 UTC

Software

microsoft windows

Details

Banner (Hex)
  
00000000
83 00 00 01 82  
.....

SMB 445/TCP
12/08/2023 15:18 UTC

File Sharing

Software

microsoft windows

Details

Server
SMBv1 Support
False
Capabilities
Dfs Support
True
Leasing Support
True
Multicredit Support
True
NTLM Support
True
Negotation Log
Security Mode
1
Dialect Revision
528
Server GUID
000000000000000000000000000000009c9cf0c5c709df4e988ea66612085f37
Capabilities
7
System Time
1702048694
Server Start Time
1702043557
Auth Types
1.3.6.1.4.1.311.2.2.30
1.3.6.1.4.1.311.2.2.10
Session
Target Name
WIN-03EUHG8O3VO
Negotiate Flags
2726953477

RDP 3389/TCP
12/09/2023 03:42 UTC

Network Administration Remote Access

Details

Version
5.0
Support
Extended Client Data Supported
True
Dynvc Graphics Pipeline
True
Neg Resp Reserved
True
Restricted Admin Mode
True

TLS

Handshake
Version Selected
TLSv1_2
Cipher Selected
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
Certificate
Fingerprint
0e70a00e2b0723d313f9b75d725d92e1ff0b27e8fbde7e02f4fac7f496655059
Subject
CN=WIN-03EUHG8O3VO
Issuer
CN=WIN-03EUHG8O3VO
Fingerprint
JARM
26d26d16d26d26d22c26d26d26d26dfd9c9d14e4f4f67f94f0359f8b28f532
JA3S
8529fd8de0d7f73186ef5ea8b4531a76

HTTP 5985/TCP
12/09/2023 07:37 UTC

Software

Microsoft Windows
Microsoft HTTP API 2.0

Details

http://91.191.209.202:5985/
Status
404  Not Found
Body Hash
sha1:a66898b36c94c53766e66c1a7aaeb149447ec083
HTML Title
Not Found
Response Body
      ## Not Found

* * *

HTTP Error 404. The requested resource is not found.

HTTP 47001/TCP
12/08/2023 12:54 UTC

Software

Microsoft Windows
Microsoft HTTP API 2.0

Details

http://91.191.209.202:47001/
Status
404  Not Found
Body Hash
sha1:a66898b36c94c53766e66c1a7aaeb149447ec083
HTML Title
Not Found
Response Body
      ## Not Found

* * *

HTTP Error 404. The requested resource is not found.

Geographic Location

City
Sofia
Province
Sofia-Capital
Country
Bulgaria (BG)
Coordinates
42.69751, 23.32415
Timezone
Europe/Sofia