94.131.96.55
As of: Jan 25, 2025 2:50pm UTC |
Latest
{
"ip": "94.131.96.55",
"services": [
{
"_decoded": "rdp",
"_encoding": {
"certificate": "DISPLAY_HEX"
},
"certificate": "524a78b5e5b26b08a172d2f2f207c11171bd8d6ebdc14ae05317160341758afc",
"discovery_method": "IPV4_WALK_FULL_PRIORITY_1",
"extended_service_name": "RDP",
"jarm": {
"_encoding": {
"fingerprint": "DISPLAY_HEX",
"cipher_and_version_fingerprint": "DISPLAY_HEX",
"tls_extensions_sha256": "DISPLAY_HEX"
},
"fingerprint": "14d14d16d14d14d08c14d14d14d14dfd9c9d14e4f4f67f94f0359f8b28f532",
"cipher_and_version_fingerprint": "14d14d16d14d14d08c14d14d14d14d",
"tls_extensions_sha256": "fd9c9d14e4f4f67f94f0359f8b28f532",
"observed_at": "2025-01-06T00:17:56.750943803Z"
},
"labels": [
"network-administration",
"remote-access"
],
"observed_at": "2025-01-25T14:49:59.759470738Z",
"perspective_id": "PERSPECTIVE_UNKNOWN",
"port": 3389,
"rdp": {
"protocol_flags": {
"extended_client_data_supported": true,
"dynvc_graphics_pipeline": true,
"neg_resp_reserved": true,
"restricted_admin_mode": true,
"restricted_auth_mode": true
},
"selected_security_protocol": {
"rdstls": true,
"raw_value": 4,
"standard_rdp": false,
"tls": false,
"credssp": false,
"credssp_early_auth": false,
"error": false,
"error_ssl_required": false,
"error_ssl_forbidden": false,
"error_ssl_cert_missing": false,
"error_bad_flags": false,
"error_hybrid_required": false,
"error_ssl_user_auth_required": false,
"error_unknown": false
},
"x224_cc_pdu_srcref": 13330
},
"service_name": "RDP",
"source_ip": "167.94.138.126",
"tls": {
"version_selected": "TLSv1_2",
"cipher_selected": "TLS_RSA_WITH_AES_256_GCM_SHA384",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "524a78b5e5b26b08a172d2f2f207c11171bd8d6ebdc14ae05317160341758afc",
"leaf_data": {
"subject_dn": "CN=DESKTOP-TCRDU4C",
"issuer_dn": "CN=DESKTOP-TCRDU4C",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "6acd86876e9a49ef34e89da83fadbe2383dbc8cccec1df3d7f5de7d296f6bc52",
"fingerprint": "524a78b5e5b26b08a172d2f2f207c11171bd8d6ebdc14ae05317160341758afc",
"issuer": {
"common_name": [
"DESKTOP-TCRDU4C"
]
},
"subject": {
"common_name": [
"DESKTOP-TCRDU4C"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "02rf6QTosnXT9rwmR39r5LQ2WPG9ZMdSD1P41rDpVEI6YhpVsjYw8u5NIxok3qQubHIJjRlOMNxonPs4mUti90sYwxnxiRtS1DlNQl1U5MBldEIRHye4ziGtU+1oFI+XXldUQecLPS0Lg/fJiR2PWisA502r0Cz27OHoKu3Bre5KGxENU0UPWo3jZXfxPROAdDKbAztGsJ3+wah8DhblpIgF14Be+2ZdS4f7JDjrnB+Y1emUrt6f+n4pxoUIfqh2bxDEU1ceRmYXJTr5rWvyr2derOVb9lnDa9dSQgIjENnwIFf7NqX6XTYxJ5ITg5JoTh0SHqyILf66Hia9CImcrQ==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "8b42a1828554fd0e2b6527b5c3da67769f0aa2ceff75ab20d459846a00122891"
},
"signature": {
"self_signed": true,
"signature_algorithm": "SHA256-RSA"
}
}
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "f75082535b4a79c07b31bdd0e2b7eb87",
"ja4s": "t120100_009d_bc98f8e001b5",
"versions": [
{
"tls_version": "TLSv1_2",
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "f75082535b4a79c07b31bdd0e2b7eb87",
"ja4s": "t120100_009d_bc98f8e001b5"
},
{
"tls_version": "TLSv1_1",
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "9f2e2080c0409c26ea913d9273e88773",
"ja4s": "t110100_0035_bc98f8e001b5"
},
{
"tls_version": "TLSv1_0",
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "91589ea825a2ee41810c85fab06d2ef6",
"ja4s": "t100100_0035_bc98f8e001b5"
}
]
},
"transport_fingerprint": {
"raw": "64000,128,true,MNWNNS,1460,false,false"
},
"transport_protocol": "TCP",
"truncated": false
}
],
"location": {
"continent": "Europe",
"country": "Poland",
"country_code": "PL",
"city": "Warsaw",
"postal_code": "00-002",
"timezone": "Europe/Warsaw",
"province": "Mazovia",
"coordinates": {
"latitude": 52.22977,
"longitude": 21.01178
}
},
"location_updated_at": "2025-01-24T10:51:54.411994840Z",
"autonomous_system": {
"asn": 44477,
"description": "STARK-INDUSTRIES",
"bgp_prefix": "94.131.96.0/24",
"name": "STARK-INDUSTRIES",
"country_code": "GB"
},
"autonomous_system_updated_at": "2025-01-24T10:51:54.412040491Z",
"whois": {
"network": {
"handle": "STARK_INDUSTRIES",
"name": "STARK INDUSTRIES SOLUTIONS LTD",
"cidrs": [
"94.131.96.0/24"
],
"created": "2022-08-25T00:00:00Z",
"updated": "2022-12-28T00:00:00Z"
},
"organization": {
"handle": "ORG-SISL18-RIPE",
"name": "STARK INDUSTRIES SOLUTIONS LTD.",
"address": "71-75, Shelton Street\\nCovent Garden\\nLondon\\nWC2H 9JQ\\nUNITED KINGDOM",
"abuse_contacts": [
{
"handle": "SICK1337-RIPE",
"name": "Stark Industries Solutions NOC",
"email": "[email protected]"
}
]
}
},
"dns": {
"names": [
"books.friendsofthefolsomlibrary.org",
"life.judyfay.com"
],
"records": {
"life.judyfay.com": {
"record_type": "A",
"resolved_at": "2025-01-03T16:52:31.602473102Z"
},
"books.friendsofthefolsomlibrary.org": {
"record_type": "A",
"resolved_at": "2025-01-13T00:03:44.287656672Z"
}
},
"reverse_dns": {
"names": [
"vm1540281.stark-industries.solutions"
],
"resolved_at": "2025-01-18T00:32:42.396011067Z"
}
},
"last_updated_at": "2025-01-25T14:50:05.980Z",
"labels": [
"bulletproof",
"network-administration",
"remote-access"
]
}