178.63.37.135

AttributeValue
139.banner.banner
gwAAAY8=
139.banner.banner_decoded
830000018f
139.banner.decoded_to_utf8
False
3389.rdp.banner.connect_response.connect_id
0
3389.rdp.banner.connect_response.domain_parameters.domain_protocol_ver
2
3389.rdp.banner.connect_response.domain_parameters.max_channel_ids
34
3389.rdp.banner.connect_response.domain_parameters.max_mcspdu_size
65528
3389.rdp.banner.connect_response.domain_parameters.max_provider_height
1
3389.rdp.banner.connect_response.domain_parameters.max_token_ids
0
3389.rdp.banner.connect_response.domain_parameters.max_user_id_channels
3
3389.rdp.banner.connect_response.domain_parameters.min_octets_per_second
0
3389.rdp.banner.connect_response.domain_parameters.tcs_per_mcs
1
3389.rdp.banner.metadata.description
Remote Desktop 5.0
3389.rdp.banner.metadata.product
Remote Desktop
3389.rdp.banner.metadata.version
5.0
3389.rdp.banner.protocol_supported_flags.dynvc_graphics_pipeline
True
3389.rdp.banner.protocol_supported_flags.extended_client_data_supported
True
3389.rdp.banner.protocol_supported_flags.neg_resp_reserved
True
3389.rdp.banner.protocol_supported_flags.restricted_admin_mode
True
3389.rdp.banner.selected_security_protocol.raw_value
1
3389.rdp.banner.selected_security_protocol.tls
True
3389.rdp.banner.supported
True
3389.rdp.banner.tls.certificate.parsed.extensions.extended_key_usage.server_auth
True
3389.rdp.banner.tls.certificate.parsed.extensions.key_usage.data_encipherment
True
3389.rdp.banner.tls.certificate.parsed.extensions.key_usage.key_encipherment
True
3389.rdp.banner.tls.certificate.parsed.extensions.key_usage.value
12
3389.rdp.banner.tls.certificate.parsed.fingerprint_md5
a2787a15b54a55c855132c4d4a4db751
3389.rdp.banner.tls.certificate.parsed.fingerprint_sha1
8c3b5e40731fac3701381f12b0988033256cdd2a
3389.rdp.banner.tls.certificate.parsed.fingerprint_sha256
4ca72e25b58a889192763d8f00a70126aae539df63fdd31f5c031d20714a2f19
3389.rdp.banner.tls.certificate.parsed.issuer.common_name
WIN-S69AIJOTJMA
3389.rdp.banner.tls.certificate.parsed.issuer_dn
CN=WIN-S69AIJOTJMA
3389.rdp.banner.tls.certificate.parsed.redacted
False
3389.rdp.banner.tls.certificate.parsed.serial_number
42622378954327864429962448476312595164
3389.rdp.banner.tls.certificate.parsed.signature.self_signed
True
3389.rdp.banner.tls.certificate.parsed.signature.signature_algorithm.name
SHA1-RSA
3389.rdp.banner.tls.certificate.parsed.signature.signature_algorithm.oid
1.2.840.113549.1.1.5
3389.rdp.banner.tls.certificate.parsed.signature.valid
True
3389.rdp.banner.tls.certificate.parsed.signature.value
oFY+RGDrqY5AoQyuxEreQVgCz/kAHW8bv5/SBi9PQ/aads2NY72Z3aHIHE+njqufJCoWVZrVcze2EubG0kMXi7QCG9krgNRT+5ty4FuF4UKHw+BFkiolFkLKM3w9UBpAHWEYPfbMbRPZQPBa1fE6iX82a4xi4yDeRzUxFtoXRZD1Va71W7FwpRCN7+GePtF/bolRW5plD6jiORDKBL3kkQolSSjVgeKhd62Wsv59R0mpoOnPwgxlOstunM28aSnGZ/fElWbm+1dakrXe02waN+fwMTmVTiOxvSZw43PveJn26MRJqHO5qf7k/A4nequu6Rg5Jex8Xw2DjUL/JCCmkA==
3389.rdp.banner.tls.certificate.parsed.signature_algorithm.name
SHA1-RSA
3389.rdp.banner.tls.certificate.parsed.signature_algorithm.oid
1.2.840.113549.1.1.5
3389.rdp.banner.tls.certificate.parsed.spki_subject_fingerprint
88eb6bd7c17c9b4ef7740df344d75a1459fa71baa9a2f9fd3b51e6bc0e5ef734
3389.rdp.banner.tls.certificate.parsed.subject.common_name
WIN-S69AIJOTJMA
3389.rdp.banner.tls.certificate.parsed.subject_dn
CN=WIN-S69AIJOTJMA
3389.rdp.banner.tls.certificate.parsed.subject_key_info.fingerprint_sha256
d6f2a235bfcda35fbaea5efbf1431c869648769bad8bc7f4f3df18fd0bde8aae
3389.rdp.banner.tls.certificate.parsed.subject_key_info.key_algorithm.name
RSA
3389.rdp.banner.tls.certificate.parsed.subject_key_info.rsa_public_key.exponent
65537
3389.rdp.banner.tls.certificate.parsed.subject_key_info.rsa_public_key.length
2048
3389.rdp.banner.tls.certificate.parsed.subject_key_info.rsa_public_key.modulus
qxrlKcTT0IPixMLoKltaC7/ynivtoQ1KKa8XnD0e2MtWKQitAE4oYxlj3h2QbUbBhfjoXGZU06MyRrNe45N/B9qCyTpNpFpybkXUI1SAAkPZHw556nqpwhmc5RaCCIKubJDMSba2NqZfzyRvlB6JZ4zc8yixYLM5RlsgUMSHDnmfo4mmBVCzg3j2Pz2BYxrOMfafXW2GEOmOZpK8cpm41ksCkiD33JGnWacvEYm8gEj2t1z8Hew8dtv/ep25X9Mkl2uXg7yLfgUTTGB/PG5VGUOM43KOPECKamGABe4YuJoyaIa/N6DpjM6x+kwd032hBIi+3QXLC8ezqh3jsz1qSQ==
3389.rdp.banner.tls.certificate.parsed.tbs_fingerprint
5f0ba33b0c76571ad8592b29ff537e2a98b1e26d3ed5b133d9ecafa81a7f0a4c
3389.rdp.banner.tls.certificate.parsed.tbs_noct_fingerprint
5f0ba33b0c76571ad8592b29ff537e2a98b1e26d3ed5b133d9ecafa81a7f0a4c
3389.rdp.banner.tls.certificate.parsed.validation_level
unknown
3389.rdp.banner.tls.certificate.parsed.validity.end
2021-10-29T12:40:59Z
3389.rdp.banner.tls.certificate.parsed.validity.length
15811200
3389.rdp.banner.tls.certificate.parsed.validity.start
2021-04-29T12:40:59Z
3389.rdp.banner.tls.certificate.parsed.version
3
3389.rdp.banner.tls.cipher_suite.id
0xC014
3389.rdp.banner.tls.cipher_suite.name
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
3389.rdp.banner.tls.ocsp_stapling
False
3389.rdp.banner.tls.server_key_exchange.ecdh_params.curve_id.id
23
3389.rdp.banner.tls.server_key_exchange.ecdh_params.curve_id.name
secp256r1
3389.rdp.banner.tls.signature.hash_algorithm
sha1
3389.rdp.banner.tls.signature.signature_algorithm
rsa
3389.rdp.banner.tls.signature.valid
True
3389.rdp.banner.tls.validation.browser_error
x509: failed to load system roots and no roots provided
3389.rdp.banner.tls.validation.browser_trusted
False
3389.rdp.banner.tls.version
TLSv1.2
3389.rdp.banner.version.major
5
3389.rdp.banner.version.minor
0
3389.rdp.banner.version.raw_value
524292
445.smb.banner.has_ntlm
True
445.smb.banner.metadata.description
SMB 2.1
445.smb.banner.metadata.version
SMB 2.1
445.smb.banner.negotiation_log.authentication_types
1.3.6.1.4.1.311.2.2.30, 1.3.6.1.4.1.311.2.2.10
445.smb.banner.negotiation_log.capabilities
7
445.smb.banner.negotiation_log.command
0
445.smb.banner.negotiation_log.credits
1
445.smb.banner.negotiation_log.dialect_revision
528
445.smb.banner.negotiation_log.flags
1
445.smb.banner.negotiation_log.protocol_id
AAAAAP5TTUI=
445.smb.banner.negotiation_log.security_mode
1
445.smb.banner.negotiation_log.server_guid
AAAAAAAAAAAAAAAAAAAAACAU0Bi7A5JLodBF8VpGPCk=
445.smb.banner.negotiation_log.server_start_time
1619986290
445.smb.banner.negotiation_log.status
0
445.smb.banner.negotiation_log.system_time
1620782372
445.smb.banner.session_setup_log.command
1
445.smb.banner.session_setup_log.credits
1
445.smb.banner.session_setup_log.flags
1
445.smb.banner.session_setup_log.negotiate_flags
2726953477
445.smb.banner.session_setup_log.protocol_id
AAAAAP5TTUI=
445.smb.banner.session_setup_log.setup_flags
0
445.smb.banner.session_setup_log.status
3221225494
445.smb.banner.session_setup_log.target_name
WIN-S69AIJOTJMA
445.smb.banner.smb_capabilities.smb_dfs_support
True
445.smb.banner.smb_capabilities.smb_leasing_support
True
445.smb.banner.smb_capabilities.smb_multicredit_support
True
445.smb.banner.smb_version.major
2
445.smb.banner.smb_version.minor
1
445.smb.banner.smb_version.revision
0
445.smb.banner.smb_version.version_string
SMB 2.1
445.smb.banner.smbv1_support
False
445.smb.banner.supported
True
47001.banner.banner
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
47001.banner.banner_decoded
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Sun, 16 May 2021 17:24:44 GMT
Connection: close
Content-Length: 315

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd">
<HTML><HEAD><TITLE>Not Found</TITLE>
<META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD>
47001.banner.decoded_to_utf8
True
5985.banner.banner
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
5985.banner.banner_decoded
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Sun, 16 May 2021 17:24:44 GMT
Connection: close
Content-Length: 315

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd">
<HTML><HEAD><TITLE>Not Found</TITLE>
<META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD>
5985.banner.decoded_to_utf8
True
autonomous_system.asn
24940
autonomous_system.country_code
DE
autonomous_system.description
HETZNER-AS
autonomous_system.name
HETZNER-AS
autonomous_system.path
7018, 3257, 24940, 24940
autonomous_system.rir
unknown
autonomous_system.routed_prefix
178.63.0.0/16
ip
178.63.37.135
location.continent
Europe
location.country
Germany
location.country_code
DE
location.latitude
51.2993
location.longitude
9.491
location.registered_country
Germany
location.registered_country_code
DE
location.timezone
Europe/Berlin
ports
3389, 445, 139, 47001, 5985
protocols
445/smb, 3389/rdp, 139/banner, 47001/banner, 5985/banner
tags
smb, rdp, remote_display
updated_at
2021-05-14T11:23:18+00:00