# Target Analysis Report
---
**Selector:** `audiobookshelf.huaday.com`

**Type:** `FQDN`

**Resolved IPs:** `204.228.156.40`

---
# IP Address 1: 204.228.156.40

```
[*] Found 'whois' executable at: /usr/bin/whois
[*] Running system 'whois' command for 204.228.156.40...
--- System WHOIS Output ---
[Stdout]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#


NetRange:       204.228.128.0 - 204.228.159.255
CIDR:           204.228.128.0/19
NetName:        XMIS
NetHandle:      NET-204-228-128-0-3
Parent:         NET204 (NET-204-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   XMission, L.C. (XMIS)
RegDate:        2020-01-31
Updated:        2024-09-05
Comment:        Geofeed: https://asset.xmission.com/geofeed/geofeed.csv
Comment:        
Comment:        Please use the abuse@xmission.com email address for
Comment:        all complaints regarding UCE (spam), copyright violations, security
Comment:        intrusions, and other suspected network abuse sourcing from XMission
Comment:        networks. DO NOT COPY your complaint to any other ARIN XMission POC's or
Comment:        email addresses on the XMission network. Failure to comply with this
Comment:        statement will result in your complaint being ignored.
Ref:            https://rdap.arin.net/registry/ip/204.228.128.0


OrgName:        XMission, L.C.
OrgId:          XMIS
Address:        51 E 400 S
Address:        Suite 000
City:           Salt Lake City
StateProv:      UT
PostalCode:     84111-2753
Country:        US
RegDate:        1993-11-15
Updated:        2024-10-04
Comment:        Geofeed: https://asset.xmission.com/geofeed/geofeed.csv
Comment:        
Comment:        Please use the abuse@xmission.com email address for all
Comment:        complaints regarding UCE (spam), copyright violations, 
Comment:        security intrusions, and other suspected network abuse sourcing from
Comment:        XMission networks. DO NOT COPY your complaint to any other ARIN
Comment:        XMission POC's or email addresses on the XMission network.
Comment:        Failure to comply with this statement will result in your
Comment:        complaint being ignored.
Ref:            https://rdap.arin.net/registry/entity/XMIS

ReferralServer:  rwhois://rwhois.xmission.com:4321

OrgNOCHandle: NETWO22-ARIN
OrgNOCName:   Network Manager
OrgNOCPhone:  +1-801-539-0852 
OrgNOCEmail:  net-manager@xmission.com
OrgNOCRef:    https://rdap.arin.net/registry/entity/NETWO22-ARIN

OrgTechHandle: TECHN5-ARIN
OrgTechName:   Technical Support
OrgTechPhone:  +1-801-539-0852 
OrgTechEmail:  support@xmission.com
OrgTechRef:    https://rdap.arin.net/registry/entity/TECHN5-ARIN

OrgAbuseHandle: NETAB-ARIN
OrgAbuseName:   Netabuse Manager
OrgAbusePhone:  +1-801-539-0852 
OrgAbuseEmail:  abuse@xmission.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/NETAB-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#



Found a referral to rwhois.xmission.com:4321.
[Stderr]
connect: Connection timed out
[!] System 'whois' command exited with code: 2
---------------------------
```


**Stderr:**

```
Command '/usr/bin/python3 app.py 204.228.156.40' returned non-zero exit status 2.
```

---
## IP Geolocation Finder


**Timestamp:** `20250811002848752`

**Input:** `{"ip_address": "204.228.156.40"}`

**Status:** `COMPLETE`


**Stdout:**

```
[*] Checking IP: 204.228.156.40

[*] Geolocation Information:
    Country: United States (US)
    City: Lehi
    Latitude: 40.4058
    Longitude: -111.841
    ISP: XMISSION
```


**Stderr:**

```
*No standard error*
```

---
## IP to ASN Lookup


**Timestamp:** `20250811002900935`

**Input:** `{"ip_address": "204.228.156.40"}`

**Status:** `COMPLETE`


**Stdout:**

```
[*] Querying Team Cymru WHOIS for IP: 204.228.156.40...

--- Team Cymru WHOIS Information ---
AS         : 6315
IP         : 204.228.156.40
BGP Prefix : 204.228.128.0/19
CC         : US
Registry   : arin
Allocated  : 2020-01-31
AS Name    : XMISSION, US
------------------------------------
```


**Stderr:**

```
*No standard error*
```

---
## IP to Nslookup


**Timestamp:** `20250811002929562`

**Input:** `{"ip_address": "204.228.156.40"}`

**Status:** `COMPLETE`


**Stdout:**

```
40.156.228.204.in-addr.arpa	name = 204-228-156-40.lehifiber.xmission.net.

Authoritative answers can be found from:
```


**Stderr:**

```
*No standard error*
```

---
## IP to Dig -x


**Timestamp:** `20250811002957907`

**Input:** `{"ip_address": "204.228.156.40"}`

**Status:** `COMPLETE`


**Stdout:**

```
; <<>> DiG 9.18.30-0ubuntu0.22.04.2-Ubuntu <<>> -x 204.228.156.40
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 28867
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;40.156.228.204.in-addr.arpa.	IN	PTR

;; ANSWER SECTION:
40.156.228.204.in-addr.arpa. 300 IN	PTR	204-228-156-40.lehifiber.xmission.net.

;; Query time: 40 msec
;; SERVER: 169.254.78.1#53(169.254.78.1) (UDP)
;; WHEN: Mon Aug 11 00:30:23 UTC 2025
;; MSG SIZE  rcvd: 107
```


**Stderr:**

```
*No standard error*
```

---
## IP to Traceroute UDP


**Timestamp:** `20250811003026309`

**Input:** `{"ip_address": "204.228.156.40"}`

**Status:** `COMPLETE`


**Stdout:**

```
--- Remote PING Output via SSH (134.199.140.209) ---
[Stdout]
traceroute to 204.228.156.40 (204.228.156.40), 30 hops max, 60 byte packets
 1  138.68.34.246  1.094 ms  1.072 ms 138.68.34.248  1.166 ms
 2  143.244.192.80  1.218 ms  1.206 ms 143.244.192.76  1.129 ms
 3  143.244.224.6  1.124 ms 143.244.224.8  1.184 ms 143.244.224.14  1.102 ms
 4  143.244.224.5  0.945 ms 143.244.224.13  1.079 ms 143.244.224.5  0.923 ms
 5  * * *
 6  154.54.166.245  2.470 ms  3.222 ms  3.324 ms
 7  154.54.40.42  2.445 ms  2.492 ms  2.312 ms
 8  154.54.167.141  18.687 ms  18.745 ms  18.817 ms
 9  * * *
10  166.70.1.51  21.629 ms  21.079 ms  20.180 ms
11  * * *
12  * * *
13  * * *
14  * * *
15  * * *
16  * * *
17  * * *
18  * * *
19  * * *
20  * * *
21  * * *
22  * * *
23  * * *
24  * * *
25  * * *
26  * * *
27  * * *
28  * * *
29  * * *
30  * * *
------------------------------------------------
```


**Stderr:**

```
*No standard error*
```

---
## CDN, Cloud, and WAF Detection


**Timestamp:** `20250811003121666`

**Input:** `{"domain_or_ip": "204.228.156.40"}`

**Status:** `COMPLETE`


**Stdout:**

```
*No standard output*
```


**Stderr:**

```
__           __              __  
  _________/ /___  _____/ /_  ___  _____/ /__
 / ___/ __  / __ \/ ___/ __ \/ _ \/ ___/ //_/
/ /__/ /_/ / / / / /__/ / / /  __/ /__/ ,<   
\___/\__,_/_/ /_/\___/_/ /_/\___/\___/_/|_|

		projectdiscovery.io

[INF] Current cdncheck version v1.1.16 (outdated)
[INF] No results found.
```

---
## Wise TCP Port Checker


**Timestamp:** `20250811003211562`

**Input:** `{"ip_address": "204.228.156.40", "tcp_ports": "80,443,22,8080,21,4567,23,53,143,110"}`

**Status:** `COMPLETE`


**Stdout:**

```
# Attempting to connect to 204.228.156.40:80...
[+] Port 80 appears to be open.
[-] No banner received immediately. Assuming HTTP or similar service.
[*] Sending HTTP GET request...

--- Request ---
GET / HTTP/1.1
Host: 204.228.156.40
User-Agent: CCBot/2.0
Accept: */*
Connection: close


---------------
## Received Response:
HTTP/1.1 404 Not Found
Server: openresty
Date: Mon, 11 Aug 2025 00:32:39 GMT
Content-Type: text/html
Content-Length: 150
Connection: close

<html>
<head><title>404 Not Found</title></head>
<body>
<center><h1>404 Not Found</h1></center>
<hr><center>openresty</center>
</body>
</html>


# Attempting to connect to 204.228.156.40:443...
[+] Port 443 appears to be open.
[-] No banner received immediately. Assuming HTTP or similar service.
[*] Sending HTTP GET request...

--- Request ---
GET / HTTP/1.1
Host: 204.228.156.40
User-Agent: CCBot/2.0
Accept: */*
Connection: close


---------------
## Received Response:
HTTP/1.1 400 Bad Request
Server: openresty
Date: Mon, 11 Aug 2025 00:32:42 GMT
Content-Type: text/html
Content-Length: 252
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>openresty</center>
</body>
</html>


# Attempting to connect to 204.228.156.40:22...
[-] Connection to 204.228.156.40:22 timed out.

# Attempting to connect to 204.228.156.40:8080...
[-] Connection to 204.228.156.40:8080 timed out.

# Attempting to connect to 204.228.156.40:21...
[-] Connection to 204.228.156.40:21 timed out.

# Attempting to connect to 204.228.156.40:4567...
[-] Connection to 204.228.156.40:4567 timed out.

# Attempting to connect to 204.228.156.40:23...
[-] Connection to 204.228.156.40:23 timed out.

# Attempting to connect to 204.228.156.40:53...
[-] Connection to 204.228.156.40:53 timed out.

# Attempting to connect to 204.228.156.40:143...
[-] Connection to 204.228.156.40:143 timed out.

# Attempting to connect to 204.228.156.40:110...
[-] Connection to 204.228.156.40:110 timed out.
### --- Port Check Logic End --- ###
```


**Stderr:**

```
Command '/usr/bin/python3 app.py --ip_address 204.228.156.40 --tcp_ports 80,443,22,8080,21,4567,23,53,143,110' returned non-zero exit status 1.
```

---