116.202.91.164

As of: Sep 29, 2022 4:47pm UTC | Latest

Basic Information

Reverse DNS
lx10.hoststar.hosting
OS
Ubuntu Linux
Network
HETZNER-AS (DE)
Routing
116.202.0.0/16  via  AS24940
Protocols
25/SMTP , 80/HTTP , 110/POP3 , 143/IMAP , 443/HTTP , 465/SMTP , 587/SMTP , 993/IMAP , 995/POP3 , 2525/SMTP , 3306/MYSQL , 5544/SSH

25/SMTP TCP
Observed Sep 29, 2022 at 9:42am UTC


View All Data

Software

exim

Details

Banner
220 lx10.hoststar.hosting ESMTP Exim
EHLO
250-lx10.hoststar.hosting Hello scanner-09.ch1.censys-scanner.com [167.248.133.62]
250-SIZE 52428800
250-8BITMIME
250-DSN
250-PIPELINING
250-AUTH PLAIN LOGIN
250-CHUNKING
250-STARTTLS
250 HELP
Start TLS
220 TLS go ahead

TLS

Fingerprint
JA3S
d75f9129bb5d05492a65ff78e081bcb2
Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Leaf Certificate
b4b55f385c7d9b9fe6dcddd8367716c4b5964622e5ba36ab588f93fe31a82570
CN=*.hoststar.hosting
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Issuer Chain

80/HTTP TCP
Observed Sep 29, 2022 at 3:24pm UTC


View All Data Go

Software

nginx

Details

http://116.202.91.164
Request
GET /
Protocol
HTTP/1.1
Status Code
403
Status Reason
Forbidden
Body Hash
sha1:4d7b3cb41e90618358d0ee066c45c76227a13747
HTML Title
403 Forbidden
Response Body
# 403 Forbidden

* * *

nginx

110/POP3 TCP
Observed Sep 29, 2022 at 4:47pm UTC


View All Data

Software

Dovecot
Ubuntu Linux

Details

Banner
+OK Dovecot (Ubuntu) ready.
Start TLS
+OK Begin TLS negotiation now.

TLS

Fingerprint
JA3S
15af977ce25de452b96affa2addb1036
Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_AES_256_GCM_SHA384
Leaf Certificate
b4b55f385c7d9b9fe6dcddd8367716c4b5964622e5ba36ab588f93fe31a82570
CN=*.hoststar.hosting
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Issuer Chain

143/IMAP TCP
Observed Sep 29, 2022 at 2:02am UTC


View All Data

Details

Banner
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot (Ubuntu) ready.
Start TLS
a001 OK Begin TLS negotiation now.

TLS

Fingerprint
JA3S
15af977ce25de452b96affa2addb1036
Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_AES_256_GCM_SHA384
Leaf Certificate
b4b55f385c7d9b9fe6dcddd8367716c4b5964622e5ba36ab588f93fe31a82570
CN=*.hoststar.hosting
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Issuer Chain

443/HTTP TCP
Observed Sep 29, 2022 at 8:45am UTC


View All Data Go

Software

nginx

Details

https://116.202.91.164
Request
GET /
Protocol
HTTP/1.1
Status Code
403
Status Reason
Forbidden
Body Hash
sha1:4d7b3cb41e90618358d0ee066c45c76227a13747
HTML Title
403 Forbidden
Response Body
# 403 Forbidden

* * *

nginx

TLS

Fingerprint
JARM
29d29d15d29d29d00042d42d000000df133019600a83abfb096ff3e86cd79d
JA3S
15af977ce25de452b96affa2addb1036
Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_AES_256_GCM_SHA384
Leaf Certificate
b4b55f385c7d9b9fe6dcddd8367716c4b5964622e5ba36ab588f93fe31a82570
CN=*.hoststar.hosting
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Issuer Chain

465/SMTP TCP
Observed Sep 28, 2022 at 2:28pm UTC


View All Data

Software

exim

Details

Banner
220 lx10.hoststar.hosting ESMTP Exim
EHLO
250-lx10.hoststar.hosting Hello www.censys.io [167.94.145.59]
250-SIZE 52428800
250-8BITMIME
250-DSN
250-PIPELINING
250-AUTH PLAIN LOGIN
250-CHUNKING
250 HELP

TLS

Fingerprint
JA3S
d75f9129bb5d05492a65ff78e081bcb2
Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Leaf Certificate
b4b55f385c7d9b9fe6dcddd8367716c4b5964622e5ba36ab588f93fe31a82570
CN=*.hoststar.hosting
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Issuer Chain

587/SMTP TCP
Observed Sep 28, 2022 at 7:22pm UTC


View All Data

Software

exim

Details

Banner
220 lx10.hoststar.hosting ESMTP Exim
EHLO
250-lx10.hoststar.hosting Hello scanner-25.ch1.censys-scanner.com [162.142.125.222]
250-SIZE 52428800
250-8BITMIME
250-DSN
250-PIPELINING
250-AUTH PLAIN LOGIN
250-CHUNKING
250-STARTTLS
250 HELP
Start TLS
220 TLS go ahead

TLS

Fingerprint
JA3S
d75f9129bb5d05492a65ff78e081bcb2
Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Leaf Certificate
b4b55f385c7d9b9fe6dcddd8367716c4b5964622e5ba36ab588f93fe31a82570
CN=*.hoststar.hosting
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Issuer Chain

993/IMAP TCP
Observed Sep 29, 2022 at 4:05pm UTC


View All Data

Details

Banner
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN] Dovecot (Ubuntu) ready.

TLS

Fingerprint
JARM
29d29d15d29d29d00042d42d000000a5308aa908d3edc2392a602b7adac57a
JA3S
15af977ce25de452b96affa2addb1036
Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_AES_256_GCM_SHA384
Leaf Certificate
b4b55f385c7d9b9fe6dcddd8367716c4b5964622e5ba36ab588f93fe31a82570
CN=*.hoststar.hosting
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Issuer Chain

995/POP3 TCP
Observed Sep 29, 2022 at 1:20pm UTC


View All Data

Software

Dovecot
Ubuntu Linux

Details

Banner
+OK Dovecot (Ubuntu) ready.

TLS

Fingerprint
JA3S
15af977ce25de452b96affa2addb1036
Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_AES_256_GCM_SHA384
Leaf Certificate
b4b55f385c7d9b9fe6dcddd8367716c4b5964622e5ba36ab588f93fe31a82570
CN=*.hoststar.hosting
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Issuer Chain

2525/SMTP TCP
Observed Sep 27, 2022 at 5:02pm UTC


View All Data

Software

exim

Details

Banner
220 lx10.hoststar.hosting ESMTP Exim
EHLO
250-lx10.hoststar.hosting Hello scanner-08.ch1.censys-scanner.com [167.248.133.46]
250-SIZE 52428800
250-8BITMIME
250-DSN
250-PIPELINING
250-AUTH PLAIN LOGIN
250-CHUNKING
250-STARTTLS
250 HELP
Start TLS
220 TLS go ahead

TLS

Fingerprint
JA3S
d75f9129bb5d05492a65ff78e081bcb2
Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Leaf Certificate
b4b55f385c7d9b9fe6dcddd8367716c4b5964622e5ba36ab588f93fe31a82570
CN=*.hoststar.hosting
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Issuer Chain

3306/MYSQL TCP
Observed Sep 29, 2022 at 3:40pm UTC


View All Data

Software

Oracle MySQL 5.7.39
Ubuntu Linux 18.04

Details

Protocol Version
10
Character Set
224

TLS

Fingerprint
JA3S
303951d4c50efb2e991652225a6f02b1
Handshake
Version Selected
TLSv1_2
Cipher Selected
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
Leaf Certificate
1902ebea80a1e70fd9933787275bc8420abfa34cfa8e5230046245f13f84cdaa
CN=MySQL_Server_5.7.29_Auto_Generated_Server_Certificate
CN=MySQL_Server_5.7.29_Auto_Generated_CA_Certificate
Issuer Chain

5544/SSH TCP
Observed Sep 27, 2022 at 5:02pm UTC


View All Data

Details

Host Key
Algorithm
ssh-rsa
Fingerprint
dec73d972b6b35acbb614dd763adc3ce9acede28324b8da8e99b7857921ee205
Negotiated
Key Exchange
ecdh-sha2-nistp256
Symmetric Cipher
aes128-ctr [] aes128-ctr []
MAC
hmac-sha2-256 [] hmac-sha2-256 []

Geographic Location

Country
Germany (DE)
Coordinates
51.2993, 9.491
Timezone
Europe/Berlin