Introducing Censys Search Solo  •  Learn More
Community API Access is now limited to 60 days.

116.202.91.164

As of: Dec 10, 2023 5:51pm UTC | Latest

Basic Information

Reverse DNS
lx10.hoststar.hosting
Forward DNS
www.marlonfischer.com, www.matihas.tv, pakpepper.ch, www.multifant-gmbh.ch, www.massage-lotzwil.ch, ...
Routing
116.202.0.0/16  via HETZNER-AS, DE (AS24940)
OS
Ubuntu Linux
Services (12)
25/SMTP, 80/HTTP, 110/POP3, 143/IMAP, 443/HTTP, 465/SMTP, 587/SMTP, 993/IMAP, 995/POP3, 2525/SMTP, 3306/MYSQL, 5544/SSH
Labels
Database Email Remote Access

SMTP 25/TCP
12/10/2023 17:51 UTC

Email

Software

exim

Details

Banner
220 lx10.hoststar.hosting ESMTP Exim
EHLO
250-lx10.hoststar.hosting Hello scanner-06.ch1.censys-scanner.com [167.94.138.34]
250-SIZE 52428800
250-8BITMIME
250-DSN
250-PIPELINING
250-AUTH PLAIN LOGIN
250-CHUNKING
250-STARTTLS
250 HELP
Start TLS
220 TLS go ahead

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Certificate
Fingerprint
6c8308cf0c50b3d190ceab50ca207d625867fd4f9379e5814b4400d4836d1854
Subject
CN=*.hoststar.hosting
Issuer
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Names
*.hoststar.hosting, hoststar.hosting
Fingerprint
JA3S
d75f9129bb5d05492a65ff78e081bcb2

HTTP 80/TCP
12/09/2023 08:08 UTC


Software

nginx

Details

http://116.202.91.164/
Status
403  Forbidden
Body Hash
sha1:4d7b3cb41e90618358d0ee066c45c76227a13747
HTML Title
403 Forbidden
Response Body
      # 403 Forbidden

* * *

nginx
    

POP3 110/TCP
12/09/2023 13:34 UTC

Email

Software

Dovecot
Ubuntu Linux

Details

Banner
+OK Dovecot (Ubuntu) ready.
Start TLS
+OK Begin TLS negotiation now.

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_AES_256_GCM_SHA384
Certificate
Fingerprint
6c8308cf0c50b3d190ceab50ca207d625867fd4f9379e5814b4400d4836d1854
Subject
CN=*.hoststar.hosting
Issuer
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Names
*.hoststar.hosting, hoststar.hosting
Fingerprint
JA3S
15af977ce25de452b96affa2addb1036

IMAP 143/TCP
12/09/2023 15:00 UTC

Email

Software

Dovecot
Ubuntu Linux

Details

Banner
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot (Ubuntu) ready.
Start TLS
a001 OK Begin TLS negotiation now.

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_AES_256_GCM_SHA384
Certificate
Fingerprint
6c8308cf0c50b3d190ceab50ca207d625867fd4f9379e5814b4400d4836d1854
Subject
CN=*.hoststar.hosting
Issuer
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Names
*.hoststar.hosting, hoststar.hosting
Fingerprint
JA3S
15af977ce25de452b96affa2addb1036

HTTP 443/TCP
12/08/2023 13:51 UTC


Software

nginx

Details

https://116.202.91.164/
Status
510  Not Extended
Body Hash
sha1:583fba79cece735ddb7515469d9c5fc7a5c3a58b
HTML Title
Access denied by security policy
Response Body
      # Access denied by security policy

Your request is blocked by a security policy rule.  
Please contact the support team and inform them of the time the error
occurred, and anything you might have done that may have caused the error.

More information about this error may be available in the server error log.

* * *

Please provide the following information to our support team:

116.202.91.164 | 162.142.125.225 | 08.12.2023 14:51:26

[deactivate](https://lx10.hoststar.hosting

/modsec/?domain=116.202.91.164&ip=162.142.125.225&path=/home/admin/web/lx10.hoststar.hosting/public_html)
    

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_AES_256_GCM_SHA384
Certificate
Fingerprint
6c8308cf0c50b3d190ceab50ca207d625867fd4f9379e5814b4400d4836d1854
Subject
CN=*.hoststar.hosting
Issuer
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Names
*.hoststar.hosting, hoststar.hosting
Fingerprint
JARM
29d29d15d29d29d00042d42d000000df133019600a83abfb096ff3e86cd79d
JA3S
15af977ce25de452b96affa2addb1036

SMTP 465/TCP
12/09/2023 16:02 UTC

Email

Software

exim

Details

Banner
220 lx10.hoststar.hosting ESMTP Exim
EHLO
250-lx10.hoststar.hosting Hello scanner-27.ch1.censys-scanner.com [167.94.138.125]
250-SIZE 52428800
250-8BITMIME
250-DSN
250-PIPELINING
250-AUTH PLAIN LOGIN
250-CHUNKING
250 HELP

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Certificate
Fingerprint
6c8308cf0c50b3d190ceab50ca207d625867fd4f9379e5814b4400d4836d1854
Subject
CN=*.hoststar.hosting
Issuer
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Names
*.hoststar.hosting, hoststar.hosting
Fingerprint
JARM
2ad14d0002ad2ad00042d43d00042ddae87855c179abc2cc62b296c5d295e3
JA3S
d75f9129bb5d05492a65ff78e081bcb2

SMTP 587/TCP
12/10/2023 07:29 UTC

Email

Software

exim

Details

Banner
220 lx10.hoststar.hosting ESMTP Exim
EHLO
250-lx10.hoststar.hosting Hello www.censys.io [167.94.146.60]
250-SIZE 52428800
250-8BITMIME
250-DSN
250-PIPELINING
250-AUTH PLAIN LOGIN
250-CHUNKING
250-STARTTLS
250 HELP
Start TLS
220 TLS go ahead

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Certificate
Fingerprint
6c8308cf0c50b3d190ceab50ca207d625867fd4f9379e5814b4400d4836d1854
Subject
CN=*.hoststar.hosting
Issuer
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Names
*.hoststar.hosting, hoststar.hosting
Fingerprint
JA3S
d75f9129bb5d05492a65ff78e081bcb2

IMAP 993/TCP
12/10/2023 06:40 UTC

Email

Software

Dovecot
Ubuntu Linux

Details

Banner
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN] Dovecot (Ubuntu) ready.

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_AES_256_GCM_SHA384
Certificate
Fingerprint
6c8308cf0c50b3d190ceab50ca207d625867fd4f9379e5814b4400d4836d1854
Subject
CN=*.hoststar.hosting
Issuer
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Names
*.hoststar.hosting, hoststar.hosting
Fingerprint
JARM
29d29d15d29d29d00042d42d000000a5308aa908d3edc2392a602b7adac57a
JA3S
15af977ce25de452b96affa2addb1036

POP3 995/TCP
12/10/2023 15:49 UTC

Email

Software

Dovecot
Ubuntu Linux

Details

Banner
+OK Dovecot (Ubuntu) ready.

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_AES_256_GCM_SHA384
Certificate
Fingerprint
6c8308cf0c50b3d190ceab50ca207d625867fd4f9379e5814b4400d4836d1854
Subject
CN=*.hoststar.hosting
Issuer
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Names
*.hoststar.hosting, hoststar.hosting
Fingerprint
JARM
29d29d15d29d29d00042d42d000000a5308aa908d3edc2392a602b7adac57a
JA3S
15af977ce25de452b96affa2addb1036

SMTP 2525/TCP
12/08/2023 17:29 UTC

Email

Software

exim

Details

Banner
220 lx10.hoststar.hosting ESMTP Exim
EHLO
250-lx10.hoststar.hosting Hello scanner-27.ch1.censys-scanner.com [167.94.138.127]
250-SIZE 52428800
250-8BITMIME
250-DSN
250-PIPELINING
250-AUTH PLAIN LOGIN
250-CHUNKING
250-STARTTLS
250 HELP
Start TLS
220 TLS go ahead

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Certificate
Fingerprint
6c8308cf0c50b3d190ceab50ca207d625867fd4f9379e5814b4400d4836d1854
Subject
CN=*.hoststar.hosting
Issuer
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Names
*.hoststar.hosting, hoststar.hosting
Fingerprint
JA3S
d75f9129bb5d05492a65ff78e081bcb2

MYSQL 3306/TCP
12/09/2023 05:41 UTC

Database

Software

Oracle MySQL 5.7.42
Ubuntu Linux 18.04

Details

Protocol Version
10
Character Set
224

TLS

Handshake
Version Selected
TLSv1_2
Cipher Selected
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
Certificate
Fingerprint
1902ebea80a1e70fd9933787275bc8420abfa34cfa8e5230046245f13f84cdaa
Subject
CN=MySQL_Server_5.7.29_Auto_Generated_Server_Certificate
Issuer
CN=MySQL_Server_5.7.29_Auto_Generated_CA_Certificate
Fingerprint
JA3S
303951d4c50efb2e991652225a6f02b1

SSH 5544/TCP
12/09/2023 19:16 UTC

Remote Access

Details

Host Key
Algorithm
ssh-rsa
Fingerprint
dec73d972b6b35acbb614dd763adc3ce9acede28324b8da8e99b7857921ee205
Negotiated
Key Exchange
ecdh-sha2-nistp256
Symmetric Cipher
aes128-ctr [] aes128-ctr []
MAC
hmac-sha2-256 [] hmac-sha2-256 []

Geographic Location

City
Nürnberg
State
Bavaria
Country
Germany (DE)
Coordinates
49.45421, 11.07752
Timezone
Europe/Berlin