116.202.91.164

As of: Apr 27, 2025 12:57pm UTC | Latest

Basic Information

Reverse DNS
lx10.hoststar.hosting
Forward DNS
m-heiniger.com, customers.domhuber.com, aguadero.com, mail.marlonfischer.com, quinx.de, ...
Routing
116.202.0.0/16  via HETZNER-AS, DE (AS24940)
OS
Ubuntu Linux
Services (12)
25/SMTP, 80/HTTP, 110/POP3, 143/IMAP, 443/HTTP, 465/SMTP, 587/SMTP, 993/IMAP, 995/POP3, 2525/SMTP, 3306/MYSQL, 5544/SSH
Labels
Database Email Remote Access

SMTP 25/TCP
04/27/2025 03:03 UTC

Email

Software

exim

Details

Banner
220 lx10.hoststar.hosting ESMTP Exim
EHLO
250-lx10.hoststar.hosting Hello www.censys.io [162.142.125.41]
250-SIZE 52428800
250-8BITMIME
250-DSN
250-PIPELINING
250-AUTH PLAIN LOGIN
250-CHUNKING
250-STARTTLS
250 HELP
Start TLS
220 TLS go ahead

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Certificate
Fingerprint
7f1f8dbc524131d890d9966c38b580cd4589be3a88c7e5fe22b6442316e9311a
Subject
CN=*.hoststar.hosting
Issuer
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Names
*.hoststar.hosting, hoststar.hosting
Fingerprint
JA3S
d75f9129bb5d05492a65ff78e081bcb2
JA4S
t130200_1303_234ea6891581

HTTP 80/TCP
04/27/2025 12:56 UTC


Software

nginx

Details

http://116.202.91.164/
Status
403  Forbidden
Body Hash
sha1:4d7b3cb41e90618358d0ee066c45c76227a13747
HTML Title
403 Forbidden
Response Body
      # 403 Forbidden

* * *

nginx
    

POP3 110/TCP
04/27/2025 12:57 UTC

Email

Software

Dovecot
Ubuntu Linux

Details

Banner
+OK Dovecot (Ubuntu) ready.
Start TLS
+OK Begin TLS negotiation now.

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_AES_256_GCM_SHA384
Certificate
Fingerprint
7f1f8dbc524131d890d9966c38b580cd4589be3a88c7e5fe22b6442316e9311a
Subject
CN=*.hoststar.hosting
Issuer
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Names
*.hoststar.hosting, hoststar.hosting
Fingerprint
JA3S
15af977ce25de452b96affa2addb1036
JA4S
t130200_1302_a56c5b993250

IMAP 143/TCP
04/27/2025 06:45 UTC

Email

Software

Dovecot
Ubuntu Linux

Details

Banner
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot (Ubuntu) ready.
Start TLS
a001 OK Begin TLS negotiation now.

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_AES_256_GCM_SHA384
Certificate
Fingerprint
7f1f8dbc524131d890d9966c38b580cd4589be3a88c7e5fe22b6442316e9311a
Subject
CN=*.hoststar.hosting
Issuer
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Names
*.hoststar.hosting, hoststar.hosting
Fingerprint
JA3S
15af977ce25de452b96affa2addb1036
JA4S
t130200_1302_a56c5b993250

HTTP 443/TCP
04/27/2025 10:04 UTC


Software

nginx

Details

https://116.202.91.164/
Status
510  Not Extended
Body Hash
sha1:f891452e7b17f744c54866d15f504e52123a9431
HTML Title
Access denied by security policy
Response Body
      # Access denied by security policy

Your request is blocked by a security policy rule.  
Please contact the support team and inform them of the time the error
occurred, and anything you might have done that may have caused the error.

More information about this error may be available in the server error log.

* * *

Please provide the following information to our support team:

116.202.91.164 | 167.94.145.96 | 27.04.2025 12:04:20

[deactivate](https://lx10.hoststar.hosting

/modsec/?domain=116.202.91.164&ip=167.94.145.96&path=/home/admin/web/lx10.hoststar.hosting/public_html)
    

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_AES_256_GCM_SHA384
Certificate
Fingerprint
7f1f8dbc524131d890d9966c38b580cd4589be3a88c7e5fe22b6442316e9311a
Subject
CN=*.hoststar.hosting
Issuer
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Names
*.hoststar.hosting, hoststar.hosting
Fingerprint
JARM
29d29d15d29d29d00042d42d000000df133019600a83abfb096ff3e86cd79d
JA3S
15af977ce25de452b96affa2addb1036
JA4S
t130200_1302_a56c5b993250

SMTP 465/TCP
04/27/2025 04:24 UTC

Email

Software

exim

Details

Banner
220 lx10.hoststar.hosting ESMTP Exim
EHLO
250-lx10.hoststar.hosting Hello www.censys.io [199.45.155.100]
250-SIZE 52428800
250-8BITMIME
250-DSN
250-PIPELINING
250-AUTH PLAIN LOGIN
250-CHUNKING
250 HELP

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Certificate
Fingerprint
7f1f8dbc524131d890d9966c38b580cd4589be3a88c7e5fe22b6442316e9311a
Subject
CN=*.hoststar.hosting
Issuer
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Names
*.hoststar.hosting, hoststar.hosting
Fingerprint
JARM
2ad14d0002ad2ad00042d43d00042ddae87855c179abc2cc62b296c5d295e3
JA3S
d75f9129bb5d05492a65ff78e081bcb2
JA4S
t130200_1303_234ea6891581

SMTP 587/TCP
04/26/2025 16:13 UTC

Email

Software

exim

Details

Banner
220 lx10.hoststar.hosting ESMTP Exim
EHLO
250-lx10.hoststar.hosting Hello www.censys.io [162.142.125.199]
250-SIZE 52428800
250-8BITMIME
250-DSN
250-PIPELINING
250-AUTH PLAIN LOGIN
250-CHUNKING
250-STARTTLS
250 HELP
Start TLS
220 TLS go ahead

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Certificate
Fingerprint
7f1f8dbc524131d890d9966c38b580cd4589be3a88c7e5fe22b6442316e9311a
Subject
CN=*.hoststar.hosting
Issuer
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Names
*.hoststar.hosting, hoststar.hosting
Fingerprint
JA3S
d75f9129bb5d05492a65ff78e081bcb2
JA4S
t130200_1303_234ea6891581

IMAP 993/TCP
04/27/2025 12:51 UTC

Email

Software

Dovecot
Ubuntu Linux

Details

Banner
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN] Dovecot (Ubuntu) ready.

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_AES_256_GCM_SHA384
Certificate
Fingerprint
7f1f8dbc524131d890d9966c38b580cd4589be3a88c7e5fe22b6442316e9311a
Subject
CN=*.hoststar.hosting
Issuer
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Names
*.hoststar.hosting, hoststar.hosting
Fingerprint
JARM
29d29d15d29d29d00042d42d000000a5308aa908d3edc2392a602b7adac57a
JA3S
15af977ce25de452b96affa2addb1036
JA4S
t130200_1302_a56c5b993250

POP3 995/TCP
04/26/2025 06:57 UTC

Pending Removal Email

Software

Dovecot
Ubuntu Linux

Details

Banner
+OK Dovecot (Ubuntu) ready.

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_AES_256_GCM_SHA384
Certificate
Fingerprint
7f1f8dbc524131d890d9966c38b580cd4589be3a88c7e5fe22b6442316e9311a
Subject
CN=*.hoststar.hosting
Issuer
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Names
*.hoststar.hosting, hoststar.hosting
Fingerprint
JARM
29d29d15d29d29d00042d42d000000a5308aa908d3edc2392a602b7adac57a
JA3S
15af977ce25de452b96affa2addb1036
JA4S
t130200_1302_a56c5b993250

SMTP 2525/TCP
04/26/2025 16:49 UTC

Email

Software

exim

Details

Banner
220 lx10.hoststar.hosting ESMTP Exim
EHLO
250-lx10.hoststar.hosting Hello www.censys.io [199.45.155.83]
250-SIZE 52428800
250-8BITMIME
250-DSN
250-PIPELINING
250-AUTH PLAIN LOGIN
250-CHUNKING
250-STARTTLS
250 HELP
Start TLS
220 TLS go ahead

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Certificate
Fingerprint
7f1f8dbc524131d890d9966c38b580cd4589be3a88c7e5fe22b6442316e9311a
Subject
CN=*.hoststar.hosting
Issuer
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Names
*.hoststar.hosting, hoststar.hosting
Fingerprint
JA3S
d75f9129bb5d05492a65ff78e081bcb2
JA4S
t130200_1303_234ea6891581

MYSQL 3306/TCP
04/27/2025 12:54 UTC

Database

Software

Oracle MySQL 8.0.41
Ubuntu Linux 20.04

Details

Protocol Version
10
Character Set
224

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Certificate
Fingerprint
1902ebea80a1e70fd9933787275bc8420abfa34cfa8e5230046245f13f84cdaa
Subject
CN=MySQL_Server_5.7.29_Auto_Generated_Server_Certificate
Issuer
CN=MySQL_Server_5.7.29_Auto_Generated_CA_Certificate
Fingerprint
JA3S
475c9302dc42b2751db9edcac3b74891
JA4S
t130200_1303_a56c5b993250

SSH 5544/TCP
04/26/2025 16:55 UTC

Remote Access

Details

Host Key
Algorithm
ssh-rsa
Fingerprint
dec73d972b6b35acbb614dd763adc3ce9acede28324b8da8e99b7857921ee205
Negotiated
Key Exchange
ecdh-sha2-nistp256
Symmetric Cipher
aes128-ctr [] aes128-ctr []
MAC
hmac-sha2-256 [] hmac-sha2-256 []

Geographic Location

City
Nürnberg
State
Bavaria
Country
Germany (DE)
Coordinates
49.45421, 11.07752
Timezone
Europe/Berlin