185.143.145.3

As of: Dec 02, 2022 4:21am UTC | Latest

Basic Information

OS: linux
Network: NETH-AS (UA)
Routing: 185.143.145.0/24 via AS202302
Protocols: 21/FTP , 22/SSH , 25/SMTP , 80/HTTP , 110/POP3 , 443/HTTP , 465/SMTP , 587/SMTP , 3306/MYSQL , 8000/HTTP , 8002/HTTP

21/FTP TCP
Observed Dec 01, 2022 at 3:09pm UTC

View All Data

Software

ProFTPD Project ProFTPD

Details

Banner

220 ProFTPD Server (ProFTPD Default Installation) [::ffff:185.143.145.3]

Auth TLS Response

234 AUTH TLS successful

Status Code

220

Status Meaning

Service ready for new user.

TLS

JA3S: 303951d4c50efb2e991652225a6f02b1
Version Selected: TLSv1_2
Cipher Selected: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

22/SSH TCP
Observed Dec 01, 2022 at 2:37am UTC

View All Data

Software

linux

OpenBSD OpenSSH 7.4

Details

Algorithm: ecdsa-sha2-nistp256
Fingerprint: 1d859cf5a50daa42aa03d48da8217303a7b4b1d2c06969c79e0db83ea460b883
Key Exchange: [email protected]
Symmetric Cipher: aes128-ctr [] aes128-ctr []
MAC: hmac-sha2-256 [] hmac-sha2-256 []

25/SMTP TCP
Observed Dec 02, 2022 at 2:25am UTC

View All Data

Software

linux

exim 4.94.2

Details

Banner

220 b2.s-host.com.ua, ESMTP EXIM 4.94.2

EHLO

250-b2.s-host.com.ua Hello scanner-09.ch1.censys-scanner.com [167.248.133.63]
250-SIZE 67108864
250-8BITMIME
250-PIPELINING
250-PIPE_CONNECT
250-AUTH PLAIN LOGIN CRAM-MD5
250-CHUNKING
250-STARTTLS
250 HELP

Start TLS

220 TLS go ahead

TLS

JA3S: 303951d4c50efb2e991652225a6f02b1
Version Selected: TLSv1_2
Cipher Selected: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

80/HTTP TCP
Observed Dec 02, 2022 at 4:21am UTC

View All Data Go

Software

Apache HTTPD

Details

http://185.143.145.3

Request

GET /

Protocol

HTTP/1.1

Status Code

200

Status Reason

Body Hash

sha1:e5fa3f1f05bcfc6a7c118505f6c3890f4202466e

HTML Title

Страница по умолчанию

Response Body

![](http://91.197.184.246:8002/tpl/basic/img/auth/logo.png) [__Панель
управления](http://91.197.184.246:8002)

# Страница по умолчанию

Данный сервер управляется панелью управления BrainyCP. Если вы ожидаете
увидеть сайт, то возможно вы:

  * не добавили доменное имя в раздел Сайты;
  * не очистили кеш Вашего браузера;
  * привязали домен к неверному айпи адресу.

Панель управления Вашим хостингом — [BrainyCP](https://brainycp.com)

110/POP3 TCP
Observed Dec 02, 2022 at 3:04am UTC

View All Data

Software

linux

Dovecot

Details

Banner

+OK Dovecot ready.

Start TLS

+OK Begin TLS negotiation now.

TLS

JA3S: 303951d4c50efb2e991652225a6f02b1
Version Selected: TLSv1_2
Cipher Selected: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

443/HTTP TCP
Observed Dec 02, 2022 at 1:17am UTC

View All Data Go

Software

Apache HTTPD

Details

https://185.143.145.3

Request

GET /

Protocol

HTTP/1.1

Status Code

200

Status Reason

Body Hash

sha1:e5fa3f1f05bcfc6a7c118505f6c3890f4202466e

HTML Title

Страница по умолчанию

Response Body

![](http://91.197.184.246:8002/tpl/basic/img/auth/logo.png) [__Панель
управления](http://91.197.184.246:8002)

# Страница по умолчанию

Данный сервер управляется панелью управления BrainyCP. Если вы ожидаете
увидеть сайт, то возможно вы:

  * не добавили доменное имя в раздел Сайты;
  * не очистили кеш Вашего браузера;
  * привязали домен к неверному айпи адресу.

Панель управления Вашим хостингом — [BrainyCP](https://brainycp.com)

TLS

JARM: 05d02d20d21d20d05c05d02d05d20d19c3a58be3b191200ae74a6a5634efc1
JA3S: ccc514751b175866924439bdbb5bba34
Version Selected: TLSv1_2
Cipher Selected: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

465/SMTP TCP
Observed Dec 02, 2022 at 2:31am UTC

View All Data

Software

linux

exim 4.94.2

Details

Banner

220 b2.s-host.com.ua, ESMTP EXIM 4.94.2

EHLO

250-b2.s-host.com.ua Hello scanner-25.ch1.censys-scanner.com [162.142.125.219]
250-SIZE 67108864
250-8BITMIME
250-PIPELINING
250-PIPE_CONNECT
250-AUTH PLAIN LOGIN CRAM-MD5
250-CHUNKING
250 HELP

TLS

JA3S: 303951d4c50efb2e991652225a6f02b1
Version Selected: TLSv1_2
Cipher Selected: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

587/SMTP TCP
Observed Dec 02, 2022 at 2:06am UTC

View All Data

Software

linux

exim 4.94.2

Details

Banner

220 b2.s-host.com.ua, ESMTP EXIM 4.94.2

EHLO

250-b2.s-host.com.ua Hello scanner-25.ch1.censys-scanner.com [162.142.125.221]
250-SIZE 67108864
250-8BITMIME
250-PIPELINING
250-PIPE_CONNECT
250-AUTH PLAIN LOGIN CRAM-MD5
250-CHUNKING
250-STARTTLS
250 HELP

Start TLS

220 TLS go ahead

TLS

JA3S: 303951d4c50efb2e991652225a6f02b1
Version Selected: TLSv1_2
Cipher Selected: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

3306/MYSQL TCP
Observed Dec 01, 2022 at 4:36pm UTC

View All Data

Software

Oracle MySQL 5.6.40

linux

Details

Protocol Version: 10
Character Set: 33

8000/HTTP TCP
Observed Dec 01, 2022 at 12:19pm UTC

View All Data Go

Software

nginx

Details

http://185.143.145.3:8000

Request

GET /

Protocol

HTTP/1.1

Status Code

400

Status Reason

Bad Request

Body Hash

sha1:e70b2bdf0abb7fbf695bc27eef3ddf563d36aca1

HTML Title

400 The plain HTTP request was sent to HTTPS port

Response Body

# 400 Bad Request

The plain HTTP request was sent to HTTPS port

* * *

nginx

8002/HTTP TCP
Observed Dec 01, 2022 at 1:05am UTC

View All Data Go

Software

PHP

PHP 5.6.40

nginx

Details

http://185.143.145.3:8002

Request

GET /

Protocol

HTTP/1.1

Status Code

200

Status Reason

Body Hash

sha1:54f32f79c8302673b04dd243f519d0ce5883844c

HTML Title

BrainyCP — страница авторизации

Response Body

BrainyCP — страница авторизации

![Brainy](/tpl/basic/img/auth/logo.png)

__

__

Geographic Location

Country: Ukraine (UA)
Coordinates: 50.4522, 30.5287
Timezone: Europe/Kyiv

185.143.145.3

Basic Information

21/FTP TCP Observed Dec 01, 2022 at 3:09pm UTC

Software

ProFTPD Project ProFTPD

Details

TLS

Fingerprint

Handshake

Leaf Certificate

22/SSH TCP Observed Dec 01, 2022 at 2:37am UTC

Software

linux

OpenBSD OpenSSH 7.4

Details

Host Key

Negotiated

25/SMTP TCP Observed Dec 02, 2022 at 2:25am UTC

Software

linux

exim 4.94.2

Details

TLS

Fingerprint

Handshake

Leaf Certificate

Issuer Chain

80/HTTP TCP Observed Dec 02, 2022 at 4:21am UTC

Software

Apache HTTPD

Details

http://185.143.145.3

110/POP3 TCP Observed Dec 02, 2022 at 3:04am UTC

Software

linux

Dovecot

Details

TLS

Fingerprint

Handshake

Leaf Certificate

443/HTTP TCP Observed Dec 02, 2022 at 1:17am UTC

Software

Apache HTTPD

Details

https://185.143.145.3

TLS

Fingerprint

Handshake

Leaf Certificate

Issuer Chain

465/SMTP TCP Observed Dec 02, 2022 at 2:31am UTC

Software

linux

exim 4.94.2

Details

TLS

Fingerprint

Handshake

Leaf Certificate

Issuer Chain

587/SMTP TCP Observed Dec 02, 2022 at 2:06am UTC

Software

linux

exim 4.94.2

Details

TLS

Fingerprint

Handshake

Leaf Certificate

Issuer Chain

3306/MYSQL TCP Observed Dec 01, 2022 at 4:36pm UTC

Software

Oracle MySQL 5.6.40

linux

Details

8000/HTTP TCP Observed Dec 01, 2022 at 12:19pm UTC

Software

nginx

Details

21/FTP TCP
Observed Dec 01, 2022 at 3:09pm UTC

22/SSH TCP
Observed Dec 01, 2022 at 2:37am UTC

25/SMTP TCP
Observed Dec 02, 2022 at 2:25am UTC

80/HTTP TCP
Observed Dec 02, 2022 at 4:21am UTC

110/POP3 TCP
Observed Dec 02, 2022 at 3:04am UTC

443/HTTP TCP
Observed Dec 02, 2022 at 1:17am UTC

465/SMTP TCP
Observed Dec 02, 2022 at 2:31am UTC

587/SMTP TCP
Observed Dec 02, 2022 at 2:06am UTC

3306/MYSQL TCP
Observed Dec 01, 2022 at 4:36pm UTC

8000/HTTP TCP
Observed Dec 01, 2022 at 12:19pm UTC

8002/HTTP TCP
Observed Dec 01, 2022 at 1:05am UTC