185.30.32.52

As of: Dec 02, 2022 12:38pm UTC | Latest

Basic Information

Reverse DNS
server52.webgo24.de
OS
Debian Linux
Network
DE-WEBGO www.webgo.de (DE)
Routing
185.30.32.0/22  via  AS48324
Protocols
21/FTP , 22/SSH , 25/SMTP , 80/HTTP , 110/POP3 , 111/PORTMAP , 123/NTP , 143/IMAP , 443/HTTP , 587/SMTP , 993/IMAP , 995/POP3 , 3306/MYSQL , 4190/PIGEONHOLE

21/FTP TCP
Observed Dec 02, 2022 at 12:32pm UTC


View All Data

Software

linux

Details

Banner
220 webgo STRINGTOREPLACE FTP Server ready.
Auth TLS Response
234 AUTH TLS successful
Status Code
220
Status Meaning
Service ready for new user.

TLS

Fingerprint
JA3S
d25619cb77d3219fc9fc14cb6b35eacc
Handshake
Version Selected
TLSv1_2
Cipher Selected
TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
Leaf Certificate
3fca17b3a1ad237c13eacc13b9882e8681e6d0b87f9aec49c71d6db6af3fea2a
CN=*.webgo24.de
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Issuer Chain

22/SSH TCP
Observed Dec 02, 2022 at 4:14am UTC


View All Data

Software

linux

Details

Host Key
Algorithm
ssh-rsa
Fingerprint
69b6f0e46ac5e9cb7c1f9c49bb1dc702ee61b0face503d38557ea50bfcb42855
Negotiated
Key Exchange
[email protected]
Symmetric Cipher
aes128-ctr [] aes128-ctr []
MAC
hmac-sha2-256 [] hmac-sha2-256 []

25/SMTP TCP
Observed Dec 02, 2022 at 3:54am UTC


View All Data

Software

linux

Details

Banner
220-webgo MAILSERVER - checking mail...
220 server52.webgo24.de ESMTP Postfix (Debian/GNU)
EHLO
250-server52.webgo24.de
250-SIZE 1073741824
250-ETRN
250-STARTTLS
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 CHUNKING
Start TLS
220 2.0.0 Ready to start TLS

TLS

Fingerprint
JA3S
15af977ce25de452b96affa2addb1036
Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_AES_256_GCM_SHA384
Leaf Certificate
3fca17b3a1ad237c13eacc13b9882e8681e6d0b87f9aec49c71d6db6af3fea2a
CN=*.webgo24.de
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Issuer Chain

80/HTTP TCP
Observed Dec 01, 2022 at 1:48am UTC


View All Data Go

Software

nginx 1.18.0

Details

http://185.30.32.52
Request
GET /
Protocol
HTTP/1.1
Status Code
301
Status Reason
Moved Permanently
Body Hash
sha1:1cf3056ff23c4176fd7ca9816a000ed461d6d323
HTML Title
301 Moved Permanently
Response Body
# 301 Moved Permanently

* * *

nginx/1.18.0

110/POP3 TCP
Observed Dec 02, 2022 at 6:01am UTC


View All Data

Software

linux
Dovecot
Debian Linux

Details

Banner
+OK Dovecot (Debian) ready.
Start TLS
+OK Begin TLS negotiation now.

TLS

Fingerprint
JA3S
475c9302dc42b2751db9edcac3b74891
Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Leaf Certificate
3fca17b3a1ad237c13eacc13b9882e8681e6d0b87f9aec49c71d6db6af3fea2a
CN=*.webgo24.de
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Issuer Chain

111/PORTMAP UDP
Observed Dec 01, 2022 at 4:43pm UTC


View All Data

Details

Banner (Hex)
  
00000000
00000010
00000020
00000030
00000040
00000050
00000060
00000070
00000080
00000090
1a a9 ff e1 00 00 00 01 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00 00 00 00 01 00 01 86 a0
00 00 00 04 00 00 00 06 00 00 00 6f 00 00 00 01
00 01 86 a0 00 00 00 03 00 00 00 06 00 00 00 6f
00 00 00 01 00 01 86 a0 00 00 00 02 00 00 00 06
00 00 00 6f 00 00 00 01 00 01 86 a0 00 00 00 04
00 00 00 11 00 00 00 6f 00 00 00 01 00 01 86 a0
00 00 00 03 00 00 00 11 00 00 00 6f 00 00 00 01
00 01 86 a0 00 00 00 02 00 00 00 11 00 00 00 6f
00 00 00 01 00 05 f7 5a 00 00 00 02 00 00 00 06
................
................
...........o....
...............o
................
...o............
.......o........
...........o....
...............o
.......Z........

123/NTP UDP
Observed Dec 01, 2022 at 4:11am UTC


View All Data

Details

Time Header
Version
3
Mode
4
Stratum
3
Poll
3
Precision
-24
Reference ID
Uܾ�

143/IMAP TCP
Observed Dec 01, 2022 at 1:07pm UTC


View All Data

Details

Banner
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS AUTH=PLAIN] Dovecot (Debian) ready.
Start TLS
a001 OK Begin TLS negotiation now.

TLS

Fingerprint
JA3S
475c9302dc42b2751db9edcac3b74891
Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Leaf Certificate
3fca17b3a1ad237c13eacc13b9882e8681e6d0b87f9aec49c71d6db6af3fea2a
CN=*.webgo24.de
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Issuer Chain

443/HTTP TCP
Observed Dec 02, 2022 at 9:05am UTC


View All Data Go

Software

nginx 1.18.0

Details

https://185.30.32.52
Request
GET /
Protocol
HTTP/1.1
Status Code
301
Status Reason
Moved Permanently
Body Hash
sha1:1cf3056ff23c4176fd7ca9816a000ed461d6d323
HTML Title
301 Moved Permanently
Response Body
# 301 Moved Permanently

* * *

nginx/1.18.0

TLS

Fingerprint
JARM
29d29d38d29d29d00042d42d000000847839e71b83c3bbd433f221199255cc
JA3S
15af977ce25de452b96affa2addb1036
Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_AES_256_GCM_SHA384
Leaf Certificate
3fca17b3a1ad237c13eacc13b9882e8681e6d0b87f9aec49c71d6db6af3fea2a
CN=*.webgo24.de
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Issuer Chain

587/SMTP TCP
Observed Dec 02, 2022 at 1:10am UTC


View All Data

Software

linux
Postfix
Debian Linux

Details

Banner
220 server52.webgo24.de ESMTP Postfix (Debian/GNU)
EHLO
250-server52.webgo24.de
250-PIPELINING
250-SIZE 1073741824
250-ETRN
250-STARTTLS
250-AUTH PLAIN LOGIN
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 CHUNKING
Start TLS
220 2.0.0 Ready to start TLS

TLS

Fingerprint
JA3S
15af977ce25de452b96affa2addb1036
Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_AES_256_GCM_SHA384
Leaf Certificate
3fca17b3a1ad237c13eacc13b9882e8681e6d0b87f9aec49c71d6db6af3fea2a
CN=*.webgo24.de
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Issuer Chain

993/IMAP TCP
Observed Dec 01, 2022 at 9:01am UTC


View All Data

Software

linux

Details

Banner
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN] Dovecot (Debian) ready.

TLS

Fingerprint
JARM
07d3fd12d21d21d07c42d43d0000008435c4f14f7a2c9375dab1adaee145f3
JA3S
475c9302dc42b2751db9edcac3b74891
Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Leaf Certificate
3fca17b3a1ad237c13eacc13b9882e8681e6d0b87f9aec49c71d6db6af3fea2a
CN=*.webgo24.de
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Issuer Chain

995/POP3 TCP
Observed Dec 02, 2022 at 9:56am UTC


View All Data

Software

linux
Dovecot
Debian Linux

Details

Banner
+OK Dovecot (Debian) ready.

TLS

Fingerprint
JA3S
475c9302dc42b2751db9edcac3b74891
Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Leaf Certificate
3fca17b3a1ad237c13eacc13b9882e8681e6d0b87f9aec49c71d6db6af3fea2a
CN=*.webgo24.de
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Issuer Chain

3306/MYSQL TCP
Observed Dec 02, 2022 at 6:12am UTC


View All Data

Software

linux
Debian Linux 9.1
MariaDB 10.5.15

Details

Protocol Version
10
Character Set
45

4190/PIGEONHOLE TCP
Observed Dec 02, 2022 at 2:40am UTC


View All Data

Software

linux

Details

Banner
"IMPLEMENTATION" "Dovecot (Debian) Pigeonhole"
"SIEVE" "fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational re

Geographic Location

Country
Germany (DE)
Coordinates
51.2993, 9.491
Timezone
Europe/Berlin