Introducing Censys Search Solo  •  Learn More
Community API Access is now limited to 60 days.

209.159.148.125

As of: Dec 09, 2023 2:13pm UTC | Latest

Basic Information

Routing
209.159.144.0/20  via IS-AS-1, US (AS19318)
OS
Microsoft Windows
Services (17)
25/SMTP, 53/DNS, 80/HTTP, 110/POP3, 143/IMAP, 443/HTTP, 445/SMB, 465/SMTP, 587/SMTP, 993/IMAP, 995/POP3, 1433/MSSQL, 1801/MSMQ, 3306/MYSQL, 8172/HTTP, 8443/HTTP, 8880/HTTP
Labels
Database Email File Sharing Prototype Requirejs

SMTP 25/TCP
12/09/2023 00:34 UTC

Email

Software

MailEnable Mail Server 10.46
Microsoft Windows

Details

Banner
220 plesk5000.is.cc ESMTP MailEnable Service, Version: 10.46-- ready at 12/08/23 19:34:31
EHLO
250-home [167.248.133.124], this server offers 5 extensions
250-AUTH LOGIN
250-SIZE 51200000
250-HELP
250-AUTH=LOGIN
250 STARTTLS
Start TLS
220 Ready to start TLS

TLS

Handshake
Version Selected
TLSv1_2
Cipher Selected
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
Certificate
Fingerprint
404e4515d0cda1911e6af3293824dd0fd58269c13c8c5fe11c4a848045e3118c
Subject
CN=plesk5000.is.cc
Issuer
C=US, O=Let's Encrypt, CN=R3
Names
plesk5000.is.cc
Fingerprint
JA3S
364ff14b04ef93c3b4cfa429d729c0d9

DNS 53/UDP
12/09/2023 00:16 UTC

Details

Server Type
AUTHORITATIVE
R Code
REFUSED

HTTP 80/TCP
12/09/2023 04:50 UTC

Software

Microsoft IIS 10.0
Microsoft ASP.NET

Details

http://209.159.148.125/
Status
200  OK
Body Hash
sha1:ccb7341ab0dd5ee9aff7a1f35e9f9cd6b8b891a9
HTML Title
Web Server's Default Page
Response Body
      You see this page because there is no Web site at this address.

POP3 110/TCP
12/08/2023 20:29 UTC

Email

Software

MailEnable
Microsoft Windows

Details

Banner
+OK Welcome to MailEnable POP3 Server
Start TLS
-ERR Unknown command

IMAP 143/TCP
12/08/2023 18:17 UTC

Email

Software

microsoft windows

Details

Banner
* OK IMAP4rev1 server ready at 12/08/23 13:17:18
Start TLS
a001 OK Ready to start TLS.

TLS

Handshake
Version Selected
TLSv1_2
Cipher Selected
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
Certificate
Fingerprint
404e4515d0cda1911e6af3293824dd0fd58269c13c8c5fe11c4a848045e3118c
Subject
CN=plesk5000.is.cc
Issuer
C=US, O=Let's Encrypt, CN=R3
Names
plesk5000.is.cc
Fingerprint
JA3S
364ff14b04ef93c3b4cfa429d729c0d9

HTTP 443/TCP
12/08/2023 22:21 UTC

Prototype Requirejs

Software

ARR 3.0
Microsoft IIS 10.0
Microsoft ASP.NET

Details

https://209.159.148.125/login_up.php
Status
200  OK
Body Hash
sha1:a5f5b7ef69901e7cbe10ab79199ad7f9f1e4bab4
HTML Title
Plesk Obsidian 18.0.56
Response Body

TLS

Handshake
Version Selected
TLSv1_2
Cipher Selected
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
Certificate
Fingerprint
404e4515d0cda1911e6af3293824dd0fd58269c13c8c5fe11c4a848045e3118c
Subject
CN=plesk5000.is.cc
Issuer
C=US, O=Let's Encrypt, CN=R3
Names
plesk5000.is.cc
Fingerprint
JARM
2ad2ad16d00000022c2ad2ad2ad2ad46ff59a659b30fd8aeaa6755c67691b4
JA3S
1d9c3e8c45ab7a2112263449a3ad9ece

SMB 445/TCP
12/09/2023 04:59 UTC

File Sharing

Software

microsoft windows

Details

Server
SMBv1 Support
False
Capabilities
Dfs Support
True
Leasing Support
True
Multicredit Support
True
NTLM Support
True
Negotation Log
Security Mode
1
Dialect Revision
528
Server GUID
000000000000000000000000000000006eb601fc65a6954690ab18dfa845dcb5
Capabilities
7
System Time
1702097974
Server Start Time
1240428288
Auth Types
1.3.6.1.4.1.311.2.2.30
1.3.6.1.4.1.311.2.2.10
Session
Target Name
PLESK5000
Negotiate Flags
2726953477

SMTP 465/TCP
12/08/2023 12:24 UTC

Email

Software

MailEnable Mail Server 10.46
Microsoft Windows

Details

Banner
220 plesk5000.is.cc ESMTP MailEnable Service, Version: 10.46-- ready at 12/08/23 07:24:10
EHLO
250-home [162.142.125.215], this server offers 5 extensions
250-AUTH LOGIN
250-SIZE 51200000
250-HELP
250-AUTH=LOGIN
250 CLIENTID

TLS

Handshake
Version Selected
TLSv1_2
Cipher Selected
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
Certificate
Fingerprint
404e4515d0cda1911e6af3293824dd0fd58269c13c8c5fe11c4a848045e3118c
Subject
CN=plesk5000.is.cc
Issuer
C=US, O=Let's Encrypt, CN=R3
Names
plesk5000.is.cc
Fingerprint
JARM
2ad2ad16d2ad2ad22c2ad2ad2ad2adfd9c9d14e4f4f67f94f0359f8b28f532
JA3S
364ff14b04ef93c3b4cfa429d729c0d9

SMTP 587/TCP
12/08/2023 18:32 UTC

Email

Software

MailEnable Mail Server 10.46
Microsoft Windows

Details

Banner
220 plesk5000.is.cc ESMTP MailEnable Service, Version: 10.46-- ready at 12/08/23 13:32:50
EHLO
250-home [167.94.138.33], this server offers 5 extensions
250-AUTH LOGIN
250-SIZE 51200000
250-HELP
250-AUTH=LOGIN
250 STARTTLS
Start TLS
220 Ready to start TLS

TLS

Handshake
Version Selected
TLSv1_2
Cipher Selected
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
Certificate
Fingerprint
404e4515d0cda1911e6af3293824dd0fd58269c13c8c5fe11c4a848045e3118c
Subject
CN=plesk5000.is.cc
Issuer
C=US, O=Let's Encrypt, CN=R3
Names
plesk5000.is.cc
Fingerprint
JA3S
364ff14b04ef93c3b4cfa429d729c0d9

IMAP 993/TCP
12/09/2023 05:41 UTC

Email

Software

microsoft windows

Details

Banner
* OK IMAP4rev1 server ready at 12/09/23 00:41:21

TLS

Handshake
Version Selected
TLSv1_2
Cipher Selected
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
Certificate
Fingerprint
404e4515d0cda1911e6af3293824dd0fd58269c13c8c5fe11c4a848045e3118c
Subject
CN=plesk5000.is.cc
Issuer
C=US, O=Let's Encrypt, CN=R3
Names
plesk5000.is.cc
Fingerprint
JARM
2ad2ad16d2ad2ad22c2ad2ad2ad2adfd9c9d14e4f4f67f94f0359f8b28f532
JA3S
364ff14b04ef93c3b4cfa429d729c0d9

POP3 995/TCP
12/07/2023 14:39 UTC

Email

Software

MailEnable
Microsoft Windows

Details

Banner
+OK Welcome to MailEnable POP3 Server

TLS

Handshake
Version Selected
TLSv1_2
Cipher Selected
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
Certificate
Fingerprint
404e4515d0cda1911e6af3293824dd0fd58269c13c8c5fe11c4a848045e3118c
Subject
CN=plesk5000.is.cc
Issuer
C=US, O=Let's Encrypt, CN=R3
Names
plesk5000.is.cc
Fingerprint
JARM
2ad2ad16d2ad2ad22c2ad2ad2ad2adfd9c9d14e4f4f67f94f0359f8b28f532
JA3S
364ff14b04ef93c3b4cfa429d729c0d9

MSSQL 1433/TCP
12/08/2023 03:32 UTC

Database

Software

Microsoft SQL Server 15.0.2000
microsoft windows

Details

Version
15.0.2000
Encrypt Mode
ENCRYPT_ON

MSMQ 1801/TCP
12/07/2023 14:19 UTC

Software

microsoft windows

Details

Banner (Hex)
  
00000000
00000010
00000020
00000030
00000040
00000050
00000060
00000070
00000080
00000090
10 5a 0b 00 4c 49 4f 52  3c 02 00 00 ff ff ff ff 
00 00 12 00 d1 58 73 55  50 91 95 95 49 97 b6 e6 
11 ea 26 c6 d3 6c 2d 99  da 89 55 48 a7 bb b3 97 
f9 ef b7 e2 4e ca de 1d  10 03 00 00 5a 5a 5a 5a 
5a 5a 5a 5a 5a 5a 5a 5a  5a 5a 5a 5a 5a 5a 5a 5a 
5a 5a 5a 5a 5a 5a 5a 5a  5a 5a 5a 5a 5a 5a 5a 5a 
5a 5a 5a 5a 5a 5a 5a 5a  5a 5a 5a 5a 5a 5a 5a 5a 
5a 5a 5a 5a 5a 5a 5a 5a  5a 5a 5a 5a 5a 5a 5a 5a 
5a 5a 5a 5a 5a 5a 5a 5a  5a 5a 5a 5a 5a 5a 5a 5a 
5a 5a 5a 5a 5a 5a 5a 5a  5a 5a 5a 5a 5a 5a 5a 5a 
.Z..LIOR<.......
.....XsUP...I...
..&..l-...UH....
....N.......ZZZZ
ZZZZZZZZZZZZZZZZ
ZZZZZZZZZZZZZZZZ
ZZZZZZZZZZZZZZZZ
ZZZZZZZZZZZZZZZZ
ZZZZZZZZZZZZZZZZ
ZZZZZZZZZZZZZZZZ

MYSQL 3306/TCP
12/08/2023 13:25 UTC

Database

Software

MariaDB 10.5.20

Details

Protocol Version
10
Character Set
8

HTTP 8172/TCP
12/07/2023 18:48 UTC

Software

Microsoft IIS 10.0

Details

https://209.159.148.125:8172/
Status
404  Not Found

TLS

Handshake
Version Selected
TLSv1_2
Cipher Selected
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
Certificate
Fingerprint
404e4515d0cda1911e6af3293824dd0fd58269c13c8c5fe11c4a848045e3118c
Subject
CN=plesk5000.is.cc
Issuer
C=US, O=Let's Encrypt, CN=R3
Names
plesk5000.is.cc
Fingerprint
JARM
2ad2ad16d00000022c2ad2ad2ad2ad46ff59a659b30fd8aeaa6755c67691b4
JA3S
1d9c3e8c45ab7a2112263449a3ad9ece

HTTP 8443/TCP
12/09/2023 14:13 UTC

Prototype Requirejs

Software

Microsoft IIS 10.0
Microsoft ASP.NET

Details

https://209.159.148.125:8443/login_up.php
Status
200  OK
Body Hash
sha1:616ad738e853be1613fc8afaf92192b041c58ff8
HTML Title
Plesk Obsidian 18.0.56
Response Body

TLS

Handshake
Version Selected
TLSv1_2
Cipher Selected
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
Certificate
Fingerprint
404e4515d0cda1911e6af3293824dd0fd58269c13c8c5fe11c4a848045e3118c
Subject
CN=plesk5000.is.cc
Issuer
C=US, O=Let's Encrypt, CN=R3
Names
plesk5000.is.cc
Fingerprint
JARM
2ad2ad16d00000022c2ad2ad2ad2ad46ff59a659b30fd8aeaa6755c67691b4
JA3S
1d9c3e8c45ab7a2112263449a3ad9ece

HTTP 8880/TCP
12/09/2023 07:10 UTC

Prototype Requirejs

Software

Microsoft IIS 10.0
Microsoft ASP.NET

Details

http://209.159.148.125:8880/login_up.php
Status
200  OK
Body Hash
sha1:6d4ec971fe5f593bdc792f212c5a7cff9b6072e4
HTML Title
Plesk Obsidian 18.0.56
Response Body

Geographic Location

City
New York City
State
New York
Country
United States (US)
Coordinates
40.71427, -74.00597
Timezone
America/New_York