45.228.208.4

As of: Mar 21, 2023 7:28pm UTC | Latest

Basic Information

Reverse DNS
box113.indax.cl
OS
Red Hat Enterprise Linux 7
Network
GRUPO ZGH SPA (CL)
Routing
45.228.208.0/22  via  AS263702
Protocols
21/FTP , 25/SMTP , 53/DNS , 80/HTTP , 110/POP3 , 143/IMAP , 443/HTTP , 465/SMTP , 587/SMTP , 993/IMAP , 2222/HTTP
Labels
Email , File Sharing

21/FTP TCP
Observed Mar 21, 2023 at 7:17pm UTC

View All Data

Labels

File Sharing

Software

PureFTPd Pure-FTPd

Details

Banner
220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------
220-You are user number 1 of 50 allowed.
220-Local time is now 16:17. Server port: 21.
220-This is a private system - No anonymous login
220-IPv6 connections are also welcome on this server.
220 You will be disconnected after 15 minutes of inactivity.
Auth TLS Response
234 AUTH TLS OK.
Status Code
220
Status Meaning
Service ready for new user.

TLS

Fingerprint
JA3S
0debd3853f330c574b05e0b6d882dc27
Handshake
Version Selected
TLSv1_2
Cipher Selected
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
Leaf Certificate
6e1ab10c39bf7b9da96186e891b3ae606d072728d1c5f59983f6fc0250f878a6
[email protected], C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]
[email protected], C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]
Issuer Chain

25/SMTP TCP
Observed Mar 21, 2023 at 1:43pm UTC

View All Data

Labels

Email

Software

linux
exim 4.96

Details

Banner
220 box113.indax.cl ESMTP Exim 4.96 Tue, 21 Mar 2023 10:43:52 -0300
EHLO
250-box113.indax.cl Hello www.censys.io [167.94.146.57]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPECONNECT
250-AUTH PLAIN LOGIN
250-STARTTLS
250 HELP
Start TLS
220 TLS go ahead

TLS

Fingerprint
JA3S
303951d4c50efb2e991652225a6f02b1
Handshake
Version Selected
TLSv1_2
Cipher Selected
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
Leaf Certificate
803984b1ae1f17e1c29d463b8f98c73d29d3d803fd7dfa7beeecfdb6762400a2
[email protected], C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]
[email protected], C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]

53/DNS UDP
Observed Mar 20, 2023 at 4:33pm UTC

View All Data

Software

ISC BIND 9.11.4-P2
Red Hat Enterprise Linux 7

Details

Server Type
AUTHORITATIVE
R Code
REFUSED

80/HTTP TCP
Observed Mar 20, 2023 at 1:39pm UTC

View All Data Go

Software

LiteSpeed Technologies LiteSpeed Web Server

Details

http://45.228.208.4
Request
GET /
Protocol
HTTP/1.1
Status Code
200
Status Reason
OK
Body Hash
sha1:72f2509ad3685d0976f82e784b65becd290506e0
Response Body
OpenLiteSpeed is functioning normally

110/POP3 TCP
Observed Mar 20, 2023 at 3:53pm UTC

View All Data

Labels

Email

Software

Dovecot

Details

Banner
+OK Dovecot DA ready.
Start TLS
+OK Begin TLS negotiation now.

TLS

Fingerprint
JA3S
303951d4c50efb2e991652225a6f02b1
Handshake
Version Selected
TLSv1_2
Cipher Selected
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
Leaf Certificate
803984b1ae1f17e1c29d463b8f98c73d29d3d803fd7dfa7beeecfdb6762400a2
[email protected], C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]
[email protected], C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]

143/IMAP TCP
Observed Mar 21, 2023 at 7:28pm UTC

View All Data

Labels

Email

Software

linux

Details

Banner
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS AUTH=PLAIN] Dovecot DA ready.
Start TLS
a001 OK Begin TLS negotiation now.

TLS

Fingerprint
JA3S
303951d4c50efb2e991652225a6f02b1
Handshake
Version Selected
TLSv1_2
Cipher Selected
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
Leaf Certificate
803984b1ae1f17e1c29d463b8f98c73d29d3d803fd7dfa7beeecfdb6762400a2
[email protected], C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]
[email protected], C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]

443/HTTP TCP
Observed Mar 21, 2023 at 7:28pm UTC

View All Data Go

Software

LiteSpeed Technologies LiteSpeed Web Server

Details

https://45.228.208.4
Request
GET /
Protocol
HTTP/1.1
Status Code
200
Status Reason
OK
Body Hash
sha1:72f2509ad3685d0976f82e784b65becd290506e0
Response Body
OpenLiteSpeed is functioning normally

TLS

Fingerprint
JARM
29d29d00029d29d00043d43d00043dd469afa8cfbe5e42c631eb3fc55d6787
JA3S
d75f9129bb5d05492a65ff78e081bcb2
Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Leaf Certificate
6e1ab10c39bf7b9da96186e891b3ae606d072728d1c5f59983f6fc0250f878a6
[email protected], C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]
[email protected], C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]
Issuer Chain

465/SMTP TCP
Observed Mar 20, 2023 at 3:44pm UTC

View All Data

Labels

Email

Software

exim 4.96

Details

Banner
220 box113.indax.cl ESMTP Exim 4.96 Mon, 20 Mar 2023 12:44:26 -0300
EHLO
250-box113.indax.cl Hello www.censys.io [167.94.145.60]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPECONNECT
250-AUTH PLAIN LOGIN
250 HELP

TLS

Fingerprint
JA3S
303951d4c50efb2e991652225a6f02b1
Handshake
Version Selected
TLSv1_2
Cipher Selected
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
Leaf Certificate
803984b1ae1f17e1c29d463b8f98c73d29d3d803fd7dfa7beeecfdb6762400a2
[email protected], C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]
[email protected], C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]

587/SMTP TCP
Observed Mar 20, 2023 at 1:39pm UTC

View All Data

Labels

Email

Software

linux
exim 4.96

Details

Banner
220 box113.indax.cl ESMTP Exim 4.96 Mon, 20 Mar 2023 10:39:16 -0300
EHLO
250-box113.indax.cl Hello scanner-26.ch1.censys-scanner.com [167.248.133.125]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPECONNECT
250-AUTH PLAIN LOGIN
250-STARTTLS
250 HELP
Start TLS
220 TLS go ahead

TLS

Fingerprint
JA3S
303951d4c50efb2e991652225a6f02b1
Handshake
Version Selected
TLSv1_2
Cipher Selected
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
Leaf Certificate
803984b1ae1f17e1c29d463b8f98c73d29d3d803fd7dfa7beeecfdb6762400a2
[email protected], C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]
[email protected], C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]

993/IMAP TCP
Observed Mar 20, 2023 at 1:38pm UTC

View All Data

Labels

Email

Software

linux

Details

Banner
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN] Dovecot DA ready.

TLS

Fingerprint
JARM
15d2ad16d29d29d00015d2ad15d29de87e6567d901388794cb6a875a1928aa
JA3S
303951d4c50efb2e991652225a6f02b1
Handshake
Version Selected
TLSv1_2
Cipher Selected
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
Leaf Certificate
803984b1ae1f17e1c29d463b8f98c73d29d3d803fd7dfa7beeecfdb6762400a2
[email protected], C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]
[email protected], C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]

2222/HTTP TCP
Observed Mar 20, 2023 at 1:39pm UTC

View All Data Go

Details

http://45.228.208.4:2222
Request
GET /
Protocol
HTTP/1.1
Status Code
200
Status Reason
OK
Body Hash
sha1:1b084608930fac9392138ee89ae219c459c0d614
HTML Title
45.228.208.4 | Login
Response Body

Geographic Location

City
Santiago
Province
Santiago Metropolitan
Country
Chile (CL)
Coordinates
-33.4521, -70.6536
Timezone
America/Santiago