Introducing Censys Search Solo  •  Learn More
Community API Access is now limited to 60 days.

65.108.233.120

As of: Dec 10, 2023 10:57am UTC | Latest

Basic Information

Reverse DNS
static.120.233.108.65.clients.your-server.de
Forward DNS
static.120.233.108.65.clients.your-server.de, 65-108-233-120.cprapid.com, mail.65-108-233-120.cprapid.com, www.65-108-233-120.cprapid.com, server-65-108-233-120.da.direct, ...
Routing
65.108.0.0/16  via HETZNER-AS, DE (AS24940)
OS
Red Hat Enterprise Linux 8
Services (13)
21/FTP, 22/SSH, 25/SMTP, 53/DNS, 80/HTTP, 110/POP3, 143/IMAP, 443/HTTP, 465/SMTP, 587/SMTP, 993/IMAP, 995/POP3, 2222/HTTP
Labels
Email File Sharing Remote Access

FTP 21/TCP
12/08/2023 13:03 UTC

File Sharing

Software

linux
PureFTPd Pure-FTPd

Details

Banner
220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------
220-You are user number 1 of 50 allowed.
220-Local time is now 14:03. Server port: 21.
220-This is a private system - No anonymous login
220-IPv6 connections are also welcome on this server.
220 You will be disconnected after 15 minutes of inactivity.
Auth TLS Response
234 AUTH TLS OK.
Status Code
220
Status Meaning
Service ready for new user.

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_AES_256_GCM_SHA384
Certificate
Fingerprint
194f7cbdc4dbd2284e8910deb7a779e3957ebc1fb94db044a3688094405c4afe
Subject
CN=server-65-108-233-120.da.direct
Issuer
C=US, O=Let's Encrypt, CN=R3
Names
server-65-108-233-120.da.direct
Fingerprint
JA3S
15af977ce25de452b96affa2addb1036

SSH 22/TCP
12/10/2023 09:32 UTC

Remote Access

Software

linux
OpenBSD OpenSSH 8.0

Details

Host Key
Algorithm
ecdsa-sha2-nistp256
Fingerprint
ff11dbd9c09a361ed6cdb481b67521603f81e0e29d0ac75bab733be028ae1206
Negotiated
Key Exchange
[email protected]
Symmetric Cipher
aes128-ctr [] aes128-ctr []
MAC
hmac-sha2-256 [] hmac-sha2-256 []

SMTP 25/TCP
12/09/2023 17:00 UTC

Email

Software

linux
exim

Details

Banner
220 server-65-108-233-120.da.direct ESMTP Exim 4.96-58-g4e9ed49f8 Sat, 09 Dec 2023 18:00:35 +0100
EHLO
250-server-65-108-233-120.da.direct Hello scanner-25.ch1.censys-scanner.com [162.142.125.224]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPECONNECT
250-AUTH PLAIN LOGIN
250-STARTTLS
250 HELP
Start TLS
220 TLS go ahead

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_AES_256_GCM_SHA384
Certificate
Fingerprint
194f7cbdc4dbd2284e8910deb7a779e3957ebc1fb94db044a3688094405c4afe
Subject
CN=server-65-108-233-120.da.direct
Issuer
C=US, O=Let's Encrypt, CN=R3
Names
server-65-108-233-120.da.direct
Fingerprint
JA3S
15af977ce25de452b96affa2addb1036

DNS 53/UDP
12/09/2023 17:30 UTC

Software

ISC BIND 9.11.36
Red Hat Enterprise Linux 8

Details

Server Type
AUTHORITATIVE
R Code
REFUSED

HTTP 80/TCP
12/09/2023 04:16 UTC

Software

LiteSpeed Technologies LiteSpeed Web Server

Details

http://65.108.233.120/
Status
200  OK
Body Hash
sha1:6c0680e2d97ee8ca4cfd08ce6004a5a8373c2f40
Response Body
      webserver is functioning normally

POP3 110/TCP
12/10/2023 10:57 UTC

Email

Software

linux
Dovecot

Details

Banner
+OK Dovecot DA ready.
Start TLS
+OK Begin TLS negotiation now.

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Certificate
Fingerprint
194f7cbdc4dbd2284e8910deb7a779e3957ebc1fb94db044a3688094405c4afe
Subject
CN=server-65-108-233-120.da.direct
Issuer
C=US, O=Let's Encrypt, CN=R3
Names
server-65-108-233-120.da.direct
Fingerprint
JA3S
475c9302dc42b2751db9edcac3b74891

IMAP 143/TCP
12/09/2023 10:10 UTC

Email

Software

linux
Dovecot

Details

Banner
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS AUTH=PLAIN] Dovecot DA ready.
Start TLS
a001 OK Begin TLS negotiation now.

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Certificate
Fingerprint
194f7cbdc4dbd2284e8910deb7a779e3957ebc1fb94db044a3688094405c4afe
Subject
CN=server-65-108-233-120.da.direct
Issuer
C=US, O=Let's Encrypt, CN=R3
Names
server-65-108-233-120.da.direct
Fingerprint
JA3S
475c9302dc42b2751db9edcac3b74891

HTTP 443/TCP
12/09/2023 19:03 UTC

Software

LiteSpeed Technologies LiteSpeed Web Server

Details

https://65.108.233.120/
Status
200  OK
Body Hash
sha1:6c0680e2d97ee8ca4cfd08ce6004a5a8373c2f40
Response Body
      webserver is functioning normally

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Certificate
Fingerprint
194f7cbdc4dbd2284e8910deb7a779e3957ebc1fb94db044a3688094405c4afe
Subject
CN=server-65-108-233-120.da.direct
Issuer
C=US, O=Let's Encrypt, CN=R3
Names
server-65-108-233-120.da.direct
Fingerprint
JARM
27d27d27d00027d00042d43d00041dba951fb796b4b956c9799ba19149e94a
JA3S
d75f9129bb5d05492a65ff78e081bcb2

SMTP 465/TCP
12/10/2023 00:10 UTC

Email

Software

linux
exim

Details

Banner
220 server-65-108-233-120.da.direct ESMTP Exim 4.96-58-g4e9ed49f8 Sun, 10 Dec 2023 01:10:40 +0100
EHLO
250-server-65-108-233-120.da.direct Hello scanner-27.ch1.censys-scanner.com [167.94.138.124]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPECONNECT
250-AUTH PLAIN LOGIN
250 HELP

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_AES_256_GCM_SHA384
Certificate
Fingerprint
194f7cbdc4dbd2284e8910deb7a779e3957ebc1fb94db044a3688094405c4afe
Subject
CN=server-65-108-233-120.da.direct
Issuer
C=US, O=Let's Encrypt, CN=R3
Names
server-65-108-233-120.da.direct
Fingerprint
JARM
27d27d27d00027d00042d42d000000b906c61c02c1194a121d828bc93b5bd3
JA3S
15af977ce25de452b96affa2addb1036

SMTP 587/TCP
12/10/2023 02:02 UTC

Email

Software

linux
exim

Details

Banner
220 server-65-108-233-120.da.direct ESMTP Exim 4.96-58-g4e9ed49f8 Sun, 10 Dec 2023 03:02:48 +0100
EHLO
250-server-65-108-233-120.da.direct Hello scanner-27.ch1.censys-scanner.com [167.94.138.125]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPECONNECT
250-AUTH PLAIN LOGIN
250-STARTTLS
250 HELP
Start TLS
220 TLS go ahead

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_AES_256_GCM_SHA384
Certificate
Fingerprint
194f7cbdc4dbd2284e8910deb7a779e3957ebc1fb94db044a3688094405c4afe
Subject
CN=server-65-108-233-120.da.direct
Issuer
C=US, O=Let's Encrypt, CN=R3
Names
server-65-108-233-120.da.direct
Fingerprint
JA3S
15af977ce25de452b96affa2addb1036

IMAP 993/TCP
12/10/2023 10:08 UTC

Email

Software

linux
Dovecot

Details

Banner
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN] Dovecot DA ready.

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Certificate
Fingerprint
194f7cbdc4dbd2284e8910deb7a779e3957ebc1fb94db044a3688094405c4afe
Subject
CN=server-65-108-233-120.da.direct
Issuer
C=US, O=Let's Encrypt, CN=R3
Names
server-65-108-233-120.da.direct
Fingerprint
JARM
27d40d40d00040d00042d43d00000051af7d8070a18e002eaaedf620fa118c
JA3S
475c9302dc42b2751db9edcac3b74891

POP3 995/TCP
12/09/2023 02:39 UTC

Email

Software

linux
Dovecot

Details

Banner
+OK Dovecot DA ready.

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Certificate
Fingerprint
194f7cbdc4dbd2284e8910deb7a779e3957ebc1fb94db044a3688094405c4afe
Subject
CN=server-65-108-233-120.da.direct
Issuer
C=US, O=Let's Encrypt, CN=R3
Names
server-65-108-233-120.da.direct
Fingerprint
JARM
27d40d40d00040d00042d43d00000051af7d8070a18e002eaaedf620fa118c
JA3S
475c9302dc42b2751db9edcac3b74891

HTTP 2222/TCP
12/10/2023 08:22 UTC

Details

https://65.108.233.120:2222/evo
Status
302  Found
Redirect Location
/
Body Hash
sha1:90d910869fbe5e0f79b7f7e58f59f5303f46ad78
Response Body
      [Found](/).

TLS

Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Certificate
Fingerprint
194f7cbdc4dbd2284e8910deb7a779e3957ebc1fb94db044a3688094405c4afe
Subject
CN=server-65-108-233-120.da.direct
Issuer
C=US, O=Let's Encrypt, CN=R3
Names
server-65-108-233-120.da.direct
Fingerprint
JARM
40d40d40d00000000043d40d40d43d684d61a135bd962c8dd9c541ddbaefa8
JA3S
475c9302dc42b2751db9edcac3b74891

Geographic Location

City
Helsinki
Province
Uusimaa
Country
Finland (FI)
Coordinates
60.16952, 24.93545
Timezone
Europe/Helsinki