75.119.141.99

As of: Sep 27, 2022 6:05pm UTC | Latest

Basic Information

Reverse DNS
vmi1017066.contaboserver.net
OS
Ubuntu Linux 20.04
Network
CONTABO (DE)
Routing
75.119.128.0/19  via  AS51167
Protocols
21/FTP , 22/SSH , 25/SMTP , 53/DNS , 80/HTTP , 110/POP3 , 143/IMAP , 443/HTTP , 465/SMTP , 587/SMTP , 993/IMAP , 995/POP3 , 3306/MYSQL , 8000/HTTP , 8002/HTTP

21/FTP TCP
Observed Sep 27, 2022 at 8:35am UTC


View All Data

Software

ProFTPD Project ProFTPD
linux

Details

Banner
220 ProFTPD Server (ProFTPD Default Installation) [::ffff:75.119.141.99]
Auth TLS Response
500 AUTH not understood
Auth SSL Response
500 AUTH not understood
Status Code
220
Status Meaning
Service ready for new user.

22/SSH TCP
Observed Sep 26, 2022 at 11:26pm UTC


View All Data

Software

linux
Ubuntu Linux 20.04
OpenBSD OpenSSH 8.2

Details

Host Key
Algorithm
ecdsa-sha2-nistp256
Fingerprint
98d3c21d4684dabf679861a8f47ac719863a9953a92bbdf73d5d932de55b11ba
Negotiated
Key Exchange
[email protected]
Symmetric Cipher
aes128-ctr [] aes128-ctr []
MAC
hmac-sha2-256 [] hmac-sha2-256 []

25/SMTP TCP
Observed Sep 27, 2022 at 6:17am UTC


View All Data

Software

linux
exim 4.94.2

Details

Banner
220 vmi1017066.contaboserver.net, ESMTP EXIM 4.94.2
EHLO
250-vmi1017066.contaboserver.net Hello scanner-25.ch1.censys-scanner.com [162.142.125.220]
250-SIZE 67108864
250-8BITMIME
250-PIPELINING
250-PIPE_CONNECT
250-AUTH PLAIN LOGIN CRAM-MD5
250-CHUNKING
250-STARTTLS
250 HELP
Start TLS
220 TLS go ahead

TLS

Fingerprint
JA3S
475c9302dc42b2751db9edcac3b74891
Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Leaf Certificate
9f58f6c14d98a24c743f3f4e0962139de8a8a3658265f2cccac0a130f1fc904d
C=UA, ST=Default, L=Default, O=Brainy, CN=vmi1017066.contaboserver.net
C=UA, ST=Default, L=Default, O=Brainy, CN=vmi1017066.contaboserver.net

53/DNS UDP
Observed Sep 27, 2022 at 10:03am UTC


View All Data

Software

ISC BIND 9.16.1
Ubuntu Linux

Details

Server Type
AUTHORITATIVE
R Code
REFUSED

80/HTTP TCP
Observed Sep 27, 2022 at 4:01am UTC


View All Data Go

Software

nginx 1.20.1

Details

http://75.119.141.99
Request
GET /
Protocol
HTTP/1.1
Status Code
200
Status Reason
OK
Body Hash
sha1:7e9446fa8c97997c56a1096707bbfe56e72ce10f
HTML Title
Страница по умолчанию
Response Body

110/POP3 TCP
Observed Sep 27, 2022 at 1:48pm UTC


View All Data

Software

linux
Dovecot

Details

Banner
+OK Dovecot ready.
Start TLS
+OK Begin TLS negotiation now.

TLS

Fingerprint
JA3S
475c9302dc42b2751db9edcac3b74891
Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Leaf Certificate
16f289c5780c3221dc4008e2487cf89c1c7bc420dc6839abdce801b333bf9c3e
C=UA, ST=Default, L=Default, O=Brainy, CN=vmi1017066.contaboserver.net
C=UA, ST=Default, L=Default, O=Brainy, CN=vmi1017066.contaboserver.net

143/IMAP TCP
Observed Sep 27, 2022 at 3:24pm UTC


View All Data

Software

linux

Details

Banner
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5] Dovecot ready.
Start TLS
a001 OK Begin TLS negotiation now.

TLS

Fingerprint
JA3S
475c9302dc42b2751db9edcac3b74891
Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Leaf Certificate
16f289c5780c3221dc4008e2487cf89c1c7bc420dc6839abdce801b333bf9c3e
C=UA, ST=Default, L=Default, O=Brainy, CN=vmi1017066.contaboserver.net
C=UA, ST=Default, L=Default, O=Brainy, CN=vmi1017066.contaboserver.net

443/HTTP TCP
Observed Sep 27, 2022 at 6:05pm UTC


View All Data Go

Software

nginx 1.20.1

Details

https://75.119.141.99
Request
GET /
Protocol
HTTP/1.1
Status Code
200
Status Reason
OK
Body Hash
sha1:7e9446fa8c97997c56a1096707bbfe56e72ce10f
HTML Title
Страница по умолчанию
Response Body

TLS

Fingerprint
JARM
2ad2ad0002ad2ad00042d42d0000005d86ccb1a0567e012264097a0315d7a7
JA3S
15af977ce25de452b96affa2addb1036
Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_AES_256_GCM_SHA384
Leaf Certificate
53c42a5c0856024b508eaa433faa2c3b92f4d177af92afae10b8803e8d1fa1d8
C=UA, ST=Default, L=Default, O=Brainy, CN=vmi1017066.contaboserver.net
C=UA, ST=Default, L=Default, O=Brainy, CN=vmi1017066.contaboserver.net

465/SMTP TCP
Observed Sep 27, 2022 at 2:27pm UTC


View All Data

Software

linux
exim 4.94.2

Details

Banner
220 vmi1017066.contaboserver.net, ESMTP EXIM 4.94.2
EHLO
250-vmi1017066.contaboserver.net Hello scanner-06.ch1.censys-scanner.com [167.94.138.46]
250-SIZE 67108864
250-8BITMIME
250-PIPELINING
250-PIPE_CONNECT
250-AUTH PLAIN LOGIN CRAM-MD5
250-CHUNKING
250 HELP

TLS

Fingerprint
JA3S
475c9302dc42b2751db9edcac3b74891
Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Leaf Certificate
9f58f6c14d98a24c743f3f4e0962139de8a8a3658265f2cccac0a130f1fc904d
C=UA, ST=Default, L=Default, O=Brainy, CN=vmi1017066.contaboserver.net
C=UA, ST=Default, L=Default, O=Brainy, CN=vmi1017066.contaboserver.net

587/SMTP TCP
Observed Sep 27, 2022 at 5:26pm UTC


View All Data

Software

linux
exim 4.94.2

Details

Banner
220 vmi1017066.contaboserver.net, ESMTP EXIM 4.94.2
EHLO
250-vmi1017066.contaboserver.net Hello scanner-06.ch1.censys-scanner.com [167.94.138.45]
250-SIZE 67108864
250-8BITMIME
250-PIPELINING
250-PIPE_CONNECT
250-AUTH PLAIN LOGIN CRAM-MD5
250-CHUNKING
250-STARTTLS
250 HELP
Start TLS
220 TLS go ahead

TLS

Fingerprint
JA3S
475c9302dc42b2751db9edcac3b74891
Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Leaf Certificate
9f58f6c14d98a24c743f3f4e0962139de8a8a3658265f2cccac0a130f1fc904d
C=UA, ST=Default, L=Default, O=Brainy, CN=vmi1017066.contaboserver.net
C=UA, ST=Default, L=Default, O=Brainy, CN=vmi1017066.contaboserver.net

993/IMAP TCP
Observed Sep 26, 2022 at 3:05pm UTC


View All Data

Software

linux

Details

Banner
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5] Dovecot ready.

TLS

Fingerprint
JA3S
475c9302dc42b2751db9edcac3b74891
Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Leaf Certificate
16f289c5780c3221dc4008e2487cf89c1c7bc420dc6839abdce801b333bf9c3e
C=UA, ST=Default, L=Default, O=Brainy, CN=vmi1017066.contaboserver.net
C=UA, ST=Default, L=Default, O=Brainy, CN=vmi1017066.contaboserver.net

995/POP3 TCP
Observed Sep 26, 2022 at 8:33pm UTC


View All Data

Software

linux
Dovecot

Details

Banner
+OK Dovecot ready.

TLS

Fingerprint
JA3S
475c9302dc42b2751db9edcac3b74891
Handshake
Version Selected
TLSv1_3
Cipher Selected
TLS_CHACHA20_POLY1305_SHA256
Leaf Certificate
16f289c5780c3221dc4008e2487cf89c1c7bc420dc6839abdce801b333bf9c3e
C=UA, ST=Default, L=Default, O=Brainy, CN=vmi1017066.contaboserver.net
C=UA, ST=Default, L=Default, O=Brainy, CN=vmi1017066.contaboserver.net

3306/MYSQL TCP
Observed Sep 27, 2022 at 2:32am UTC


View All Data

Software

Oracle MySQL
linux

Details

Error Code
1130
Error ID
ER_HOST_NOT_PRIVILEGED
Error Message
Host 'scanner-09.ch1.censys-scanner.com' is not allowed to connect to this MySQL server

8000/HTTP TCP
Observed Sep 27, 2022 at 3:17am UTC


View All Data Go

Software

nginx

Details

http://75.119.141.99:8000
Request
GET /
Protocol
HTTP/1.1
Status Code
400
Status Reason
Bad Request
Body Hash
sha1:e70b2bdf0abb7fbf695bc27eef3ddf563d36aca1
HTML Title
400 The plain HTTP request was sent to HTTPS port
Response Body
# 400 Bad Request

The plain HTTP request was sent to HTTPS port

* * *

nginx

8002/HTTP TCP
Observed Sep 25, 2022 at 5:14pm UTC


View All Data Go

Software

PHP
PHP 5.6.40
nginx

Details

http://75.119.141.99:8002
Request
GET /
Protocol
HTTP/1.1
Status Code
200
Status Reason
OK
Body Hash
sha1:54f32f79c8302673b04dd243f519d0ce5883844c
HTML Title
BrainyCP — страница авторизации
Response Body
BrainyCP — страница авторизации

![Brainy](/tpl/basic/img/auth/logo.png)

__

__

Geographic Location

City
Düsseldorf
State
North Rhine-Westphalia
Country
Germany (DE)
Coordinates
51.1878, 6.8607
Timezone
Europe/Berlin