104.218.11.157

Basic Information

Network
A2HOSTING (US)
Routing
104.218.8.0/21 via AS7018 , AS1299 , AS55293
Protocols
80/HTTP, 3306/MYSQL, 8888/HTTP, 993/IMAPS, 465/SMTP, 995/POP3S, 110/POP3, 21/FTP, 143/IMAP, 53/DNS, 443/HTTPS, 587/SMTP, 5432/POSTGRES, 2077/BANNER, 2078/BANNER, 2079/BANNER, 2080/BANNER, 2082/BANNER, 2083/BANNER, 2086/BANNER, 2087/BANNER, 2095/BANNER, 2096/BANNER, 2525/BANNER, 8887/BANNER, 8889/BANNER
Tags
ftp http https database pop3s smtp imaps pop3 dns mysql imap postgres

80/HTTP


Details Go

GET /

Server
LiteSpeed
Status Line
200 OK
Page Title
eDiscovery Business Software | Forensic Software for Investigations
GET /
[view page]

8888/HTTP


Details Go

GET /

Server
LiteSpeed
Status Line
200 OK
Page Title
Unauthorized Access
GET /
[view page]

443/HTTPS


Details Go

GET /

Server
LiteSpeed
Status Line
200 OK
Page Title
eDiscovery Business Software | Forensic Software for Investigations
GET /
[view page]

Chrome TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 (0xCCA8)
Browser Trusted
True

Heartbleed

Heartbleed
Heartbeat Disabled (OK)

Cryptographic Configuration

Export DHE
False
Export RSA
False
DHE Support
False

Certificate Chain

8a141b3a4d5a1a38681395141709a57d0c97a1cdd34f575820b720e2df963d24
OU=Domain Control Validated, CN=*.vound-software.com
C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2
973a41276ffd01e027a2aad49e34c37846d3e976ff6a620b6712e33832041aa6
C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2
C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., CN=Go Daddy Root Certificate Authority - G2

21/FTP


Details

Banner Grab

Server
Pure-FTPd
Banner:
220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------
220-You are user number 5 of 50 allowed.
220-Local time is now 11:33. Server port: 21.
220-This is a private system - No anonymous login
220-IPv6 connections are also welcome on this server.
220 You will be disconnected after 15 minutes of inactivity.

465/SMTP


Details

Banner Grab

Banner
220-a2ls6.a2hosting.com ESMTP Exim 4.93 #2 Mon, 26 Oct 2020 16:45:46 -0400 220-We do not authorize the use of this system to transport unsolicited, 220 and/or bulk e-mail.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)
Browser Trusted
True

Certificate Chain

eefb86b72e47abe9ada7f2a132dc5fa40eec34ae239ecd7e9b6c283248972a9c
C=US, ST=Michigan, L=Ann Arbor, O=A2 Hosting, Inc., CN=*.a2hosting.com
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA

587/SMTP


Details

Banner Grab and StartTLS Initiation

Server
Exim
Banner
220-a2ls6.a2hosting.com ESMTP Exim 4.93 #2 Sat, 24 Oct 2020 04:16:18 -0400
220-We do not authorize the use of this system to transport unsolicited,
220 and/or bulk e-mail.
EHLO
250-a2ls6.a2hosting.com Hello worker-01.sfj.censys-scanner.com [192.35.168.16]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-AUTH PLAIN LOGIN
250-STARTTLS
250 HELP
STARTTLS
220 TLS go ahead

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)
Browser Trusted
True

Certificate Chain

eefb86b72e47abe9ada7f2a132dc5fa40eec34ae239ecd7e9b6c283248972a9c
C=US, ST=Michigan, L=Ann Arbor, O=A2 Hosting, Inc., CN=*.a2hosting.com
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA
19400be5b7a31fb733917700789d2f0a2471c0c9d506c0e504c06c16d7cb17c0
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert High Assurance EV Root CA

53/DNS


Details

Open Resolver Query

Open Resolver
False

110/POP3


Details

Banner Grab and StartTLS Initiation

Server
Dovecot
Banner
+OK Dovecot ready.
STARTTLS
+OK Begin TLS negotiation now.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)
Browser Trusted
True

Certificate Chain

eefb86b72e47abe9ada7f2a132dc5fa40eec34ae239ecd7e9b6c283248972a9c
C=US, ST=Michigan, L=Ann Arbor, O=A2 Hosting, Inc., CN=*.a2hosting.com
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA
19400be5b7a31fb733917700789d2f0a2471c0c9d506c0e504c06c16d7cb17c0
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert High Assurance EV Root CA

143/IMAP


Details

Banner Grab and StartTLS Initiation

Server
Dovecot
Banner
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot ready.
STARTTLS
a001 OK Begin TLS negotiation now.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)
Browser Trusted
True

Certificate Chain

eefb86b72e47abe9ada7f2a132dc5fa40eec34ae239ecd7e9b6c283248972a9c
C=US, ST=Michigan, L=Ann Arbor, O=A2 Hosting, Inc., CN=*.a2hosting.com
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA
19400be5b7a31fb733917700789d2f0a2471c0c9d506c0e504c06c16d7cb17c0
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert High Assurance EV Root CA

993/IMAPS


Details

Banner Grab

Banner
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ AUTH=PLAIN AUTH=LOGIN] Dovecot ready.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)
Browser Trusted
True

Certificate Chain

eefb86b72e47abe9ada7f2a132dc5fa40eec34ae239ecd7e9b6c283248972a9c
C=US, ST=Michigan, L=Ann Arbor, O=A2 Hosting, Inc., CN=*.a2hosting.com
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA
19400be5b7a31fb733917700789d2f0a2471c0c9d506c0e504c06c16d7cb17c0
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert High Assurance EV Root CA

995/POP3S


Details

Banner Grab

Banner
+OK Dovecot ready.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)
Browser Trusted
True

Certificate Chain

eefb86b72e47abe9ada7f2a132dc5fa40eec34ae239ecd7e9b6c283248972a9c
C=US, ST=Michigan, L=Ann Arbor, O=A2 Hosting, Inc., CN=*.a2hosting.com
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA
19400be5b7a31fb733917700789d2f0a2471c0c9d506c0e504c06c16d7cb17c0
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert High Assurance EV Root CA

3306/MySQL


Details

Banner Grab

Version
5.5.5-10.1.40-MariaDB-cll-lve
Protocol Version
10

5432/Postgres


Details

Banner Grab

Supported Versions
FATAL: unsupported frontend protocol 0.0: server supports 1.0 to 3.0
Is SSL
False

2077/BANNER View Only


Details

Banner Info

Port
2077
Protocol
TCP
Decoded Banner
HTTP/1.1 302 Moved
Date: Fri, 16 Oct 2020 09:09:41 GMT
Server: cPanel
Persistent-Auth: false
Host: 104.218.11.157:2077
Cache-Control: no-cache, no-store, must-revalidate, private
Connection: close
Location: https://a2ls6.a2hosting.com:2078/
Vary: Accept-Encoding
Expires: Fri, 01 Jan 1990 00:00:00 GMT
X-Redirect-Reason: requiressl

2078/BANNER View Only


Details

Banner Info

Port
2078
Protocol
TCP
Decoded Banner
HTTP/1.1 401 Unauthorized
Date: Fri, 16 Oct 2020 09:09:43 GMT
Server: cPanel
Persistent-Auth: false
Host: 104.218.11.157:2078
Cache-Control: no-cache, no-store, must-revalidate, private
Connection: close
Vary: Accept-Encoding
WWW-Authenticate: Basic realm="Restricted Area"
Content-Length: 35
Content-Type: text/html; charset="utf-8"
Expires: Fri, 01 Jan 1990 00:00:00 GMT

<html>Authorization Required</html>

2079/BANNER View Only


Details

Banner Info

Port
2079
Protocol
TCP
Decoded Banner
HTTP/1.1 302 Moved
Date: Fri, 16 Oct 2020 18:14:38 GMT
Server: cPanel
Persistent-Auth: false
Host: 104.218.11.157:2079
Cache-Control: no-cache, no-store, must-revalidate, private
Connection: close
Location: https://a2ls6.a2hosting.com:2080/
Vary: Accept-Encoding
Expires: Fri, 01 Jan 1990 00:00:00 GMT
X-Redirect-Reason: requiressl

2080/BANNER View Only


Details

Banner Info

Port
2080
Protocol
TCP
Decoded Banner
HTTP/1.1 401 Unauthorized
Date: Fri, 16 Oct 2020 09:09:45 GMT
Server: cPanel
Persistent-Auth: false
Host: 104.218.11.157:2080
Cache-Control: no-cache, no-store, must-revalidate, private
Connection: close
Vary: Accept-Encoding
WWW-Authenticate: Basic realm="Horde DAV Server"
Content-Length: 35
Content-Type: text/html; charset="utf-8"
Expires: Fri, 01 Jan 1990 00:00:00 GMT

<html>Authorization Required</html>

2082/BANNER View Only


Details

Banner Info

Port
2082
Protocol
TCP
Decoded Banner
HTTP/1.1 301 Moved
Content-length: 117
Location: https://a2ls6.a2hosting.com:2083/
Content-type: text/html; charset="utf-8"
Cache-Control: no-cache, no-store, must-revalidate, private

<html><head><META HTTP-EQUIV="refresh" CONTENT="2;URL=https://a2ls6.a2hosting.com:2083/"></head><body></body></html>

2083/BANNER View Only


Details

Banner Info

Port
2083
Protocol
TCP
Decoded Banner
HTTP/1.1 301 Moved
Content-length: 116
Location: https://a2ls6.a2hosting.com:2083
Content-type: text/html; charset="utf-8"
Cache-Control: no-cache, no-store, must-revalidate, private
Pragma: no-cache

<html><head><META HTTP-EQUIV="refresh" CONTENT="2;URL=https://a2ls6.a2hosting.com:2083"></head><body></body></html>

2086/BANNER View Only


Details

Banner Info

Port
2086
Protocol
TCP
Decoded Banner
HTTP/1.1 301 Moved
Content-length: 117
Location: https://a2ls6.a2hosting.com:2087/
Content-type: text/html; charset="utf-8"
Cache-Control: no-cache, no-store, must-revalidate, private

<html><head><META HTTP-EQUIV="refresh" CONTENT="2;URL=https://a2ls6.a2hosting.com:2087/"></head><body></body></html>

2087/BANNER View Only


Details

Banner Info

Port
2087
Protocol
TCP
Decoded Banner
HTTP/1.1 301 Moved
Content-length: 116
Location: https://a2ls6.a2hosting.com:2087
Content-type: text/html; charset="utf-8"
Cache-Control: no-cache, no-store, must-revalidate, private
Pragma: no-cache

<html><head><META HTTP-EQUIV="refresh" CONTENT="2;URL=https://a2ls6.a2hosting.com:2087"></head><body></body></html>

2095/BANNER View Only


Details

Banner Info

Port
2095
Protocol
TCP
Decoded Banner
HTTP/1.1 301 Moved
Content-length: 117
Location: https://a2ls6.a2hosting.com:2096/
Content-type: text/html; charset="utf-8"
Cache-Control: no-cache, no-store, must-revalidate, private

<html><head><META HTTP-EQUIV="refresh" CONTENT="2;URL=https://a2ls6.a2hosting.com:2096/"></head><body></body></html>

2096/BANNER View Only


Details

Banner Info

Port
2096
Protocol
TCP
Decoded Banner
HTTP/1.1 301 Moved
Content-length: 116
Location: https://a2ls6.a2hosting.com:2096
Content-type: text/html; charset="utf-8"
Cache-Control: no-cache, no-store, must-revalidate, private
Pragma: no-cache

<html><head><META HTTP-EQUIV="refresh" CONTENT="2;URL=https://a2ls6.a2hosting.com:2096"></head><body></body></html>

2525/BANNER View Only


Details

Banner Info

Port
2525
Protocol
TCP
Decoded Banner
220-a2ls6.a2hosting.com ESMTP Exim 4.93 #2 Fri, 16 Oct 2020 05:09:40 -0400 
220-We do not authorize the use of this system to transport unsolicited, 
220 and/or bulk e-mail.

8887/BANNER View Only


Details

Banner Info

Port
8887
Protocol
TCP
Decoded Banner
HTTP/1.0 301 Moved Permanently
Location: https://104.218.11.157:8887/
Cache-Control: private, no-cache, max-age=0
Pragma: no-cache
Server:LiteSpeed
Content-Length: 0
Connection: Close

8889/BANNER View Only


Details

Banner Info

Port
8889
Protocol
TCP
Decoded Banner
The firewall on this server is blocking your connection. You need to contact the server owner or hosting provider for further information. Your blocked IP address is: 192.35.169.48 This server's hostname is: a2ls6.a2hosting.com 

Geographic Location

Country
United States (US)
Lat/Long
37.751, -97.822
Timezone
America/Chicago