179.43.112.161

Basic Information

OS
CentOS
Network
Dattatec.com (AR)
Routing
179.43.112.0/24 via AS7018 , AS3356 , AS3549 , AS27823
Protocols
80/HTTP, 3306/MYSQL, 993/IMAPS, 465/SMTP, 995/POP3S, 25/SMTP, 110/POP3, 143/IMAP, 443/HTTPS, 587/SMTP, 2083/BANNER, 2086/BANNER, 2087/BANNER, 2095/BANNER, 8081/BANNER, 9000/BANNER

80/HTTP


Details Go

GET /

Server
Apache httpd 2.2.15
Status Line
200 OK
Page Title
Universidad Tecnológica de Manzanillo | UTeM
GET /
[view page]

443/HTTPS


Details Go

GET /

Server
Apache httpd 2.2.15
Status Line
200 OK
GET /
[view page]

Chrome TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Heartbleed

Heartbleed
Heartbeat Enabled. Immune to Heartbleed.

Cryptographic Configuration

SSLv3 Support
True This host is vulnerable to the POODLE attack.
Export DHE
False
Export RSA
False
DHE Support
True

Certificate Chain

9ebc04cf01a2bb8af123fd65676dbb9ede2fa8ae901696cf681bb0c17754d2ed
CN=utem.edu.mx
C=US, O=Let's Encrypt, CN=Let's Encrypt Authority X3

25/SMTP


Details

Banner Grab and StartTLS Initiation

Server
Exim
Banner
220-vps-1096290-x.dattaweb.com ESMTP Exim 4.92 #5 Sat, 16 Nov 2019 12:35:10 -0600
220- We do not authorize the use of this system to transport unsolicited,
220 and/or bulk e-mail.
EHLO
250-vps-1096290-x.dattaweb.com Hello eecs.umich.edu [CLIENT_IP]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-AUTH LOGIN
250-CHUNKING
250-STARTTLS
250 HELP
STARTTLS
220 TLS go ahead

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

7578819b6fb894e0fdab6e2761da37f28f716c90da46473cc76da94ec3d2fd87
C=AR, ST=Santa Fe, L=Rosario, O=Secure SMTP Server, OU=vps-1096290-x.vps-1096290-x.dattaweb.com, CN=vps-1096290-x.dattaweb.com, emailAddress=root@vps-1096290-x.dattaweb.com
C=AR, ST=Santa Fe, L=Rosario, O=Secure SMTP Server, OU=vps-1096290-x.vps-1096290-x.dattaweb.com, CN=vps-1096290-x.dattaweb.com, emailAddress=root@vps-1096290-x.dattaweb.com

465/SMTP


Details

Banner Grab

Banner
220-vps-1096290-x.dattaweb.com ESMTP Exim 4.92 #5 Mon, 11 Nov 2019 17:12:25 -0600 220- We do not authorize the use of this system to transport unsolicited, 220 and/or bulk e-mail.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

7578819b6fb894e0fdab6e2761da37f28f716c90da46473cc76da94ec3d2fd87
C=AR, ST=Santa Fe, L=Rosario, O=Secure SMTP Server, OU=vps-1096290-x.vps-1096290-x.dattaweb.com, CN=vps-1096290-x.dattaweb.com, emailAddress=root@vps-1096290-x.dattaweb.com
C=AR, ST=Santa Fe, L=Rosario, O=Secure SMTP Server, OU=vps-1096290-x.vps-1096290-x.dattaweb.com, CN=vps-1096290-x.dattaweb.com, emailAddress=root@vps-1096290-x.dattaweb.com

587/SMTP


Details

Banner Grab and StartTLS Initiation

Server
Exim
Banner
220-vps-1096290-x.dattaweb.com ESMTP Exim 4.92 #5 Sat, 16 Nov 2019 02:20:02 -0600
220- We do not authorize the use of this system to transport unsolicited,
220 and/or bulk e-mail.
EHLO
250-vps-1096290-x.dattaweb.com Hello eecs.umich.edu [CLIENT_IP]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-AUTH LOGIN
250-CHUNKING
250-STARTTLS
250 HELP
STARTTLS
220 TLS go ahead

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

7578819b6fb894e0fdab6e2761da37f28f716c90da46473cc76da94ec3d2fd87
C=AR, ST=Santa Fe, L=Rosario, O=Secure SMTP Server, OU=vps-1096290-x.vps-1096290-x.dattaweb.com, CN=vps-1096290-x.dattaweb.com, emailAddress=root@vps-1096290-x.dattaweb.com
C=AR, ST=Santa Fe, L=Rosario, O=Secure SMTP Server, OU=vps-1096290-x.vps-1096290-x.dattaweb.com, CN=vps-1096290-x.dattaweb.com, emailAddress=root@vps-1096290-x.dattaweb.com

110/POP3


Details

Banner Grab and StartTLS Initiation

Banner
+OK Hello there.
STARTTLS
+OK Begin SSL/TLS negotiation now.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

1e0ccb99c5be8e7f723dc8d0e6ed67fd5328b19ba187c2941376000cda7fa153
C=AR, ST=Santa Fe, L=Rosario, O=Secure POP3/IMAP Mail Server, OU=vps-1096290-x.vps-1096290-x.dattaweb.com, CN=vps-1096290-x.dattaweb.com, emailAddress=root@vps-1096290-x.dattaweb.com
C=AR, ST=Santa Fe, L=Rosario, O=Secure POP3/IMAP Mail Server, OU=vps-1096290-x.vps-1096290-x.dattaweb.com, CN=vps-1096290-x.dattaweb.com, emailAddress=root@vps-1096290-x.dattaweb.com

143/IMAP


Details

Banner Grab and StartTLS Initiation

Server
Courier
Banner
* OK [CAPABILITY IMAP4rev1 UIDPLUS CHILDREN NAMESPACE THREAD=ORDEREDSUBJECT THREAD=REFERENCES SORT QUOTA IDLE ACL ACL2=UNION STARTTLS] Courier-IMAP ready. Copyright 1998-2011 Double Precision, Inc. See COPYING for distribution information.
STARTTLS
a001 OK Begin SSL/TLS negotiation now.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

1e0ccb99c5be8e7f723dc8d0e6ed67fd5328b19ba187c2941376000cda7fa153
C=AR, ST=Santa Fe, L=Rosario, O=Secure POP3/IMAP Mail Server, OU=vps-1096290-x.vps-1096290-x.dattaweb.com, CN=vps-1096290-x.dattaweb.com, emailAddress=root@vps-1096290-x.dattaweb.com
C=AR, ST=Santa Fe, L=Rosario, O=Secure POP3/IMAP Mail Server, OU=vps-1096290-x.vps-1096290-x.dattaweb.com, CN=vps-1096290-x.dattaweb.com, emailAddress=root@vps-1096290-x.dattaweb.com

993/IMAPS


Details

Banner Grab

Banner
* OK [CAPABILITY IMAP4rev1 UIDPLUS CHILDREN NAMESPACE THREAD=ORDEREDSUBJECT THREAD=REFERENCES SORT QUOTA IDLE AUTH=PLAIN ACL ACL2=UNION] Courier-IMAP ready. Copyright 1998-2011 Double Precision, Inc. See COPYING for distribution information.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

1e0ccb99c5be8e7f723dc8d0e6ed67fd5328b19ba187c2941376000cda7fa153
C=AR, ST=Santa Fe, L=Rosario, O=Secure POP3/IMAP Mail Server, OU=vps-1096290-x.vps-1096290-x.dattaweb.com, CN=vps-1096290-x.dattaweb.com, emailAddress=root@vps-1096290-x.dattaweb.com
C=AR, ST=Santa Fe, L=Rosario, O=Secure POP3/IMAP Mail Server, OU=vps-1096290-x.vps-1096290-x.dattaweb.com, CN=vps-1096290-x.dattaweb.com, emailAddress=root@vps-1096290-x.dattaweb.com

995/POP3S


Details

Banner Grab

Banner
+OK Hello there.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

1e0ccb99c5be8e7f723dc8d0e6ed67fd5328b19ba187c2941376000cda7fa153
C=AR, ST=Santa Fe, L=Rosario, O=Secure POP3/IMAP Mail Server, OU=vps-1096290-x.vps-1096290-x.dattaweb.com, CN=vps-1096290-x.dattaweb.com, emailAddress=root@vps-1096290-x.dattaweb.com
C=AR, ST=Santa Fe, L=Rosario, O=Secure POP3/IMAP Mail Server, OU=vps-1096290-x.vps-1096290-x.dattaweb.com, CN=vps-1096290-x.dattaweb.com, emailAddress=root@vps-1096290-x.dattaweb.com

3306/MySQL


Details

Banner Grab

Version
5.6.26
Protocol Version
10

2083/BANNER View Only


Details

Banner Info

Port
2083
Protocol
TCP
Decoded Banner
HTTP/1.1 401 Authorization Required
Date: Fri, 15 Nov 2019 14:03:09 GMT
Server: Apache
WWW-Authenticate: Basic realm="Ferozo Admin Access"
Content-Length: 467
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>401 Authorization Required</title>
</head><body>
<h1>Authorization Required</h1>
<p>This server could not verify that you
are authorized to access the document
requested.  Either you supplied the wrong
credentials (e.g., bad password), or your
browser doesn't understand how to supply
the credentials required.</p>
<hr>
<address>Apache Server at 179.43.112.161 Port 2083</address>
</body></html>

2086/BANNER View Only


Details

Banner Info

Port
2086
Protocol
TCP
Decoded Banner
HTTP/1.1 401 Authorization Required
Date: Sun, 17 Nov 2019 02:44:58 GMT
Server: Apache
WWW-Authenticate: Basic realm="WebService Admin Access"
Content-Length: 467
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>401 Authorization Required</title>
</head><body>
<h1>Authorization Required</h1>
<p>This server could not verify that you
are authorized to access the document
requested.  Either you supplied the wrong
credentials (e.g., bad password), or your
browser doesn't understand how to supply
the credentials required.</p>
<hr>
<address>Apache Server at 179.43.112.161 Port 2086</address>
</body></html>

2087/BANNER View Only


Details

Banner Info

Port
2087
Protocol
TCP
Decoded Banner
HTTP/1.1 500 Internal Server Error
Date: Fri, 15 Nov 2019 16:25:12 GMT
Server: Apache
Content-Length: 602
Connection: close
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>500 Internal Server Error</title>
</head><body>
<h1>Internal Server Error</h1>
<p>The server encountered an internal error or
misconfiguration and was unable to complete
your request.</p>
<p>Please contact the server administrator,
 abuse@donweb.com and inform them of the time the error occurred,
and anything you might have done that may have
caused the error.</p>
<p>More information about this error may be available
in the server error log.</p>
<hr>
<address>Apache Server at 179.43.112.161 Port 2087</address>
</body></html>

2095/BANNER View Only


Details

Banner Info

Port
2095
Protocol
TCP
Decoded Banner
HTTP/1.1 400 Bad Request
Date: Sun, 17 Nov 2019 06:52:29 GMT
Server: Apache
Content-Length: 431
Connection: close
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>400 Bad Request</title>
</head><body>
<h1>Bad Request</h1>
<p>Your browser sent a request that this server could not understand.<br />
Reason: You're speaking plain HTTP to an SSL-enabled server port.<br />
 Instead use the HTTPS scheme to access this URL, please.<br />
</p>
<hr>
<address>Apache Server at barein.donweb.com Port 2095</address>
</body></html>

8081/BANNER View Only


Details

Banner Info

Port
8081
Protocol
TCP
Decoded Banner
HTTP/1.1 400 Bad Request
Server: nginx
Date: Tue, 12 Nov 2019 18:11:31 GMT
Content-Type: text/html
Content-Length: 248
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

9000/BANNER View Only


Details

Banner Info

Port
9000
Protocol
TCP
Decoded Banner
HTTP/1.1 302 Found
Date: Tue, 12 Nov 2019 18:11:31 GMT
Server: Apache/2.2.15 (CentOS)
Location: https://siiutem-stg.utem.edu.mx
Content-Length: 297
Connection: close
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>302 Found</title>
</head><body>
<h1>Found</h1>
<p>The document has moved <a href="https://siiutem-stg.utem.edu.mx">here</a>.</p>
<hr>
<address>Apache/2.2.15 (CentOS) Server at 179.43.112.161 Port 9000</address>
</body></html>

Geographic Location

City
Rosario
Province
Santa Fe
Country
Argentina (AR)
Lat/Long
-32.9541, -60.6636
Timezone
America/Argentina/Cordoba