198.105.222.45

Basic Information

OS
Windows
Network
SOFTLAYER (US)
Routing
198.105.222.0/24 via AS11164 , AS36351
Protocols
445/SMB, 23/TELNET, 21/FTP, 443/HTTPS, 22/SSH, 3389/RDP, 24/BANNER, 88/BANNER

443/HTTPS


Details Go

GET /

Server
Microsoft IIS 7.5
Status Line
200 OK
GET /
[view page]

Chrome TLS Handshake

Version
TLSv1.0
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
Browser Trusted
True

Heartbleed

Heartbleed
Heartbeat Disabled (OK)

Cryptographic Configuration

SSLv3 Support
True This host is vulnerable to the POODLE attack.
Export DHE
False
Export RSA
False
DHE Support
False

Certificate Chain

e55d64270a65a82b86a907489d3c27c7af1a50ab5845f74d8aecb8f633e0c74c
OU=Domain Control Validated, OU=PositiveSSL Wildcard, CN=*.xinhaimining.com
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
7fa4ff68ec04a99d7528d5085f94907f4d1dd1c5381bacdc832ed5c960214676
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
C=US, ST=New Jersey, L=Jersey City, O=The USERTRUST Network, CN=USERTrust RSA Certification Authority
1a5174980a294a528a110726d5855650266c48d9883bea692b67b6d726da98c5
C=US, ST=New Jersey, L=Jersey City, O=The USERTRUST Network, CN=USERTrust RSA Certification Authority
C=SE, O=AddTrust AB, OU=AddTrust External TTP Network, CN=AddTrust External CA Root

21/FTP


Details

Banner Grab

Server
IIS
Banner:
220 Microsoft FTP Service

23/Telnet


Details

Banner Grab

Banner:
220 Microsoft FTP Service

445/SMB


Details

SMB Server

Version
SMB 2.1
SMBv1
False

Capability Flags

Distributed File System
True
Leasing
True
Multi-credit Operations
True
Multi-channel Sessions
false
Persistent Handles
false
Directory Leasing
false
Encryption
false

Negotiation Log

Security Mode
1
Authentication Types
1.3.6.1.4.1.311.2.2.30
1.3.6.1.4.1.311.2.2.10

Session

Target Name
INSTANT3927

22/SSH


Details

SSHv2 Handshake

Server
OpenSSH 5.8
Banner
SSH-2.0-OpenSSH_5.8

Host Key

Algorithm
ecdsa-sha2-nistp256
Fingerprint
6efb075eba8ba0adcde7e43bda12254b17eb1617732b1447997df9757c98fd39

Negotiated Algorithm

Key Exchange
ecdh-sha2-nistp256
Symmetric Cipher
aes128-ctr [] | aes128-ctr []
MAC
hmac-sha1 [] | hmac-sha1 []

3389/RDP


Details

Banner Grab

Server
Remote Desktop 5.0
Major/Minor Version
5 / 0
Security Protocol
TLS (1)

Support

dynvc_graphics_pipeline
(Unknown)
neg_resp_reserved
(Unknown)
restricted_admin_mode
True
extended_client_data_supported
True

24/BANNER View Only


Details

Banner Info

Port
24
Protocol
TCP
Decoded Banner
220 Microsoft FTP Service

88/BANNER View Only


Details

Banner Info

Port
88
Protocol
TCP
Decoded Banner
HTTP/1.1 400 Bad Request
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Wed, 19 Feb 2020 09:26:24 GMT
Connection: close
Content-Length: 334

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd">
<HTML><HEAD><TITLE>Bad Request</TITLE>
<META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD>
<BODY><h2>Bad Request - Invalid Hostname</h2>
<hr><p>HTTP Error 400. The request hostname is invalid.</p>
</BODY></HTML>

Geographic Location

City
Dallas
State
Texas
Country
United States (US)
Lat/Long
32.7787, -96.8217
Timezone
America/Chicago