208.91.199.147

Basic Information

OS
Windows
Network
PUBLIC-DOMAIN-REGISTRY (US)
Routing
208.91.198.0/23 via AS7018 , AS174 , AS394695
Protocols
80/HTTP, 3306/MYSQL, 53/DNS, 993/IMAPS, 465/SMTP, 995/POP3S, 25/SMTP, 110/POP3, 21/FTP, 143/IMAP, 1433/MSSQL, 587/SMTP, 8172/BANNER, 8443/BANNER, 8880/BANNER
Tags
ftp mssql http database pop3s smtp imap pop3 dns mysql imaps

80/HTTP


Details Go

GET /

Status Line
200 OK
Page Title
Default Parallels Plesk Panel Page
GET /
[view page]

443/HTTPS


Details Go

21/FTP


Details

Banner Grab

Server
IIS
Banner:
220 Microsoft FTP Service

25/SMTP


Details

Banner Grab and StartTLS Initiation

Banner
220 PLESK-WEB19.webhostbox.net ESMTP MailEnable Service, Version: 9.81-9.81- ready at 11/21/20 17:53:37
EHLO
250-PLESK-WEB19.webhostbox.net [192.35.168.64], this server offers 5 extensions
250-AUTH NTLM CRAM-MD5 LOGIN
250-SIZE 31457280
250-HELP
250-AUTH=LOGIN
250 STARTTLS
STARTTLS
220 Ready to start TLS

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
Browser Trusted
True

Certificate Chain

003453a4d97b61bb613c0d0ea9a201c240f127e3c2da4b88c2e41043ac1bf562
CN=*.webhostbox.net
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
7fa4ff68ec04a99d7528d5085f94907f4d1dd1c5381bacdc832ed5c960214676
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
C=US, ST=New Jersey, L=Jersey City, O=The USERTRUST Network, CN=USERTrust RSA Certification Authority
68b9c761219a5b1f0131784474665db61bbdb109e00f05ca9f74244ee5f5f52b
C=US, ST=New Jersey, L=Jersey City, O=The USERTRUST Network, CN=USERTrust RSA Certification Authority
C=GB, ST=Greater Manchester, L=Salford, O=Comodo CA Limited, CN=AAA Certificate Services

465/SMTP


Details

Banner Grab

Banner
220 PLESK-WEB19.webhostbox.net ESMTP MailEnable Service, Version: 9.81-9.81- ready at 11/24/20 01:29:14

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
Browser Trusted
True

Certificate Chain

003453a4d97b61bb613c0d0ea9a201c240f127e3c2da4b88c2e41043ac1bf562
CN=*.webhostbox.net
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA

587/SMTP


Details

Banner Grab and StartTLS Initiation

Banner
220 PLESK-WEB19.webhostbox.net ESMTP MailEnable Service, Version: 9.81-9.81- ready at 11/21/20 09:43:22
EHLO
250-PLESK-WEB19.webhostbox.net [192.35.168.160], this server offers 5 extensions
250-AUTH NTLM CRAM-MD5 LOGIN
250-SIZE 31457280
250-HELP
250-AUTH=LOGIN
250 STARTTLS
STARTTLS
220 Ready to start TLS

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
Browser Trusted
True

Certificate Chain

003453a4d97b61bb613c0d0ea9a201c240f127e3c2da4b88c2e41043ac1bf562
CN=*.webhostbox.net
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
7fa4ff68ec04a99d7528d5085f94907f4d1dd1c5381bacdc832ed5c960214676
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
C=US, ST=New Jersey, L=Jersey City, O=The USERTRUST Network, CN=USERTrust RSA Certification Authority
68b9c761219a5b1f0131784474665db61bbdb109e00f05ca9f74244ee5f5f52b
C=US, ST=New Jersey, L=Jersey City, O=The USERTRUST Network, CN=USERTrust RSA Certification Authority
C=GB, ST=Greater Manchester, L=Salford, O=Comodo CA Limited, CN=AAA Certificate Services

53/DNS


Details

Open Resolver Query

Open Resolver
True
Correct Answer
False

Answers

c.afekv.com (A)
208.91.197.91

110/POP3


Details

Banner Grab and StartTLS Initiation

Server
MailEnable
Banner
+OK Welcome to MailEnable POP3 Server <[email protected]>
STARTTLS
-ERR Unknown command

143/IMAP


Details

Banner Grab and StartTLS Initiation

Banner
* OK IMAP4rev1 server ready at 11/22/20 08:06:45
STARTTLS
a001 BAD UNKNOWN Command

993/IMAPS


Details

Banner Grab

Banner
* OK IMAP4rev1 server ready at 11/18/20 14:37:33

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
Browser Trusted
True

Certificate Chain

003453a4d97b61bb613c0d0ea9a201c240f127e3c2da4b88c2e41043ac1bf562
CN=*.webhostbox.net
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
7fa4ff68ec04a99d7528d5085f94907f4d1dd1c5381bacdc832ed5c960214676
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
C=US, ST=New Jersey, L=Jersey City, O=The USERTRUST Network, CN=USERTrust RSA Certification Authority
68b9c761219a5b1f0131784474665db61bbdb109e00f05ca9f74244ee5f5f52b
C=US, ST=New Jersey, L=Jersey City, O=The USERTRUST Network, CN=USERTrust RSA Certification Authority
C=GB, ST=Greater Manchester, L=Salford, O=Comodo CA Limited, CN=AAA Certificate Services

995/POP3S


Details

Banner Grab

Banner
+OK Welcome to MailEnable POP3 Server <[email protected]>

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
Browser Trusted
True

Certificate Chain

003453a4d97b61bb613c0d0ea9a201c240f127e3c2da4b88c2e41043ac1bf562
CN=*.webhostbox.net
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
7fa4ff68ec04a99d7528d5085f94907f4d1dd1c5381bacdc832ed5c960214676
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
C=US, ST=New Jersey, L=Jersey City, O=The USERTRUST Network, CN=USERTrust RSA Certification Authority
68b9c761219a5b1f0131784474665db61bbdb109e00f05ca9f74244ee5f5f52b
C=US, ST=New Jersey, L=Jersey City, O=The USERTRUST Network, CN=USERTrust RSA Certification Authority
C=GB, ST=Greater Manchester, L=Salford, O=Comodo CA Limited, CN=AAA Certificate Services

3306/MySQL


Details

Banner Grab

Version
(Unknown)
Protocol Version
0
Error Code
1130
Error
ER_HOST_NOT_PRIVILEGED
Error Message
Host 'worker-01.sfj.censys-scanner.com' is not allowed to connect to this MySQL server

1433/MSSQL


Details

Banner Grab

Version
11.0.5388
Encrypt Mode
ENCRYPT_ON

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)

Certificate Chain

8172/BANNER View Only


Details

Banner Info

Port
8172
Protocol
TCP
Decoded Banner
HTTP/1.1 404 Not Found
Server: Microsoft-IIS/8.5
Date: Tue, 24 Nov 2020 09:12:24 GMT
Connection: close
Content-Length: 0

8443/BANNER View Only


Details

Banner Info

Port
8443
Protocol
TCP
Decoded Banner
HTTP/1.1 303 See Other
Cache-Control: no-store, no-cache, must-revalidate,post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html; charset=UTF-8
Expires: Fri, 28 May 1999 00:00:00 GMT
Last-Modified: Tue, 24 Nov 2020 09:12:25 GMT
Location: https://208.91.199.147:8443/login.php?success_redirect_url=https%3A%2F%2F208.91.199.147%3A8443%2F
Server: 
P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET
Date: Tue, 24 Nov 2020 09:12:24 GMT
Content-Length: 220

<head><title>Document Moved</title></head>
<body><h1>Object Moved</h1>This document may be found <a HREF="https://208.91.199.147:8443/login.php?success_redirect_url=https%3A%2F%2F208.91.199.147%3A8443%2F">here</a></body>

8880/BANNER View Only


Details

Banner Info

Port
8880
Protocol
TCP
Decoded Banner
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://PLESK-WEB19.webhostbox.net:8443/
Server: 
X-Powered-By: ASP.NET
Date: Tue, 24 Nov 2020 09:12:23 GMT
Content-Length: 163

<head><title>Document Moved</title></head>
<body><h1>Object Moved</h1>This document may be found <a HREF="https://PLESK-WEB19.webhostbox.net:8443/">here</a></body>

Geographic Location

Country
United States (US)
Lat/Long
37.751, -97.822
Timezone
America/Chicago