37.1.203.236

Basic Information

Network
SERVERIUS-AS (NL)
Routing
37.1.200.0/21 via AS11164 , AS6461 , AS50673
Protocols
80/HTTP, 3306/MYSQL, 993/IMAPS, 465/SMTP, 995/POP3S, 25/SMTP, 110/POP3, 21/FTP, 143/IMAP, 53/DNS, 587/SMTP, 22/SSH, 2525/BANNER, 8083/BANNER

80/HTTP


Details Go

GET /

Server
nginx
Status Line
404 Not Found
Page Title
404 Not Found
GET /
[view page]

21/FTP


Details

Banner Grab

Server
vsftpd 2.2.2
Banner:
220 (vsFTPd 2.2.2)

22/SSH


Details

SSHv2 Handshake

Server
OpenSSH 5.3
Banner
SSH-2.0-OpenSSH_5.3

Host Key

Algorithm
ssh-rsa
Fingerprint
0a6319bd4ba845346a25e36cace6fd179aaef288c266662fd1ec079ab36c92b6

Negotiated Algorithm

Key Exchange
diffie-hellman-group14-sha1
Symmetric Cipher
aes128-ctr [] | aes128-ctr []
MAC
hmac-sha2-256 [] | hmac-sha2-256 []

25/SMTP


Details

Banner Grab and StartTLS Initiation

Server
Exim
Banner
220 server.domain.com ESMTP Exim 4.92.3 Sat, 25 Jan 2020 23:25:41 +0300
EHLO
250-server.domain.com Hello CLIENT_HOSTNAME [CLIENT_IP]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-AUTH PLAIN LOGIN
250-CHUNKING
250-STARTTLS
250 HELP
STARTTLS
220 TLS go ahead

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

a9d43f826a73d1aa32eccc7536d0b8862e8c8db3e2688fa7d5950dd8c7a220b9
C=US, ST=Denial, L=Springfield, O=Dis, CN=www.server.domain.com
C=US, ST=Denial, L=Springfield, O=Dis, CN=www.server.domain.com

465/SMTP


Details

Banner Grab

Banner
220 server.domain.com ESMTP Exim 4.92.3 Mon, 20 Jan 2020 23:32:34 +0300

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

a9d43f826a73d1aa32eccc7536d0b8862e8c8db3e2688fa7d5950dd8c7a220b9
C=US, ST=Denial, L=Springfield, O=Dis, CN=www.server.domain.com
C=US, ST=Denial, L=Springfield, O=Dis, CN=www.server.domain.com

587/SMTP


Details

Banner Grab and StartTLS Initiation

Server
Exim
Banner
220 server.domain.com ESMTP Exim 4.92.3 Sat, 25 Jan 2020 14:41:33 +0300
EHLO
250-server.domain.com Hello CLIENT_HOSTNAME [CLIENT_IP]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-AUTH PLAIN LOGIN
250-CHUNKING
250-STARTTLS
250 HELP
STARTTLS
220 TLS go ahead

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

a9d43f826a73d1aa32eccc7536d0b8862e8c8db3e2688fa7d5950dd8c7a220b9
C=US, ST=Denial, L=Springfield, O=Dis, CN=www.server.domain.com
C=US, ST=Denial, L=Springfield, O=Dis, CN=www.server.domain.com

53/DNS


Details

Open Resolver Query

Open Resolver
False

110/POP3


Details

Banner Grab and StartTLS Initiation

Server
Dovecot
Banner
+OK Dovecot ready.
STARTTLS
+OK Begin TLS negotiation now.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_RSA_WITH_RC4_128_SHA (0x0005)

Certificate Chain

a9d43f826a73d1aa32eccc7536d0b8862e8c8db3e2688fa7d5950dd8c7a220b9
C=US, ST=Denial, L=Springfield, O=Dis, CN=www.server.domain.com
C=US, ST=Denial, L=Springfield, O=Dis, CN=www.server.domain.com

143/IMAP


Details

Banner Grab and StartTLS Initiation

Server
Dovecot
Banner
* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot ready.
STARTTLS
a001 OK Begin TLS negotiation now.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_RSA_WITH_RC4_128_SHA (0x0005)

Certificate Chain

a9d43f826a73d1aa32eccc7536d0b8862e8c8db3e2688fa7d5950dd8c7a220b9
C=US, ST=Denial, L=Springfield, O=Dis, CN=www.server.domain.com
C=US, ST=Denial, L=Springfield, O=Dis, CN=www.server.domain.com

993/IMAPS


Details

Banner Grab

Banner
* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE AUTH=PLAIN AUTH=LOGIN] Dovecot ready.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_RSA_WITH_RC4_128_SHA (0x0005)

Certificate Chain

a9d43f826a73d1aa32eccc7536d0b8862e8c8db3e2688fa7d5950dd8c7a220b9
C=US, ST=Denial, L=Springfield, O=Dis, CN=www.server.domain.com
C=US, ST=Denial, L=Springfield, O=Dis, CN=www.server.domain.com

995/POP3S


Details

Banner Grab

Banner
+OK Dovecot ready.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_RSA_WITH_RC4_128_SHA (0x0005)

Certificate Chain

a9d43f826a73d1aa32eccc7536d0b8862e8c8db3e2688fa7d5950dd8c7a220b9
C=US, ST=Denial, L=Springfield, O=Dis, CN=www.server.domain.com
C=US, ST=Denial, L=Springfield, O=Dis, CN=www.server.domain.com

3306/MySQL


Details

Banner Grab

Version
5.6.34-79.1-log
Protocol Version
10

2525/BANNER View Only


Details

Banner Info

Port
2525
Protocol
TCP
Decoded Banner
554 SMTP synchronization error

8083/BANNER View Only


Details

Banner Info

Port
8083
Protocol
TCP
Decoded Banner
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Tue, 21 Jan 2020 06:34:54 GMT
Content-Type: text/html
Content-Length: 154
Connection: close
Location: https://37.1.203.236:8083/

<html>
<head><title>302 Found</title></head>
<body bgcolor="white">
<center><h1>302 Found</h1></center>
<hr><center>nginx</center>
</body>
</html>

Geographic Location

Country
Netherlands (NL)
Lat/Long
52.3824, 4.8995
Timezone
Europe/Amsterdam