122.155.171.96

Basic Information

OS
Windows
Network
CAT-CLOUD-AP CAT Telecom Public Company Limited (TH)
Routing
122.155.160.0/19 via AS11164 , AS6939 , AS4651 , AS9931 , AS9335
Protocols
80/HTTP, 445/SMB, 25/SMTP, 110/POP3, 21/FTP, 143/IMAP, 53/DNS, 443/HTTPS, 587/SMTP, 3389/RDP
Tags
ftp https http rdp smtp smb pop3 dns remote_display imap

80/HTTP


Details Go

GET /

Server
Microsoft IIS 7.5
Status Line
200 OK
Page Title
WorldClient
GET /
[view page]

443/HTTPS


Details Go

GET /

Server
Microsoft IIS 7.5
Status Line
200 OK
GET /
[view page]

Chrome TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
Browser Trusted
True

Heartbleed

Heartbleed
Heartbeat Disabled (OK)

Cryptographic Configuration

SSLv3 Support
True This host is vulnerable to the POODLE attack.
Export DHE
False
Export RSA
False
DHE Support
True

Certificate Chain

79edaa636ce110b56334130f70b1d783e7e6b42c7ef55e06e5dddf54885d280b
OU=Domain Control Validated, CN=www.isoptik.com
C=US, ST=Arizona, L=Scottsdale, O=Starfield Technologies, Inc., OU=http://certs.starfieldtech.com/repository/, CN=Starfield Secure Certificate Authority - G2
93a07898d89b2cca166ba6f1f8a14138ce43828e491b831926bc8247d391cc72
C=US, ST=Arizona, L=Scottsdale, O=Starfield Technologies, Inc., OU=http://certs.starfieldtech.com/repository/, CN=Starfield Secure Certificate Authority - G2
C=US, ST=Arizona, L=Scottsdale, O=Starfield Technologies, Inc., CN=Starfield Root Certificate Authority - G2
9f43d52e808c20aff69e02faac205aac684e6975213d6620fac64bde5fcab4bc
C=US, ST=Arizona, L=Scottsdale, O=Starfield Technologies, Inc., CN=Starfield Root Certificate Authority - G2
C=US, O=Starfield Technologies, Inc., OU=Starfield Class 2 Certification Authority

21/FTP


Details

Banner Grab

Server
FileZilla 0.9.41
Banner:
220 FileZilla Server version 0.9.41 beta Welcome to Yes-Hosting FTP

445/SMB


Details

SMB Server

Version
SMB 2.1
SMBv1
False

Capability Flags

Distributed File System
True
Leasing
True
Multi-credit Operations
True
Multi-channel Sessions
false
Persistent Handles
false
Directory Leasing
false
Encryption
false

Negotiation Log

Security Mode
1
Authentication Types
1.3.6.1.4.1.311.2.2.30
1.3.6.1.4.1.311.2.2.10

Session

Target Name
WWM171-96

25/SMTP


Details

Banner Grab and StartTLS Initiation

Banner
220 wwm171-96.yes-hosting.com ESMTP Sat, 16 Oct 2021 20:49:40 +0700
EHLO
250-wwm171-96.yes-hosting.com Hello eecs.umich.edu [192.35.168.176], pleased to meet you
250-ETRN
250-AUTH LOGIN CRAM-MD5 PLAIN
250-8BITMIME
250-ENHANCEDSTATUSCODES
250 SIZE 20480000
STARTTLS
454 4.7.0 TLS not available

587/SMTP


Details

Banner Grab and StartTLS Initiation

Banner
220 wwm171-96.yes-hosting.com ESMTP MSA Sat, 16 Oct 2021 11:16:39 +0700
EHLO
250-wwm171-96.yes-hosting.com Hello eecs.umich.edu [192.35.168.80], pleased to meet you
250-AUTH LOGIN CRAM-MD5 PLAIN
250-8BITMIME
250-ENHANCEDSTATUSCODES
250 SIZE 20480000
STARTTLS
454 4.7.0 TLS not available

53/DNS


Details

Open Resolver Query

Open Resolver
False

110/POP3


Details

Banner Grab and StartTLS Initiation

Banner
+OK wwm171-96.yes-hosting.com POP3 ready <[email protected]>
STARTTLS
-ERR NO TLS not available

143/IMAP


Details

Banner Grab and StartTLS Initiation

Banner
* OK wwm171-96.yes-hosting.com IMAP4rev1 ready
STARTTLS
a001 NO TLS not available

3389/RDP


Details

Banner Grab

Server
Remote Desktop 5.0
Major/Minor Version
5 / 0
Security Protocol
TLS (1)

Support

dynvc_graphics_pipeline
(Unknown)
neg_resp_reserved
(Unknown)
restricted_admin_mode
True
extended_client_data_supported
True

Geographic Location

Country
Thailand (TH)
Lat/Long
13.7442, 100.4608
Timezone
Asia/Bangkok