122.155.202.97

Basic Information

OS
Windows
Network
CAT-CLOUD-AP CAT Telecom Public Company Limited (TH)
Routing
122.155.202.0/24 via AS6939 , AS4651 , AS9931 , AS9335
Protocols
80/HTTP, 3306/MYSQL, 993/IMAPS, 465/SMTP, 25/SMTP, 110/POP3, 53/DNS, 443/HTTPS, 5900/VNC, 2121/BANNER
Tags
pop3 remote_display http dns https database vnc mysql smtp imaps

80/HTTP


Details Go

GET /

Server
Microsoft IIS 8.5
Status Line
200 OK
Page Title
IIS Windows Server
GET /
[view page]

443/HTTPS


Details Go

GET /

Server
Microsoft HTTPAPI 2.0
Status Line
404 Not Found
Page Title
Not Found
GET /
[view page]

Chrome TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_RSA_WITH_AES_128_CBC_SHA (0x002F)

Heartbleed

Heartbleed
Heartbeat Disabled (OK)

Cryptographic Configuration

SSLv3 Support
True This host is vulnerable to the POODLE attack.
Export DHE
False
Export RSA
False
DHE Support
False

Certificate Chain

89109d55a2afd3096a96ed78e788d4ea6ffc43bb851a1651d2ae7f1c626a399f
C=TH, ST=Bangkok, L=Wangthonglang, O=IBC Advance Technology Co.,Ltd., CN=www.directbookingonline.com
C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA
154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f
C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Global Root CA

25/SMTP


Details

Banner Grab and StartTLS Initiation

Banner
220 mail.domain.com ESMTP IceWarp 10.0.7; Sat, 09 Oct 2021 16:02:27 +0700
EHLO
250-mail.domain.com Hello eecs.umich.edu [192.35.168.176], pleased to meet you.
250-ENHANCEDSTATUSCODES
250-SIZE
250-EXPN
250-ETRN
250-ATRN
250-DSN
250-CHECKPOINT
250-8BITMIME
250-AUTH CRAM-MD5 PLAIN LOGIN DIGEST-MD5
250-STARTTLS
250 HELP
STARTTLS
220 2.0.0 Ready to start TLS

TLS Handshake

Version
TLSv1.0
Cipher Suite
TLS_RSA_WITH_RC4_128_SHA (0x0005)

Certificate Chain

90426271779af721934ce87b003af9be7e8e15b0f648c6e90b09b3f621a45f77
C=CY, ST=Cyprus, L=Limassol, O=IceWarp Ltd, CN=*, [email protected]
C=CY, ST=Cyprus, L=Limassol, O=IceWarp Ltd, CN=*, [email protected]

465/SMTP


Details

Banner Grab

Banner
220 mail.domain.com ESMTP IceWarp 10.0.7; Tue, 12 Oct 2021 10:59:42 +0700

TLS Handshake

Version
TLSv1.0
Cipher Suite
TLS_RSA_WITH_RC4_128_SHA (0x0005)

Certificate Chain

90426271779af721934ce87b003af9be7e8e15b0f648c6e90b09b3f621a45f77
C=CY, ST=Cyprus, L=Limassol, O=IceWarp Ltd, CN=*, [email protected]
C=CY, ST=Cyprus, L=Limassol, O=IceWarp Ltd, CN=*, [email protected]

53/DNS


Details

Open Resolver Query

Open Resolver
True
Correct Answer
True

Answers

c.afekv.com (A)
192.150.186.1
c.afekv.com (A)
122.155.202.108

Authorities

afekv.com (NS)
ns1.afekv.com
afekv.com (NS)
ns2.afekv.com

Additionals

ns1.afekv.com (A)
54.173.204.206
ns2.afekv.com (A)
54.210.13.81

110/POP3


Details

Banner Grab and StartTLS Initiation

Banner
+OK mail.domain.com IceWarp 10.0.7 POP3 Sat, 09 Oct 2021 20:53:24 +0700 <[email protected]>
STARTTLS
+OK Ready to start TLS

TLS Handshake

Version
TLSv1.0
Cipher Suite
TLS_RSA_WITH_RC4_128_SHA (0x0005)

Certificate Chain

90426271779af721934ce87b003af9be7e8e15b0f648c6e90b09b3f621a45f77
C=CY, ST=Cyprus, L=Limassol, O=IceWarp Ltd, CN=*, [email protected]
C=CY, ST=Cyprus, L=Limassol, O=IceWarp Ltd, CN=*, [email protected]

993/IMAPS


Details

Banner Grab

Banner
* OK IceWarp 10.0.7 IMAP4rev1 Thu, 14 Oct 2021 05:19:30 +0700

TLS Handshake

Version
TLSv1.0
Cipher Suite
TLS_RSA_WITH_RC4_128_SHA (0x0005)

Certificate Chain

90426271779af721934ce87b003af9be7e8e15b0f648c6e90b09b3f621a45f77
C=CY, ST=Cyprus, L=Limassol, O=IceWarp Ltd, CN=*, [email protected]
C=CY, ST=Cyprus, L=Limassol, O=IceWarp Ltd, CN=*, [email protected]

3306/MySQL


Details

Banner Grab

Version
5.7.22-log
Protocol Version
10

5900/VNC


Details

Banner Grab

Version
RFB 005.000

2121/BANNER View Only


Details

Banner Info

Port
2121
Protocol
TCP
Decoded Banner
220 Xlight FTP Server 3.8 ready...

Geographic Location

Country
Thailand (TH)
Lat/Long
13.7442, 100.4608
Timezone
Asia/Bangkok