202.142.212.3

Basic Information

OS
Debian
Network
ISSP-AS-AP Internet Solution & Service Provider Co., Ltd. (TH)
Routing
202.142.192.0/19 via AS11164 , AS4637 , AS38082 , AS7654
Protocols
80/HTTP, 3306/MYSQL, 8080/HTTP, 993/IMAPS, 995/POP3S, 25/SMTP, 110/POP3, 21/FTP, 143/IMAP, 53/DNS, 587/SMTP, 443/HTTPS, 22/SSH

80/HTTP


Details Go

GET /

Server
nginx
Status Line
200 OK
Page Title
404 Not Found
GET /
[view page]

8080/HTTP


Details Go

GET /

Server
Apache httpd 2
Status Line
200 OK
Page Title
404 Not Found
GET /
[view page]

443/HTTPS


Details Go

GET /

Server
nginx
Status Line
200 OK
GET /
[view page]

Chrome TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Heartbleed

Heartbleed
Heartbeat Enabled. Immune to Heartbleed.

Cryptographic Configuration

Export DHE
False
Export RSA
False
DHE Support
True

Certificate Chain

b4924b3e5336885d299d43658948397e5300185c1ba7fa7da8d23b9154109aa9
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, emailAddress=webmaster@localhost
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, emailAddress=webmaster@localhost
7363593d116aafcf804b974465546e1f02ed74b52db529ba7520345e5fed1ed4
C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO High-Assurance Secure Server CA
C=SE, O=AddTrust AB, OU=AddTrust External TTP Network, CN=AddTrust External CA Root
687fa451382278fff0c8b11f8d43d576671c6eb2bceab413fb83d965d06d2ff2
C=SE, O=AddTrust AB, OU=AddTrust External TTP Network, CN=AddTrust External CA Root
C=SE, O=AddTrust AB, OU=AddTrust External TTP Network, CN=AddTrust External CA Root
ebd41040e4bb3ec742c9e381d31ef2a41a48b6685c96e7cef3c1df6cd4331c99
C=BE, O=GlobalSign nv-sa, OU=Root CA, CN=GlobalSign Root CA
C=BE, O=GlobalSign nv-sa, OU=Root CA, CN=GlobalSign Root CA
8d722f81a9c113c0791df136a2966db26c950a971db46b4199f4ea54b78bfb9f
C=US, O=thawte, Inc., OU=Certification Services Division, OU=(c) 2006 thawte, Inc. - For authorized use only, CN=thawte Primary Root CA
C=US, O=thawte, Inc., OU=Certification Services Division, OU=(c) 2006 thawte, Inc. - For authorized use only, CN=thawte Primary Root CA
64903546a58058d1e6f1bead1134ede66a6831d231f0df8d4e28535d7a300496
C=US, O=VeriSign, Inc., OU=VeriSign Trust Network, OU=Terms of use at https://www.verisign.com/rpa (c)10, CN=VeriSign Class 3 Secure Server CA - G3
C=US, O=VeriSign, Inc., OU=VeriSign Trust Network, OU=(c) 2006 VeriSign, Inc. - For authorized use only, CN=VeriSign Class 3 Public Primary Certification Authority - G5
8420dfbe376f414bf4c0a81e6936d24ccc03f304835b86c7a39142fca723a689
C=US, O=VeriSign, Inc., OU=VeriSign Trust Network, OU=(c) 2006 VeriSign, Inc. - For authorized use only, CN=VeriSign Class 3 Public Primary Certification Authority - G5
C=US, O=VeriSign, Inc., OU=Class 3 Public Primary Certification Authority

21/FTP


Details

Banner Grab

Server
Pure-FTPd
Banner:
220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------
220-You are user number 1 of 50 allowed.
220-Local time is now 23:47. Server port: 21.
220-This is a private system - No anonymous login
220-IPv6 connections are also welcome on this server.
220 You will be disconnected after 15 minutes of inactivity.

22/SSH


Details

SSHv2 Handshake

Server
OpenSSH 6.7p1
Banner
SSH-2.0-OpenSSH_6.7p1 Debian-5+deb8u3

Host Key

Algorithm
ecdsa-sha2-nistp256
Fingerprint
ada36fea776d101681143b72d0f158ebfd8f9130ec58ed49fa97adc3b6d6e25f

Negotiated Algorithm

Key Exchange
curve25519-sha256@libssh.org
Symmetric Cipher
aes128-ctr [] | aes128-ctr []
MAC
hmac-sha1 [] | hmac-sha1 []

25/SMTP


Details

Banner Grab and StartTLS Initiation

Server
Exim
Banner
220 ns.tht.in ESMTP Exim 4.87 Sun, 14 Jul 2019 00:56:49 +0700
EHLO
250-ns.tht.in Hello CLIENT_HOSTNAME [CLIENT_IP]
250-SIZE 20971520
250-8BITMIME
250-PIPELINING
250-AUTH PLAIN LOGIN
250-STARTTLS
250 HELP
STARTTLS
220 TLS go ahead

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

c8baa68863aeb0aabb56a0e0d070cd87cc6ae3bdafc2adccdf1a72b92b2b7b9c
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, emailAddress=webaster@localhost
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, emailAddress=webaster@localhost

587/SMTP


Details

Banner Grab and StartTLS Initiation

Server
Exim
Banner
220 ns.tht.in ESMTP Exim 4.87 Sat, 13 Jul 2019 15:10:06 +0700
EHLO
250-ns.tht.in Hello CLIENT_HOSTNAME [CLIENT_IP]
250-SIZE 20971520
250-8BITMIME
250-PIPELINING
250-AUTH PLAIN LOGIN
250-STARTTLS
250 HELP
STARTTLS
220 TLS go ahead

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

c8baa68863aeb0aabb56a0e0d070cd87cc6ae3bdafc2adccdf1a72b92b2b7b9c
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, emailAddress=webaster@localhost
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, emailAddress=webaster@localhost

53/DNS


Details

Open Resolver Query

Open Resolver
False

110/POP3


Details

Banner Grab and StartTLS Initiation

Server
Dovecot
Banner
+OK Dovecot DA ready.
STARTTLS
+OK Begin TLS negotiation now.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

c8baa68863aeb0aabb56a0e0d070cd87cc6ae3bdafc2adccdf1a72b92b2b7b9c
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, emailAddress=webaster@localhost
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, emailAddress=webaster@localhost

143/IMAP


Details

Banner Grab and StartTLS Initiation

Server
Dovecot
Banner
* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS AUTH=PLAIN] Dovecot DA ready.
STARTTLS
a001 OK Begin TLS negotiation now.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

c8baa68863aeb0aabb56a0e0d070cd87cc6ae3bdafc2adccdf1a72b92b2b7b9c
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, emailAddress=webaster@localhost
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, emailAddress=webaster@localhost

993/IMAPS


Details

Banner Grab

Banner
* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE AUTH=PLAIN] Dovecot DA ready.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

c8baa68863aeb0aabb56a0e0d070cd87cc6ae3bdafc2adccdf1a72b92b2b7b9c
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, emailAddress=webaster@localhost
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, emailAddress=webaster@localhost

995/POP3S


Details

Banner Grab

Banner
+OK Dovecot DA ready.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

c8baa68863aeb0aabb56a0e0d070cd87cc6ae3bdafc2adccdf1a72b92b2b7b9c
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, emailAddress=webaster@localhost
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, emailAddress=webaster@localhost

3306/MySQL


Details

Banner Grab

Version
(Unknown)
Protocol Version
0
Error Code
1130
Error
ER_HOST_NOT_PRIVILEGED
Error Message
Host 'CLIENT_HOSTNAME' is not allowed to connect to this MariaDB server

2222/TCP View Only


Details

Banner Info

Port
2222
Protocol
TCP
Banner
HTTP/1.1 200 OK
Server: DirectAdmin Daemon v1.57.2 Registered to DeeServer.NET
X-Frame-Options: sameorigin
Set-Cookie: session=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT; HttpOnly
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-DirectAdmin: Unauthorized
Content-Type: text/html

<html>
<head>
<title>DirectAdmin Login</title>
<meta name="robots" content="noindex,nofollow">
<style>
*{ FONT-SIZE: 8.5pt; FONT-FAMILY: verdana; } b { FONT-WEIGHT: bold; } .listtitle { BACKGROUND: #425984; COLOR: #EEEEEE; white-space: nowrap; border-radius: 3px; box-shadow: 1px 1px 3px #727272; } td.list { BACKGROUND: #EEEEEE; white-space: nowrap; } input { border-radius: 3px; padding-left: 4px; padding-right: 4px; } .inset { border: 1px inset #DDDDDD; } #footer { position: fixed; bottom: 0; width: 100%; padding-bottom: 20px; text-align: center; color: #A1A1A1; } #outofsync { font-weight: bold; color: #990000; }</style>
</head>
<body onload="document.form.username.focus();if(document.form.referer.value.inde

465/TCP View Only


Details

Banner Info

Port
465
Protocol
TCP

8081/TCP View Only


Details

Banner Info

Port
8081
Protocol
TCP
Banner
HTTP/1.1 400 Bad Request
Date: Sat, 20 Jul 2019 08:16:58 GMT
Server: Apache/2
Content-Length: 483
Connection: close
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>400 Bad Request</title>
</head><body>
<h1>Bad Request</h1>
<p>Your browser sent a request that this server could not understand.<br />
Reason: You're speaking plain HTTP to an SSL-enabled server port.<br />
 Instead use the HTTPS scheme to access this URL, please.<br />
</p>
<p>Additionally, a 400 Bad Request
error was encountered while trying to use an ErrorDocument to handle the request.</p>
</body></html>

Geographic Location

Country
Thailand (TH)
Lat/Long
13.75, 100.4667
Timezone
Asia/Bangkok