45.91.132.147

Basic Information

Network
CAT-CLOUD-AP CAT Telecom Public Company Limited (TH)
Routing
45.91.132.0/24 via AS11164 , AS6939 , AS4651 , AS9931 , AS9335
Protocols
80/HTTP, 3306/MYSQL, 993/IMAPS, 465/SMTP, 995/POP3S, 25/SMTP, 110/POP3, 21/FTP, 143/IMAP, 53/DNS, 587/SMTP, 443/HTTPS, 22/SSH, 2222/BANNER, 4190/BANNER
Tags
ftp http https database pop3s smtp imaps pop3 ssh dns mysql imap

80/HTTP


Details Go

GET /

Server
Apache httpd 2
Status Line
200 OK
GET /
[view page]

443/HTTPS


Details Go

GET /

Server
Apache httpd 2
Status Line
200 OK
GET /
[view page]

Chrome TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Heartbleed

Heartbleed
Heartbeat Enabled. Immune to Heartbleed.

Cryptographic Configuration

Export RSA
False
DHE Support
True

Certificate Chain

f4ab1c82d4a7287d0a92e1fa600508dad898ceaa527c74151423e242c1e1ffdb
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]

21/FTP


Details

Banner Grab

Server
Pure-FTPd
Banner:
220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------
220-You are user number 2 of 50 allowed.
220-Local time is now 12:31. Server port: 21.
220-This is a private system - No anonymous login
220-IPv6 connections are also welcome on this server.
220 You will be disconnected after 15 minutes of inactivity.

22/SSH


Details

SSHv2 Handshake

Server
OpenSSH 7.4
Banner
SSH-2.0-OpenSSH_7.4

Host Key

Algorithm
ecdsa-sha2-nistp256
Fingerprint
f34d5823b2fee51622088259a1080635947c2169e381671b282f65960c11a5c0

Negotiated Algorithm

Key Exchange
[email protected]
Symmetric Cipher
aes128-ctr [] | aes128-ctr []
MAC
hmac-sha2-256 [] | hmac-sha2-256 []

25/SMTP


Details

Banner Grab and StartTLS Initiation

Server
Exim
Banner
220 sv01.tpqi.go.th ESMTP Exim 4.94.2 Sat, 16 Oct 2021 23:11:25 +0700
EHLO
250-sv01.tpqi.go.th Hello worker-11.sfj.censys-scanner.com [192.35.168.176]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPE_CONNECT
250-AUTH PLAIN LOGIN
250-STARTTLS
250 HELP
STARTTLS
220 TLS go ahead

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

aa59edf9e5419f96a5640003f4fd1cfee4fb76f6193a028e8f727062e70eee7d
C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]
C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]

465/SMTP


Details

Banner Grab

Banner
220 sv01.tpqi.go.th ESMTP Exim 4.94.2 Tue, 19 Oct 2021 13:27:30 +0700

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

aa59edf9e5419f96a5640003f4fd1cfee4fb76f6193a028e8f727062e70eee7d
C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]
C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]

587/SMTP


Details

Banner Grab and StartTLS Initiation

Server
Exim
Banner
220 sv01.tpqi.go.th ESMTP Exim 4.94.2 Sat, 16 Oct 2021 18:27:16 +0700
EHLO
250-sv01.tpqi.go.th Hello worker-05.sfj.censys-scanner.com [192.35.168.80]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPE_CONNECT
250-AUTH PLAIN LOGIN
250-STARTTLS
250 HELP
STARTTLS
220 TLS go ahead

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

aa59edf9e5419f96a5640003f4fd1cfee4fb76f6193a028e8f727062e70eee7d
C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]
C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]

53/DNS


Details

Open Resolver Query

Open Resolver
False

110/POP3


Details

Banner Grab and StartTLS Initiation

Server
Dovecot
Banner
+OK Dovecot DA ready.
STARTTLS
+OK Begin TLS negotiation now.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

aa59edf9e5419f96a5640003f4fd1cfee4fb76f6193a028e8f727062e70eee7d
C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]
C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]

143/IMAP


Details

Banner Grab and StartTLS Initiation

Server
Dovecot
Banner
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS AUTH=PLAIN] Dovecot DA ready.
STARTTLS
a001 OK Begin TLS negotiation now.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

aa59edf9e5419f96a5640003f4fd1cfee4fb76f6193a028e8f727062e70eee7d
C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]
C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]

993/IMAPS


Details

Banner Grab

Banner
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN] Dovecot DA ready.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

aa59edf9e5419f96a5640003f4fd1cfee4fb76f6193a028e8f727062e70eee7d
C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]
C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]

995/POP3S


Details

Banner Grab

Banner
+OK Dovecot DA ready.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

aa59edf9e5419f96a5640003f4fd1cfee4fb76f6193a028e8f727062e70eee7d
C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]
C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]

3306/MySQL


Details

Banner Grab

Version
(Unknown)
Protocol Version
0
Error Code
1130
Error
ER_HOST_NOT_PRIVILEGED
Error Message
Host 'worker-04.sfj.censys-scanner.com' is not allowed to connect to this MariaDB server

2222/BANNER View Only


Details

Banner Info

Port
2222
Protocol
TCP
Decoded Banner
HTTP/1.1 200 OK
Server: DirectAdmin Daemon v1.61.5 Registered to siamdata.co.th
X-Frame-Options: sameorigin
Set-Cookie: session=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT; HttpOnly
Connection: close
Cache-Control: no-cache
Pragma: no-cache
X-DirectAdmin: Unauthorized
Content-Type: text/html
X-language-list: en
X-language-default: en

<!DOCTYPE html>
<html>
    <head>
        <meta http-equiv="Content-Type" content="text/html; charset=utf-8;"/>
        <meta name="viewport" content="width=device-width, initial-scale=1"/>
        
        <title>
            45.91.132.147 | Login
        </title>
        <link rel="shortcut icon" href="/images/favicon.png" type="image/x-icon" />
        <meta name="robots" content="noindex,nofollow" />
        <script>
            var tokens = {
                LOST_PASSWORD: "no" === "yes",
                TIME: {
                    current: 1634643821 * 1000,
                    offset: 86400 * 1000,
                },
                AUTH_METHOD: "CMD_LOGIN

4190/BANNER View Only


Details

Banner Info

Port
4190
Protocol
TCP
Decoded Banner
"IMPLEMENTATION" "Dovecot Pigeonhole"
"SIEVE" "fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date index ihave duplicate mime foreverypart extracttext"
"NOTIFY" "mailto"
"SASL" "PLAIN"
"STARTTLS"
"VERSION" "1.0"
OK "Dovecot DA ready."

Geographic Location

City
Bangkok
Province
Bangkok
Country
Thailand (TH)
Lat/Long
13.7083, 100.4562
Timezone
Asia/Bangkok