61.91.2.102

Basic Information

Network
TIDCC-AS-AP True Internet Data Center Company Limited (TH)
Routing
61.91.2.0/24 via AS11164 , AS4637 , AS38082 , AS38082 , AS7470 , AS9287
Protocols
80/HTTP, 993/IMAPS, 465/SMTP, 995/POP3S, 25/SMTP, 110/POP3, 21/FTP, 143/IMAP, 53/DNS, 443/HTTPS, 587/SMTP, 2222/BANNER, 2223/BANNER
Tags
pop3 ftp http dns https pop3s smtp imap imaps

80/HTTP


Details Go

GET /

Server
Apache httpd 2
Status Line
200 OK
GET /
[view page]

443/HTTPS


Details Go

GET /

Server
Apache httpd 2
Status Line
200 OK
GET /
[view page]

Chrome TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)
Browser Trusted
True

Heartbleed

Heartbleed
Heartbeat Enabled. Immune to Heartbleed.

Cryptographic Configuration

Export DHE
False
Export RSA
False
DHE Support
True

Certificate Chain

8ea238712984b0142b5c8eeae62bb237a5abd54c735c61c38ed83ae1791e80eb
OU=Domain Control Validated, OU=Hosted by OnlineNic Inc, OU=COMODO SSL Wildcard, CN=*.eggdigital.com
C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Domain Validation Secure Server CA
02ab57e4e67a0cb48dd2ff34830e8ac40f4476fb08ca6be3f5cd846f646840f0
C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Domain Validation Secure Server CA
C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Certification Authority
4f32d5dc00f715250abcc486511e37f501a899deb3bf7ea8adbbd3aef1c412da
C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Certification Authority
C=SE, O=AddTrust AB, OU=AddTrust External TTP Network, CN=AddTrust External CA Root

21/FTP


Details

Banner Grab

Banner:
220 ProFTPD Server ready.

25/SMTP


Details

Banner Grab and StartTLS Initiation

Server
Exim
Banner
220 ns1.eggdigital.com ESMTP Exim 4.92.3 Sun, 20 Sep 2020 03:25:34 +0700
EHLO
250-ns1.eggdigital.com Hello worker-09.sfj.censys-scanner.com [192.35.168.144]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-AUTH PLAIN LOGIN
250-STARTTLS
250 HELP
STARTTLS
220 TLS go ahead

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

383d9b35b61149e7f4c704acc499398d4a8f08d76df4328f2dbb916af79c0bf6
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]

465/SMTP


Details

Banner Grab

Banner
220 ns1.eggdigital.com ESMTP Exim 4.92.3 Tue, 22 Sep 2020 06:36:09 +0700

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

383d9b35b61149e7f4c704acc499398d4a8f08d76df4328f2dbb916af79c0bf6
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]

587/SMTP


Details

Banner Grab and StartTLS Initiation

Server
Exim
Banner
220 ns1.eggdigital.com ESMTP Exim 4.92.3 Sat, 19 Sep 2020 18:47:11 +0700
EHLO
250-ns1.eggdigital.com Hello worker-02.sfj.censys-scanner.com [192.35.168.32]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-AUTH PLAIN LOGIN
250-STARTTLS
250 HELP
STARTTLS
220 TLS go ahead

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

383d9b35b61149e7f4c704acc499398d4a8f08d76df4328f2dbb916af79c0bf6
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]

53/DNS


Details

Open Resolver Query

Open Resolver
False

110/POP3


Details

Banner Grab and StartTLS Initiation

Server
Dovecot
Banner
+OK Dovecot DA ready.
STARTTLS
+OK Begin TLS negotiation now.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

383d9b35b61149e7f4c704acc499398d4a8f08d76df4328f2dbb916af79c0bf6
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]

143/IMAP


Details

Banner Grab and StartTLS Initiation

Server
Dovecot
Banner
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS AUTH=PLAIN] Dovecot DA ready.
STARTTLS
a001 OK Begin TLS negotiation now.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

383d9b35b61149e7f4c704acc499398d4a8f08d76df4328f2dbb916af79c0bf6
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]

993/IMAPS


Details

Banner Grab

Banner
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN] Dovecot DA ready.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

383d9b35b61149e7f4c704acc499398d4a8f08d76df4328f2dbb916af79c0bf6
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]

995/POP3S


Details

Banner Grab

Banner
+OK Dovecot DA ready.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)

Certificate Chain

383d9b35b61149e7f4c704acc499398d4a8f08d76df4328f2dbb916af79c0bf6
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]
C=US, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost, [email protected]

2222/BANNER View Only


Details

Banner Info

Port
2222
Protocol
TCP
Decoded Banner
HTTP/1.1 302 Found
Server: DirectAdmin Daemon v1.59.5
Location: https://ns1.eggdigital.com:2222
x-use-https: yes
Content-type: text/html

use https

2223/BANNER View Only


Details

Banner Info

Port
2223
Protocol
TCP
Decoded Banner
SSH-2.0-OpenSSH_6.0p1 Debian-4+deb7u6
Protocol mismatch.

Geographic Location

Country
Thailand (TH)
Lat/Long
13.7442, 100.4608
Timezone
Asia/Bangkok