Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- root@kali:~# ping bitcoinfield.net
- PING bitcoinfield.net (190.115.24.246) 56(84) bytes of data.
- 64 bytes from noddos.org (190.115.24.246): icmp_req=1 ttl=49 time=51.0 ms
- 64 bytes from noddos.org (190.115.24.246): icmp_req=2 ttl=49 time=50.9 ms
- 64 bytes from noddos.org (190.115.24.246): icmp_req=3 ttl=49 time=52.0 ms
- root@kali:~# nmap -sS -sV 190.115.24.246 -O --version-intensity 9 -vv
- Starting Nmap 6.47 ( http://nmap.org ) at 2015-05-03 21:55 EDT
- NSE: Loaded 29 scripts for scanning.
- Initiating Ping Scan at 21:55
- Scanning 190.115.24.246 [4 ports]
- Completed Ping Scan at 21:55, 0.10s elapsed (1 total hosts)
- Initiating Parallel DNS resolution of 1 host. at 21:55
- Completed Parallel DNS resolution of 1 host. at 21:55, 0.01s elapsed
- Initiating SYN Stealth Scan at 21:55
- Scanning noddos.org (190.115.24.246) [1000 ports]
- Discovered open port 3306/tcp on 190.115.24.246
- Discovered open port 53/tcp on 190.115.24.246
- Discovered open port 21/tcp on 190.115.24.246
- Discovered open port 143/tcp on 190.115.24.246
- Discovered open port 80/tcp on 190.115.24.246
- Discovered open port 443/tcp on 190.115.24.246
- Discovered open port 995/tcp on 190.115.24.246
- Discovered open port 993/tcp on 190.115.24.246
- Discovered open port 110/tcp on 190.115.24.246
- Discovered open port 22/tcp on 190.115.24.246
- Discovered open port 465/tcp on 190.115.24.246
- Completed SYN Stealth Scan at 21:55, 13.01s elapsed (1000 total ports)
- Initiating Service scan at 21:55
- Scanning 11 services on noddos.org (190.115.24.246)
- Completed Service scan at 21:56, 27.31s elapsed (11 services on 1 host)
- Initiating OS detection (try #1) against noddos.org (190.115.24.246)
- Retrying OS detection (try #2) against noddos.org (190.115.24.246)
- NSE: Script scanning 190.115.24.246.
- NSE: Starting runlevel 1 (of 1) scan.
- Initiating NSE at 21:56
- Completed NSE at 21:56, 2.10s elapsed
- Nmap scan report for noddos.org (190.115.24.246)
- Host is up (0.056s latency).
- Scanned at 2015-05-03 21:55:19 EDT for 48s
- Not shown: 987 filtered ports
- PORT STATE SERVICE VERSION
- 21/tcp open ftp Pure-FTPd
- 22/tcp open ssh OpenSSH 5.3 (protocol 2.0)
- 26/tcp closed rsftp
- 53/tcp open tcpwrapped
- 80/tcp open http nginx
- 110/tcp open pop3 Dovecot pop3d
- 143/tcp open imap Dovecot imapd
- 443/tcp open http nginx
- 465/tcp open ssl/smtp Exim smtpd 4.85
- 993/tcp open ssl/imap Dovecot imapd
- 995/tcp open ssl/pop3 Dovecot pop3d
- 3306/tcp open mysql MySQL (unauthorized)
- 8080/tcp closed http-proxy
- OS fingerprint not ideal because: Didn't receive UDP response. Please try again with -sSU
- Aggressive OS guesses: Cisco Unified Communications Manager VoIP adapter (96%), Linux 2.6.26 (PCLinuxOS) (96%), 2.6.32 (93%), Linux 3.4 (93%), Linux 3.5 (93%), Linux 2.6.18 (93%), Linux 2.6.32 (93%), Linux 2.6.9 - 2.6.18 (92%), Linux 3.1 - 3.2 (92%), Linux 2.6.39 (92%)
- No exact OS matches for host (test conditions non-ideal).
- TCP/IP fingerprint:
- SCAN(V=6.47%E=4%D=5/3%OT=21%CT=26%CU=%PV=N%G=N%TM=5546D1B7%P=i686-pc-linux-gnu)
- SEQ(SP=108%GCD=2%ISR=10A%TI=Z%II=I%TS=A)
- SEQ(II=I)
- ECN(R=N)
- T1(R=Y%DF=Y%TG=40%S=O%A=S+%F=AS%RD=0%Q=)
- T1(R=N)
- T2(R=N)
- T3(R=N)
- T4(R=N)
- T5(R=Y%DF=Y%TG=40%W=0%S=Z%A=S+%F=AR%O=%RD=0%Q=)
- T6(R=N)
- T7(R=N)
- U1(R=N)
- IE(R=Y%DFI=N%TG=40%CD=S)
- Service Info: Host: dedicated.ddos-guard.net
- Read data files from: /usr/bin/../share/nmap
- OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 48.89 seconds
- Raw packets sent: 3063 (138.808KB) | Rcvd: 94 (7.836KB)
- root@kali:~# fierce -dns 190.115.24.246
- Trying zone transfer first...
- Unsuccessful in zone transfer (it was worth a shot)
- Okay, trying the good old fashioned way... brute force
- Checking for wildcard DNS...
- Nope. Good.
- Now performing 2280 test(s)...
- 24-115-190-190.cab.prima.net.ar. 190.190.115.24.246
- 18.73.be.static.xlhost.com. 209.190.115.24.246
- n003-000-000-000.static.ge.com. 3.190.115.24.246
- dialup-4.190.115.24.Dial1.Chicago1.Level3.net. 4.190.115.24.246
- 59-190-115-24f1.osk2.eonet.ne.jp. 59.190.115.24.246
- Subnets found (may want to probe here using nmap or unicornscan):
- 18.73.be.0-255 : 1 hostnames found.
- 24-115-190-190.cab.prima.0-255 : 1 hostnames found.
- 59-190-115-24f1.osk2.eonet.0-255 : 1 hostnames found.
- dialup-4.190.115.0-255 : 1 hostnames found.
- n003-000-000-000.static.ge.0-255 : 1 hostnames found.
- Done with Fierce scan: http://ha.ckers.org/fierce/
- Found 5 entries.
- Have a nice day.
- root@kali:~# unicornscan 190.115.24.246
- TCP open ssh[ 22] from 190.115.24.246 ttl 49
- TCP open smtp[ 25] from 190.115.24.246 ttl 49
- TCP open domain[ 53] from 190.115.24.246 ttl 50
- TCP open http[ 80] from 190.115.24.246 ttl 50
- TCP open pop3[ 110] from 190.115.24.246 ttl 49
- TCP open imap[ 143] from 190.115.24.246 ttl 49
- TCP open https[ 443] from 190.115.24.246 ttl 50
- TCP open imaps[ 993] from 190.115.24.246 ttl 49
- TCP open pop3s[ 995] from 190.115.24.246 ttl 49
- TCP open mysql[ 3306] from 190.115.24.246 ttl 49
- root@kali:~# urlcrazy -p -i noddos.org
- URLCrazy Domain Report
- Domain : noddos.org
- Keyboard : qwerty
- At : 2015-05-03 22:36:12 -0400
- # Please wait. 140 hostnames to process
- Typo Type Typo Valid Pop DNS-A CC-A DNS-MX Extn
- ----------------------------------------------------------------------------------------------------------------------------
- Character Omission nddos.org true ? org
- Character Omission noddo.org true 65.99.225.75 US,UNITED STATES spmx1.neubox.net org
- Character Omission noddos.og false ?
- Character Omission noddos.or false ?
- Character Omission noddos.rg false ?
- Character Omission noddosorg false ?
- Character Omission nodds.org true ? org
- Character Omission nodos.org true 46.16.56.53 ES,SPAIN ASPMX4.GOOGLEMAIL.COM org
- Character Repeat nnoddos.org true ? org
- Character Repeat nodddos.org true ? org
- Character Repeat noddoos.org true ? org
- Character Repeat noddos..org false ? org
- Character Repeat noddos.oorg false ?
- Character Repeat noddos.orgg false ?
- Character Repeat noddos.orrg false ?
- Character Repeat noddoss.org true ? org
- Character Repeat nooddos.org true ? org
- Character Swap ndodos.org true ? org
- Character Swap noddo.sorg false ?
- Character Swap noddos.ogr false ?
- Character Swap noddos.rog false ?
- Character Swap noddoso.rg false ?
- Character Swap noddso.org true ? org
- Character Swap nodods.org true ? org
- Character Swap onddos.org true ? org
- Character Replacement boddos.org true ? org
- Character Replacement moddos.org true ? org
- Character Replacement niddos.org true ? org
- Character Replacement noddis.org true ? org
- Character Replacement noddoa.org true ? org
- Character Replacement noddod.org true ? org
- Character Replacement noddos.irg false ?
- Character Replacement noddos.oeg false ?
- Character Replacement noddos.orf false ?
- Character Replacement noddos.orh false ?
- Character Replacement noddos.otg false ?
- Character Replacement noddos.prg false ?
- Character Replacement noddps.org true ? org
- Character Replacement nodfos.org true ? org
- Character Replacement nodsos.org true ? org
- Character Replacement nofdos.org true ? org
- Character Replacement nosdos.org true ? org
- Character Replacement npddos.org true ? org
- Double Character Replacement noffos.org true ? org
- Double Character Replacement nossos.org true ? org
- Character Insertion nboddos.org true ? org
- Character Insertion nmoddos.org true ? org
- Character Insertion noddfos.org true ? org
- Character Insertion noddois.org true ? org
- Character Insertion noddops.org true ? org
- Character Insertion noddos.oirg false ?
- Character Insertion noddos.oprg false ?
- Character Insertion noddos.oreg false ?
- Character Insertion noddos.orgf false ?
- Character Insertion noddos.orgh false ?
- Character Insertion noddos.ortg false ?
- Character Insertion noddosa.org true ? org
- Character Insertion noddosd.org true ? org
- Character Insertion noddsos.org true ? org
- Character Insertion nodfdos.org true ? org
- Character Insertion nodsdos.org true ? org
- Character Insertion noiddos.org true ? org
- Character Insertion nopddos.org true ? org
- Missing Dot noddosorg.com true ? com
- Missing Dot wwwnoddos.org true ? org
- Vowel Swap naddas.arg false ?
- Vowel Swap neddes.erg false ?
- Vowel Swap niddis.irg false ?
- Vowel Swap nuddus.urg false ?
- Homophones knowddos.org true ? org
- Homophones naahedos.org true ? org
- Homophones noddews.org true ? org
- Homophones noddos.oarg false ?
- Homophones noddues.org true ? org
- Bit Flipping .oddos.org true 213.186.33.19 FR,FRANCE mx1.ovh.net org
- Bit Flipping foddos.org true ? org
- Bit Flipping joddos.org true ? org
- Bit Flipping loddos.org true ? org
- Bit Flipping ngddos.org true ? org
- Bit Flipping nkddos.org true ? org
- Bit Flipping nmddos.org true ? org
- Bit Flipping nnddos.org true ? org
- Bit Flipping noddgs.org true ? org
- Bit Flipping noddks.org true ? org
- Bit Flipping noddms.org true ? org
- Bit Flipping noddns.org true ? org
- Bit Flipping noddo3.org true ? org
- Bit Flipping noddoc.org true ? org
- Bit Flipping noddoq.org true ? org
- Bit Flipping noddor.org true ? org
- Bit Flipping noddos.grg false ?
- Bit Flipping noddos.krg false ?
- Bit Flipping noddos.mrg false ?
- Bit Flipping noddos.nrg false ?
- Bit Flipping noddos.o2g false ?
- Bit Flipping noddos.obg false ?
- Bit Flipping noddos.opg false ?
- Bit Flipping noddos.orc false ?
- Bit Flipping noddos.ore false ?
- Bit Flipping noddos.oro false ?
- Bit Flipping noddos.orw false ?
- Bit Flipping noddos.osg false ?
- Bit Flipping noddos.ovg false ?
- Bit Flipping noddos.ozg false ?
- Bit Flipping noddosnorg false ?
- Bit Flipping noddow.org true ? org
- Bit Flipping nodeos.org true ? org
- Bit Flipping nodlos.org true ? org
- Bit Flipping nodtos.org true ? org
- Bit Flipping noedos.org true ? org
- Bit Flipping noldos.org true ? org
- Bit Flipping notdos.org true ? org
- Bit Flipping ooddos.org true ? org
- Homoglyphs n0dd0s.0rg false ?
- Homoglyphs n0dd0s.org true ? org
- Homoglyphs n0ddos.0rg false ?
- Homoglyphs n0ddos.org true ? org
- Homoglyphs noclclos.org true ? org
- Homoglyphs nocldos.org true ? org
- Homoglyphs nodclos.org true ? org
- Homoglyphs nodd0s.0rg false ?
- Homoglyphs nodd0s.org true ? org
- Homoglyphs noddos.0rg false ?
- Wrong TLD noddos.au false ?
- Wrong TLD noddos.ca true ? ca
- Wrong TLD noddos.ch true ? ch
- Wrong TLD noddos.com true 173.230.146.58 US,UNITED STATES mail2.gatelinker.com com
- Wrong TLD noddos.de true ? de
- Wrong TLD noddos.edu true ? edu
- Wrong TLD noddos.es true ? es
- Wrong TLD noddos.fr true ? fr
- Wrong TLD noddos.it true ? it
- Wrong TLD noddos.jp true ? jp
- Wrong TLD noddos.net true 58.180.47.10 KR,KOREA REPUBLIC OF mx04.register.com net
- Wrong TLD noddos.nl true ? nl
- Wrong TLD noddos.no true ? no
- Wrong TLD noddos.ru true 195.128.50.45 պ, mailx.hoster.ru ru
- Wrong TLD noddos.se true ? se
- Wrong TLD noddos.uk false ?
- Wrong TLD noddos.us true ? us
- root@kali:~# dmitry -winsepfb -t 9 190.115.24.246
- Deepmagic Information Gathering Tool
- "There be some deep magic going on"
- HostIP:190.115.24.246
- HostName:noddos.org
- Gathered Inet-whois information for 190.115.24.246
- ---------------------------------
- inetnum: 190.115.24.246/32
- status: reallocated
- owner: noddos.org
- ownerid: RU-NODD-LACNIC
- responsible: Alexey Ivanov
- address: prospekt pobedy, 70, s
- address: 119027 - Moscow -
- country: RU
- phone: +7 964 5984104 []
- owner-c: ALI18
- tech-c: ALI18
- abuse-c: ALI18
- created: 20141209
- changed: 20141209
- inetnum-up: 190.115.16/20
- nic-hdl: ALI18
- person: aleksey ivanov
- e-mail: alekc96@MAIL.RU
- address: Москва, 11902,
- address: - Москва -
- country: RU
- phone: +7 79645984104 []
- created: 20141208
- changed: 20141208
- % whois.lacnic.net accepts only direct match queries.
- % Types of queries are: POCs, ownerid, CIDR blocks, IP
- % and AS numbers.
- Gathered Inic-whois information for noddos.org
- ---------------------------------
- Domain Name:NODDOS.ORG
- Domain ID: D173673926-LROR
- Creation Date: 2014-08-20T18:12:29Z
- Updated Date: 2014-12-06T22:23:16Z
- Registry Expiry Date: 2015-08-20T18:12:29Z
- Sponsoring Registrar:PDR Ltd. d/b/a PublicDomainRegistry.com (R27-LROR)
- Sponsoring Registrar IANA ID: 303
- WHOIS Server:
- Referral URL:
- Domain Status: clientTransferProhibited -- http://www.icann.org/epp#clientTransferProhibited
- Registrant ID:PP-SP-001
- Registrant Name:Domain Admin
- d/b�N/a APrib�e�ҿvacyProivacy �ecti Service INC
- �tec���t.org
- ���
- Registrant Street: C/O ID#10760, PO Box 16
- Registrant Street: Note - Visit PrivacyProtect.org
- Registrant Street: to contact the domain owner/operator
- Registrant City:Nobby Beach
- Registrant State/Province:Queensland
- Registrant Postal Code:QLD 4218
- Registrant Country:AU
- Registrant Phone:+45.36946676
- Registrant Phone Ext:
- Registrant Fax:
- Registrant Fax Ext:
- Registrant Email:contact@privacyprotect.org
- Admin ID:PP-SP-001
- Admin Name:Domain Admin
- Admin Organization:Privacy Protection Service INC d/b/a PrivacyProtect.org
- Admin Street: C/O ID#10760, PO Box 16
- Admin Street: Note - Visit PrivacyProtect.org
- Admin Street: to contact the domain owner/operator
- Admin City:Nobby Beach
- Admin State/Province:Queensland
- Admin Postal Code:QLD 4218
- Admin Country:AU
- Admin Phone:+45.36946676
- Admin Phone Ext:
- Admin Fax:
- Admin Fax Ext:
- Admin Email:contact@privacyprotect.org
- Tech ID:PP-SP-001
- Tech Name:Domain Admin
- Tech Organization:Privacy Protection Service INC d/b/a PrivacyProtect.org
- Tech Street: C/O ID#10760, PO Box 16
- Tech Street: Note - Visit PrivacyProtect.org
- Tech Street: to contact the domain owner/operator
- Tech City:Nobby Beach
- Tech State/Province:Queensland
- Tech Postal Code:QLD 4218
- Tech Country:AU
- Tech Phone:+45.36946676
- Tech Phone Ext:
- Tech Fax:
- Tech Fax Ext:
- Tech Email:contact@privacyprotect.org
- Name Server:NS1.NODDOS.ORG
- Name Server:NS2.NODDOS.ORG
- Name Server:
- Name Server:
- Name Server:
- Name Server:
- Name Server:
- Name Server:
- Name Server:
- Name Server:
- Name Server:
- Name Server:
- Name Server:
- DNSSEC:Unsigned
- exit
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement