AnonymousSriLanka

Channel4.COM - MULTIPLE SERVERS - INFO LEAKED..!!

Mar 16th, 2012
273
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. Channel4.COM - MULTIPLE SERVERS - INFO LEAKED..!!
  2. (ATTACK NON-INTRUSIVE) - SSL-TLS KEYS/ROBOTS/RESTRICTED FOLDERS AND FILES
  3.  
  4. PROJECT DEDICATION: PROJECT SARADIYEL (http://en.wikipedia.org/wiki/Uthuwankande_Soora_Saradiyel)
  5.  
  6. EXCLUSIVE FROM - Anonymous Sri Lanka
  7.  
  8. WWW.CHANNEL4.COM -----> Servers Fuck3D and Bust3D
  9.  
  10. Primary Server Data Leak with Transferring (Data Leak)....!!
  11.  
  12. Hail to Anonymous, Lulzsec and Operation Anti-Sec...
  13.  
  14.  
  15. THIS ATTACK AGAINST THE DIRTIEST THINGS AGAINST THE SRI LANKA BY CHANNEL-4 .........!!!!!
  16.  
  17. SERVER(S):
  18. www.channel4.com/
  19. community.channel4.com/
  20. stats.channel4.com/
  21. web.channel4.com/
  22. webtrends.channel4.com/
  23. (83.98.28.10)
  24.  
  25.  
  26. 80/tcp open http syn-ack
  27. | http-methods: GET HEAD POST PUT DELETE TRACE OPTIONS
  28. | Potentially risky methods: PUT DELETE TRACE
  29. |
  30. | http-robots.txt: 13 disallowed entries
  31. | /culture/microsites/C/can_you_believe_it/debates/angry.html
  32. | /culture/microsites/C/can_you_believe_it/debates/angry1.html /culture/microsites/C/can_you_believe_it/debates/angry2.html
  33. | /event.ng/ /html.ng/ /js.ng/ /click.ng/ /image.ng/ /ads/ /ping.ng/
  34. | /food/competition/thankyou_p_1.html /food/competition/sorry_p_1.html
  35. |_/player/v2/player.jsp?showId=11662
  36. |_http-title: Channel 4
  37. |
  38. |_http-php-version: Credits query returned unknown hash eed71e88e0edc69d0b87baeffc6881b5
  39. |_http-favicon: Unknown favicon MD5: CFD4A1E92AF76D6B3A7D94BD7680EA35
  40. |_http-waf-detect: [ERROR] HTTP request table is empty. This should not ever happen because we at least made one request.
  41. |_http-userdir-enum: ERROR: http.pipeline returned nil
  42. | http-headers:
  43. | Content-Type: text/html; charset=UTF-8
  44. | Content-Language: en-GB
  45. | Content-Length: 23255
  46. | Date: Wed, 14 Mar 2012 21:02:06 GMT
  47. | Server: Apache
  48. | X-Powered-By: Servlet/2.4 JSP/2.0
  49. | Cache-Control: max-age=961
  50. | X-C4-Cache-Control: Short
  51. | X-Cache-Info: caching
  52. | Last-Modified: Wed, 14 Mar 2012 21:02:06 GMT
  53. | Vary: Accept-Encoding
  54. |
  55. |_ (Request type: GET)
  56. | http-email-harvest:
  57. | Spidering limited to: maxdepth=3; maxpagecount=20; withinhost=www.channel4.com
  58. |_ facebookRegistrationLive@channel4.co.uk
  59. | http-backup-finder:
  60. | Spidering limited to: maxdepth=3; maxpagecount=20; withinhost=www.channel4.com
  61. | http://www.channel4.com/search/{basename}.bak
  62. | http://www.channel4.com/search/{basename}.{suffix}~
  63. | http://www.channel4.com/search/{basename} copy.{suffix}
  64. | http://www.channel4.com/search/Copy of {basename}.{suffix}
  65. | http://www.channel4.com/search/Copy (2) of {basename}.{suffix}
  66. |_ http://www.channel4.com/search/{basename}.{suffix}.1
  67. |
  68. | http-vhosts:
  69. | 398 names had status 200
  70. | endeavour.channel4.com
  71. | channel4.com : 301 -> http://www.channel4.com/
  72. | admin.channel4.com : 301 -> http://www.channel4.com/admin
  73. | help.channel4.com : 301 -> http://www.channel4.com/4viewers/faq
  74. |_web.channel4.com : 301 -> http://www.channel4.com/
  75.  
  76. 443/tcp open https syn-ack
  77. |
  78. | ssl-cert: Subject: commonName=www.channel4.com/organizationName=Channel4 Television
  79.  
  80. Corp/stateOrProvinceName=London/countryName=GB/localityName=Westminster/organizationalUnitName=ISD
  81. | Issuer: organizationName=VeriSign Trust Network/organizationalUnitName=www.verisign.com/CPS Incorp.by Ref. LIABILITY LTD.(c)97 VeriSign
  82. | Public Key type: rsa
  83. | Public Key bits: 1024
  84. | Not valid before: 2010-02-24 00:00:00
  85. | Not valid after: 2012-04-22 23:59:59
  86. | MD5: b5e6 68ee 7f27 5e9b 185d 630a eb23 6eba
  87. | SHA-1: 0d4a ffbc 5f69 8226 7ecd 61f1 dacf bda7 d40f f3ad
  88. | -----BEGIN CERTIFICATE-----
  89. | MIIEcDCCA9mgAwIBAgIQDgd8P4LsgeJhncXF12zXEjANBgkqhkiG9w0BAQUFADCB
  90. | ujEfMB0GA1UEChMWVmVyaVNpZ24gVHJ1c3QgTmV0d29yazEXMBUGA1UECxMOVmVy
  91. | aVNpZ24sIEluYy4xMzAxBgNVBAsTKlZlcmlTaWduIEludGVybmF0aW9uYWwgU2Vy
  92. | dmVyIENBIC0gQ2xhc3MgMzFJMEcGA1UECxNAd3d3LnZlcmlzaWduLmNvbS9DUFMg
  93. | SW5jb3JwLmJ5IFJlZi4gTElBQklMSVRZIExURC4oYyk5NyBWZXJpU2lnbjAeFw0x
  94. | MDAyMjQwMDAwMDBaFw0xMjA0MjIyMzU5NTlaMIGAMQswCQYDVQQGEwJHQjEPMA0G
  95. | A1UECBMGTG9uZG9uMRQwEgYDVQQHFAtXZXN0bWluc3RlcjEhMB8GA1UEChQYQ2hh
  96. | bm5lbDQgVGVsZXZpc2lvbiBDb3JwMQwwCgYDVQQLFANJU0QxGTAXBgNVBAMUEHd3
  97. | dy5jaGFubmVsNC5jb20wgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAMyhKZK4
  98. | 8j+/NQMG4qT1BnDXomZqOyq37eGb0qGJAjqtnhsTWEX7j8nDA52RxkAG/y3/ARge
  99. | RA4mt9OLlvHGIuwgCkeAH37YZ70Suot9Mxz8luebV324489gIdZGtg6SPrTelKCV
  100. | ePJPHzCN9lUKpr2XECQtNYx87x4EedO5j8ufAgMBAAGjggGtMIIBqTAJBgNVHRME
  101. | AjAAMAsGA1UdDwQEAwIFoDA8BgNVHR8ENTAzMDGgL6AthitodHRwOi8vU1ZSSW50
  102. | bC1jcmwudmVyaXNpZ24uY29tL1NWUkludGwuY3JsMEQGA1UdIAQ9MDswOQYLYIZI
  103. | AYb4RQEHFwMwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cudmVyaXNpZ24uY29t
  104. | L3JwYTAoBgNVHSUEITAfBglghkgBhvhCBAEGCCsGAQUFBwMBBggrBgEFBQcDAjBx
  105. | BggrBgEFBQcBAQRlMGMwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLnZlcmlzaWdu
  106. | LmNvbTA7BggrBgEFBQcwAoYvaHR0cDovL1NWUkludGwtYWlhLnZlcmlzaWduLmNv
  107. | bS9TVlJJbnRsLWFpYS5jZXIwbgYIKwYBBQUHAQwEYjBgoV6gXDBaMFgwVhYJaW1h
  108. | Z2UvZ2lmMCEwHzAHBgUrDgMCGgQUS2u5KJYGDLvQUjibKaxLB4shBRgwJhYkaHR0
  109. | cDovL2xvZ28udmVyaXNpZ24uY29tL3ZzbG9nbzEuZ2lmMA0GCSqGSIb3DQEBBQUA
  110. | A4GBANKf86Ns9b70EmSXpBJLeT4fMqpUzGxLtdNYEf4IVx0tLdDIrXIX6cyV5q2H
  111. | iiJWc2kD029X5aPftT5E9xmbHX03zqjW2aFEFCSpkEJSU8dAXTfQ4fxAYVgUYd5Q
  112. | MWdr3aBUzgUCqxkAWLQOIiYv2nGR2G/SXqNeaIrxvbL+tgAH
  113. |_-----END CERTIFICATE-----
  114. |
  115. | http-headers:
  116. | Server: Apache
  117. | Cache-Control: no-cache
  118. | Content-Type: text/html; charset=UTF-8
  119. | Date: Wed, 14 Mar 2012 21:01:35 GMT
  120. | Keep-Alive: timeout=15, max=94
  121. | Accept-Ranges: bytes
  122. | Connection: close
  123. |
  124. |_ (Request type: HEAD)
  125. | http-methods: GET HEAD POST OPTIONS TRACE
  126. | Potentially risky methods: TRACE
  127. |
  128. | ssl-enum-ciphers:
  129. | SSLv3
  130. | Ciphers (5)
  131. | TLS_RSA_WITH_3DES_EDE_CBC_SHA - strong
  132. | TLS_RSA_WITH_AES_128_CBC_SHA - strong
  133. | TLS_RSA_WITH_AES_256_CBC_SHA - unknown strength
  134. | TLS_RSA_WITH_RC4_128_MD5 - unknown strength
  135. | TLS_RSA_WITH_RC4_128_SHA - strong
  136. | Compressors (1)
  137. | NULL
  138. | TLSv1.0
  139. | Ciphers (5)
  140. | TLS_RSA_WITH_3DES_EDE_CBC_SHA - strong
  141. | TLS_RSA_WITH_AES_128_CBC_SHA - strong
  142. | TLS_RSA_WITH_AES_256_CBC_SHA - unknown strength
  143. | TLS_RSA_WITH_RC4_128_MD5 - unknown strength
  144. | TLS_RSA_WITH_RC4_128_SHA - strong
  145. | Compressors (1)
  146. | NULL
  147. | TLSv1.1
  148. | Ciphers (5)
  149. | TLS_RSA_WITH_3DES_EDE_CBC_SHA - strong
  150. | TLS_RSA_WITH_AES_128_CBC_SHA - strong
  151. | TLS_RSA_WITH_AES_256_CBC_SHA - unknown strength
  152. | TLS_RSA_WITH_RC4_128_MD5 - unknown strength
  153. | TLS_RSA_WITH_RC4_128_SHA - strong
  154. | Compressors (1)
  155. | NULL
  156. |_ Least strength = unknown strength
  157. | http-vhosts:
  158. | 399 names had status 200
  159. | durable.channel4.com
  160. | channel4.com : 301 -> http://www.channel4.com/
  161. | admin.channel4.com : 301 -> http://www.channel4.com/admin
  162. | help.channel4.com : 301 -> http://www.channel4.com/4viewers/faq
  163. |_web.channel4.com : 301 -> http://www.channel4.com/
  164.  
  165. Host script results:
  166. | unusual-port:
  167. |
  168. |_path-mtu: PMTU == 1500
  169. |_ipidseq: Unknown [used port 21]
  170. | whois: Record found at whois.ripe.net
  171. | inetnum: 83.98.16.0 - 83.98.31.255
  172. | netname: IOKONET1
  173. | descr: ioko customer hosting block 2 - TH
  174. | country: GB
  175. | person: ioko FNS
  176. |_email: fns@ioko.com
  177. | asn-query:
  178. | BGP: 83.98.16.0/20 and 83.98.0.0/17 | Country: GB
  179. | Origin AS: 30914 - IOKO-AS AS for ioko365 Ltd
  180. |_ Peer AS: 174 702 6461 10310
  181. |
  182. | dns-brute:
  183. | DNS Brute-force hostnames
  184. | stage.channel4.com - 83.98.28.155
  185. | stats.channel4.com - 83.98.28.10
  186. | www.channel4.com - 83.98.28.10
  187. | test.channel4.com - 83.98.28.153
  188. | mail.channel4.com - 83.98.28.13
  189. | svn.channel4.com - 83.98.28.169
  190. | mobile.channel4.com - 78.136.16.192
  191. | wiki.channel4.com - 83.98.28.169
  192. | exchange.channel4.com - 62.25.109.162
  193. | admin.channel4.com - 83.98.28.47
  194. | ads.channel4.com - 212.62.19.199
  195. | help.channel4.com - 83.98.28.10
  196. | forum.channel4.com - 212.62.19.222
  197. | ftp.channel4.com - 83.98.28.12
  198. |_ cms.channel4.com - 83.98.28.140
  199. | qscan:
  200. | PORT FAMILY MEAN (us) STDDEV LOSS (%)
  201. | 21 0 398.60 60.00 0.0%
  202. | 80 1 421946.70 10990.80 0.0%
  203. |_443 1 453355.40 59791.93 0.0%
RAW Paste Data