Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ##########################################################################################
- Hostname www.sweet-youngs.com ISP Quasi Networks LTD. (AS29073)
- Continent Africa Flag
- SC
- Country Seychelles Country Code SC (SYC)
- Region Unknown Local time 09 Sep 2017 22:32 +04
- City Unknown Latitude -4.583
- IP Address 94.102.48.35 Longitude 55.667
- ##########################################################################################
- sweet-youngs.com
- whois sweet-youngs.com
- Domain Name: SWEET-YOUNGS.COM
- Registry Domain ID: 1465281305_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.nic.ru
- Registrar URL: http://nic.ru
- Updated Date: 2017-04-27T10:45:09Z
- Creation Date: 2008-05-05T09:26:43Z
- Registry Expiry Date: 2018-05-05T09:26:43Z
- Registrar: Regional Network Information Center, JSC dba RU-CENTER
- Registrar IANA ID: 463
- Registrar Abuse Contact Email: tld-abuse@nic.ru
- Registrar Abuse Contact Phone: +7 (495) 994-46-01
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Name Server: NS1.DXGIRLZ.COM
- Name Server: NS2.DXGIRLZ.COM
- DNSSEC: unsigned
- URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/
- Domain Name: SWEET-YOUNGS.COM
- Registry Domain ID: 1465281305_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.nic.ru
- Registrar URL: http://www.nic.ru
- Creation Date: 2008-05-05T09:26:43Z
- Registrar Registration Expiration Date: 2018-05-04T21:00:00Z
- Registrar: Regional Network Information Center, JSC dba RU-CENTER
- Registrar IANA ID: 463
- Registrar Abuse Contact Email: tld-abuse@nic.ru
- Registrar Abuse Contact Phone: +7.4959944601
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Registry Registrant ID:
- Registrant Name: Evgeniy Kahanov
- Registrant Organization: Evgeniy Kahanov
- Registrant Street: 12 Saharova str., 7
- Registrant City: Lvov
- Registrant Postal Code: 79019
- Registrant Country: UA
- Registrant Phone: +380.322320539
- Registrant Phone Ext:
- Registrant Email: karalama10@mail.ru
- Registry Admin ID:
- Admin Name: Evgeniy Kahanov
- Admin Organization: Evgeniy Kahanov
- Admin Street: 12 Saharova str., 7
- Admin City: Lvov
- Admin Postal Code: 79019
- Admin Country: UA
- Admin Phone: +380.322320539
- Admin Phone Ext:
- Admin Email: karalama10@mail.ru
- Registry Tech ID:
- Tech Name: Evgeniy Kahanov
- Tech Organization: Evgeniy Kahanov
- Tech Street: 12 Saharova str., 7
- Tech City: Lvov
- Tech Postal Code: 79019
- Tech Country: UA
- Tech Phone: +380.322320539
- Tech Phone Ext:
- Tech Email: karalama10@mail.ru
- Name Server: ns1.dxgirlz.com
- Name Server: ns2.dxgirlz.com
- DNSSEC: unsigned
- URL of the ICANN WHOIS Data Problem Reporting System: http://wdprs.internic.net/
- For more information on Whois status codes, please visit: https://icann.org/epp
- >>> Last update of WHOIS database: 2017.09.09T18:35:41Z <<<
- ###########################################################################################
- ;sweet-youngs.com. IN ANY
- ;; ANSWER SECTION:
- sweet-youngs.com. 3334 IN A 94.102.48.35
- sweet-youngs.com. 3334 IN NS ns1.dxgirlz.com.
- sweet-youngs.com. 3334 IN NS ns2.dxgirlz.com.
- ###########################################################################################
- tcptraceroute -i eth0 sweet-youngs.com
- Running:
- traceroute -T -O info -i eth0 sweet-youngs.com
- traceroute to sweet-youngs.com (94.102.48.35), 30 hops max, 60 byte packets
- 1 gateway (192.168.1.254) 0.553 ms 0.759 ms 0.930 ms
- 2 10.135.18.1 (10.135.18.1) 7.273 ms 7.366 ms 7.849 ms
- 3 75.154.223.222 (75.154.223.222) 29.858 ms 29.946 ms 30.016 ms
- 4 lag-113.ear3.NewYork1.Level3.net (4.15.212.245) 150.329 ms 150.800 ms 150.878 ms
- 5 ae-240-3616.edge6.Amsterdam1.Level3.net (4.69.162.254) 104.612 ms 104.701 ms 105.129 ms
- 6 * * *
- 7 no-reverse-dns-configured.com (94.102.48.35) <syn,ack> 103.339 ms 103.912 ms 103.767 ms
- ###########################################################################################
- [*] Performing TLD Brute force Enumeration against sweet-youngs.com
- [*] The operation could take up to: 00:01:07
- [*] A sweet-youngs.biz.af 5.45.75.45
- [*] A sweet-youngs.co.asia 91.195.240.135
- [*] CNAME sweet-youngs.biz.at free.biz.at
- [*] A free.biz.at 216.92.134.29
- [*] A sweet-youngs.org.aw 142.4.20.12
- [*] A sweet-youngs.co.ba 176.9.45.78
- [*] A sweet-youngs.com.ba 195.222.33.180
- [*] A sweet-youngs.com.be 95.173.170.166
- [*] A sweet-youngs.biz.by 71.18.52.2
- [*] A sweet-youngs.biz.bz 199.59.242.150
- [*] A sweet-youngs.com.cc 54.252.107.64
- [*] A sweet-youngs.net.cc 54.252.89.206
- [*] A sweet-youngs.co.cc 175.126.123.219
- [*] A sweet-youngs.org.ch 72.52.4.122
- [*] A sweet-youngs.co.cm 85.25.140.105
- [*] A sweet-youngs.biz.cl 185.53.178.8
- [*] A sweet-youngs.net.cm 85.25.140.105
- [*] A sweet-youngs.com.com 52.33.196.199
- [*] A sweet-youngs.net.com 199.59.242.150
- [*] A sweet-youngs.org.com 23.23.86.44
- [*] A sweet-youngs.co.com 173.192.115.17
- [*] A sweet-youngs.com 94.102.48.35
- [*] A sweet-youngs.biz.cr 72.52.4.122
- [*] CNAME sweet-youngs.biz.cm i.cns.cm
- [*] A i.cns.cm 118.184.56.30
- [*] A sweet-youngs.biz.cx 72.52.4.122
- [*] A sweet-youngs.biz.cz 185.53.179.7
- [*] A sweet-youngs.net.cz 80.250.24.177
- [*] A sweet-youngs.com.cz 62.109.128.30
- [*] A sweet-youngs.com.de 50.56.68.37
- [*] CNAME sweet-youngs.org.de www.org.de
- [*] A www.org.de 78.47.128.8
- [*] CNAME sweet-youngs.co.de co.de
- [*] A co.de 144.76.162.245
- [*] A sweet-youngs.org.eu 78.46.90.98
- [*] A sweet-youngs.biz.fi 185.55.85.123
- [*] A sweet-youngs.net.eu 78.46.90.98
- [*] A sweet-youngs.fm 173.230.131.38
- [*] A sweet-youngs.biz.fm 173.230.131.38
- [*] A sweet-youngs.org.fr 149.202.133.35
- [*] A sweet-youngs.biz.gl 72.52.4.122
- [*] CNAME sweet-youngs.co.gp co.gp
- [*] A co.gp 144.76.162.245
- [*] A sweet-youngs.co.hn 208.100.40.203
- [*] CNAME sweet-youngs.net.hr net.hr
- [*] A net.hr 192.0.78.25
- [*] A net.hr 192.0.78.24
- [*] A sweet-youngs.co.ht 72.52.4.122
- [*] CNAME sweet-youngs.biz.hn parkmydomain.vhostgo.com
- [*] A parkmydomain.vhostgo.com 107.186.245.118
- [*] A sweet-youngs.co.jobs 50.17.193.222
- [*] A sweet-youngs.com.jobs 50.19.241.165
- [*] A sweet-youngs.net.jobs 50.19.241.165
- [*] A sweet-youngs.biz.jobs 50.19.241.165
- [*] A sweet-youngs.org.jobs 50.19.241.165
- [*] A sweet-youngs.biz.ky 199.184.144.27
- [*] CNAME sweet-youngs.biz.li 712936.parkingcrew.net
- [*] A 712936.parkingcrew.net 185.53.179.29
- [*] A sweet-youngs.biz.lu 195.26.5.2
- [*] A sweet-youngs.biz.ly 64.136.20.39
- [*] A sweet-youngs.biz.md 72.52.4.122
- [*] A sweet-youngs.co.mk 87.76.31.211
- [*] A sweet-youngs.co.mobi 54.225.105.179
- [*] A sweet-youngs.biz.my 202.190.174.44
- [*] A sweet-youngs.co.net 188.166.216.219
- [*] A sweet-youngs.net.net 52.50.81.210
- [*] A sweet-youngs.org.net 23.23.86.44
- [*] A sweet-youngs.com.nl 83.98.157.102
- [*] A sweet-youngs.net.nl 83.98.157.102
- [*] A sweet-youngs.co.nl 37.97.184.204
- [*] A sweet-youngs.co.nr 208.100.40.202
- [*] CNAME sweet-youngs.co.nu co.nu
- [*] A co.nu 144.76.162.245
- [*] CNAME sweet-youngs.com.nu com.nu
- [*] A com.nu 144.76.162.245
- [*] A sweet-youngs.net.nu 199.102.76.78
- [*] A sweet-youngs.org.nu 80.92.84.139
- [*] A sweet-youngs.com.org 23.23.86.44
- [*] CNAME sweet-youngs.net.org pewtrusts.org
- [*] A pewtrusts.org 204.74.99.100
- [*] A sweet-youngs.ph 45.79.222.138
- [*] A sweet-youngs.co.ph 45.79.222.138
- [*] A sweet-youngs.com.ph 45.79.222.138
- [*] A sweet-youngs.net.ph 45.79.222.138
- [*] A sweet-youngs.org.ph 45.79.222.138
- [*] A sweet-youngs.org.pm 208.73.210.217
- [*] A sweet-youngs.org.pm 208.73.210.202
- [*] A sweet-youngs.org.pm 208.73.211.165
- [*] A sweet-youngs.org.pm 208.73.211.177
- [*] A sweet-youngs.co.pl 212.91.6.55
- [*] A sweet-youngs.co.ps 66.96.132.56
- [*] A sweet-youngs.co.pt 194.107.127.52
- [*] CNAME sweet-youngs.biz.ps biz.ps
- [*] A biz.ps 144.76.162.245
- [*] A sweet-youngs.pw 141.8.226.58
- [*] A sweet-youngs.co.pw 141.8.226.59
- [*] A sweet-youngs.net.pw 141.8.226.59
- [*] A sweet-youngs.biz.pw 141.8.226.59
- [*] A sweet-youngs.org.pw 141.8.226.59
- [*] A sweet-youngs.org.re 217.70.184.38
- [*] A sweet-youngs.net.ro 69.64.52.127
- [*] CNAME sweet-youngs.co.ro now.co.ro
- [*] A now.co.ro 185.27.255.9
- [*] A sweet-youngs.com.ru 178.210.89.119
- [*] A sweet-youngs.biz.se 54.72.9.51
- [*] CNAME sweet-youngs.net.se 773147.parkingcrew.net
- [*] A 773147.parkingcrew.net 185.53.179.29
- [*] A sweet-youngs.co.sl 91.195.240.135
- [*] A sweet-youngs.com.sr 143.95.106.249
- [*] A sweet-youngs.biz.st 91.121.28.115
- [*] A sweet-youngs.co.su 72.52.4.122
- [*] A sweet-youngs.biz.tc 64.136.20.39
- [*] A sweet-youngs.biz.tf 85.236.153.18
- [*] A sweet-youngs.net.tf 188.40.70.29
- [*] A sweet-youngs.net.tf 188.40.117.12
- [*] A sweet-youngs.net.tf 188.40.70.27
- [*] A sweet-youngs.co.tl 208.100.40.202
- [*] A sweet-youngs.co.to 175.118.124.44
- [*] A sweet-youngs.co.tv 31.186.25.163
- [*] A sweet-youngs.biz.tv 72.52.4.122
- [*] A sweet-youngs.org.tv 72.52.4.122
- [*] CNAME sweet-youngs.biz.uz biz.uz
- [*] A biz.uz 144.76.162.245
- [*] A sweet-youngs.vg 88.198.29.97
- [*] A sweet-youngs.co.vg 88.198.29.97
- [*] A sweet-youngs.com.vg 88.198.29.97
- [*] A sweet-youngs.net.vg 68.178.254.180
- [*] A sweet-youngs.biz.vg 89.31.143.20
- [*] A sweet-youngs.ws 64.70.19.203
- [*] A sweet-youngs.com.ws 202.4.48.211
- [*] A sweet-youngs.net.ws 202.4.48.211
- [*] A sweet-youngs.org.ws 202.4.48.211
- [*] A sweet-youngs.biz.ws 184.168.221.104
- ###########################################################################################
- Checking for HTTP-Loadbalancing [Date]: 16:34:47, 16:34:47, 16:34:47, 16:34:47, 16:34:48, 16:34:48, 16:34:48, 16:34:49, 16:34:49, 16:34:49, 16:34:49, 16:34:50, 16:34:50, 16:34:50, 16:34:50, 16:34:51, 16:34:51, 16:34:51, 16:34:51, 16:34:52, 16:34:52, 16:34:52, 16:34:52, 16:34:53, 16:34:53, 16:34:53, 16:34:53, 16:34:54, 16:34:54, 16:34:54, 16:34:54, 16:34:55, 16:34:55, 16:34:55, 16:34:56, 16:34:56, 16:34:56, 16:34:56, 16:34:57, 16:34:57, 16:34:57, 16:34:57, 16:34:58, 16:34:58, 16:34:58, 16:34:58, 16:34:59, 16:34:59, 16:34:59, 16:34:59, NOT FOUND
- Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
- sweet-youngs.com does NOT use Load-balancing.
- ###########################################################################################
- ###########################################################################################
- nmap -PN -n -F -T4 -sV -A -oG temp.txt sweet-youngs.com
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 14:36 EDT
- Nmap scan report for sweet-youngs.com (94.102.48.35)
- Host is up (0.12s latency).
- Not shown: 84 closed ports
- PORT STATE SERVICE VERSION
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 25/tcp filtered smtp
- 53/tcp open domain ISC BIND 9.8.2rc1
- | dns-nsid:
- |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4
- 80/tcp open http nginx 1.12.1
- |_http-server-header: nginx/1.12.1
- |_http-title: Did not follow redirect to http://www.sweet-youngs.com/new.html
- 81/tcp filtered hosts2-ns
- 110/tcp open pop3 Dovecot pop3d
- |_pop3-capabilities: SASL(PLAIN LOGIN DIGEST-MD5 CRAM-MD5) STLS RESP-CODES UIDL CAPA PIPELINING TOP USER
- | ssl-cert: Subject: commonName=imap.example.com
- | Not valid before: 2015-06-12T12:04:14
- |_Not valid after: 2016-06-11T12:04:14
- |_ssl-date: 2017-09-09T16:35:42+00:00; -2h01m10s from scanner time.
- 135/tcp filtered msrpc
- 139/tcp filtered netbios-ssn
- 143/tcp open imap Dovecot imapd
- |_imap-capabilities: IMAP4rev1 STARTTLS ID AUTH=CRAM-MD5A0001 SASL-IR AUTH=LOGIN IDLE Capability OK AUTH=DIGEST-MD5 LOGIN-REFERRALS ENABLE completed AUTH=PLAIN LITERAL+
- | ssl-cert: Subject: commonName=imap.example.com
- | Not valid before: 2015-06-12T12:04:14
- |_Not valid after: 2016-06-11T12:04:14
- |_ssl-date: 2017-09-09T16:35:40+00:00; -2h01m10s from scanner time.
- 445/tcp filtered microsoft-ds
- 465/tcp filtered smtps
- 587/tcp filtered submission
- 993/tcp open ssl/imap Dovecot imapd
- |_imap-capabilities: AUTH=PLAIN ID AUTH=CRAM-MD5A0001 SASL-IR AUTH=LOGIN IDLE Capability OK AUTH=DIGEST-MD5 LOGIN-REFERRALS ENABLE completed IMAP4rev1 LITERAL+
- | ssl-cert: Subject: commonName=imap.example.com
- | Not valid before: 2015-06-12T12:04:14
- |_Not valid after: 2016-06-11T12:04:14
- |_ssl-date: 2017-09-09T16:35:38+00:00; -2h01m10s from scanner time.
- 995/tcp open ssl/pop3 Dovecot pop3d
- | ssl-cert: Subject: commonName=imap.example.com
- | Not valid before: 2015-06-12T12:04:14
- |_Not valid after: 2016-06-11T12:04:14
- |_ssl-date: 2017-09-09T16:35:37+00:00; -2h01m10s from scanner time.
- 3306/tcp open mysql MySQL (unauthorized)
- Device type: general purpose|firewall|storage-misc|WAP|webcam
- Running (JUST GUESSING): Linux 2.6.X|3.X|4.X|2.4.X (99%), WatchGuard Fireware 11.X (94%), Synology DiskStation Manager 5.X (94%), Tandberg embedded (90%)
- OS CPE: cpe:/o:linux:linux_kernel:2.6.39 cpe:/o:linux:linux_kernel:3.10 cpe:/o:watchguard:fireware:11.8 cpe:/o:linux:linux_kernel cpe:/a:synology:diskstation_manager:5.1 cpe:/o:linux:linux_kernel:4.2 cpe:/o:linux:linux_kernel:2.4 cpe:/h:tandberg:vcs
- Aggressive OS guesses: Linux 2.6.39 (99%), Linux 2.6.32 (94%), Linux 2.6.32 or 3.10 (94%), Linux 3.4 (94%), WatchGuard Fireware 11.8 (94%), Synology DiskStation Manager 5.1 (94%), Linux 3.10 (94%), Linux 3.1 - 3.2 (94%), Linux 2.6.32 - 2.6.39 (92%), Linux 2.6.32 - 3.0 (91%)
- No exact OS matches for host (test conditions non-ideal).
- Network Distance: 11 hops
- Service Info: OS: Red Hat Enterprise Linux 6; CPE: cpe:/o:redhat:enterprise_linux:6
- Host script results:
- |_clock-skew: mean: -2h01m10s, deviation: 0s, median: -2h01m10s
- TRACEROUTE (using port 1723/tcp)
- HOP RTT ADDRESS
- 1 109.40 ms 10.13.0.1
- 2 ...
- 3 109.94 ms 178.33.103.231
- 4 111.29 ms 10.95.33.10
- 5 119.53 ms 91.121.131.19
- 6 119.32 ms 94.23.122.217
- 7 ...
- 8 124.31 ms 176.10.83.128
- 9 120.32 ms 176.10.83.5
- 10 ...
- 11 120.34 ms 94.102.48.35
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 35.62 seconds
- ###########################################################################################
- amap -i temp.txt
- amap v5.4 (www.thc.org/thc-amap) started at 2017-09-09 14:36:58 - APPLICATION MAPPING mode
- Protocol on 94.102.48.35:80/tcp matches http
- Protocol on 94.102.48.35:80/tcp matches http-apache-2
- Protocol on 94.102.48.35:110/tcp matches pop3
- Protocol on 94.102.48.35:143/tcp matches imap
- Protocol on 94.102.48.35:3306/tcp matches mysql
- Protocol on 94.102.48.35:3306/tcp matches mysql-secured
- Protocol on 94.102.48.35:995/tcp matches ssl
- Protocol on 94.102.48.35:993/tcp matches ssl
- Protocol on 94.102.48.35:53/tcp matches dns
- Unidentified ports: none.
- amap v5.4 finished at 2017-09-09 14:37:16
- ###########################################################################################
- inetnum: 94.102.48.0 - 94.102.48.150
- netname: SC-QUASI58
- descr: QUASI
- country: SC
- org: ORG-QNL3-RIPE
- admin-c: QNL1-RIPE
- tech-c: QNL1-RIPE
- status: ASSIGNED PA
- mnt-by: QUASINETWORKS-MNT
- mnt-lower: QUASINETWORKS-MNT
- mnt-routes: QUASINETWORKS-MNT
- created: 2011-05-07T22:25:22Z
- last-modified: 2016-01-23T22:29:27Z
- source: RIPE
- organisation: ORG-QNL3-RIPE
- org-name: Quasi Networks LTD.
- org-type: OTHER
- address: Suite 1, Second Floor
- address: Sound & Vision House, Francis Rachel Street
- address: Victoria, Mahe, SEYCHELLES
- remarks: *****************************************************************************
- remarks: IMPORTANT INFORMATION
- remarks: *****************************************************************************
- remarks: We are a high bandwidth network provider offering bandwidth solutions.
- remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
- remarks: Please only use abuse@quasinetworks.com for abuse reports.
- remarks: For all other requests, please see the details on our website.
- remarks: *****************************************************************************
- abuse-mailbox: abuse@quasinetworks.com
- abuse-c: AR34302-RIPE
- mnt-ref: QUASINETWORKS-MNT
- mnt-by: QUASINETWORKS-MNT
- created: 2015-11-08T22:25:26Z
- last-modified: 2015-11-27T09:37:50Z
- source: RIPE # Filtered
- role: Quasi Networks LTD
- address: Suite 1, Second Floor
- address: Sound & Vision House, Francis Rachel Street
- address: Victoria, Mahe, SEYCHELLES
- remarks: *****************************************************************************
- remarks: IMPORTANT INFORMATION
- remarks: *****************************************************************************
- remarks: We are a high bandwidth network provider offering bandwidth solutions.
- remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
- remarks: Please only use abuse@quasinetworks.com for abuse reports.
- remarks: For all other requests, please see the details on our website.
- remarks: *****************************************************************************
- abuse-mailbox: abuse@quasinetworks.com
- nic-hdl: QNL1-RIPE
- mnt-by: QUASINETWORKS-MNT
- created: 2015-11-07T22:43:04Z
- last-modified: 2015-11-07T23:04:49Z
- source: RIPE # Filtered
- % Information related to '94.102.48.0/20AS29073'
- route: 94.102.48.0/20
- descr: Quasi Networks LTD (IBC)
- origin: AS29073
- mnt-by: QUASINETWORKS-MNT
- created: 2008-09-02T11:55:23Z
- last-modified: 2016-01-23T22:40:05Z
- source: RIPE
- ########################################################################################
- *] Performing General Enumeration of Domain:
- [*] Checking for Zone Transfer for sweet-youngs.com name servers
- [*] Resolving SOA Record
- [-] Error while resolving SOA record.
- [*] Resolving NS Records
- [*] NS Servers found:
- [*] NS ns1.dxgirlz.com 93.174.93.111
- [*] NS ns2.dxgirlz.com 192.133.136.162
- [*] Removing any duplicate NS server IP Addresses...
- [*]
- [*] Trying NS server 93.174.93.111
- [+] 93.174.93.111 Has port 53 TCP Open
- [+] Zone Transfer was successful!!
- [*] NS ns1.dxgirlz.com 93.174.93.111
- [*] NS ns2.dxgirlz.com 192.133.136.162
- [*] TXT v=spf1 ip4:93.174.93.111 a mx ~all
- [*] A @.sweet-youngs.com 94.102.48.35
- [*] A www.sweet-youngs.com 94.102.48.35
- [*]
- [*] Trying NS server 192.133.136.162
- [+] 192.133.136.162 Has port 53 TCP Open
- [+] Zone Transfer was successful!!
- [*] NS ns1.dxgirlz.com 93.174.93.111
- [*] NS ns2.dxgirlz.com 192.133.136.162
- [*] TXT v=spf1 ip4:93.174.93.111 a mx ~all
- [*] A @.sweet-youngs.com 94.102.48.35
- [*] A www.sweet-youngs.com 94.102.48.35
- [*] Checking for Zone Transfer for sweet-youngs.com name servers
- [*] Resolving SOA Record
- [-] Error while resolving SOA record.
- [*] Resolving NS Records
- [*] NS Servers found:
- [*] NS ns2.dxgirlz.com 192.133.136.162
- [*] NS ns1.dxgirlz.com 93.174.93.111
- [*] Removing any duplicate NS server IP Addresses...
- [*]
- [*] Trying NS server 93.174.93.111
- [+] 93.174.93.111 Has port 53 TCP Open
- [+] Zone Transfer was successful!!
- [*] NS ns1.dxgirlz.com 93.174.93.111
- [*] NS ns2.dxgirlz.com 192.133.136.162
- [*] TXT v=spf1 ip4:93.174.93.111 a mx ~all
- [*] A @.sweet-youngs.com 94.102.48.35
- [*] A www.sweet-youngs.com 94.102.48.35
- [*]
- [*] Trying NS server 192.133.136.162
- [+] 192.133.136.162 Has port 53 TCP Open
- [+] Zone Transfer was successful!!
- [*] NS ns1.dxgirlz.com 93.174.93.111
- [*] NS ns2.dxgirlz.com 192.133.136.162
- [*] TXT v=spf1 ip4:93.174.93.111 a mx ~all
- [*] A @.sweet-youngs.com 94.102.48.35
- [*] A www.sweet-youngs.com 94.102.48.35
- [-] DNSSEC is not configured for sweet-youngs.com
- [-] Error while resolving SOA record.
- [*] NS ns1.dxgirlz.com 93.174.93.111
- [*] Bind Version for 93.174.93.111 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4
- [*] NS ns2.dxgirlz.com 192.133.136.162
- [*] Bind Version for 192.133.136.162 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4
- [-] Could not Resolve MX Records for sweet-youngs.com
- [*] A sweet-youngs.com 94.102.48.35
- [*] TXT sweet-youngs.com v=spf1 ip4:93.174.93.111 a mx ~all
- [*] Expanding IP ranges found in DNS and TXT records for Reverse Look-up
- [*] Performing Reverse Look-up of SPF Ranges
- [*] Performing Reverse Lookup from 93.174.93.111 to 93.174.93.111
- [+] 0 Records Found
- [*] Enumerating SRV Records
- [-] No SRV Records Found for sweet-youngs.com
- [+] 0 Records Found
- [*] Performing Google Search Enumeration
- [+] 0 Records Found
- [i] Scanning Site: http://sweet-youngs.com
- B A S I C I N F O
- ====================
- [+] Site Title:
- [+] IP address: 94.102.48.35
- [+] Web Server: nginx/1.12.1
- [+] CMS: Could Not Detect
- [+] Cloudflare: Not Detected
- [+] Robots File: Could NOT Find robots.txt!
- W H O I S L O O K U P
- ========================
- Domain Name: SWEET-YOUNGS.COM
- Registry Domain ID: 1465281305_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.nic.ru
- Registrar URL: http://nic.ru
- Updated Date: 2017-04-27T10:45:09Z
- Creation Date: 2008-05-05T09:26:43Z
- Registry Expiry Date: 2018-05-05T09:26:43Z
- Registrar: Regional Network Information Center, JSC dba RU-CENTER
- Registrar IANA ID: 463
- Registrar Abuse Contact Email: tld-abuse@nic.ru
- Registrar Abuse Contact Phone: +7 (495) 994-46-01
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Name Server: NS1.DXGIRLZ.COM
- Name Server: NS2.DXGIRLZ.COM
- DNSSEC: unsigned
- G E O I P L O O K U P
- =========================
- [i] IP Address: 94.102.48.35
- [i] Country: SC
- [i] State: N/A
- [i] City: N/A
- [i] Latitude: -4.583300
- [i] Longitude: 55.666698
- H T T P H E A D E R S
- =======================
- [i] HTTP/1.1 301 Moved Permanently
- [i] Server: nginx/1.12.1
- [i] Date: Sat, 09 Sep 2017 16:34:50 GMT
- [i] Content-Type: text/html; charset=iso-8859-1
- [i] Content-Length: 326
- [i] Connection: close
- [i] Location: http://www.sweet-youngs.com/new.html
- [i] HTTP/1.1 404 Not Found
- [i] Server: nginx/1.12.1
- [i] Date: Sat, 09 Sep 2017 16:34:51 GMT
- [i] Content-Type: text/html; charset=iso-8859-1
- [i] Content-Length: 292
- [i] Connection: close
- D N S L O O K U P
- ===================
- sweet-youngs.com. 3596 IN A 94.102.48.35
- sweet-youngs.com. 3600 IN NS ns2.dxgirlz.com.
- sweet-youngs.com. 3600 IN NS ns1.dxgirlz.com.
- sweet-youngs.com. 3600 IN SOA b06s06.com. root.dxgirlz.com. 2015061601 10800 3600 604800 86400
- sweet-youngs.com. 3600 IN TXT "v=spf1 ip4:93.174.93.111 a mx ~all"
- S U B N E T C A L C U L A T I O N
- ====================================
- Address = 94.102.48.35
- Network = 94.102.48.35 / 32
- Netmask = 255.255.255.255
- Broadcast = not needed on Point-to-Point links
- Wildcard Mask = 0.0.0.0
- Hosts Bits = 0
- Max. Hosts = 1 (2^0 - 0)
- Host Range = { 94.102.48.35 - 94.102.48.35 }
- N M A P P O R T S C A N
- ============================
- Starting Nmap 7.01 ( https://nmap.org ) at 2017-09-09 18:36 UTC
- Nmap scan report for sweet-youngs.com (94.102.48.35)
- Host is up (0.082s latency).
- rDNS record for 94.102.48.35: no-reverse-dns-configured.com
- PORT STATE SERVICE VERSION
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 23/tcp closed telnet
- 25/tcp open smtp Postfix smtpd
- 80/tcp open http nginx 1.12.1
- 110/tcp open pop3 Dovecot pop3d
- 143/tcp open imap Dovecot imapd
- 443/tcp closed https
- 445/tcp closed microsoft-ds
- 3389/tcp closed ms-wbt-server
- Service Info: Host: b06s06.com
- Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 8.58 seconds
- S U B - D O M A I N F I N D E R
- ==================================
- [i] Total Subdomains Found : 1
- [+] Subdomain: sweet-youngs.com
- [-] IP: 94.102.48.35
- Crawling Types & Descriptions:
- sweet-youngs.com
- Domain Name: SWEET-YOUNGS.COM
- Registry Domain ID: 1465281305_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.nic.ru
- Registrar URL: http://nic.ru
- Updated Date: 2017-04-27T10:45:09Z
- Creation Date: 2008-05-05T09:26:43Z
- Registry Expiry Date: 2018-05-05T09:26:43Z
- Registrar: Regional Network Information Center, JSC dba RU-CENTER
- Registrar IANA ID: 463
- Registrar Abuse Contact Email: tld-abuse@nic.ru
- Registrar Abuse Contact Phone: +7 (495) 994-46-01
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Name Server: NS1.DXGIRLZ.COM
- Name Server: NS2.DXGIRLZ.COM
- DNSSEC: unsigned
- Domain Name: SWEET-YOUNGS.COM
- Registry Domain ID: 1465281305_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.nic.ru
- Registrar URL: http://www.nic.ru
- Creation Date: 2008-05-05T09:26:43Z
- Registrar Registration Expiration Date: 2018-05-04T21:00:00Z
- Registrar: Regional Network Information Center, JSC dba RU-CENTER
- Registrar IANA ID: 463
- Registrar Abuse Contact Email: tld-abuse@nic.ru
- Registrar Abuse Contact Phone: +7.4959944601
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Registry Registrant ID:
- Registrant Name: Evgeniy Kahanov
- Registrant Organization: Evgeniy Kahanov
- Registrant Street: 12 Saharova str., 7
- Registrant City: Lvov
- Registrant Postal Code: 79019
- Registrant Country: UA
- Registrant Phone: +380.322320539
- Registrant Phone Ext:
- Registrant Email: karalama10@mail.ru
- Registry Admin ID:
- Admin Name: Evgeniy Kahanov
- Admin Organization: Evgeniy Kahanov
- Admin Street: 12 Saharova str., 7
- Admin City: Lvov
- Admin Postal Code: 79019
- Admin Country: UA
- Admin Phone: +380.322320539
- Admin Phone Ext:
- Admin Email: karalama10@mail.ru
- Registry Tech ID:
- Tech Name: Evgeniy Kahanov
- Tech Organization: Evgeniy Kahanov
- Tech Street: 12 Saharova str., 7
- Tech City: Lvov
- Tech Postal Code: 79019
- Tech Country: UA
- Tech Phone: +380.322320539
- Tech Phone Ext:
- Tech Email: karalama10@mail.ru
- Name Server: ns1.dxgirlz.com
- Name Server: ns2.dxgirlz.com
- ;sweet-youngs.com. IN ANY
- ;; ANSWER SECTION:
- sweet-youngs.com. 3307 IN A 94.102.48.35
- sweet-youngs.com. 3307 IN NS ns1.dxgirlz.com.
- sweet-youngs.com. 3307 IN NS ns2.dxgirlz.com.
- ;; Query time: 8 msec
- ;; SERVER: 192.168.1.254#53(192.168.1.254)
- ;; WHEN: Sat Sep 09 14:36:08 EDT 2017
- ;; MSG SIZE rcvd: 105
- Running:
- traceroute -T -O info -i eth0 sweet-youngs.com
- traceroute to sweet-youngs.com (94.102.48.35), 30 hops max, 60 byte packets
- 1 gateway (192.168.1.254) 0.448 ms 0.647 ms 0.818 ms
- 2 10.135.18.1 (10.135.18.1) 8.385 ms 9.406 ms 13.568 ms
- 3 75.154.223.222 (75.154.223.222) 29.581 ms 30.063 ms 30.136 ms
- 4 lag-113.ear3.NewYork1.Level3.net (4.15.212.245) 30.546 ms 30.782 ms 31.338 ms
- 5 ae-237-3613.edge6.Amsterdam1.Level3.net (4.69.162.242) 104.861 ms ae-240-3616.edge6.Amsterdam1.Level3.net (4.69.162.254) 105.038 ms ae-237-3613.edge6.Amsterdam1.Level3.net (4.69.162.242) 104.933 ms
- 6 * * *
- 7 no-reverse-dns-configured.com (94.102.48.35) <syn,ack> 103.682 ms 104.517 ms 104.637 ms
- ----- sweet-youngs.com -----
- Host's addresses:
- __________________
- sweet-youngs.com. 3298 IN A 94.102.48.35
- Name Servers:
- ______________
- ns1.dxgirlz.com. 957 IN A 93.174.93.111
- ns2.dxgirlz.com. 957 IN A 192.133.136.162
- Mail (MX) Servers:
- ___________________
- Trying Zone Transfers and getting Bind Versions:
- _________________________________________________
- Trying Zone Transfer for sweet-youngs.com on ns1.dxgirlz.com ...
- sweet-youngs.com. 3600 IN SOA (
- sweet-youngs.com. 3600 IN NS ns1.dxgirlz.com.
- sweet-youngs.com. 3600 IN NS ns2.dxgirlz.com.
- sweet-youngs.com. 3600 IN A 94.102.48.35
- sweet-youngs.com. 3600 IN TXT "v=spf1
- www.sweet-youngs.com. 3600 IN A 94.102.48.35
- Trying Zone Transfer for sweet-youngs.com on ns2.dxgirlz.com ...
- sweet-youngs.com. 3600 IN SOA (
- sweet-youngs.com. 3600 IN NS ns1.dxgirlz.com.
- sweet-youngs.com. 3600 IN NS ns2.dxgirlz.com.
- sweet-youngs.com. 3600 IN A 94.102.48.35
- sweet-youngs.com. 3600 IN TXT "v=spf1
- www.sweet-youngs.com. 3600 IN A 94.102.48.35
- sweet-youngs.com class C netranges:
- ____________________________________
- 94.102.48.0/24
- Performing reverse lookup on 256 ip addresses:
- _______________________________________________
- 0 results out of 256 IP addresses.
- sweet-youngs.com ip blocks:
- ____________________________
- www.sweet-youngs.com
- IP address #1: 94.102.48.35
- [+] 1 (sub)domains and 1 IP address(es) found
- [+] completion time: 142 second(s)
- WhatWeb report for http://sweet-youngs.com
- Status : 301 Moved Permanently
- Title : 301 Moved Permanently
- IP : 94.102.48.35
- Country : NETHERLANDS, NL
- Summary : HTTPServer[nginx/1.12.1], RedirectLocation[http://www.sweet-youngs.com/new.html], nginx[1.12.1]
- Detected Plugins:
- [ HTTPServer ]
- HTTP server header string. This plugin also attempts to
- identify the operating system from the server header.
- String : nginx/1.12.1 (from server string)
- [ RedirectLocation ]
- HTTP Server string location. used with http-status 301 and
- 302
- String : http://www.sweet-youngs.com/new.html (from location)
- [ nginx ]
- Nginx (Engine-X) is a free, open-source, high-performance
- HTTP server and reverse proxy, as well as an IMAP/POP3
- proxy server.
- Version : 1.12.1
- Website : http://nginx.net/
- HTTP Headers:
- HTTP/1.1 301 Moved Permanently
- Server: nginx/1.12.1
- Date: Sat, 09 Sep 2017 16:38:16 GMT
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 326
- Connection: close
- Location: http://www.sweet-youngs.com/new.html
- WhatWeb report for http://www.sweet-youngs.com/new.html
- Status : 404 Not Found
- Title : 404 Not Found
- IP : 94.102.48.35
- Country : NETHERLANDS, NL
- Summary : HTTPServer[nginx/1.12.1], nginx[1.12.1]
- Detected Plugins:
- [ HTTPServer ]
- HTTP server header string. This plugin also attempts to
- identify the operating system from the server header.
- String : nginx/1.12.1 (from server string)
- [ nginx ]
- Nginx (Engine-X) is a free, open-source, high-performance
- HTTP server and reverse proxy, as well as an IMAP/POP3
- proxy server.
- Version : 1.12.1
- Website : http://nginx.net/
- HTTP Headers:
- HTTP/1.1 404 Not Found
- Server: nginx/1.12.1
- Date: Sat, 09 Sep 2017 16:38:16 GMT
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 292
- Connection: close
- [+] Hosts found in search engines:
- ------------------------------------
- [-] Resolving hostnames IPs...
- 94.102.48.35:www.sweet-youngs.com
- ^ ^
- _ __ _ ____ _ __ _ _ ____
- ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
- | V V // o // _/ | V V // 0 // 0 // _/
- |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
- <
- ...'
- WAFW00F - Web Application Firewall Detection Tool
- By Sandro Gauci && Wendel G. Henrique
- Checking http://sweet-youngs.com
- Generic Detection results:
- No WAF detected by the generic detection
- Number of requests: 13
- DNS Servers for sweet-youngs.com:
- ns1.dxgirlz.com
- ns2.dxgirlz.com
- Trying zone transfer first...
- Testing ns1.dxgirlz.com
- Whoah, it worked - misconfigured DNS server found:
- sweet-youngs.com. 3600 IN SOA ( b06s06.com. root.dxgirlz.com.
- 2015061601 ;serial
- 10800 ;refresh
- 3600 ;retry
- 604800 ;expire
- 86400 ;minimum
- )
- sweet-youngs.com. 3600 IN NS ns1.dxgirlz.com.
- sweet-youngs.com. 3600 IN NS ns2.dxgirlz.com.
- sweet-youngs.com. 3600 IN A 94.102.48.35
- sweet-youngs.com. 3600 IN TXT "v=spf1 ip4:93.174.93.111 a mx ~all"
- www.sweet-youngs.com. 3600 IN A 94.102.48.35
- There isn't much point continuing, you have everything.
- Have a nice day.
- Exiting...
- lbd - load balancing detector 0.2 - Checks if a given domain uses load-balancing.
- Written by Stefan Behte (http://ge.mine.nu)
- Proof-of-concept! Might give false positives.
- Checking for DNS-Loadbalancing: NOT FOUND
- Checking for HTTP-Loadbalancing [Server]:
- nginx/1.12.1
- NOT FOUND
- Checking for HTTP-Loadbalancing [Date]: 16:38:57, 16:38:57, 16:38:57, 16:38:58, 16:38:58, 16:38:58, 16:38:58, 16:38:59, 16:38:59, 16:38:59, 16:38:59, 16:39:00, 16:39:00, 16:39:00, 16:39:00, 16:39:01, 16:39:01, 16:39:01, 16:39:01, 16:39:02, 16:39:02, 16:39:02, 16:39:02, 16:39:03, 16:39:03, 16:39:03, 16:39:03, 16:39:04, 16:39:04, 16:39:04, 16:39:05, 16:39:05, 16:39:05, 16:39:05, 16:39:06, 16:39:06, 16:39:06, 16:39:06, 16:39:07, 16:39:07, 16:39:07, 16:39:07, 16:39:08, 16:39:08, 16:39:08, 16:39:08, 16:39:09, 16:39:09, 16:39:09, 16:39:09, NOT FOUND
- Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
- sweet-youngs.com does NOT use Load-balancing.
- Starting smtp-user-enum v1.2 ( http://pentestmonkey.net/tools/smtp-user-enum )
- ----------------------------------------------------------
- | Scan Information |
- ----------------------------------------------------------
- Mode ..................... VRFY
- Worker Processes ......... 5
- Usernames file ........... users.txt
- Target count ............. 1
- Username count ........... 494
- Target TCP port .......... 25
- Query timeout ............ 5 secs
- Target domain ............
- ######## Scan started at Sat Sep 9 14:40:32 2017 #########
- ######## Scan completed at Sat Sep 9 14:48:47 2017 #########
- 0 results.
- 494 queries in 495 seconds (1.0 queries / sec)
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 14:48 EDT
- NSE: Loaded 146 scripts for scanning.
- NSE: Script Pre-scanning.
- Initiating NSE at 14:48
- Completed NSE at 14:48, 0.00s elapsed
- Initiating NSE at 14:48
- Completed NSE at 14:48, 0.00s elapsed
- Failed to resolve "sweet-youngs.com.txt".
- Initiating Parallel DNS resolution of 1 host. at 14:48
- Completed Parallel DNS resolution of 1 host. at 14:48, 0.47s elapsed
- Initiating SYN Stealth Scan at 14:48
- Scanning sweet-youngs.com (94.102.48.35) [100 ports]
- Discovered open port 143/tcp on 94.102.48.35
- Discovered open port 3306/tcp on 94.102.48.35
- Discovered open port 110/tcp on 94.102.48.35
- Discovered open port 993/tcp on 94.102.48.35
- Discovered open port 995/tcp on 94.102.48.35
- Discovered open port 80/tcp on 94.102.48.35
- Discovered open port 53/tcp on 94.102.48.35
- Increasing send delay for 94.102.48.35 from 0 to 5 due to 61 out of 152 dropped probes since last increase.
- Completed SYN Stealth Scan at 14:48, 3.07s elapsed (100 total ports)
- Initiating Service scan at 14:48
- Scanning 7 services on sweet-youngs.com (94.102.48.35)
- Completed Service scan at 14:48, 6.95s elapsed (7 services on 1 host)
- Initiating OS detection (try #1) against sweet-youngs.com (94.102.48.35)
- Retrying OS detection (try #2) against sweet-youngs.com (94.102.48.35)
- adjust_timeouts2: packet supposedly had rtt of -105152 microseconds. Ignoring time.
- adjust_timeouts2: packet supposedly had rtt of -105152 microseconds. Ignoring time.
- Initiating Traceroute at 14:49
- Completed Traceroute at 14:49, 3.02s elapsed
- Initiating Parallel DNS resolution of 7 hosts. at 14:49
- Completed Parallel DNS resolution of 7 hosts. at 14:49, 5.61s elapsed
- NSE: Script scanning 94.102.48.35.
- Initiating NSE at 14:49
- Completed NSE at 14:49, 12.76s elapsed
- Initiating NSE at 14:49
- Completed NSE at 14:49, 0.00s elapsed
- Nmap scan report for sweet-youngs.com (94.102.48.35)
- Host is up (0.13s latency).
- rDNS record for 94.102.48.35: no-reverse-dns-configured.com
- Not shown: 84 closed ports
- PORT STATE SERVICE VERSION
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 25/tcp filtered smtp
- 53/tcp open domain ISC BIND 9.8.2rc1
- | dns-nsid:
- |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4
- 80/tcp open http nginx 1.12.1
- |_http-favicon: Unknown favicon MD5: D41D8CD98F00B204E9800998ECF8427E
- | http-methods:
- |_ Supported Methods: GET HEAD POST OPTIONS
- |_http-server-header: nginx/1.12.1
- |_http-title: Did not follow redirect to http://www.sweet-youngs.com/new.html
- 81/tcp filtered hosts2-ns
- 110/tcp open pop3 Dovecot pop3d
- |_pop3-capabilities: RESP-CODES SASL(PLAIN LOGIN DIGEST-MD5 CRAM-MD5) USER PIPELINING CAPA UIDL STLS TOP
- | ssl-cert: Subject: commonName=imap.example.com
- | Issuer: commonName=imap.example.com
- | Public Key type: rsa
- | Public Key bits: 1024
- | Signature Algorithm: sha1WithRSAEncryption
- | Not valid before: 2015-06-12T12:04:14
- | Not valid after: 2016-06-11T12:04:14
- | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
- |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
- |_ssl-date: 2017-09-09T16:48:07+00:00; -2h01m10s from scanner time.
- 135/tcp filtered msrpc
- 139/tcp filtered netbios-ssn
- 143/tcp open imap Dovecot imapd
- |_imap-capabilities: IMAP4rev1 completed LOGIN-REFERRALS AUTH=PLAIN LITERAL+ Capability ENABLE AUTH=LOGIN ID AUTH=DIGEST-MD5 AUTH=CRAM-MD5A0001 OK SASL-IR STARTTLS IDLE
- | ssl-cert: Subject: commonName=imap.example.com
- | Issuer: commonName=imap.example.com
- | Public Key type: rsa
- | Public Key bits: 1024
- | Signature Algorithm: sha1WithRSAEncryption
- | Not valid before: 2015-06-12T12:04:14
- | Not valid after: 2016-06-11T12:04:14
- | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
- |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
- |_ssl-date: 2017-09-09T16:48:07+00:00; -2h01m10s from scanner time.
- 445/tcp filtered microsoft-ds
- 465/tcp filtered smtps
- 587/tcp filtered submission
- 993/tcp open ssl/imap Dovecot imapd
- | ssl-cert: Subject: commonName=imap.example.com
- | Issuer: commonName=imap.example.com
- | Public Key type: rsa
- | Public Key bits: 1024
- | Signature Algorithm: sha1WithRSAEncryption
- | Not valid before: 2015-06-12T12:04:14
- | Not valid after: 2016-06-11T12:04:14
- | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
- |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
- |_ssl-date: 2017-09-09T16:48:06+00:00; -2h01m10s from scanner time.
- 995/tcp open ssl/pop3 Dovecot pop3d
- | ssl-cert: Subject: commonName=imap.example.com
- | Issuer: commonName=imap.example.com
- | Public Key type: rsa
- | Public Key bits: 1024
- | Signature Algorithm: sha1WithRSAEncryption
- | Not valid before: 2015-06-12T12:04:14
- | Not valid after: 2016-06-11T12:04:14
- | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
- |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
- |_ssl-date: 2017-09-09T16:48:05+00:00; -2h01m10s from scanner time.
- 3306/tcp open mysql MySQL (unauthorized)
- TRACEROUTE (using port 1723/tcp)
- HOP RTT ADDRESS
- 1 108.87 ms 10.13.0.1
- 2 ...
- 3 109.96 ms po101.gra-g2-a75.fr.eu (178.33.103.231)
- 4 ...
- 5 119.21 ms be100-1113.fra-5-a9.de.eu (91.121.131.19)
- 6 119.23 ms be100-2.fra-1-a9.de.eu (94.23.122.217)
- 7 ...
- 8 136.71 ms vlan3555.bb1.ams2.nl.m247.com (176.10.83.128)
- 9 120.50 ms 176.10.83.5
- 10 ...
- 11 120.53 ms no-reverse-dns-configured.com (94.102.48.35)
- _/ _/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/
- _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
- _/ _/ _/_/_/_/ _/_/_/ _/ _/_/_/ _/_/_/_/ _/ _/_/_/ _/_/_/_
- _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
- _/_/_/_/ _/ _/ _/ _/_/_/_/ _/_/_/_/ _/ _/_/_/_/ _/ _/ [v1.06]
- _/ User-Agent Tester ↵
- _/ AKA: Purple Pimp ↵
- _/ ChrisJohnRiley ↵
- _/ blog.c22.cc ↵
- [>] Performing initial request and confirming stability
- [>] Using User-Agent string Mozilla/5.0
- [*] HTTPError: HTTP Error 404: Not Found
- #########################################################################################
- Hostname 100nonude.info ISP Quasi Networks LTD. (AS29073)
- Continent Africa Flag
- SC
- Country Seychelles Country Code SC (SYC)
- Region Unknown Local time 09 Sep 2017 22:57 +04
- City Unknown Latitude -4.583
- IP Address 93.174.93.40 Longitude 55.667
- #############################################################################################
- whois 100nonude.info
- Domain Name: 100NONUDE.INFO
- Registry Domain ID: D503300000038501535-LRMS
- Registrar WHOIS Server:
- Registrar URL: http://www.nic.ru
- Updated Date: 2017-06-12T20:32:55Z
- Creation Date: 2017-04-13T08:10:42Z
- Registry Expiry Date: 2018-04-13T08:10:42Z
- Registrar Registration Expiration Date:
- Registrar: Regional Network Information Center, JSC dba RU-CENTER
- Registrar IANA ID: 463
- Registrar Abuse Contact Email:
- Registrar Abuse Contact Phone:
- Reseller:
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Registry Registrant ID: C201182491-LRMS
- Registrant Name: Barinov Andrey
- Registrant Organization: Barinov Andrey
- Registrant Street: Gvardeyskaya st. 11-51
- Registrant City: Melitopol
- Registrant State/Province:
- Registrant Postal Code: 72307
- Registrant Country: UA
- Registrant Phone: +380.684506451
- Registrant Phone Ext:
- Registrant Fax:
- Registrant Fax Ext:
- Registrant Email: barinandr@mail.ru
- Registry Admin ID: C201182491-LRMS
- Admin Name: Barinov Andrey
- Admin Organization: Barinov Andrey
- Admin Street: Gvardeyskaya st. 11-51
- Admin City: Melitopol
- Admin State/Province:
- Admin Postal Code: 72307
- Admin Country: UA
- Admin Phone: +380.684506451
- Admin Phone Ext:
- Admin Fax:
- Admin Fax Ext:
- Admin Email: barinandr@mail.ru
- Registry Tech ID: C201182491-LRMS
- Tech Name: Barinov Andrey
- Tech Organization: Barinov Andrey
- Tech Street: Gvardeyskaya st. 11-51
- Tech City: Melitopol
- Tech State/Province:
- Tech Postal Code: 72307
- Tech Country: UA
- Tech Phone: +380.684506451
- Tech Phone Ext:
- Tech Fax:
- Tech Fax Ext:
- Tech Email: barinandr@mail.ru
- Registry Billing ID: C201182491-LRMS
- Billing Name: Barinov Andrey
- Billing Organization: Barinov Andrey
- Billing Street: Gvardeyskaya st. 11-51
- Billing City: Melitopol
- Billing State/Province:
- Billing Postal Code: 72307
- Billing Country: UA
- Billing Phone: +380.684506451
- Billing Phone Ext:
- Billing Fax:
- Billing Fax Ext:
- Billing Email: barinandr@mail.ru
- Name Server: NS1.DNS-FORCE.NET
- Name Server: NS2.DNS-FORCE.NET
- ###########################################################################################
- ;100nonude.info. IN ANY
- ;; ANSWER SECTION:
- 100nonude.info. 27357 IN A 93.174.93.40
- 100nonude.info. 27357 IN NS ns1.dns-force.net.
- 100nonude.info. 27357 IN NS ns2.dns-force.net.
- ;; Query time: 8 msec
- ;; SERVER: 192.168.1.254#53(192.168.1.254)
- ;; WHEN: Sat Sep 09 14:59:53 EDT 2017
- ;; MSG SIZE rcvd: 108
- ###########################################################################################
- #
- tcptraceroute -i eth0 100nonude.info
- Running:
- traceroute -T -O info -i eth0 100nonude.info
- traceroute to 100nonude.info (93.174.93.40), 30 hops max, 60 byte packets
- 1 gateway (192.168.1.254) 0.410 ms 0.587 ms 0.758 ms
- 2 10.135.18.1 (10.135.18.1) 15.530 ms 17.020 ms 17.164 ms
- 3 75.154.223.222 (75.154.223.222) 29.737 ms 29.906 ms 30.272 ms
- 4 lag-113.ear3.NewYork1.Level3.net (4.15.212.245) 30.506 ms 30.834 ms 30.997 ms
- 5 ae-237-3613.edge6.Amsterdam1.Level3.net (4.69.162.242) 104.834 ms ae-238-3614.edge6.Amsterdam1.Level3.net (4.69.162.246) 104.952 ms ae-237-3613.edge6.Amsterdam1.Level3.net (4.69.162.242) 105.063 ms
- 6 * * *
- 7 93.174.93.40 (93.174.93.40) <syn,ack> 103.895 ms 103.743 ms 103.827 ms
- ###########################################################################################
- ###########################################################################################
- Checking for HTTP-Loadbalancing [Date]: 17:36:58, 17:36:58, 17:36:59, 17:36:59, 17:36:59, 17:37:00, 17:37:00, 17:37:00, 17:37:00, 17:37:01, 17:37:01, 17:37:01, 17:37:02, 17:37:02, 17:37:02, 17:37:02, 17:37:03, 17:37:03, 17:37:03, 17:37:04, 17:37:04, 17:37:04, 17:37:04, 17:37:05, 17:37:05, 17:37:05, 17:37:06, 17:37:06, 17:37:06, 17:37:06, 17:37:07, 17:37:07, 17:37:07, 17:37:08, 17:37:10, 17:37:14, 17:37:15, 17:37:17, 17:37:21, 17:37:22, 17:37:23, 17:37:25, 17:37:30, 17:37:30, 17:37:30, 17:37:30, 17:37:31, 17:37:31, 17:37:31, 17:37:32, NOT FOUND
- ###########################################################################################
- nmap -PN -n -F -T4 -sV -A -oG temp.txt 100nonude.info
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 15:01 EDT
- Nmap scan report for 100nonude.info (93.174.93.40)
- Host is up (0.16s latency).
- Not shown: 92 closed ports
- PORT STATE SERVICE VERSION
- 22/tcp open ssh OpenSSH 5.3 (protocol 2.0)
- | ssh-hostkey:
- |_ 2048 c6:97:3d:68:af:14:9e:c0:1a:9c:a4:f6:75:32:ae:6f (RSA)
- 25/tcp filtered smtp
- 80/tcp open http nginx 1.0.15
- |_http-generator: CuteHTML
- |_http-server-header: nginx/1.0.15
- |_http-title: ? 100 NoNude Models ?
- 135/tcp filtered msrpc
- 139/tcp filtered netbios-ssn
- 445/tcp filtered microsoft-ds
- 465/tcp filtered smtps
- 587/tcp filtered submission
- Aggressive OS guesses: Linux 2.6.32 (92%), Linux 2.6.35 (92%), Linux 2.6.39 (92%), Linux 3.10 (92%), Linux 3.10 - 3.12 (92%), Linux 3.4 (92%), Linux 3.5 (92%), Linux 4.2 (92%), Linux 4.4 (92%), Synology DiskStation Manager 5.1 (92%)
- No exact OS matches for host (test conditions non-ideal).
- Network Distance: 11 hops
- TRACEROUTE (using port 8888/tcp)
- HOP RTT ADDRESS
- 1 110.05 ms 10.13.0.1
- 2 ...
- 3 110.07 ms 178.33.103.231
- 4 ...
- 5 118.83 ms 91.121.131.19
- 6 119.06 ms 94.23.122.217
- 7 ...
- 8 124.08 ms 176.10.83.128
- 9 120.05 ms 176.10.83.5
- 10 ...
- 11 120.41 ms 93.174.93.40
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 63.34 seconds
- ###########################################################################################
- amap -i temp.txt
- amap v5.4 (www.thc.org/thc-amap) started at 2017-09-09 15:02:04 - APPLICATION MAPPING mode
- Protocol on 93.174.93.40:80/tcp matches http
- Protocol on 93.174.93.40:22/tcp matches ssh
- Protocol on 93.174.93.40:22/tcp matches ssh-openssh
- Protocol on 93.174.93.40:80/tcp matches http-apache-2
- Unidentified ports: none.
- amap v5.4 finished at 2017-09-09 15:02:10
- #############################################################################################
- inetnum: 93.174.93.0 - 93.174.93.255
- netname: SC-QUASI55
- descr: QUASI
- country: SC
- org: ORG-QNL3-RIPE
- admin-c: QNL1-RIPE
- tech-c: QNL1-RIPE
- status: ASSIGNED PA
- mnt-by: QUASINETWORKS-MNT
- mnt-lower: QUASINETWORKS-MNT
- mnt-routes: QUASINETWORKS-MNT
- created: 2008-06-29T21:36:16Z
- last-modified: 2016-01-23T22:23:14Z
- source: RIPE
- organisation: ORG-QNL3-RIPE
- org-name: Quasi Networks LTD.
- org-type: OTHER
- address: Suite 1, Second Floor
- address: Sound & Vision House, Francis Rachel Street
- address: Victoria, Mahe, SEYCHELLES
- remarks: *****************************************************************************
- remarks: IMPORTANT INFORMATION
- remarks: *****************************************************************************
- remarks: We are a high bandwidth network provider offering bandwidth solutions.
- remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
- remarks: Please only use abuse@quasinetworks.com for abuse reports.
- remarks: For all other requests, please see the details on our website.
- remarks: *****************************************************************************
- abuse-mailbox: abuse@quasinetworks.com
- abuse-c: AR34302-RIPE
- mnt-ref: QUASINETWORKS-MNT
- mnt-by: QUASINETWORKS-MNT
- created: 2015-11-08T22:25:26Z
- last-modified: 2015-11-27T09:37:50Z
- source: RIPE # Filtered
- role: Quasi Networks LTD
- address: Suite 1, Second Floor
- address: Sound & Vision House, Francis Rachel Street
- address: Victoria, Mahe, SEYCHELLES
- remarks: *****************************************************************************
- remarks: IMPORTANT INFORMATION
- remarks: *****************************************************************************
- remarks: We are a high bandwidth network provider offering bandwidth solutions.
- remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
- remarks: Please only use abuse@quasinetworks.com for abuse reports.
- remarks: For all other requests, please see the details on our website.
- remarks: *****************************************************************************
- abuse-mailbox: abuse@quasinetworks.com
- nic-hdl: QNL1-RIPE
- mnt-by: QUASINETWORKS-MNT
- created: 2015-11-07T22:43:04Z
- last-modified: 2015-11-07T23:04:49Z
- source: RIPE # Filtered
- % Information related to '93.174.88.0/21as29073'
- route: 93.174.88.0/21
- descr: Quasi Networks LTD (IBC)
- origin: as29073
- mnt-by: QUASINETWORKS-MNT
- created: 2008-06-20T15:33:47Z
- last-modified: 2016-01-23T22:26:12Z
- source: RIPE
- % This query was served by the RIPE Database Query Service version 1.89.2 (ANGUS)
- ###########################################################################################
- [*] Performing TLD Brute force Enumeration against 100nonude.info
- [*] The operation could take up to: 00:01:07
- [*] A 100nonude.biz.af 5.45.75.45
- [*] A 100nonude.co.asia 91.195.240.135
- [*] CNAME 100nonude.biz.at free.biz.at
- [*] A free.biz.at 216.92.134.29
- [*] A 100nonude.org.aw 142.4.20.12
- [*] A 100nonude.co.ba 176.9.45.78
- [*] A 100nonude.com.ba 195.222.33.180
- [*] A 100nonude.com.be 95.173.170.166
- [*] A 100nonude.biz 185.66.9.92
- [*] A 100nonude.biz.by 71.18.52.2
- [*] A 100nonude.biz.bz 199.59.242.150
- [*] A 100nonude.net.cc 54.252.89.206
- [*] A 100nonude.com.cc 54.252.107.64
- [*] A 100nonude.co.cc 10.10.10.10
- [*] A 100nonude.org.ch 72.52.4.122
- [*] A 100nonude.biz.cl 185.53.178.8
- [*] A 100nonude.com 69.172.201.153
- [*] A 100nonude.com.com 52.33.196.199
- [*] A 100nonude.net.com 199.59.242.150
- [*] A 100nonude.co.com 173.192.115.17
- [*] A 100nonude.org.com 23.23.86.44
- [*] A 100nonude.co.cm 85.25.140.105
- [*] A 100nonude.net.cm 85.25.140.105
- [*] CNAME 100nonude.biz.cm i.cns.cm
- [*] A i.cns.cm 118.184.56.30
- [*] A 100nonude.biz.cr 72.52.4.122
- [*] A 100nonude.biz.cx 72.52.4.122
- [*] A 100nonude.biz.cz 185.53.179.7
- [*] A 100nonude.net.cz 80.250.24.177
- [*] A 100nonude.com.cz 62.109.128.30
- [*] A 100nonude.com.de 50.56.68.37
- [*] CNAME 100nonude.org.de www.org.de
- [*] A www.org.de 78.47.128.8
- [*] CNAME 100nonude.co.de co.de
- [*] A co.de 144.76.162.245
- [*] A 100nonude.net.eu 78.46.90.98
- [*] A 100nonude.org.eu 78.46.90.98
- [*] A 100nonude.biz.fi 185.55.85.123
- [*] A 100nonude.fm 173.230.131.38
- [*] A 100nonude.biz.fm 173.230.131.38
- [*] A 100nonude.org.fr 149.202.133.35
- [*] A 100nonude.biz.gl 72.52.4.122
- [*] CNAME 100nonude.co.gp co.gp
- [*] A co.gp 144.76.162.245
- [*] A 100nonude.co.hn 208.100.40.203
- [*] CNAME 100nonude.net.hr net.hr
- [*] A net.hr 192.0.78.24
- [*] A net.hr 192.0.78.25
- [*] CNAME 100nonude.biz.hn parkmydomain.vhostgo.com
- [*] A parkmydomain.vhostgo.com 107.186.245.118
- [*] A 100nonude.co.ht 72.52.4.122
- [*] A 100nonude.info 93.174.93.40
- [*] A 100nonude.co.jobs 50.17.193.222
- [*] A 100nonude.com.jobs 50.19.241.165
- [*] A 100nonude.net.jobs 50.19.241.165
- [*] A 100nonude.biz.jobs 50.19.241.165
- [*] A 100nonude.org.jobs 50.19.241.165
- [*] A 100nonude.biz.ky 199.184.144.27
- [*] CNAME 100nonude.biz.li 712936.parkingcrew.net
- [*] A 712936.parkingcrew.net 185.53.179.29
- [*] A 100nonude.biz.lu 195.26.5.2
- [*] A 100nonude.biz.ly 64.136.20.39
- [*] A 100nonude.biz.md 72.52.4.122
- [*] A 100nonude.co.mk 87.76.31.211
- [*] A 100nonude.co.mobi 54.225.105.179
- [*] A 100nonude.biz.my 202.190.174.44
- [*] A 100nonude.co.net 188.166.216.219
- [*] A 100nonude.net.net 52.50.81.210
- [*] A 100nonude.org.net 23.23.86.44
- [*] A 100nonude.net.nl 83.98.157.102
- [*] A 100nonude.com.nl 83.98.157.102
- [*] A 100nonude.co.nl 37.97.184.204
- [*] A 100nonude.co.nr 208.100.40.202
- [*] A 100nonude.org.nu 80.92.84.139
- [*] A 100nonude.net.nu 199.102.76.78
- [*] CNAME 100nonude.co.nu co.nu
- [*] A co.nu 144.76.162.245
- [*] CNAME 100nonude.com.nu com.nu
- [*] A com.nu 144.76.162.245
- [*] A 100nonude.org 69.64.146.192
- [*] A 100nonude.com.org 23.23.86.44
- [*] CNAME 100nonude.net.org pewtrusts.org
- [*] A pewtrusts.org 204.74.99.100
- [*] A 100nonude.ph 45.79.222.138
- [*] A 100nonude.co.ph 45.79.222.138
- [*] A 100nonude.com.ph 45.79.222.138
- [*] A 100nonude.net.ph 45.79.222.138
- [*] A 100nonude.org.ph 45.79.222.138
- [*] A 100nonude.co.pl 212.91.6.55
- [*] A 100nonude.org.pm 208.73.211.165
- [*] A 100nonude.org.pm 208.73.210.217
- [*] A 100nonude.org.pm 208.73.211.177
- [*] A 100nonude.org.pm 208.73.210.202
- [*] A 100nonude.co.ps 66.96.132.56
- [*] A 100nonude.pw 141.8.226.58
- [*] A 100nonude.co.pw 141.8.226.59
- [*] A 100nonude.co.pt 194.107.127.52
- [*] CNAME 100nonude.biz.ps biz.ps
- [*] A biz.ps 144.76.162.245
- [*] A 100nonude.net.pw 141.8.226.59
- [*] A 100nonude.biz.pw 141.8.226.59
- [*] A 100nonude.org.pw 141.8.226.59
- [*] CNAME 100nonude.co.ro now.co.ro
- [*] A now.co.ro 185.27.255.9
- [*] A 100nonude.org.re 217.70.184.38
- [*] A 100nonude.net.ro 69.64.52.127
- [*] A 100nonude.com.ru 178.210.89.119
- [*] A 100nonude.biz.se 185.53.179.6
- [*] CNAME 100nonude.net.se 773147.parkingcrew.net
- [*] A 773147.parkingcrew.net 185.53.179.29
- [*] A 100nonude.co.sl 91.195.240.135
- [*] A 100nonude.com.sr 143.95.106.249
- [*] A 100nonude.biz.st 91.121.28.115
- [*] A 100nonude.co.su 72.52.4.122
- [*] A 100nonude.biz.tc 64.136.20.39
- [*] A 100nonude.biz.tf 85.236.153.18
- [*] A 100nonude.net.tf 188.40.70.27
- [*] A 100nonude.net.tf 188.40.70.29
- [*] A 100nonude.net.tf 188.40.117.12
- [*] A 100nonude.co.tl 208.100.40.202
- [*] A 100nonude.co.to 175.118.124.44
- [*] A 100nonude.co.tv 31.186.25.163
- [*] A 100nonude.biz.tv 72.52.4.122
- [*] A 100nonude.org.tv 72.52.4.122
- [*] CNAME 100nonude.biz.uz biz.uz
- [*] A biz.uz 144.76.162.245
- [*] A 100nonude.vg 88.198.29.97
- [*] A 100nonude.co.vg 88.198.29.97
- [*] A 100nonude.com.vg 88.198.29.97
- [*] A 100nonude.net.vg 68.178.254.180
- [*] A 100nonude.biz.vg 89.31.143.20
- [*] A 100nonude.ws 64.70.19.203
- [*] A 100nonude.com.ws 202.4.48.211
- [*] A 100nonude.net.ws 202.4.48.211
- [*] A 100nonude.org.ws 202.4.48.211
- [*] A 100nonude.biz.ws 184.168.221.104
- [i] Scanning Site: http://100nonude.info
- B A S I C I N F O
- ====================
- [+] Site Title: ? 100 NoNude Models ?
- [+] IP address: 93.174.93.40
- [+] Web Server: nginx/1.0.15
- [+] CMS: Could Not Detect
- [+] Cloudflare: Not Detected
- [+] Robots File: Found
- -------------[ contents ]----------------
- User-agent: *
- Disallow:
- Host: nonstop-nn.info
- Sitemap: http://nonstop-nn.info/sitemap.xml
- -----------[end of contents]-------------
- W H O I S L O O K U P
- ========================
- Domain Name: 100NONUDE.INFO
- Registry Domain ID: D503300000038501535-LRMS
- Registrar WHOIS Server:
- Registrar URL: http://www.nic.ru
- Updated Date: 2017-06-12T20:32:55Z
- Creation Date: 2017-04-13T08:10:42Z
- Registry Expiry Date: 2018-04-13T08:10:42Z
- Registrar Registration Expiration Date:
- Registrar: Regional Network Information Center, JSC dba RU-CENTER
- Registrar IANA ID: 463
- Registrar Abuse Contact Email:
- Registrar Abuse Contact Phone:
- Reseller:
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Registry Registrant ID: C201182491-LRMS
- Registrant Name: Barinov Andrey
- Registrant Organization: Barinov Andrey
- Registrant Street: Gvardeyskaya st. 11-51
- Registrant City: Melitopol
- Registrant State/Province:
- Registrant Postal Code: 72307
- Registrant Country: UA
- Registrant Phone: +380.684506451
- Registrant Phone Ext:
- Registrant Fax:
- Registrant Fax Ext:
- Registrant Email: barinandr@mail.ru
- Registry Admin ID: C201182491-LRMS
- Admin Name: Barinov Andrey
- Admin Organization: Barinov Andrey
- Admin Street: Gvardeyskaya st. 11-51
- Admin City: Melitopol
- Admin State/Province:
- Admin Postal Code: 72307
- Admin Country: UA
- Admin Phone: +380.684506451
- Admin Phone Ext:
- Admin Fax:
- Admin Fax Ext:
- Admin Email: barinandr@mail.ru
- Registry Tech ID: C201182491-LRMS
- Tech Name: Barinov Andrey
- Tech Organization: Barinov Andrey
- Tech Street: Gvardeyskaya st. 11-51
- Tech City: Melitopol
- Tech State/Province:
- Tech Postal Code: 72307
- Tech Country: UA
- Tech Phone: +380.684506451
- Tech Phone Ext:
- Tech Fax:
- Tech Fax Ext:
- Tech Email: barinandr@mail.ru
- Registry Billing ID: C201182491-LRMS
- Billing Name: Barinov Andrey
- Billing Organization: Barinov Andrey
- Billing Street: Gvardeyskaya st. 11-51
- Billing City: Melitopol
- Billing State/Province:
- Billing Postal Code: 72307
- Billing Country: UA
- Billing Phone: +380.684506451
- Billing Phone Ext:
- Billing Fax:
- Billing Fax Ext:
- Billing Email: barinandr@mail.ru
- Name Server: NS1.DNS-FORCE.NET
- Name Server: NS2.DNS-FORCE.NET
- G E O I P L O O K U P
- =========================
- [i] IP Address: 93.174.93.40
- [i] Country: SC
- [i] State: N/A
- [i] City: N/A
- [i] Latitude: -4.583300
- [i] Longitude: 55.666698
- H T T P H E A D E R S
- =======================
- [i] HTTP/1.1 200 OK
- [i] Server: nginx/1.0.15
- [i] Date: Sat, 09 Sep 2017 19:54:55 GMT
- [i] Content-Type: text/html; charset=UTF-8
- [i] Connection: close
- [i] Accept-Ranges: bytes
- [i] Vary: Accept-Encoding
- D N S L O O K U P
- ===================
- 100nonude.info. 78155 IN A 93.174.93.40
- 100nonude.info. 78159 IN NS ns2.dns-force.net.
- 100nonude.info. 78159 IN NS ns1.dns-force.net.
- 100nonude.info. 78159 IN SOA ns1.dns-force.net. hostmaster.dns-force.net. 2012050402 28800 7200 864000 86400
- S U B N E T C A L C U L A T I O N
- ====================================
- Address = 93.174.93.40
- Network = 93.174.93.40 / 32
- Netmask = 255.255.255.255
- Broadcast = not needed on Point-to-Point links
- Wildcard Mask = 0.0.0.0
- Hosts Bits = 0
- Max. Hosts = 1 (2^0 - 0)
- Host Range = { 93.174.93.40 - 93.174.93.40 }
- N M A P P O R T S C A N
- ============================
- Starting Nmap 7.01 ( https://nmap.org ) at 2017-09-09 21:18 UTC
- Nmap scan report for 100nonude.info (93.174.93.40)
- Host is up (0.083s latency).
- PORT STATE SERVICE VERSION
- 21/tcp closed ftp
- 22/tcp open ssh OpenSSH 5.3 (protocol 2.0)
- 23/tcp closed telnet
- 25/tcp closed smtp
- 80/tcp open http nginx 1.0.15
- 110/tcp closed pop3
- 143/tcp closed imap
- 443/tcp closed https
- 445/tcp closed microsoft-ds
- 3389/tcp closed ms-wbt-server
- S U B - D O M A I N F I N D E R
- ==================================
- [i] Total Subdomains Found : 1
- [+] Subdomain: 100nonude.info
- [-] IP: 93.174.93.40
- 100nonude.info
- Domain Name: 100NONUDE.INFO
- Registry Domain ID: D503300000038501535-LRMS
- Registrar WHOIS Server:
- Registrar URL: http://www.nic.ru
- Updated Date: 2017-06-12T20:32:55Z
- Creation Date: 2017-04-13T08:10:42Z
- Registry Expiry Date: 2018-04-13T08:10:42Z
- Registrar Registration Expiration Date:
- Registrar: Regional Network Information Center, JSC dba RU-CENTER
- Registrar IANA ID: 463
- Registrar Abuse Contact Email:
- Registrar Abuse Contact Phone:
- Reseller:
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Registry Registrant ID: C201182491-LRMS
- Registrant Name: Barinov Andrey
- Registrant Organization: Barinov Andrey
- Registrant Street: Gvardeyskaya st. 11-51
- Registrant City: Melitopol
- Registrant State/Province:
- Registrant Postal Code: 72307
- Registrant Country: UA
- Registrant Phone: +380.684506451
- Registrant Phone Ext:
- Registrant Fax:
- Registrant Fax Ext:
- Registrant Email: barinandr@mail.ru
- Registry Admin ID: C201182491-LRMS
- Admin Name: Barinov Andrey
- Admin Organization: Barinov Andrey
- Admin Street: Gvardeyskaya st. 11-51
- Admin City: Melitopol
- Admin State/Province:
- Admin Postal Code: 72307
- Admin Country: UA
- Admin Phone: +380.684506451
- Admin Phone Ext:
- Admin Fax:
- Admin Fax Ext:
- Admin Email: barinandr@mail.ru
- Registry Tech ID: C201182491-LRMS
- Tech Name: Barinov Andrey
- Tech Organization: Barinov Andrey
- Tech Street: Gvardeyskaya st. 11-51
- Tech City: Melitopol
- Tech State/Province:
- Tech Postal Code: 72307
- Tech Country: UA
- Tech Phone: +380.684506451
- Tech Phone Ext:
- Tech Fax:
- Tech Fax Ext:
- Tech Email: barinandr@mail.ru
- Registry Billing ID: C201182491-LRMS
- Billing Name: Barinov Andrey
- Billing Organization: Barinov Andrey
- Billing Street: Gvardeyskaya st. 11-51
- Billing City: Melitopol
- Billing State/Province:
- Billing Postal Code: 72307
- Billing Country: UA
- Billing Phone: +380.684506451
- Billing Phone Ext:
- Billing Fax:
- Billing Fax Ext:
- Billing Email: barinandr@mail.ru
- Name Server: NS1.DNS-FORCE.NET
- Name Server: NS2.DNS-FORCE.NET
- ;100nonude.info. IN ANY
- ;; ANSWER SECTION:
- 100nonude.info. 19074 IN A 93.174.93.40
- 100nonude.info. 19074 IN NS ns2.dns-force.net.
- 100nonude.info. 19074 IN NS ns1.dns-force.net.
- ;; Query time: 8 msec
- ;; SERVER: 192.168.1.254#53(192.168.1.254)
- ;; WHEN: Sat Sep 09 17:17:56 EDT 2017
- ;; MSG SIZE rcvd: 108
- Running:
- traceroute -T -O info -i eth0 100nonude.info
- traceroute to 100nonude.info (93.174.93.40), 30 hops max, 60 byte packets
- 1 gateway (192.168.1.254) 0.509 ms 0.706 ms 0.872 ms
- 2 10.135.18.1 (10.135.18.1) 7.443 ms 7.825 ms 8.151 ms
- 3 75.154.223.222 (75.154.223.222) 29.672 ms 29.757 ms 30.225 ms
- 4 lag-113.ear3.NewYork1.Level3.net (4.15.212.245) 30.429 ms 30.590 ms 30.953 ms
- 5 ae-238-3614.edge6.Amsterdam1.Level3.net (4.69.162.246) 104.616 ms ae-237-3613.edge6.Amsterdam1.Level3.net (4.69.162.242) 104.813 ms ae-238-3614.edge6.Amsterdam1.Level3.net (4.69.162.246) 104.985 ms
- 6 * * *
- 7 93.174.93.40 (93.174.93.40) <syn,ack> 103.497 ms 103.616 ms 103.966 ms
- ----- 100nonude.info -----
- Host's addresses:
- __________________
- 100nonude.info. 19068 IN A 93.174.93.40
- Wildcard detection using: cwgpsyonxjju
- _______________________________________
- cwgpsyonxjju.100nonude.info. 86400 IN A 93.174.93.40
- !!!!!!!!!!!!!!!!!!!!!!!!!!!!
- Wildcards detected, all subdomains will point to the same IP address
- Omitting results containing 93.174.93.40.
- Maybe you are using OpenDNS servers.
- !!!!!!!!!!!!!!!!!!!!!!!!!!!!
- Name Servers:
- ______________
- ns1.dns-force.net. 33300 IN A 94.102.49.121
- Mail (MX) Servers:
- ___________________
- Trying Zone Transfers and getting Bind Versions:
- _________________________________________________
- Trying Zone Transfer for 100nonude.info on ns2.dns-force.net ...
- AXFR record query failed: no socket TCP[93.174.93.40] Connection refused
- Trying Zone Transfer for 100nonude.info on ns1.dns-force.net ...
- 100nonude.info. 86400 IN SOA (
- 100nonude.info. 86400 IN A 93.174.93.40
- 100nonude.info. 86400 IN NS ns1.dns-force.net.
- 100nonude.info. 86400 IN NS ns2.dns-force.net.
- *.100nonude.info. 86400 IN A 93.174.93.40
- 100nonude.info class C netranges:
- __________________________________
- 93.174.93.0/24
- Performing reverse lookup on 256 ip addresses:
- _______________________________________________
- 0 results out of 256 IP addresses.
- WhatWeb report for http://100nonude.info
- Status : 200 OK
- Title : ? 100 NoNude Models ?
- IP : 93.174.93.40
- Country : NETHERLANDS, NL
- Summary : MetaGenerator[CuteHTML], HTTPServer[nginx/1.0.15], nginx[1.0.15], Script[JavaScript,text/javascript], AddThis
- Detected Plugins:
- [ AddThis ]
- AddThis is a free way to boost traffic back to your site by
- making it easier for visitors to share your content.
- Website : http://www.addthis.com/
- [ HTTPServer ]
- HTTP server header string. This plugin also attempts to
- identify the operating system from the server header.
- String : nginx/1.0.15 (from server string)
- [ MetaGenerator ]
- This plugin identifies meta generator tags and extracts its
- value.
- String : CuteHTML
- [ Script ]
- This plugin detects instances of script HTML elements and
- returns the script language/type.
- String : JavaScript,text/javascript
- [ nginx ]
- Nginx (Engine-X) is a free, open-source, high-performance
- HTTP server and reverse proxy, as well as an IMAP/POP3
- proxy server.
- Version : 1.0.15
- Website : http://nginx.net/
- HTTP Headers:
- HTTP/1.1 200 OK
- Server: nginx/1.0.15
- Date: Sat, 09 Sep 2017 19:55:54 GMT
- Content-Type: text/html; charset=UTF-8
- Connection: close
- Accept-Ranges: bytes
- Vary: Accept-Encoding
- Content-Encoding: gzip
- Content-Length: 12452
- [+] Hosts found in search engines:
- ------------------------------------
- [-] Resolving hostnames IPs...
- 93.174.93.40:www.100nonude.info
- ^ ^
- _ __ _ ____ _ __ _ _ ____
- ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
- | V V // o // _/ | V V // 0 // 0 // _/
- |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
- <
- ...'
- WAFW00F - Web Application Firewall Detection Tool
- By Sandro Gauci && Wendel G. Henrique
- Checking http://100nonude.info
- Generic Detection results:
- No WAF detected by the generic detection
- Number of requests: 13
- DNS Servers for 100nonude.info:
- ns2.dns-force.net
- ns1.dns-force.net
- Trying zone transfer first...
- Testing ns2.dns-force.net
- Request timed out or transfer not allowed.
- Testing ns1.dns-force.net
- Whoah, it worked - misconfigured DNS server found:
- 100nonude.info. 86400 IN SOA ( ns1.dns-force.net. hostmaster.dns-force.net.
- 2012050402 ;serial
- 28800 ;refresh
- 7200 ;retry
- 864000 ;expire
- 86400 ;minimum
- )
- 100nonude.info. 86400 IN A 93.174.93.40
- 100nonude.info. 86400 IN NS ns1.dns-force.net.
- 100nonude.info. 86400 IN NS ns2.dns-force.net.
- *.100nonude.info. 86400 IN A 93.174.93.40
- Checking for HTTP-Loadbalancing [Date]: 19:56:50, 19:56:50, 19:56:50, 19:56:51, 19:56:51, 19:56:51, 19:56:52, 19:56:52, 19:56:52, 19:56:53, 19:56:53, 19:56:53, 19:56:53, 19:56:54, 19:56:54, 19:56:54, 19:56:55, 19:56:55, 19:56:55, 19:56:55, 19:56:56, 19:56:56, 19:56:56, 19:56:57, 19:56:57, 19:56:57, 19:56:57, 19:56:58, 19:56:58, 19:56:58, 19:56:59, 19:56:59, 19:56:59, 19:56:59, 19:57:00, 19:57:00, 19:57:00, 19:57:01, 19:57:01, 19:57:01, 19:57:01, 19:57:02, 19:57:02, 19:57:02, 19:57:03, 19:57:03, 19:57:03, 19:57:04, 19:57:04, 19:57:04, NOT FOUND
- Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
- 100nonude.info does NOT use Load-balancing.
- Starting smtp-user-enum v1.2 ( http://pentestmonkey.net/tools/smtp-user-enum )
- ----------------------------------------------------------
- | Scan Information |
- ----------------------------------------------------------
- Mode ..................... VRFY
- Worker Processes ......... 5
- Usernames file ........... users.txt
- Target count ............. 1
- Username count ........... 494
- Target TCP port .......... 25
- Query timeout ............ 5 secs
- Target domain ............
- ######## Scan started at Sat Sep 9 17:20:31 2017 #########
- ######## Scan completed at Sat Sep 9 17:28:46 2017 #########
- 0 results.
- 494 queries in 495 seconds (1.0 queries / sec)
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 17:28 EDT
- NSE: Loaded 146 scripts for scanning.
- NSE: Script Pre-scanning.
- Initiating NSE at 17:28
- Completed NSE at 17:28, 0.00s elapsed
- Initiating NSE at 17:28
- Completed NSE at 17:28, 0.00s elapsed
- Failed to resolve "100nonude.info.txt".
- Initiating Parallel DNS resolution of 1 host. at 17:28
- Completed Parallel DNS resolution of 1 host. at 17:28, 0.60s elapsed
- Initiating SYN Stealth Scan at 17:28
- Scanning 100nonude.info (93.174.93.40) [100 ports]
- Discovered open port 80/tcp on 93.174.93.40
- Discovered open port 22/tcp on 93.174.93.40
- Increasing send delay for 93.174.93.40 from 0 to 5 due to 59 out of 146 dropped probes since last increase.
- Increasing send delay for 93.174.93.40 from 5 to 10 due to 11 out of 25 dropped probes since last increase.
- Completed SYN Stealth Scan at 17:28, 7.12s elapsed (100 total ports)
- Initiating Service scan at 17:28
- Scanning 2 services on 100nonude.info (93.174.93.40)
- Completed Service scan at 17:29, 6.28s elapsed (2 services on 1 host)
- Initiating OS detection (try #1) against 100nonude.info (93.174.93.40)
- adjust_timeouts2: packet supposedly had rtt of -94333 microseconds. Ignoring time.
- adjust_timeouts2: packet supposedly had rtt of -110194 microseconds. Ignoring time.
- adjust_timeouts2: packet supposedly had rtt of -110194 microseconds. Ignoring time.
- Retrying OS detection (try #2) against 100nonude.info (93.174.93.40)
- Initiating Traceroute at 17:29
- Completed Traceroute at 17:29, 3.01s elapsed
- Initiating Parallel DNS resolution of 8 hosts. at 17:29
- Completed Parallel DNS resolution of 8 hosts. at 17:29, 5.51s elapsed
- NSE: Script scanning 93.174.93.40.
- Initiating NSE at 17:29
- Completed NSE at 17:29, 25.31s elapsed
- Initiating NSE at 17:29
- Completed NSE at 17:29, 0.00s elapsed
- Nmap scan report for 100nonude.info (93.174.93.40)
- Host is up (0.12s latency).
- Not shown: 92 closed ports
- PORT STATE SERVICE VERSION
- 22/tcp open ssh OpenSSH 5.3 (protocol 2.0)
- | ssh-hostkey:
- |_ 2048 c6:97:3d:68:af:14:9e:c0:1a:9c:a4:f6:75:32:ae:6f (RSA)
- 25/tcp filtered smtp
- 80/tcp open http nginx 1.0.15
- |_http-favicon: Unknown favicon MD5: D92B1936AF11EC235A2BD448C0E1BFF6
- |_http-generator: CuteHTML
- | http-methods:
- |_ Supported Methods: POST OPTIONS GET HEAD
- |_http-server-header: nginx/1.0.15
- |_http-title: ? 100 NoNude Models ?
- 135/tcp filtered msrpc
- 139/tcp filtered netbios-ssn
- 445/tcp filtered microsoft-ds
- 465/tcp filtered smtps
- 587/tcp filtered submission
- Aggressive OS guesses: Linux 2.6.32 or 3.10 (91%), Tandberg VCS video conferencing system (91%), Synology DiskStation Manager 5.1 (90%), Linux 2.6.32 (90%), Linux 2.6.35 (90%), Linux 2.6.37 (89%), Linux 3.18 (89%), DD-WRT v24-sp2 (Linux 2.4.36) (88%), Linux 2.6.32 - 2.6.35 (88%), Linux 2.6.39 (88%)
- No exact OS matches for host (test conditions non-ideal).
- Uptime guess: 22.069 days (since Fri Aug 18 15:50:49 2017)
- Network Distance: 11 hops
- TCP Sequence Prediction: Difficulty=246 (Good luck!)
- IP ID Sequence Generation: All zeros
- TRACEROUTE (using port 23/tcp)
- HOP RTT ADDRESS
- 1 110.19 ms 10.13.0.1
- 2 ...
- 3 110.43 ms po101.gra-g2-a75.fr.eu (178.33.103.231)
- 4 112.49 ms 10.95.33.10
- 5 119.01 ms be100-1113.fra-5-a9.de.eu (91.121.131.19)
- 6 119.04 ms be100-2.fra-1-a9.de.eu (94.23.122.217)
- 7 ...
- 8 124.50 ms vlan3555.bb1.ams2.nl.m247.com (176.10.83.128)
- 9 120.28 ms 176.10.83.5
- 10 ...
- 11 120.44 ms 93.174.93.40
- _/ _/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/
- _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
- _/ _/ _/_/_/_/ _/_/_/ _/ _/_/_/ _/_/_/_/ _/ _/_/_/ _/_/_/_
- _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
- _/_/_/_/ _/ _/ _/ _/_/_/_/ _/_/_/_/ _/ _/_/_/_/ _/ _/ [v1.06]
- _/ User-Agent Tester ↵
- _/ AKA: Purple Pimp ↵
- _/ ChrisJohnRiley ↵
- _/ blog.c22.cc ↵
- [>] Performing initial request and confirming stability
- [>] Using User-Agent string Mozilla/5.0
- [ ] URL (ENTERED): http://100nonude.info
- [ ] Response Code: 200 OK
- [ ] Server: nginx/1.0.15
- [ ] Date: Sat, 09 Sep 2017 20:06:34 GMT
- [ ] Content-Type: text/html; charset=UTF-8
- [ ] Transfer-Encoding: chunked
- [ ] Connection: close
- [ ] Accept-Ranges: bytes
- [ ] Vary: Accept-Encoding
- [ ] Data (MD5): 87c6c60cd93c32ccd594791ea8ede54d
- [1] Pass
- [2] Pass
- [3] Pass
- [>] URL appears stable. Beginning test
- [>] Using DEFAULT User-Agent Strings
- [>] Using Crazy User-Agent Strings
- [>] Using Bot User-Agent Strings
- [>] Output: [+] Added Headers, [-] Removed Headers, [!] Altered Headers, [ ] No Change
- [>] User-Agent String : Windows-Media-Player/9.00.00.4503
- [!] Data (MD5): 144fd0404615872960264b53118f1b22
- [>] User-Agent String : Mozilla/5.0 (PLAYSTATION 3; 2.00)
- [!] Data (MD5): 02c56a171176be875efebd8b525dc1e0
- [>] User-Agent String : TrackBack/1.02
- [!] Data (MD5): 0a2533a1c242a1d9b047a5f0f811c63d
- [>] User-Agent String : wispr
- [!] Data (MD5): ceee78c85b52f2757304662f5e662281
- [>] User-Agent String : EMPTY USER-AGENT STRING!
- [!] Data (MD5): c22a6da3b3a035a8e06825b23cb8409b
- [>] User-Agent String : Googlebot/2.1 (+http://www.google.com/bot.html)
- [!] Data (MD5): 66d4a995ecae72ca9dba1b9951b59808
- [>] User-Agent String : Googlebot-Image/1.0
- [!] Data (MD5): 39a5bb826a8c6b9d2e5e25a822afbb82
- [>] User-Agent String : Mediapartners-Google
- [!] Data (MD5): 97ddd72c9398785ae791946ad46f015c
- [>] User-Agent String : Mozilla/2.0 (compatible; Ask Jeeves)
- [!] Data (MD5): 2831a3ffc5feac75b6f598e7e2e05ec6
- [>] User-Agent String : msnbot-Products/1.0 (+http://search.msn.com/msnbot.htm)
- [!] Data (MD5): 0a34fa4d84770aa02225c6b28f24ee1f
- [>] User-Agent String : mmcrawler
- [!] Data (MD5): 4265d1f2f8187725c89f0206f70b4b69
- [>] Checks completed... try enabling VERBOSE mode for more detailed output
- [>] That's all folks... Fo' Shizzle!
- #########################################################################################
- Hostname sgirls.hotdolls.info ISP Quasi Networks LTD. (AS29073)
- Continent Africa Flag
- SC
- Country Seychelles Country Code SC (SYC)
- Region Unknown Local time 09 Sep 2017 23:19 +04
- City Unknown Latitude -4.583
- IP Address 80.82.79.11 Longitude 55.667
- #########################################################################################
- s
- dig sgirls.hotdolls.info any
- ; <<>> DiG 9.10.3-P4-Debian <<>> sgirls.hotdolls.info any
- ;; global options: +cmd
- ;; Got answer:
- ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 142
- ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
- ;; OPT PSEUDOSECTION:
- ; EDNS: version: 0, flags:; udp: 4096
- ;; QUESTION SECTION:
- ;sgirls.hotdolls.info. IN ANY
- ;; ANSWER SECTION:
- sgirls.hotdolls.info. 1778 IN A 80.82.79.11
- ;; Query time: 9 msec
- ;; SERVER: 192.168.1.254#53(192.168.1.254)
- ;; WHEN: Sat Sep 09 17:56:55 EDT 2017
- ;; MSG SIZE rcvd: 65
- ###########################################################################################
- tcptraceroute -i eth0 sgirls.hotdolls.info
- Running:
- traceroute -T -O info -i eth0 sgirls.hotdolls.info
- traceroute to sgirls.hotdolls.info (80.82.79.11), 30 hops max, 60 byte packets
- 1 gateway (192.168.1.254) 0.377 ms 0.538 ms 0.698 ms
- 2 10.135.18.1 (10.135.18.1) 6.921 ms 7.570 ms 7.602 ms
- 3 75.154.223.222 (75.154.223.222) 29.862 ms 29.913 ms 29.979 ms
- 4 lag-113.ear3.NewYork1.Level3.net (4.15.212.245) 35.050 ms 35.239 ms 35.299 ms
- 5 ae-240-3616.edge6.Amsterdam1.Level3.net (4.69.162.254) 105.067 ms ae-239-3615.edge6.Amsterdam1.Level3.net (4.69.162.250) 105.142 ms 105.185 ms
- 6 * * *
- 7 no-reverse-dns-configured.com (80.82.79.11) <syn,ack> 103.541 ms 103.603 ms *
- ###########################################################################################
- ###########################################################################################
- nmap -PN -n -F -T4 -sV -A -oG temp.txt sgirls.hotdolls.info
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 17:59 EDT
- Nmap scan report for sgirls.hotdolls.info (80.82.79.11)
- Host is up (0.29s latency).
- Not shown: 84 closed ports
- PORT STATE SERVICE VERSION
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 25/tcp filtered smtp
- 53/tcp open domain ISC BIND 9.8.2rc1
- 80/tcp open http nginx 1.12.1
- |_http-server-header: nginx/1.12.1
- |_http-title: SCHOOLGIRLS LIST - Preteen Models, Young Russian Teen Models, ...
- 81/tcp filtered hosts2-ns
- 110/tcp open pop3 Dovecot pop3d
- |_pop3-capabilities: SASL(PLAIN LOGIN DIGEST-MD5 CRAM-MD5) TOP CAPA RESP-CODES STLS UIDL PIPELINING USER
- 135/tcp filtered msrpc
- 139/tcp filtered netbios-ssn
- 143/tcp open imap Dovecot imapd
- 445/tcp filtered microsoft-ds
- 465/tcp filtered smtps
- 587/tcp filtered submission
- 993/tcp open ssl/imaps?
- |_imap-capabilities: CAPABILITY
- | ssl-cert: Subject: commonName=imap.example.com
- | Not valid before: 2015-06-12T12:04:14
- |_Not valid after: 2016-06-11T12:04:14
- |_ssl-date: 2017-09-09T19:58:33+00:00; -2h01m11s from scanner time.
- 995/tcp open ssl/pop3s?
- | ssl-cert: Subject: commonName=imap.example.com
- | Not valid before: 2015-06-12T12:04:14
- |_Not valid after: 2016-06-11T12:04:14
- |_ssl-date: 2017-09-09T19:58:33+00:00; -2h01m11s from scanner time.
- 3306/tcp open mysql MySQL (unauthorized)
- Device type: general purpose|firewall|storage-misc|WAP|webcam
- Running (JUST GUESSING): Linux 2.6.X|3.X|4.X|2.4.X (99%), WatchGuard Fireware 11.X (94%),
- TRACEROUTE (using port 1723/tcp)
- HOP RTT ADDRESS
- 1 ...
- 2 1395.74 ms 37.187.24.252
- 3 1391.48 ms 178.33.103.231
- 4 1399.49 ms 10.95.33.10
- 5 1411.49 ms 91.121.131.19
- 6 1405.31 ms 94.23.122.217
- 7 ...
- 8 1424.33 ms 176.10.83.128
- 9 1420.00 ms 176.10.83.119
- 10 ...
- 11 1417.55 ms 80.82.79.11
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 111.60 seconds
- ###########################################################################################
- amap -i temp.txt
- amap v5.4 (www.thc.org/thc-amap) started at 2017-09-09 18:00:52 - APPLICATION MAPPING mode
- Protocol on 80.82.79.11:80/tcp matches http
- Protocol on 80.82.79.11:80/tcp matches http-apache-2
- Protocol on 80.82.79.11:110/tcp matches pop3
- Protocol on 80.82.79.11:143/tcp matches imap
- Protocol on 80.82.79.11:3306/tcp matches mysql
- Protocol on 80.82.79.11:3306/tcp matches mysql-secured
- Protocol on 80.82.79.11:993/tcp matches ssl
- Protocol on 80.82.79.11:995/tcp matches ssl
- Protocol on 80.82.79.11:53/tcp matches dns
- Unidentified ports: none.
- amap v5.4 finished at 2017-09-09 18:01:15
- ###########################################################################################
- inetnum: 80.82.79.0 - 80.82.79.255
- netname: SC-QUASI80
- descr: QUASI
- country: SC
- org: ORG-QNL3-RIPE
- admin-c: QNL1-RIPE
- tech-c: QNL1-RIPE
- status: ASSIGNED PA
- mnt-by: QUASINETWORKS-MNT
- mnt-lower: QUASINETWORKS-MNT
- mnt-routes: QUASINETWORKS-MNT
- created: 2010-08-25T21:29:49Z
- last-modified: 2016-01-23T23:04:27Z
- source: RIPE
- organisation: ORG-QNL3-RIPE
- org-name: Quasi Networks LTD.
- org-type: OTHER
- address: Suite 1, Second Floor
- address: Sound & Vision House, Francis Rachel Street
- address: Victoria, Mahe, SEYCHELLES
- remarks: *****************************************************************************
- remarks: IMPORTANT INFORMATION
- remarks: *****************************************************************************
- remarks: We are a high bandwidth network provider offering bandwidth solutions.
- remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
- remarks: Please only use abuse@quasinetworks.com for abuse reports.
- remarks: For all other requests, please see the details on our website.
- remarks: *****************************************************************************
- abuse-mailbox: abuse@quasinetworks.com
- abuse-c: AR34302-RIPE
- mnt-ref: QUASINETWORKS-MNT
- mnt-by: QUASINETWORKS-MNT
- created: 2015-11-08T22:25:26Z
- last-modified: 2015-11-27T09:37:50Z
- source: RIPE # Filtered
- role: Quasi Networks LTD
- address: Suite 1, Second Floor
- address: Sound & Vision House, Francis Rachel Street
- address: Victoria, Mahe, SEYCHELLES
- remarks: *****************************************************************************
- remarks: IMPORTANT INFORMATION
- remarks: *****************************************************************************
- remarks: We are a high bandwidth network provider offering bandwidth solutions.
- remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
- remarks: Please only use abuse@quasinetworks.com for abuse reports.
- remarks: For all other requests, please see the details on our website.
- remarks: *****************************************************************************
- abuse-mailbox: abuse@quasinetworks.com
- nic-hdl: QNL1-RIPE
- mnt-by: QUASINETWORKS-MNT
- created: 2015-11-07T22:43:04Z
- last-modified: 2015-11-07T23:04:49Z
- source: RIPE # Filtered
- % Information related to '80.82.79.0/24AS29073'
- route: 80.82.79.0/24
- descr: Quasi Networks LTD (IBC)
- origin: AS29073
- mnt-by: QUASINETWORKS-MNT
- created: 2010-08-25T21:31:02Z
- last-modified: 2016-01-23T23:04:45Z
- source: RIPE
- % This query was served by the RIPE Database Query Service version 1.89.2 (ANGUS)
- ###########################################################################################
- [i] Scanning Site: http://sgirls.hotdolls.info
- B A S I C I N F O
- ====================
- [+] Site Title: SCHOOLGIRLS LIST - Preteen Models, Young Russian Teen Models, Teen Models, Young Teen Models Nonnude, Young Teen Portfolio Models, Teen Fashion Models, Teen Glamour Models, Teen Girl Models, Teen Models Gallery, Models Teen, Teen Model
- [+] IP address: 80.82.79.11
- [+] Web Server: nginx/1.12.1
- [+] CMS: Could Not Detect
- [+] Cloudflare: Not Detected
- [+] Robots File: Could NOT Find robots.txt!
- G E O I P L O O K U P
- =========================
- [i] IP Address: 80.82.79.11
- [i] Country: SC
- [i] State: N/A
- [i] City: N/A
- [i] Latitude: -4.583300
- [i] Longitude: 55.666698
- H T T P H E A D E R S
- =======================
- [i] HTTP/1.1 200 OK
- [i] Server: nginx/1.12.1
- [i] Date: Sat, 09 Sep 2017 19:56:14 GMT
- [i] Content-Type: text/html; charset=UTF-8
- [i] Connection: close
- [i] Accept-Ranges: bytes
- D N S L O O K U P
- ===================
- sgirls.hotdolls.info. 1796 IN A 80.82.79.11
- S U B N E T C A L C U L A T I O N
- ====================================
- Address = 80.82.79.11
- Network = 80.82.79.11 / 32
- Netmask = 255.255.255.255
- Broadcast = not needed on Point-to-Point links
- Wildcard Mask = 0.0.0.0
- Hosts Bits = 0
- Max. Hosts = 1 (2^0 - 0)
- Host Range = { 80.82.79.11 - 80.82.79.11 }
- N M A P P O R T S C A N
- ============================
- Starting Nmap 7.01 ( https://nmap.org ) at 2017-09-09 21:57 UTC
- Nmap scan report for sgirls.hotdolls.info (80.82.79.11)
- Host is up (0.082s latency).
- rDNS record for 80.82.79.11: no-reverse-dns-configured.com
- PORT STATE SERVICE VERSION
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 23/tcp closed telnet
- 25/tcp open smtp Postfix smtpd
- 80/tcp open http nginx 1.12.1
- 110/tcp open pop3 Dovecot pop3d
- 143/tcp open imap Dovecot imapd
- 443/tcp closed https
- 445/tcp closed microsoft-ds
- 3389/tcp closed ms-wbt-server
- Service Info: Host: b06s06.com
- Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 8.44 seconds
- S U B - D O M A I N F I N D E R
- ==================================
- [i] Total Subdomains Found : 1
- [+] Subdomain: sgirls.hotdolls.info
- [-] IP: 80.82.79.11
- R E V E R S E I P L O O K U P
- ==================================
- [i] Total Sites Found On This Server : 7
- [#] crazy-models.photo-angels.name
- [-] CMS: Could Not Detect
- [#] nn-girls.biz
- [-] CMS: Could Not Detect
- [#] sgirls.hotdolls.info
- [-] CMS: Could Not Detect
- [#] teeny-video.photo-angels.name
- [-] CMS: Could Not Detect
- [#] www.atlasphones.com
- [-] CMS: Could Not Detect
- [#] www.charming-dolls.info
- [-] CMS: Could Not Detect
- [#] www.youngs-list.com,
- [-] CMS: Could Not Detect
- [*] Performing TLD Brute force Enumeration against sgirls.hotdolls.info
- [*] The operation could take up to: 00:01:07
- [*] A sgirls.biz.af 5.45.75.45
- [*] A sgirls.co.asia 91.195.240.135
- [*] CNAME sgirls.biz.at free.biz.at
- [*] A free.biz.at 216.92.134.29
- [*] A sgirls.org.aw 142.4.20.12
- [*] A sgirls.com.ba 195.222.33.180
- [*] A sgirls.com.be 95.173.170.166
- [*] A sgirls.co.ba 176.9.45.78
- [*] A sgirls.biz.by 71.18.52.2
- [*] A sgirls.biz.bz 199.59.242.150
- [*] A sgirls.net.cc 54.252.89.206
- [*] A sgirls.com.cc 54.252.107.64
- [*] A sgirls.co.cc 175.126.123.219
- [*] A sgirls.org.ch 72.52.4.122
- [*] A sgirls.co.cm 85.25.140.105
- [*] A sgirls.net.cm 85.25.140.105
- [*] A sgirls.biz.cl 185.53.178.8
- [*] A sgirls.com.com 52.33.196.199
- [*] A sgirls.net.com 199.59.242.150
- [*] A sgirls.org.com 23.23.86.44
- [*] A sgirls.co.com 173.192.115.17
- [*] A sgirls.com 98.124.245.24
- [*] A sgirls.biz.cr 72.52.4.122
- [*] CNAME sgirls.biz.cm i.cns.cm
- [*] A i.cns.cm 118.184.56.30
- [*] A sgirls.biz.cx 72.52.4.122
- [*] A sgirls.net.cz 80.250.24.177
- [*] A sgirls.biz.cz 185.53.179.7
- [*] A sgirls.cz 46.28.105.3
- [*] AAAA sgirls.cz 2a02:2b88:1:4::17
- [*] A sgirls.com.cz 62.109.128.30
- [*] CNAME sgirls.co.de co.de
- [*] A co.de 144.76.162.245
- [*] CNAME sgirls.org.de www.org.de
- [*] A www.org.de 78.47.128.8
- [*] A sgirls.com.de 50.56.68.37
- [*] A sgirls.de 85.114.133.20
- [*] A sgirls.net.eu 78.46.90.98
- [*] A sgirls.org.eu 78.46.90.98
- [*] A sgirls.biz.fi 185.55.85.123
- [*] A sgirls.fm 173.230.131.38
- [*] A sgirls.biz.fm 173.230.131.38
- [*] A sgirls.org.fr 149.202.133.35
- [*] A sgirls.biz.gl 72.52.4.122
- [*] CNAME sgirls.co.gp co.gp
- [*] A co.gp 144.76.162.245
- [*] A sgirls.co.hn 208.100.40.203
- [*] CNAME sgirls.net.hr net.hr
- [*] A net.hr 192.0.78.24
- [*] A net.hr 192.0.78.25
- [*] CNAME sgirls.biz.hn parkmydomain.vhostgo.com
- [*] A parkmydomain.vhostgo.com 107.186.245.118
- [*] A sgirls.co.ht 72.52.4.122
- [*] A sgirls.co.jobs 50.17.193.222
- [*] A sgirls.net.jobs 50.19.241.165
- [*] A sgirls.com.jobs 50.19.241.165
- [*] A sgirls.biz.jobs 50.19.241.165
- [*] A sgirls.org.jobs 50.19.241.165
- [*] A sgirls.biz.ky 199.184.144.27
- [*] CNAME sgirls.biz.li 712936.parkingcrew.net
- [*] A 712936.parkingcrew.net 185.53.179.29
- [*] A sgirls.biz.lu 195.26.5.2
- [*] A sgirls.biz.ly 64.136.20.39
- [*] A sgirls.biz.md 72.52.4.122
- [*] A sgirls.co.mk 87.76.31.211
- [*] A sgirls.co.mobi 54.225.105.179
- [*] A sgirls.biz.my 202.190.174.44
- [*] A sgirls.net 88.85.68.115
- [*] A sgirls.co.net 188.166.216.219
- [*] A sgirls.net.net 52.50.81.210
- [*] A sgirls.org.net 23.23.86.44
- [*] A sgirls.co.nl 37.97.184.204
- [*] A sgirls.com.nl 83.98.157.102
- [*] A sgirls.net.nl 83.98.157.102
- [*] A sgirls.co.nr 208.100.40.202
- [*] CNAME sgirls.co.nu co.nu
- [*] A co.nu 144.76.162.245
- [*] CNAME sgirls.com.nu com.nu
- [*] A com.nu 144.76.162.245
- [*] A sgirls.net.nu 199.102.76.78
- [*] A sgirls.org.nu 80.92.84.139
- [*] A sgirls.com.org 23.23.86.44
- [*] CNAME sgirls.net.org pewtrusts.org
- [*] A pewtrusts.org 204.74.99.100
- [*] A sgirls.ph 45.79.222.138
- [*] A sgirls.co.ph 45.79.222.138
- [*] A sgirls.com.ph 45.79.222.138
- [*] A sgirls.net.ph 45.79.222.138
- [*] A sgirls.org.ph 45.79.222.138
- [*] A sgirls.co.pl 212.91.6.55
- [*] A sgirls.org.pm 208.73.211.165
- [*] A sgirls.org.pm 208.73.210.202
- [*] A sgirls.org.pm 208.73.210.217
- [*] A sgirls.org.pm 208.73.211.177
- [*] A sgirls.co.ps 66.96.132.56
- [*] CNAME sgirls.biz.ps biz.ps
- [*] A biz.ps 144.76.162.245
- [*] A sgirls.co.pt 194.107.127.52
- [*] A sgirls.co.pw 141.8.226.59
- [*] A sgirls.net.pw 141.8.226.59
- [*] A sgirls.biz.pw 141.8.226.59
- [*] A sgirls.org.pw 141.8.226.59
- [*] CNAME sgirls.co.ro now.co.ro
- [*] A now.co.ro 185.27.255.9
- [*] A sgirls.net.ro 69.64.52.127
- [*] A sgirls.org.re 217.70.184.38
- [*] A sgirls.ru 185.53.179.40
- [*] A sgirls.com.ru 178.210.89.119
- [*] A sgirls.biz.se 185.53.179.6
- [*] CNAME sgirls.net.se 773147.parkingcrew.net
- [*] A 773147.parkingcrew.net 185.53.179.29
- [*] A sgirls.co.sl 91.195.240.135
- [*] A sgirls.com.sr 143.95.106.249
- [*] A sgirls.biz.st 91.121.28.115
- [*] A sgirls.co.su 72.52.4.122
- [*] A sgirls.biz.tc 64.136.20.39
- [*] A sgirls.biz.tf 85.236.153.18
- [*] A sgirls.net.tf 188.40.117.12
- [*] A sgirls.net.tf 188.40.70.29
- [*] A sgirls.net.tf 188.40.70.27
- [*] A sgirls.co.tl 208.100.40.202
- [*] A sgirls.co.to 175.118.124.44
- [*] A sgirls.co.tv 31.186.25.163
- [*] A sgirls.biz.tv 72.52.4.122
- [*] A sgirls.org.tv 72.52.4.122
- [*] CNAME sgirls.biz.uz biz.uz
- [*] A biz.uz 144.76.162.245
- [*] A sgirls.vg 88.198.29.97
- [*] A sgirls.co.vg 88.198.29.97
- [*] A sgirls.com.vg 88.198.29.97
- [*] A sgirls.net.vg 68.178.254.180
- [*] A sgirls.biz.vg 89.31.143.20
- [*] A sgirls.ws 64.70.19.203
- [*] A sgirls.com.ws 202.4.48.211
- [*] A sgirls.net.ws 202.4.48.211
- [*] A sgirls.biz.ws 184.168.221.104
- [*] A sgirls.org.ws 202.4.48.211
- IN ANY
- ;; ANSWER SECTION:
- sgirls.hotdolls.info. 1786 IN A 80.82.79.11
- ;; Query time: 8 msec
- ;; SERVER: 192.168.1.254#53(192.168.1.254)
- ;; WHEN: Sat Sep 09 17:56:47 EDT 2017
- ;; MSG SIZE rcvd: 65
- traceroute -T -O info -i eth0 sgirls.hotdolls.info
- traceroute to sgirls.hotdolls.info (80.82.79.11), 30 hops max, 60 byte packets
- 1 gateway (192.168.1.254) 0.493 ms 0.691 ms 0.861 ms
- 2 10.135.18.1 (10.135.18.1) 14.308 ms 19.953 ms 23.800 ms
- 3 75.154.223.222 (75.154.223.222) 29.925 ms 29.999 ms 30.157 ms
- 4 lag-113.ear3.NewYork1.Level3.net (4.15.212.245) 37.953 ms 38.623 ms 38.625 ms
- 5 ae-239-3615.edge6.Amsterdam1.Level3.net (4.69.162.250) 104.714 ms 104.745 ms 104.815 ms
- 6 * * *
- 7 no-reverse-dns-configured.com (80.82.79.11) <syn,ack> 103.494 ms 103.310 ms 103.343 ms
- ----- sgirls.hotdolls.info -----
- Host's addresses:
- __________________
- sgirls.hotdolls.info. 1780 IN A 80.82.79.11
- Name Servers:
- ______________
- sgirls.hotdolls.info NS record query failed: NOERROR
- WhatWeb report for http://sgirls.hotdolls.info
- Status : 200 OK
- Title : SCHOOLGIRLS LIST - Preteen Models, Young Russian Teen Models, Teen Models, Young Teen Models Nonnude, Young Teen Portfolio Models, Teen Fashion Models, Teen Glamour Models, Teen Girl Models, Teen Models Gallery, Models Teen, Teen Model
- IP : 80.82.79.11
- Country : NETHERLANDS, NL
- Summary : HTTPServer[nginx/1.12.1], nginx[1.12.1], Script[JavaScript]
- Detected Plugins:
- [ HTTPServer ]
- HTTP server header string. This plugin also attempts to
- identify the operating system from the server header.
- String : nginx/1.12.1 (from server string)
- [ Script ]
- This plugin detects instances of script HTML elements and
- returns the script language/type.
- String : JavaScript
- [ nginx ]
- Nginx (Engine-X) is a free, open-source, high-performance
- HTTP server and reverse proxy, as well as an IMAP/POP3
- proxy server.
- Version : 1.12.1
- Website : http://nginx.net/
- HTTP Headers:
- HTTP/1.1 200 OK
- Server: nginx/1.12.1
- Date: Sat, 09 Sep 2017 19:57:30 GMT
- Content-Type: text/html; charset=UTF-8
- Transfer-Encoding: chunked
- Connection: close
- Accept-Ranges: bytes
- ^ ^
- _ __ _ ____ _ __ _ _ ____
- ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
- | V V // o // _/ | V V // 0 // 0 // _/
- |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
- <
- lbd - load balancing detector 0.2 - Checks if a given domain uses load-balancing.
- Written by Stefan Behte (http://ge.mine.nu)
- Proof-of-concept! Might give false positives.
- Checking for DNS-Loadbalancing: NOT FOUND
- Checking for HTTP-Loadbalancing [Server]:
- nginx/1.12.1
- NOT FOUND
- Checking for HTTP-Loadbalancing [Date]: 20:00:28, 20:00:29, 20:00:29, 20:00:32, 20:00:32, 20:00:32, 20:00:33, 20:00:33, 20:00:34, 20:00:34, 20:00:34, 20:00:34, 20:00:35, 20:00:35, 20:00:35, 20:00:36, 20:00:40, 20:00:40, 20:00:41, 20:00:46, 20:00:54, 20:00:55, 20:00:56, 20:00:56, 20:00:56, 20:00:57, 20:01:07, 20:01:09, 20:01:10, 20:01:11, 20:01:12, 20:01:13, 20:01:17, 20:01:20, 20:01:20, 20:01:21, 20:01:21, 20:01:21, 20:01:22, 20:01:22, 20:01:22, 20:01:23, 20:01:27, 20:01:27, 20:01:28, 20:01:28, 20:01:28, 20:01:28, 20:01:29, 20:01:29, NOT FOUND
- Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
- sgirls.hotdolls.info does NOT use Load-balancing.
- Starting smtp-user-enum v1.2 ( http://pentestmonkey.net/tools/smtp-user-enum )
- ----------------------------------------------------------
- | Scan Information |
- ----------------------------------------------------------
- Mode ..................... VRFY
- Worker Processes ......... 5
- Usernames file ........... users.txt
- Target count ............. 1
- Username count ........... 494
- Target TCP port .......... 25
- Query timeout ............ 5 secs
- Target domain ............
- ######## Scan started at Sat Sep 9 18:03:24 2017 #########
- ######## Scan completed at Sat Sep 9 18:11:39 2017 #########
- 0 results.
- 494 queries in 495 seconds (1.0 queries / sec)
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 18:11 EDT
- NSE: Loaded 146 scripts for scanning.
- NSE: Script Pre-scanning.
- Initiating NSE at 18:11
- Completed NSE at 18:11, 0.00s elapsed
- Initiating NSE at 18:11
- Completed NSE at 18:11, 0.00s elapsed
- Failed to resolve "sgirls.hotdolls.info.txt".
- Initiating Parallel DNS resolution of 1 host. at 18:11
- Completed Parallel DNS resolution of 1 host. at 18:11, 0.53s elapsed
- Initiating SYN Stealth Scan at 18:11
- Scanning sgirls.hotdolls.info (80.82.79.11) [100 ports]
- Discovered open port 995/tcp on 80.82.79.11
- Discovered open port 53/tcp on 80.82.79.11
- Discovered open port 143/tcp on 80.82.79.11
- Discovered open port 993/tcp on 80.82.79.11
- Discovered open port 3306/tcp on 80.82.79.11
- Discovered open port 110/tcp on 80.82.79.11
- Discovered open port 80/tcp on 80.82.79.11
- Increasing send delay for 80.82.79.11 from 0 to 5 due to 61 out of 152 dropped probes since last increase.
- Completed SYN Stealth Scan at 18:11, 4.55s elapsed (100 total ports)
- Initiating Service scan at 18:11
- Scanning 7 services on sgirls.hotdolls.info (80.82.79.11)
- Completed Service scan at 18:11, 6.94s elapsed (7 services on 1 host)
- Initiating OS detection (try #1) against sgirls.hotdolls.info (80.82.79.11)
- Initiating Traceroute at 18:11
- Completed Traceroute at 18:11, 3.02s elapsed
- Initiating Parallel DNS resolution of 8 hosts. at 18:11
- Completed Parallel DNS resolution of 8 hosts. at 18:12, 5.62s elapsed
- NSE: Script scanning 80.82.79.11.
- Initiating NSE at 18:12
- Completed NSE at 18:12, 32.91s elapsed
- Initiating NSE at 18:12
- Completed NSE at 18:12, 0.00s elapsed
- Nmap scan report for sgirls.hotdolls.info (80.82.79.11)
- Host is up (0.16s latency).
- rDNS record for 80.82.79.11: no-reverse-dns-configured.com
- Not shown: 84 closed ports
- PORT STATE SERVICE VERSION
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 25/tcp filtered smtp
- 53/tcp open domain ISC BIND 9.8.2rc1
- | dns-nsid:
- |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4
- 80/tcp open http nginx 1.12.1
- | http-methods:
- | Supported Methods: GET HEAD POST OPTIONS TRACE
- |_ Potentially risky methods: TRACE
- |_http-server-header: nginx/1.12.1
- |_http-title: SCHOOLGIRLS LIST - Preteen Models, Young Russian Teen Models, ...
- 81/tcp filtered hosts2-ns
- 110/tcp open pop3 Dovecot pop3d
- 135/tcp filtered msrpc
- 139/tcp filtered netbios-ssn
- 143/tcp open imap Dovecot imapd
- |_imap-capabilities: STARTTLS ENABLE completed IDLE OK AUTH=DIGEST-MD5 Capability LITERAL+ AUTH=CRAM-MD5A0001 AUTH=PLAIN AUTH=LOGIN IMAP4rev1 ID SASL-IR LOGIN-REFERRALS
- | ssl-cert: Subject: commonName=imap.example.com
- | Issuer: commonName=imap.example.com
- | Public Key type: rsa
- | Public Key bits: 1024
- | Signature Algorithm: sha1WithRSAEncryption
- | Not valid before: 2015-06-12T12:04:14
- | Not valid after: 2016-06-11T12:04:14
- | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
- |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
- 445/tcp filtered microsoft-ds
- 465/tcp filtered smtps
- 587/tcp filtered submission
- 993/tcp open ssl/imap Dovecot imapd
- | ssl-cert: Subject: commonName=imap.example.com
- | Issuer: commonName=imap.example.com
- | Public Key type: rsa
- | Public Key bits: 1024
- | Signature Algorithm: sha1WithRSAEncryption
- | Not valid before: 2015-06-12T12:04:14
- | Not valid after: 2016-06-11T12:04:14
- | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
- |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
- 995/tcp open ssl/pop3 Dovecot pop3d
- | ssl-cert: Subject: commonName=imap.example.com
- | Issuer: commonName=imap.example.com
- | Public Key type: rsa
- | Public Key bits: 1024
- | Signature Algorithm: sha1WithRSAEncryption
- | Not valid before: 2015-06-12T12:04:14
- | Not valid after: 2016-06-11T12:04:14
- | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
- |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
- |_ssl-date: 2017-09-09T20:10:57+00:00; -2h01m12s from scanner time.
- 3306/tcp open mysql MySQL (unauthorized)
- Device type: general purpose
- Running: Linux 2.6.X
- OS CPE: cpe:/o:linux:linux_kernel:2.6.39
- OS details: Linux 2.6.39
- Uptime guess: 11.633 days (since Tue Aug 29 03:01:01 2017)
- Network Distance: 11 hops
- TCP Sequence Prediction: Difficulty=263 (Good luck!)
- IP ID Sequence Generation: All zeros
- Service Info: OS: Red Hat Enterprise Linux 6; CPE: cpe:/o:redhat:enterprise_linux:6
- Host script results:
- |_clock-skew: mean: -2h01m12s, deviation: 0s, median: -2h01m12s
- TRACEROUTE (using port 23/tcp)
- HOP RTT ADDRESS
- 1 109.41 ms 10.13.0.1
- 2 139.74 ms 37.187.24.252
- 3 110.99 ms po101.gra-g2-a75.fr.eu (178.33.103.231)
- 4 ...
- 5 119.23 ms be100-1113.fra-5-a9.de.eu (91.121.131.19)
- 6 119.39 ms be100-2.fra-1-a9.de.eu (94.23.122.217)
- 7 ...
- 8 124.23 ms vlan3555.bb1.ams2.nl.m247.com (176.10.83.128)
- 9 120.71 ms 176.10.83.119
- 10 ...
- 11 120.01 ms no-reverse-dns-configured.com (80.82.79.11)
- NSE: Script Post-scanning.
- Initiating NSE at 18:12
- Completed NSE at 18:12, 0.00s elapsed
- Initiating NSE at 18:12
- Completed NSE at 18:12, 0.00s elapsed
- Read data files from: /usr/bin/../share/nmap
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 57.29 seconds
- Raw packets sent: 240 (11.514KB) | Rcvd: 190 (8.816KB)
- _/ _/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/
- _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
- _/ _/ _/_/_/_/ _/_/_/ _/ _/_/_/ _/_/_/_/ _/ _/_/_/ _/_/_/_
- _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
- _/_/_/_/ _/ _/ _/ _/_/_/_/ _/_/_/_/ _/ _/_/_/_/ _/ _/ [v1.06]
- _/ User-Agent Tester ↵
- _/ AKA: Purple Pimp ↵
- _/ ChrisJohnRiley ↵
- _/ blog.c22.cc ↵
- [>] Performing initial request and confirming stability
- [>] Using User-Agent string Mozilla/5.0
- [ ] URL (ENTERED): http://sgirls.hotdolls.info
- [ ] Response Code: 200 OK
- [ ] Server: nginx/1.12.1
- [ ] Date: Sat, 09 Sep 2017 20:11:32 GMT
- [ ] Content-Type: text/html; charset=UTF-8
- [ ] Transfer-Encoding: chunked
- [ ] Connection: close
- [ ] Accept-Ranges: bytes
- [ ] Data (MD5): 5a88814c10bc5fa844c7e4caf5726898
- [1] Pass
- [2] Pass
- [3] Pass
- [>] URL appears stable. Beginning test
- [>] Using DEFAULT User-Agent Strings
- [>] Using Crazy User-Agent Strings
- [>] Using Bot User-Agent Strings
- [>] Output: [+] Added Headers, [-] Removed Headers, [!] Altered Headers, [ ] No Change
- [>] User-Agent String : msnbot-Products/1.0 (+http://search.msn.com/msnbot.htm)
- [!] Data (MD5): a9d4974aa64013e950d0ec1318cc27bf
- [>] User-Agent String : mmcrawler
- [!] Data (MD5): a9d4974aa64013e950d0ec1318cc27bf
- [>] Checks completed... try enabling VERBOSE mode for more detailed output
- [>] That's all folks... Fo' Shizzle!
- ########################################################################################
- Hostname sweet-stars.com ISP Quasi Networks LTD. (AS29073)
- Continent Africa Flag
- SC
- Country Seychelles Country Code SC (SYC)
- Region Unknown Local time 10 Sep 2017 05:09 +04
- City Unknown Latitude -4.583
- IP Address 93.174.91.159 Longitude 55.667
- ########################################################################################
- sweet-stars.com
- ###########################################################################################
- whois sweet-stars.com
- Domain Name: SWEET-STARS.COM
- Registry Domain ID: 1777584062_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.bizcn.com
- Registrar URL: http://www.bizcn.com
- Updated Date: 2017-04-28T09:34:39Z
- Creation Date: 2013-01-31T20:46:58Z
- Registry Expiry Date: 2018-01-31T20:46:58Z
- Registrar: Bizcn.com, Inc.
- Registrar IANA ID: 471
- Registrar Abuse Contact Email:
- Registrar Abuse Contact Phone:
- Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Name Server: NS23.CLOUDNS.NET
- Name Server: PNS21.CLOUDNS.NET
- Name Server: PNS23.CLOUDNS.NET
- Name Server: PNS24.CLOUDNS.NET
- Name Server: PNS28.CLOUDNS.NET
- Name Server: PNS30.CLOUDNS.NET
- Domain name: sweet-stars.com
- Registry Domain ID: 1777584062_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.bizcn.com
- Registrar URL: http://www.bizcn.com
- Updated Date: 2016-02-06T01:30:12Z
- Creation Date: 2013-01-31T20:46:58Z
- Registrar Registration Expiration Date: 2018-01-31T20:46:58Z
- Registrar: Bizcn.com,Inc.
- Registrar IANA ID: 471
- Registrar Abuse Contact Email: abuse@bizcn.com
- Registrar Abuse Contact Phone: +86.5922577888
- Reseller: Cnobin Technology HK Limited
- Domain Status: clientDeleteProhibited (http://www.icann.org/epp#clientDeleteProhibited)
- Domain Status: clientTransferProhibited (http://www.icann.org/epp#clientTransferProhibited)
- Registry Registrant ID: Not Available From Registry
- Registrant Name: Wuxi Yilian LLC
- Registrant Organization: Wuxi Yilian LLC
- Registrant Street: No.1001 Anling Road
- Registrant City: Xiamen
- Registrant State/Province: Fujian
- Registrant Postal Code: 361008
- Registrant Country: cn
- Registrant Phone: +86.5922577888
- Registrant Phone Ext:
- Registrant Fax: +86.5922179606
- Registrant Fax Ext:
- Registrant Email: whoisprivacyprotect@whoisservices.cn
- Registry Admin ID: Not Available From Registry
- Admin Name: Wuxi Yilian LLC
- Admin Organization: Wuxi Yilian LLC
- Admin Street: No.1001 Anling Road
- Admin City: Xiamen
- Admin State/Province: Fujian
- Admin Postal Code: 361008
- Admin Country: cn
- Admin Phone: +86.5922577888
- Admin Phone Ext:
- Admin Fax: +86.5922179606
- Admin Fax Ext:
- Admin Email: whoisprivacyprotect@whoisservices.cn
- Registry Tech ID: Not Available From Registry
- Tech Name: Wuxi Yilian LLC
- Tech Organization: Wuxi Yilian LLC
- Tech Street: No.1001 Anling Road
- Tech City: Xiamen
- Tech State/Province: Fujian
- Tech Postal Code: 361008
- Tech Country: cn
- Tech Phone: +86.5922577888
- Tech Phone Ext:
- Tech Fax: +86.5922179606
- Tech Fax Ext:
- Tech Email: whoisprivacyprotect@whoisservices.cn
- Name Server: pns23.cloudns.net
- Name Server: pns24.cloudns.net
- Name Server: pns21.cloudns.net
- Name Server: pns28.cloudns.net
- Name Server: pns30.cloudns.net
- ###########################################################################################
- ;sweet-stars.com. IN ANY
- ;; ANSWER SECTION:
- sweet-stars.com. 53 IN A 93.174.91.159
- sweet-stars.com. 3387 IN NS pns24.cloudns.net.
- sweet-stars.com. 3387 IN NS pns25.cloudns.net.
- sweet-stars.com. 3387 IN NS pns27.cloudns.net.
- sweet-stars.com. 3387 IN NS pns22.cloudns.net.
- sweet-stars.com. 3387 IN NS pns21.cloudns.net.
- sweet-stars.com. 3387 IN NS pns26.cloudns.net.
- sweet-stars.com. 3387 IN NS ns24.cloudns.net.
- sweet-stars.com. 3387 IN NS pns23.cloudns.net.
- sweet-stars.com. 3387 IN NS ns21.cloudns.net.
- sweet-stars.com. 3387 IN NS ns23.cloudns.net.
- sweet-stars.com. 3387 IN NS pns30.cloudns.net.
- sweet-stars.com. 3387 IN NS ns22.cloudns.net.
- sweet-stars.com. 3387 IN NS pns29.cloudns.net.
- sweet-stars.com. 3387 IN NS pns28.cloudns.net.
- Running:
- traceroute -T -O info -i eth0 sweet-stars.com
- traceroute to sweet-stars.com (93.174.91.159), 30 hops max, 60 byte packets
- 1 gateway (192.168.1.254) 0.573 ms 0.755 ms 1.036 ms
- 2 10.135.18.1 (10.135.18.1) 14.621 ms 19.836 ms 20.283 ms
- 3 75.154.223.222 (75.154.223.222) 29.868 ms 30.001 ms 30.158 ms
- 4 lag-113.ear3.NewYork1.Level3.net (4.15.212.245) 31.682 ms 31.773 ms 32.227 ms
- 5 ae-238-3614.edge6.Amsterdam1.Level3.net (4.69.162.246) 104.520 ms ae-237-3613.edge6.Amsterdam1.Level3.net (4.69.162.242) 105.100 ms ae-238-3614.edge6.Amsterdam1.Level3.net (4.69.162.246) 105.247 ms
- 6 * * *
- 7 no-reverse-dns-configured.com (93.174.91.159) <syn,ack> 103.495 ms 103.355 ms 103.406 ms
- Checking for HTTP-Loadbalancing [Date]: 01:17:10, 01:17:10, 01:17:10, 01:17:11, 01:17:11, 01:17:11, 01:17:11, 01:17:12, 01:17:12, 01:17:12, 01:17:12, 01:17:13, 01:17:14, 01:17:14, 01:17:14, 01:17:15, 01:17:15, 01:17:15, 01:17:15, 01:17:16, 01:17:16, 01:17:17, 01:17:17, 01:17:17, 01:17:18, 01:17:18, 01:17:18, 01:17:18, 01:17:19, 01:17:19, 01:17:19, 01:17:19, 01:17:20, 01:17:20, 01:17:20, 01:17:20, 01:17:21, 01:17:21, 01:17:21, 01:17:22, 01:17:22, 01:17:22, 01:17:22, 01:17:26, 01:17:26, 01:17:27, 01:17:27, 01:17:27, 01:17:27, 01:17:28, NOT FOUND
- Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
- sweet-stars.com does NOT use Load-balancing.
- ###########################################################################################
- nmap -PN -n -F -T4 -sV -A -oG temp.txt sweet-stars.com
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 21:14 EDT
- Nmap scan report for sweet-stars.com (93.174.91.159)
- Host is up (0.19s latency).
- Not shown: 89 closed ports
- PORT STATE SERVICE VERSION
- 21/tcp open ftp vsftpd 3.0.2
- 22/tcp open ssh OpenSSH 6.0p1 Debian 4+deb7u6 (protocol 2.0)
- | ssh-hostkey:
- | 1024 ab:16:56:89:21:7e:75:1c:77:f3:a2:7e:c2:f1:4c:09 (DSA)
- | 2048 22:f8:e3:f6:1a:1c:6a:99:09:6b:1e:7c:fd:30:e3:95 (RSA)
- |_ 256 a8:03:f4:96:36:d1:39:de:2e:4f:56:e9:0f:f3:63:56 (ECDSA)
- 25/tcp filtered smtp
- 53/tcp open domain
- 80/tcp open http nginx
- |_http-server-header: nginx
- |_http-title: underage models , girls inside
- 111/tcp open rpcbind 2-4 (RPC #100000)
- 135/tcp filtered msrpc
- 139/tcp filtered netbios-ssn
- 445/tcp filtered microsoft-ds
- 465/tcp filtered smtps
- 587/tcp filtered submission
- Aggressive OS guesses: Linux 2.6.39 (95%), Linux 3.2 - 3.8 (95%), Linux 3.8 (95%), WatchGuard Fireware 11.8 (95%), Linux 3.1 - 3.2 (94%), Linux 3.5 (93%), Linux 2.6.32 - 2.6.39 (93%), Linux 3.0 - 3.2 (92%), Linux 2.6.32 - 3.0 (92%), Linux 2.6.32 (91%)
- No exact OS matches for host (test conditions non-ideal).
- Network Distance: 11 hops
- Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
- TRACEROUTE (using port 110/tcp)
- HOP RTT ADDRESS
- 1 819.91 ms 10.13.0.1
- 2 175.04 ms 37.187.24.252
- 3 180.79 ms 178.33.103.231
- 4 ...
- 5 370.26 ms 91.121.131.19
- 6 364.47 ms 94.23.122.217
- 7 ...
- 8 383.47 ms 176.10.83.128
- 9 378.72 ms 176.10.83.5
- 10 ...
- 11 376.24 ms 93.174.91.159
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 99.98 seconds
- ###########################################################################################
- amap -i temp.txt
- amap v5.4 (www.thc.org/thc-amap) started at 2017-09-09 21:15:53 - APPLICATION MAPPING mode
- Protocol on 93.174.91.159:21/tcp matches ftp
- Protocol on 93.174.91.159:22/tcp matches ssh
- Protocol on 93.174.91.159:22/tcp matches ssh-openssh
- Protocol on 93.174.91.159:80/tcp matches http
- Protocol on 93.174.91.159:111/tcp matches rpc
- Protocol on 93.174.91.159:53/tcp matches dns
- Protocol on 93.174.91.159:111/tcp matches rpc-rpcbind-v4
- ########################################################################################
- inetnum: 93.174.91.0 - 93.174.91.255
- netname: SC-QUASI52
- descr: QUASI
- country: SC
- org: ORG-QNL3-RIPE
- admin-c: QNL1-RIPE
- tech-c: QNL1-RIPE
- status: ASSIGNED PA
- mnt-by: QUASINETWORKS-MNT
- mnt-lower: QUASINETWORKS-MNT
- mnt-routes: QUASINETWORKS-MNT
- created: 2016-01-23T22:20:58Z
- last-modified: 2016-01-23T22:20:58Z
- source: RIPE
- organisation: ORG-QNL3-RIPE
- org-name: Quasi Networks LTD.
- org-type: OTHER
- address: Suite 1, Second Floor
- address: Sound & Vision House, Francis Rachel Street
- address: Victoria, Mahe, SEYCHELLES
- remarks: *****************************************************************************
- remarks: IMPORTANT INFORMATION
- remarks: *****************************************************************************
- remarks: We are a high bandwidth network provider offering bandwidth solutions.
- remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
- remarks: Please only use abuse@quasinetworks.com for abuse reports.
- remarks: For all other requests, please see the details on our website.
- remarks: *****************************************************************************
- abuse-mailbox: abuse@quasinetworks.com
- abuse-c: AR34302-RIPE
- mnt-ref: QUASINETWORKS-MNT
- mnt-by: QUASINETWORKS-MNT
- created: 2015-11-08T22:25:26Z
- last-modified: 2015-11-27T09:37:50Z
- source: RIPE # Filtered
- role: Quasi Networks LTD
- address: Suite 1, Second Floor
- address: Sound & Vision House, Francis Rachel Street
- address: Victoria, Mahe, SEYCHELLES
- remarks: *****************************************************************************
- remarks: IMPORTANT INFORMATION
- remarks: *****************************************************************************
- remarks: We are a high bandwidth network provider offering bandwidth solutions.
- remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
- remarks: Please only use abuse@quasinetworks.com for abuse reports.
- remarks: For all other requests, please see the details on our website.
- remarks: *****************************************************************************
- abuse-mailbox: abuse@quasinetworks.com
- nic-hdl: QNL1-RIPE
- mnt-by: QUASINETWORKS-MNT
- created: 2015-11-07T22:43:04Z
- last-modified: 2015-11-07T23:04:49Z
- source: RIPE # Filtered
- % Information related to '93.174.88.0/21as29073'
- route: 93.174.88.0/21
- descr: Quasi Networks LTD (IBC)
- origin: as29073
- mnt-by: QUASINETWORKS-MNT
- created: 2008-06-20T15:33:47Z
- last-modified: 2016-01-23T22:26:12Z
- source: RIPE
- ###########################################################################################
- [i] Scanning Site: http://sweet-stars.com
- B A S I C I N F O
- ====================
- [+] Site Title: underage models , girls inside
- [+] IP address: 93.174.91.159
- [+] Web Server: nginx
- [+] CMS: Could Not Detect
- [+] Cloudflare: Not Detected
- [+] Robots File: Could NOT Find robots.txt!
- W H O I S L O O K U P
- ========================
- Domain Name: SWEET-STARS.COM
- Registry Domain ID: 1777584062_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.bizcn.com
- Registrar URL: http://www.bizcn.com
- Updated Date: 2017-04-28T09:34:39Z
- Creation Date: 2013-01-31T20:46:58Z
- Registry Expiry Date: 2018-01-31T20:46:58Z
- Registrar: Bizcn.com, Inc.
- Registrar IANA ID: 471
- Registrar Abuse Contact Email:
- Registrar Abuse Contact Phone:
- Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Name Server: NS23.CLOUDNS.NET
- Name Server: PNS21.CLOUDNS.NET
- Name Server: PNS23.CLOUDNS.NET
- Name Server: PNS24.CLOUDNS.NET
- Name Server: PNS28.CLOUDNS.NET
- Name Server: PNS30.CLOUDNS.NET
- G E O I P L O O K U P
- =========================
- [i] IP Address: 93.174.91.159
- [i] Country: SC
- [i] State: N/A
- [i] City: N/A
- [i] Latitude: -4.583300
- [i] Longitude: 55.666698
- H T T P H E A D E R S
- =======================
- [i] HTTP/1.1 200 OK
- [i] Server: nginx
- [i] Date: Sun, 10 Sep 2017 01:17:12 GMT
- [i] Content-Type: text/html
- [i] Connection: close
- [i] Vary: Accept-Encoding
- [i] X-Powered-By: PHP/5.4.45-0+deb7u8
- [i] Vary: Accept-Encoding
- D N S L O O K U P
- ===================
- sweet-stars.com. 56 IN A 93.174.91.159
- sweet-stars.com. 3600 IN NS pns30.cloudns.net.
- sweet-stars.com. 3600 IN NS pns22.cloudns.net.
- sweet-stars.com. 3600 IN NS ns22.cloudns.net.
- sweet-stars.com. 3600 IN NS ns24.cloudns.net.
- sweet-stars.com. 3600 IN NS pns25.cloudns.net.
- sweet-stars.com. 3600 IN NS pns29.cloudns.net.
- sweet-stars.com. 3600 IN NS pns23.cloudns.net.
- sweet-stars.com. 3600 IN NS ns23.cloudns.net.
- sweet-stars.com. 3600 IN NS pns26.cloudns.net.
- sweet-stars.com. 3600 IN NS pns24.cloudns.net.
- sweet-stars.com. 3600 IN NS pns28.cloudns.net.
- sweet-stars.com. 3600 IN NS pns27.cloudns.net.
- sweet-stars.com. 3600 IN NS pns21.cloudns.net.
- sweet-stars.com. 3600 IN NS ns21.cloudns.net.
- sweet-stars.com. 3600 IN SOA ns21.cloudns.net. support.cloudns.net. 2017091008 7200 1800 1209600 3600
- S U B N E T C A L C U L A T I O N
- ====================================
- Address = 93.174.91.159
- Network = 93.174.91.159 / 32
- Netmask = 255.255.255.255
- Broadcast = not needed on Point-to-Point links
- Wildcard Mask = 0.0.0.0
- Hosts Bits = 0
- Max. Hosts = 1 (2^0 - 0)
- Host Range = { 93.174.91.159 - 93.174.91.159 }
- N M A P P O R T S C A N
- ============================
- Starting Nmap 7.01 ( https://nmap.org ) at 2017-09-10 01:13 UTC
- Nmap scan report for sweet-stars.com (93.174.91.159)
- Host is up (0.082s latency).
- rDNS record for 93.174.91.159: no-reverse-dns-configured.com
- PORT STATE SERVICE VERSION
- 21/tcp open ftp vsftpd 3.0.2
- 22/tcp open ssh OpenSSH 6.0p1 Debian 4+deb7u6 (protocol 2.0)
- 23/tcp closed telnet
- 25/tcp closed smtp
- 80/tcp open http nginx
- 110/tcp closed pop3
- 143/tcp closed imap
- 443/tcp closed https
- 445/tcp closed microsoft-ds
- 3389/tcp closed ms-wbt-server
- S U B - D O M A I N F I N D E R
- ==================================
- [i] Total Subdomains Found : 1
- [+] Subdomain: sweet-stars.com
- [-] IP: 93.174.91.159
- sweet-stars.com
- [*] Performing TLD Brute force Enumeration against sweet-stars.com
- [*] The operation could take up to: 00:01:07
- [*] A sweet-stars.biz.af 5.45.75.45
- [*] CNAME sweet-stars.biz.at free.biz.at
- [*] A free.biz.at 216.92.134.29
- [*] A sweet-stars.co.asia 91.195.240.135
- [*] A sweet-stars.org.aw 142.4.20.12
- [*] A sweet-stars.co.ba 176.9.45.78
- [*] A sweet-stars.com.ba 195.222.33.180
- [*] A sweet-stars.com.be 95.173.170.166
- [*] A sweet-stars.biz.by 71.18.52.2
- [*] A sweet-stars.biz.bz 199.59.242.150
- [*] A sweet-stars.com.cc 54.252.107.64
- [*] A sweet-stars.net.cc 54.252.89.206
- [*] A sweet-stars.co.cc 10.10.10.10
- [*] A sweet-stars.org.ch 72.52.4.122
- [*] A sweet-stars.co.cm 85.25.140.105
- [*] A sweet-stars.net.cm 85.25.140.105
- [*] A sweet-stars.biz.cl 185.53.178.8
- [*] CNAME sweet-stars.biz.cm i.cns.cm
- [*] A i.cns.cm 118.184.56.30
- [*] A sweet-stars.com.com 52.33.196.199
- [*] A sweet-stars.net.com 199.59.242.150
- [*] A sweet-stars.org.com 23.23.86.44
- [*] A sweet-stars.co.com 173.192.115.17
- [*] A sweet-stars.com 93.174.91.159
- [*] A sweet-stars.biz.cr 72.52.4.122
- [*] A sweet-stars.biz.cx 72.52.4.122
- [*] A sweet-stars.net.cz 80.250.24.177
- [*] A sweet-stars.com.cz 62.109.128.30
- [*] A sweet-stars.biz.cz 185.53.179.7
- [*] CNAME sweet-stars.co.de co.de
- [*] A co.de 144.76.162.245
- [*] A sweet-stars.com.de 50.56.68.37
- [*] CNAME sweet-stars.org.de www.org.de
- [*] A www.org.de 78.47.128.8
- [*] A sweet-stars.net.eu 78.46.90.98
- [*] A sweet-stars.org.eu 78.46.90.98
- [*] A sweet-stars.biz.fi 185.55.85.123
- [*] A sweet-stars.fm 173.230.131.38
- [*] A sweet-stars.biz.fm 173.230.131.38
- [*] A sweet-stars.org.fr 149.202.133.35
- [*] A sweet-stars.biz.gl 72.52.4.122
- [*] CNAME sweet-stars.co.gp co.gp
- [*] A co.gp 144.76.162.245
- [*] A sweet-stars.co.hn 208.100.40.203
- [*] CNAME sweet-stars.net.hr net.hr
- [*] A net.hr 192.0.78.25
- [*] A net.hr 192.0.78.24
- [*] CNAME sweet-stars.biz.hn parkmydomain.vhostgo.com
- [*] A parkmydomain.vhostgo.com 107.186.245.118
- [*] A sweet-stars.co.ht 72.52.4.122
- [*] A sweet-stars.co.jobs 50.17.193.222
- [*] A sweet-stars.com.jobs 50.19.241.165
- [*] A sweet-stars.net.jobs 50.19.241.165
- [*] A sweet-stars.biz.jobs 50.19.241.165
- [*] A sweet-stars.org.jobs 50.19.241.165
- [*] A sweet-stars.biz.ky 199.184.144.27
- [*] CNAME sweet-stars.biz.li 712936.parkingcrew.net
- [*] A 712936.parkingcrew.net 185.53.179.29
- [*] A sweet-stars.biz.lu 195.26.5.2
- [*] A sweet-stars.biz.ly 64.136.20.39
- [*] A sweet-stars.biz.md 72.52.4.122
- [*] A sweet-stars.co.mk 87.76.31.211
- [*] A sweet-stars.co.mobi 54.225.105.179
- [*] A sweet-stars.biz.my 202.190.174.44
- [*] A sweet-stars.co.net 188.166.216.219
- [*] A sweet-stars.net.net 52.50.81.210
- [*] A sweet-stars.org.net 23.23.86.44
- [*] A sweet-stars.co.nl 37.97.184.204
- [*] A sweet-stars.com.nl 83.98.157.102
- [*] A sweet-stars.net.nl 83.98.157.102
- [*] A sweet-stars.co.nr 208.100.40.202
- [*] CNAME sweet-stars.co.nu co.nu
- [*] A co.nu 144.76.162.245
- [*] CNAME sweet-stars.com.nu com.nu
- [*] A com.nu 144.76.162.245
- [*] A sweet-stars.net.nu 199.102.76.78
- [*] A sweet-stars.org.nu 80.92.84.139
- [*] A sweet-stars.com.org 23.23.86.44
- [*] CNAME sweet-stars.net.org pewtrusts.org
- [*] A pewtrusts.org 204.74.99.100
- [*] A sweet-stars.ph 45.79.222.138
- [*] A sweet-stars.co.ph 45.79.222.138
- [*] A sweet-stars.com.ph 45.79.222.138
- [*] A sweet-stars.org.ph 45.79.222.138
- [*] A sweet-stars.net.ph 45.79.222.138
- [*] A sweet-stars.co.pl 212.91.6.55
- [*] A sweet-stars.org.pm 208.73.211.165
- [*] A sweet-stars.org.pm 208.73.210.217
- [*] A sweet-stars.org.pm 208.73.211.177
- [*] A sweet-stars.org.pm 208.73.210.202
- [*] A sweet-stars.co.ps 66.96.132.56
- [*] CNAME sweet-stars.biz.ps biz.ps
- [*] A biz.ps 144.76.162.245
- [*] A sweet-stars.co.pt 194.107.127.52
- [*] A sweet-stars.pw 141.8.226.58
- [*] A sweet-stars.co.pw 141.8.226.59
- [*] A sweet-stars.net.pw 141.8.226.59
- [*] A sweet-stars.biz.pw 141.8.226.59
- [*] A sweet-stars.org.pw 141.8.226.59
- [*] CNAME sweet-stars.co.ro now.co.ro
- [*] A now.co.ro 185.27.255.9
- [*] A sweet-stars.net.ro 69.64.52.127
- [*] A sweet-stars.org.re 217.70.184.38
- [*] A sweet-stars.com.ru 178.210.89.119
- [*] A sweet-stars.biz.se 185.53.179.6
- [*] CNAME sweet-stars.net.se 773147.parkingcrew.net
- [*] A 773147.parkingcrew.net 185.53.179.29
- [*] A sweet-stars.co.sl 91.195.240.135
- [*] A sweet-stars.com.sr 143.95.106.249
- [*] A sweet-stars.biz.st 91.121.28.115
- [*] A sweet-stars.co.su 72.52.4.122
- [*] A sweet-stars.biz.tc 64.136.20.39
- [*] A sweet-stars.biz.tf 85.236.153.18
- [*] A sweet-stars.net.tf 188.40.70.27
- [*] A sweet-stars.net.tf 188.40.117.12
- [*] A sweet-stars.net.tf 188.40.70.29
- [*] A sweet-stars.tk 195.20.46.189
- [*] A sweet-stars.co.tl 208.100.40.202
- [*] A sweet-stars.co.to 175.118.124.44
- [*] A sweet-stars.co.tv 31.186.25.163
- [*] A sweet-stars.biz.tv 72.52.4.122
- [*] A sweet-stars.org.tv 72.52.4.122
- [*] CNAME sweet-stars.biz.uz biz.uz
- [*] A biz.uz 144.76.162.245
- [*] A sweet-stars.vg 88.198.29.97
- [*] A sweet-stars.co.vg 88.198.29.97
- [*] A sweet-stars.com.vg 88.198.29.97
- [*] A sweet-stars.net.vg 68.178.254.180
- [*] A sweet-stars.biz.vg 89.31.143.20
- [*] A sweet-stars.biz.ws 184.168.221.104
- [*] A sweet-stars.ws 64.70.19.203
- [*] A sweet-stars.com.ws 202.4.48.211
- [*] A sweet-stars.org.ws 202.4.48.211
- [*] A sweet-stars.net.ws 202.4.48.211
- Domain Name: SWEET-STARS.COM
- Registry Domain ID: 1777584062_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.bizcn.com
- Registrar URL: http://www.bizcn.com
- Updated Date: 2017-04-28T09:34:39Z
- Creation Date: 2013-01-31T20:46:58Z
- Registry Expiry Date: 2018-01-31T20:46:58Z
- Registrar: Bizcn.com, Inc.
- Registrar IANA ID: 471
- Registrar Abuse Contact Email:
- Registrar Abuse Contact Phone:
- Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Name Server: NS23.CLOUDNS.NET
- Name Server: PNS21.CLOUDNS.NET
- Name Server: PNS23.CLOUDNS.NET
- Name Server: PNS24.CLOUDNS.NET
- Name Server: PNS28.CLOUDNS.NET
- Name Server: PNS30.CLOUDNS.NET
- Domain name: sweet-stars.com
- Registry Domain ID: 1777584062_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.bizcn.com
- Registrar URL: http://www.bizcn.com
- Updated Date: 2016-02-06T01:30:12Z
- Creation Date: 2013-01-31T20:46:58Z
- Registrar Registration Expiration Date: 2018-01-31T20:46:58Z
- Registrar: Bizcn.com,Inc.
- Registrar IANA ID: 471
- Registrar Abuse Contact Email: abuse@bizcn.com
- Registrar Abuse Contact Phone: +86.5922577888
- Reseller: Cnobin Technology HK Limited
- Domain Status: clientDeleteProhibited (http://www.icann.org/epp#clientDeleteProhibited)
- Domain Status: clientTransferProhibited (http://www.icann.org/epp#clientTransferProhibited)
- Registry Registrant ID: Not Available From Registry
- Registrant Name: Wuxi Yilian LLC
- Registrant Organization: Wuxi Yilian LLC
- Registrant Street: No.1001 Anling Road
- Registrant City: Xiamen
- Registrant State/Province: Fujian
- Registrant Postal Code: 361008
- Registrant Country: cn
- Registrant Phone: +86.5922577888
- Registrant Phone Ext:
- Registrant Fax: +86.5922179606
- Registrant Fax Ext:
- Registrant Email: whoisprivacyprotect@whoisservices.cn
- Registry Admin ID: Not Available From Registry
- Admin Name: Wuxi Yilian LLC
- Admin Organization: Wuxi Yilian LLC
- Admin Street: No.1001 Anling Road
- Admin City: Xiamen
- Admin State/Province: Fujian
- Admin Postal Code: 361008
- Admin Country: cn
- Admin Phone: +86.5922577888
- Admin Phone Ext:
- Admin Fax: +86.5922179606
- Admin Fax Ext:
- Admin Email: whoisprivacyprotect@whoisservices.cn
- Registry Tech ID: Not Available From Registry
- Tech Name: Wuxi Yilian LLC
- Tech Organization: Wuxi Yilian LLC
- Tech Street: No.1001 Anling Road
- Tech City: Xiamen
- Tech State/Province: Fujian
- Tech Postal Code: 361008
- Tech Country: cn
- Tech Phone: +86.5922577888
- Tech Phone Ext:
- Tech Fax: +86.5922179606
- Tech Fax Ext:
- Tech Email: whoisprivacyprotect@whoisservices.cn
- Name Server: pns23.cloudns.net
- Name Server: pns24.cloudns.net
- Name Server: pns21.cloudns.net
- Name Server: pns28.cloudns.net
- Name Server: pns30.cloudns.net
- Name Server: ns23.cloudns.net
- ;sweet-stars.com. IN ANY
- ;; ANSWER SECTION:
- sweet-stars.com. 3405 IN NS pns22.cloudns.net.
- sweet-stars.com. 3405 IN NS pns29.cloudns.net.
- sweet-stars.com. 3405 IN NS pns27.cloudns.net.
- sweet-stars.com. 3405 IN NS ns23.cloudns.net.
- sweet-stars.com. 3405 IN NS pns30.cloudns.net.
- sweet-stars.com. 3405 IN NS pns26.cloudns.net.
- sweet-stars.com. 3405 IN NS ns21.cloudns.net.
- sweet-stars.com. 3405 IN NS pns21.cloudns.net.
- sweet-stars.com. 3405 IN NS ns24.cloudns.net.
- sweet-stars.com. 3405 IN NS pns28.cloudns.net.
- sweet-stars.com. 3405 IN NS ns22.cloudns.net.
- sweet-stars.com. 3405 IN NS pns24.cloudns.net.
- sweet-stars.com. 3405 IN NS pns23.cloudns.net.
- sweet-stars.com. 3405 IN NS pns25.cloudns.net.
- Running:
- traceroute -T -O info -i eth0 sweet-stars.com
- traceroute to sweet-stars.com (93.174.91.159), 30 hops max, 60 byte packets
- 1 gateway (192.168.1.254) 0.585 ms 0.752 ms 0.903 ms
- 2 10.135.18.1 (10.135.18.1) 7.369 ms 8.954 ms 11.017 ms
- 3 75.154.223.222 (75.154.223.222) 30.014 ms 30.119 ms 30.239 ms
- 4 lag-113.ear3.NewYork1.Level3.net (4.15.212.245) 30.476 ms 30.600 ms 31.257 ms
- 5 ae-237-3613.edge6.Amsterdam1.Level3.net (4.69.162.242) 104.650 ms ae-238-3614.edge6.Amsterdam1.Level3.net (4.69.162.246) 104.700 ms ae-237-3613.edge6.Amsterdam1.Level3.net (4.69.162.242) 104.792 ms
- 6 * * *
- 7 no-reverse-dns-configured.com (93.174.91.159) <syn,ack> 103.543 ms 103.648 ms 103.762 ms
- Smartmatch is experimental at /usr/bin/dnsenum line 698.
- Smartmatch is experimental at /usr/bin/dnsenum line 698.
- dnsenum VERSION:1.2.4
- Warning: can't load Net::Whois::IP module, whois queries disabled.
- ----- sweet-stars.com -----
- Host's addresses:
- __________________
- sweet-stars.com. 59 IN A 93.174.91.159
- Wildcard detection using: szjfzngswkju
- _______________________________________
- szjfzngswkju.sweet-stars.com. 60 IN A 93.174.91.159
- !!!!!!!!!!!!!!!!!!!!!!!!!!!!
- Wildcards detected, all subdomains will point to the same IP address
- Omitting results containing 93.174.91.159.
- Maybe you are using OpenDNS servers.
- !!!!!!!!!!!!!!!!!!!!!!!!!!!!
- Name Servers:
- ______________
- pns30.cloudns.net. 130380 IN A 185.136.96.96
- ns21.cloudns.net. 62414 IN A 109.201.133.61
- pns27.cloudns.net. 38643 IN A 185.136.98.96
- pns25.cloudns.net. 38643 IN A 185.136.96.96
- pns24.cloudns.net. 123043 IN A 185.136.99.96
- pns26.cloudns.net. 38643 IN A 185.136.97.96
- pns29.cloudns.net. 38643 IN A 185.136.96.96
- pns23.cloudns.net. 161369 IN A 185.136.98.96
- pns22.cloudns.net. 123043 IN A 185.136.97.96
- ns22.cloudns.net. 140732 IN A 108.59.2.202
- ns24.cloudns.net. 156473 IN A 46.165.221.164
- pns21.cloudns.net. 123043 IN A 185.136.96.96
- pns28.cloudns.net. 172800 IN A 185.136.99.96
- ns23.cloudns.net. 172800 IN A 79.137.84.65
- Mail (MX) Servers:
- ___________________
- sweet-stars.com class C netranges:
- ___________________________________
- 93.174.91.0/24
- Performing reverse lookup on 256 ip addresses:
- _______________________________________________
- 0 results out of 256 IP addresses.
- WhatWeb report for http://sweet-stars.com
- Status : 200 OK
- Title : underage models , girls inside
- IP : 93.174.91.159
- Country : NETHERLANDS, NL
- Summary : Google-API[ajax/libs/jquery/1.10.2/jquery.min.js], X-Powered-By[PHP/5.4.45-0+deb7u8], HTTPServer[nginx], PHP[5.4.45-0+deb7u8], nginx, JQuery, Script[text/javascript]
- Detected Plugins:
- [ Google-API ]
- This plugin identifies references to Google API in
- <script>.
- String : ajax/libs/jquery/1.10.2/jquery.min.js
- [ HTTPServer ]
- HTTP server header string. This plugin also attempts to
- identify the operating system from the server header.
- String : nginx (from server string)
- [ JQuery ]
- A fast, concise, JavaScript that simplifies how to traverse
- HTML documents, handle events, perform animations, and add
- AJAX.
- Website : http://jquery.com/
- [ PHP ]
- PHP is a widely-used general-purpose scripting language
- that is especially suited for Web development and can be
- embedded into HTML. This plugin identifies PHP errors,
- modules and versions and extracts the local file path and
- username if present.
- Version : 5.4.45-0+deb7u8
- Google Dorks: (2)
- Website : http://www.php.net/
- [ Script ]
- This plugin detects instances of script HTML elements and
- returns the script language/type.
- String : text/javascript
- [ X-Powered-By ]
- X-Powered-By HTTP header
- String : PHP/5.4.45-0+deb7u8 (from x-powered-by string)
- [ nginx ]
- Nginx (Engine-X) is a free, open-source, high-performance
- HTTP server and reverse proxy, as well as an IMAP/POP3
- proxy server.
- Website : http://nginx.net/
- HTTP Headers:
- HTTP/1.1 200 OK
- Server: nginx
- Date: Sun, 10 Sep 2017 01:22:22 GMT
- Content-Type: text/html
- Content-Length: 9266
- Connection: close
- X-Powered-By: PHP/5.4.45-0+deb7u8
- Vary: Accept-Encoding
- Content-Encoding: gzip
- [+] Hosts found in search engines:
- ------------------------------------
- [-] Resolving hostnames IPs...
- 93.174.91.159:www.sweet-stars.com
- ^ ^
- _ __ _ ____ _ __ _ _ ____
- ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
- | V V // o // _/ | V V // 0 // 0 // _/
- |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
- <
- ...'
- WAFW00F - Web Application Firewall Detection Tool
- By Sandro Gauci && Wendel G. Henrique
- Checking http://sweet-stars.com
- Generic Detection results:
- No WAF detected by the generic detection
- Number of requests: 13
- DNS Servers for sweet-stars.com:
- pns30.cloudns.net
- pns23.cloudns.net
- ns21.cloudns.net
- pns21.cloudns.net
- pns22.cloudns.net
- ns23.cloudns.net
- pns24.cloudns.net
- pns28.cloudns.net
- ns22.cloudns.net
- pns26.cloudns.net
- pns25.cloudns.net
- pns29.cloudns.net
- pns27.cloudns.net
- ns24.cloudns.net
- Checking for HTTP-Loadbalancing [Date]: 01:28:33, 01:28:34, 01:28:34, 01:28:34, 01:28:34, 01:28:35, 01:28:35, 01:28:35, 01:28:35, 01:28:36, 01:28:36, 01:28:36, 01:28:36, 01:28:37, 01:28:37, 01:28:37, 01:28:38, 01:28:38, 01:28:38, 01:28:38, 01:28:39, 01:28:39, 01:28:39, 01:28:39, 01:28:40, 01:28:40, 01:28:40, 01:28:40, 01:28:41, 01:28:41, 01:28:41, 01:28:42, 01:28:42, 01:28:42, 01:28:42, 01:28:43, 01:28:43, 01:28:43, 01:28:43, 01:28:44, 01:28:44, 01:28:44, 01:28:44, 01:28:45, 01:28:45, 01:28:45, 01:28:46, 01:28:46, 01:28:46, 01:28:46, NOT FOUND
- Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
- sweet-stars.com does NOT use Load-balancing.
- Starting smtp-user-enum v1.2 ( http://pentestmonkey.net/tools/smtp-user-enum )
- ----------------------------------------------------------
- | Scan Information |
- ----------------------------------------------------------
- Mode ..................... VRFY
- Worker Processes ......... 5
- Usernames file ........... users.txt
- Target count ............. 1
- Username count ........... 494
- Target TCP port .......... 25
- Query timeout ............ 5 secs
- Target domain ............
- ######## Scan started at Sat Sep 9 21:25:21 2017 #########
- ######## Scan completed at Sat Sep 9 21:33:36 2017 #########
- 0 results.
- 494 queries in 495 seconds (1.0 queries / sec)
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 21:33 EDT
- NSE: Loaded 146 scripts for scanning.
- NSE: Script Pre-scanning.
- Initiating NSE at 21:33
- Completed NSE at 21:33, 0.00s elapsed
- Initiating NSE at 21:33
- Completed NSE at 21:33, 0.00s elapsed
- Failed to resolve "sweet-stars.com.txt".
- Initiating Parallel DNS resolution of 1 host. at 21:33
- Completed Parallel DNS resolution of 1 host. at 21:33, 0.59s elapsed
- Initiating SYN Stealth Scan at 21:33
- Scanning sweet-stars.com (93.174.91.159) [100 ports]
- Discovered open port 53/tcp on 93.174.91.159
- Discovered open port 21/tcp on 93.174.91.159
- Discovered open port 80/tcp on 93.174.91.159
- Discovered open port 22/tcp on 93.174.91.159
- Discovered open port 111/tcp on 93.174.91.159
- Increasing send delay for 93.174.91.159 from 0 to 5 due to 63 out of 156 dropped probes since last increase.
- Completed SYN Stealth Scan at 21:33, 5.94s elapsed (100 total ports)
- Initiating Service scan at 21:33
- Scanning 5 services on sweet-stars.com (93.174.91.159)
- Completed Service scan at 21:34, 32.98s elapsed (5 services on 1 host)
- Initiating OS detection (try #1) against sweet-stars.com (93.174.91.159)
- Retrying OS detection (try #2) against sweet-stars.com (93.174.91.159)
- Initiating Traceroute at 21:34
- Completed Traceroute at 21:34, 3.00s elapsed
- Initiating Parallel DNS resolution of 8 hosts. at 21:34
- Completed Parallel DNS resolution of 8 hosts. at 21:34, 5.64s elapsed
- NSE: Script scanning 93.174.91.159.
- Initiating NSE at 21:34
- Completed NSE at 21:35, 56.65s elapsed
- Initiating NSE at 21:35
- Completed NSE at 21:35, 0.25s elapsed
- Nmap scan report for sweet-stars.com (93.174.91.159)
- Host is up (0.20s latency).
- rDNS record for 93.174.91.159: no-reverse-dns-configured.com
- Not shown: 89 closed ports
- PORT STATE SERVICE VERSION
- 21/tcp open ftp vsftpd 3.0.2
- 22/tcp open ssh OpenSSH 6.0p1 Debian 4+deb7u6 (protocol 2.0)
- | ssh-hostkey:
- | 1024 ab:16:56:89:21:7e:75:1c:77:f3:a2:7e:c2:f1:4c:09 (DSA)
- | 2048 22:f8:e3:f6:1a:1c:6a:99:09:6b:1e:7c:fd:30:e3:95 (RSA)
- |_ 256 a8:03:f4:96:36:d1:39:de:2e:4f:56:e9:0f:f3:63:56 (ECDSA)
- 25/tcp filtered smtp
- 53/tcp open domain
- 80/tcp open http nginx
- |_http-favicon: Unknown favicon MD5: 7E7A46308882211FDA59242CD1F72677
- | http-methods:
- |_ Supported Methods: OPTIONS
- |_http-server-header: nginx
- |_http-title: underage models , girls inside
- 111/tcp open rpcbind 2-4 (RPC #100000)
- | rpcinfo:
- | program version port/proto service
- | 100000 2,3,4 111/tcp rpcbind
- | 100000 2,3,4 111/udp rpcbind
- | 100024 1 43806/udp status
- |_ 100024 1 59220/tcp status
- 135/tcp filtered msrpc
- 139/tcp filtered netbios-ssn
- 445/tcp filtered microsoft-ds
- 465/tcp filtered smtps
- 587/tcp filtered submission
- Aggressive OS guesses: Linux 2.6.39 (96%), Linux 3.2 - 3.8 (94%), Linux 3.8 (94%), WatchGuard Fireware 11.8 (94%), Linux 3.1 - 3.2 (94%), Linux 2.6.32 - 2.6.39 (92%), Linux 3.5 (92%), Linux 3.0 - 3.2 (91%), Linux 2.6.32 (91%), Linux 3.0 (91%)
- No exact OS matches for host (test conditions non-ideal).
- Uptime guess: 6.381 days (since Sun Sep 3 12:27:22 2017)
- Network Distance: 11 hops
- TCP Sequence Prediction: Difficulty=262 (Good luck!)
- IP ID Sequence Generation: All zeros
- Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
- TRACEROUTE (using port 554/tcp)
- HOP RTT ADDRESS
- 1 109.21 ms 10.13.0.1
- 2 109.64 ms 37.187.24.252
- 3 777.41 ms po101.gra-g2-a75.fr.eu (178.33.103.231)
- 4 ...
- 5 781.79 ms be100-1113.fra-5-a9.de.eu (91.121.131.19)
- 6 787.73 ms be100-2.fra-1-a9.de.eu (94.23.122.217)
- 7 ...
- 8 800.72 ms vlan3555.bb1.ams2.nl.m247.com (176.10.83.128)
- 9 796.26 ms 176.10.83.5
- 10 ...
- 11 794.06 ms no-reverse-dns-configured.com (93.174.91.159)
- NSE: Script Post-scanning.
- Initiating NSE at 21:35
- Completed NSE at 21:35, 0.00s elapsed
- Initiating NSE at 21:35
- Completed NSE at 21:35, 0.00s elapsed
- Read data files from: /usr/bin/../share/nmap
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 111.53 seconds
- Raw packets sent: 347 (21.124KB) | Rcvd: 311 (19.797KB)
- Error: can not open nmap file: sweet-stars.com.txt
- httprint v0.301 (beta) - web server fingerprinting tool
- (c) 2003-2005 net-square solutions pvt. ltd. - see readme.txt
- http://net-square.com/httprint/
- httprint@net-square.com
- Finger Printing on http://sweet-stars.com:80/
- Finger Printing Completed on http://sweet-stars.com:80/
- --------------------------------------------------
- Host: sweet-stars.com
- Fingerprinting Error: Host/URL not found...
- --------------------------------------------------
- _/ _/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/
- _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
- _/ _/ _/_/_/_/ _/_/_/ _/ _/_/_/ _/_/_/_/ _/ _/_/_/ _/_/_/_
- _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
- _/_/_/_/ _/ _/ _/ _/_/_/_/ _/_/_/_/ _/ _/_/_/_/ _/ _/ [v1.06]
- _/ User-Agent Tester ↵
- _/ AKA: Purple Pimp ↵
- _/ ChrisJohnRiley ↵
- _/ blog.c22.cc ↵
- [>] Performing initial request and confirming stability
- [>] Using User-Agent string Mozilla/5.0
- [ ] URL (ENTERED): http://sweet-stars.com
- [ ] Response Code: 200 OK
- [ ] Server: nginx
- [ ] Date: Sun, 10 Sep 2017 01:39:14 GMT
- [ ] Content-Type: text/html
- [ ] Transfer-Encoding: chunked
- [ ] Connection: close
- [ ] Vary: Accept-Encoding
- [ ] X-Powered-By: PHP/5.4.45-0+deb7u8
- [ ] Vary: Accept-Encoding
- [ ] Data (MD5): 047b7a519f332eb24d7b85463adbb1b0
- [1] Pass
- [2] Pass
- [3] Pass
- [>] URL appears stable. Beginning test
- [>] Using DEFAULT User-Agent Strings
- [>] Using Crazy User-Agent Strings
- [>] Using Bot User-Agent Strings
- [>] Output: [+] Added Headers, [-] Removed Headers, [!] Altered Headers, [ ] No Change
- [>] User-Agent String : Windows-Media-Player/9.00.00.4503
- [!] Data (MD5): 27906c20f87b08bdd02a78d8452a371d
- [>] User-Agent String : Mozilla/5.0 (PLAYSTATION 3; 2.00)
- [!] Data (MD5): 27906c20f87b08bdd02a78d8452a371d
- [>] User-Agent String : TrackBack/1.02
- [!] Data (MD5): 27906c20f87b08bdd02a78d8452a371d
- [>] User-Agent String : wispr
- [!] Data (MD5): 27906c20f87b08bdd02a78d8452a371d
- [>] User-Agent String : EMPTY USER-AGENT STRING!
- [!] Data (MD5): 27906c20f87b08bdd02a78d8452a371d
- [>] User-Agent String : Googlebot/2.1 (+http://www.google.com/bot.html)
- [!] Data (MD5): 27906c20f87b08bdd02a78d8452a371d
- [>] User-Agent String : Googlebot-Image/1.0
- [!] Data (MD5): 27906c20f87b08bdd02a78d8452a371d
- [>] User-Agent String : Mediapartners-Google
- [!] Data (MD5): 27906c20f87b08bdd02a78d8452a371d
- [>] User-Agent String : Mozilla/2.0 (compatible; Ask Jeeves)
- [!] Data (MD5): 27906c20f87b08bdd02a78d8452a371d
- [>] User-Agent String : msnbot-Products/1.0 (+http://search.msn.com/msnbot.htm)
- [!] Data (MD5): 27906c20f87b08bdd02a78d8452a371d
- [>] User-Agent String : mmcrawler
- [!] Data (MD5): 27906c20f87b08bdd02a78d8452a371d
- [>] Checks completed... try enabling VERBOSE mode for more detailed output
- [>] That's all folks... Fo' Shizzle!
- #########################################################################################
- Hostname top.models-list.org ISP Quasi Networks LTD. (AS29073)
- Continent Africa Flag
- SC
- Country Seychelles Country Code SC (SYC)
- Region Unknown Local time 10 Sep 2017 05:31 +04
- City Unknown Latitude -4.583
- IP Address 89.248.166.76 Longitude 55.667
- ########################################################################################
- top.models-list.org
- ;top.models-list.org. IN ANY
- ;; ANSWER SECTION:
- top.models-list.org. 2206 IN A 89.248.166.76
- ;; Query time: 8 msec
- ;; SERVER: 192.168.1.254#53(192.168.1.254)
- ;; WHEN: Sat Sep 09 21:32:45 EDT 2017
- ;; MSG SIZE rcvd: 64
- ###########################################################################################
- tcptraceroute -i eth0 top.models-list.org
- Running:
- traceroute -T -O info -i eth0 top.models-list.org
- traceroute to top.models-list.org (89.248.166.76), 30 hops max, 60 byte packets
- 1 gateway (192.168.1.254) 0.461 ms 0.749 ms 0.937 ms
- 2 10.135.18.1 (10.135.18.1) 7.968 ms 17.261 ms 25.470 ms
- 3 75.154.223.222 (75.154.223.222) 29.491 ms 30.040 ms 30.176 ms
- 4 lag-113.ear3.NewYork1.Level3.net (4.15.212.245) 30.415 ms 31.690 ms 31.760 ms
- 5 ae-240-3616.edge6.Amsterdam1.Level3.net (4.69.162.254) 104.478 ms 104.847 ms ae-238-3614.edge6.Amsterdam1.Level3.net (4.69.162.246) 104.684 ms
- 6 * * *
- 7 no-reverse-dns-configured.com (89.248.166.76) <syn,ack> 103.613 ms 103.658 ms 104.076 ms
- ###########################################################################################
- Checking for HTTP-Loadbalancing [Date]: 23:31:51, 23:31:51, 23:31:51, 23:31:51, 23:31:52, 23:31:52, 23:31:52, 23:31:53, 23:31:53, 23:31:53, 23:31:53, 23:31:54, 23:31:54, 23:31:54, 23:31:54, 23:31:55, 23:31:55, 23:31:55, 23:31:55, 23:31:56, 23:31:56, 23:31:56, 23:31:57, 23:31:57, 23:31:57, 23:31:57, 23:31:58, 23:31:58, 23:31:58, 23:31:58, 23:31:59, 23:31:59, 23:31:59, 23:31:59, 23:32:00, 23:32:00, 23:32:00, 23:32:00, 23:32:01, 23:32:01, 23:32:01, 23:32:02, 23:32:02, 23:32:02, 23:32:02, 23:32:03, 23:32:03, 23:32:03, 23:32:03, 23:32:04, NOT FOUND
- Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
- top.models-list.org does NOT use Load-balancing.
- ###########################################################################################
- nmap -PN -n -F -T4 -sV -A -oG temp.txt top.models-list.org
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 21:33 EDT
- Nmap scan report for top.models-list.org (89.248.166.76)
- Host is up (0.13s latency).
- Not shown: 84 closed ports
- PORT STATE SERVICE VERSION
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 25/tcp filtered smtp
- 53/tcp open domain ISC BIND 9.8.2rc1
- | dns-nsid:
- |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4
- 80/tcp open http nginx 1.12.1
- | http-methods:
- |_ Potentially risky methods: TRACE
- |_http-server-header: nginx/1.12.1
- |_http-title: REAL Preteen Galleries! Unbelievable OMG !! Smallest beautiful...
- 81/tcp filtered hosts2-ns
- 110/tcp open pop3 Dovecot pop3d
- |_pop3-capabilities: STLS TOP CAPA PIPELINING RESP-CODES SASL(PLAIN LOGIN DIGEST-MD5 CRAM-MD5) USER UIDL
- 135/tcp filtered msrpc
- 139/tcp filtered netbios-ssn
- 143/tcp open imap Dovecot imapd
- |_imap-capabilities: ID LITERAL+ IDLE OK completed AUTH=PLAIN IMAP4rev1 Capability AUTH=LOGIN AUTH=CRAM-MD5A0001 AUTH=DIGEST-MD5 ENABLE SASL-IR STARTTLS LOGIN-REFERRALS
- |_ssl-date: 2017-09-09T23:32:53+00:00; -2h01m10s from scanner time.
- 445/tcp filtered microsoft-ds
- 465/tcp filtered smtps
- 587/tcp filtered submission
- 993/tcp open ssl/imap Dovecot imapd
- | ssl-cert: Subject: commonName=imap.example.com
- | Not valid before: 2015-06-12T12:04:14
- |_Not valid after: 2016-06-11T12:04:14
- |_ssl-date: 2017-09-09T23:32:46+00:00; -2h01m11s from scanner time.
- 995/tcp open ssl/pop3 Dovecot pop3d
- | ssl-cert: Subject: commonName=imap.example.com
- | Not valid before: 2015-06-12T12:04:14
- |_Not valid after: 2016-06-11T12:04:14
- |_ssl-date: 2017-09-09T23:32:44+00:00; -2h01m11s from scanner time.
- 3306/tcp open mysql MySQL (unauthorized)
- Aggressive OS guesses: Linux 2.6.39 (99%), Linux 2.6.32 (95%), Linux 2.6.32 or 3.10 (95%), WatchGuard Fireware 11.8 (95%), Synology DiskStation Manager 5.1 (94%), Linux 3.10 (94%), Linux 3.4 (94%), Linux 3.1 - 3.2 (93%), Linux 2.6.32 - 2.6.39 (93%), Linux 3.2 - 3.8 (91%)
- No exact OS matches for host (test conditions non-ideal).
- Network Distance: 10 hops
- Service Info: OS: Red Hat Enterprise Linux 6; CPE: cpe:/o:redhat:enterprise_linux:6
- Host script results:
- |_clock-skew: mean: -2h01m10s, deviation: 0s, median: -2h01m11s
- TRACEROUTE (using port 1720/tcp)
- HOP RTT ADDRESS
- 1 109.65 ms 10.13.0.1
- 2 110.32 ms 37.187.24.252
- 3 110.04 ms 178.33.103.229
- 4 ...
- 5 118.84 ms 213.186.32.213
- 6 ...
- 7 142.40 ms 176.10.83.128
- 8 120.35 ms 176.10.83.119
- 9 ...
- 10 120.38 ms 89.248.166.76
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 36.39 seconds
- ###########################################################################################
- amap -i temp.txt
- amap v5.4 (www.thc.org/thc-amap) started at 2017-09-09 21:34:03 - APPLICATION MAPPING mode
- Protocol on 89.248.166.76:80/tcp matches http
- Protocol on 89.248.166.76:80/tcp matches http-apache-2
- Protocol on 89.248.166.76:3306/tcp matches mysql
- Protocol on 89.248.166.76:3306/tcp matches mysql-secured
- Protocol on 89.248.166.76:110/tcp matches pop3
- Protocol on 89.248.166.76:143/tcp matches imap
- Protocol on 89.248.166.76:993/tcp matches ssl
- Protocol on 89.248.166.76:995/tcp matches ssl
- Protocol on 89.248.166.76:53/tcp matches dns
- Unidentified ports: none.
- amap v5.4 finished at 2017-09-09 21:34:23
- ###########################################################################################
- %
- inetnum: 89.248.166.0 - 89.248.166.127
- netname: SC-QUASI24
- descr: QUASI
- country: SC
- org: ORG-QNL3-RIPE
- admin-c: QNL1-RIPE
- tech-c: QNL1-RIPE
- status: ASSIGNED PA
- mnt-by: QUASINETWORKS-MNT
- mnt-lower: QUASINETWORKS-MNT
- mnt-routes: QUASINETWORKS-MNT
- created: 2008-08-25T13:43:07Z
- last-modified: 2016-01-23T22:02:02Z
- source: RIPE
- organisation: ORG-QNL3-RIPE
- org-name: Quasi Networks LTD.
- org-type: OTHER
- address: Suite 1, Second Floor
- address: Sound & Vision House, Francis Rachel Street
- address: Victoria, Mahe, SEYCHELLES
- remarks: *****************************************************************************
- remarks: IMPORTANT INFORMATION
- remarks: *****************************************************************************
- remarks: We are a high bandwidth network provider offering bandwidth solutions.
- remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
- remarks: Please only use abuse@quasinetworks.com for abuse reports.
- remarks: For all other requests, please see the details on our website.
- remarks: *****************************************************************************
- abuse-mailbox: abuse@quasinetworks.com
- abuse-c: AR34302-RIPE
- mnt-ref: QUASINETWORKS-MNT
- mnt-by: QUASINETWORKS-MNT
- created: 2015-11-08T22:25:26Z
- last-modified: 2015-11-27T09:37:50Z
- source: RIPE # Filtered
- role: Quasi Networks LTD
- address: Suite 1, Second Floor
- address: Sound & Vision House, Francis Rachel Street
- address: Victoria, Mahe, SEYCHELLES
- remarks: *****************************************************************************
- remarks: IMPORTANT INFORMATION
- remarks: *****************************************************************************
- remarks: We are a high bandwidth network provider offering bandwidth solutions.
- remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
- remarks: Please only use abuse@quasinetworks.com for abuse reports.
- remarks: For all other requests, please see the details on our website.
- remarks: *****************************************************************************
- abuse-mailbox: abuse@quasinetworks.com
- nic-hdl: QNL1-RIPE
- mnt-by: QUASINETWORKS-MNT
- created: 2015-11-07T22:43:04Z
- last-modified: 2015-11-07T23:04:49Z
- source: RIPE # Filtered
- % Information related to '89.248.160.0/21AS29073'
- route: 89.248.160.0/21
- descr: Quasi Networks LTD (IBC)
- origin: AS29073
- mnt-by: QUASINETWORKS-MNT
- created: 2006-07-14T16:36:01Z
- last-modified: 2015-11-09T12:02:24Z
- source: RIPE
- % This query was served by the RIPE Database Query Service version 1.89.2 (BLAARKOP)
- ###########################################################################################
- [i] Scanning Site: http://top.models-list.org
- B A S I C I N F O
- ====================
- [+] Site Title: REAL Preteen Galleries! Unbelievable OMG !! Smallest beautiful bodies!! All high quality videos of only
- [+] IP address: 89.248.166.76
- [+] Web Server: nginx/1.12.1
- [+] CMS: Could Not Detect
- [+] Cloudflare: Not Detected
- [+] Robots File: Could NOT Find robots.txt!
- G E O I P L O O K U P
- =========================
- [i] IP Address: 89.248.166.76
- [i] Country: SC
- [i] State: N/A
- [i] City: N/A
- [i] Latitude: -4.583300
- [i] Longitude: 55.666698
- H T T P H E A D E R S
- =======================
- [i] HTTP/1.1 200 OK
- [i] Server: nginx/1.12.1
- [i] Date: Sat, 09 Sep 2017 23:33:16 GMT
- [i] Content-Type: text/html; charset=UTF-8
- [i] Connection: close
- [i] Accept-Ranges: bytes
- D N S L O O K U P
- ===================
- top.models-list.org. 3596 IN A 89.248.166.76
- S U B N E T C A L C U L A T I O N
- ====================================
- Address = 89.248.166.76
- Network = 89.248.166.76 / 32
- Netmask = 255.255.255.255
- Broadcast = not needed on Point-to-Point links
- Wildcard Mask = 0.0.0.0
- Hosts Bits = 0
- Max. Hosts = 1 (2^0 - 0)
- Host Range = { 89.248.166.76 - 89.248.166.76 }
- N M A P P O R T S C A N
- ============================
- Starting Nmap 7.01 ( https://nmap.org ) at 2017-09-10 01:34 UTC
- Nmap scan report for top.models-list.org (89.248.166.76)
- Host is up (0.082s latency).
- rDNS record for 89.248.166.76: no-reverse-dns-configured.com
- PORT STATE SERVICE VERSION
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 23/tcp closed telnet
- 25/tcp open smtp Postfix smtpd
- 80/tcp open http nginx 1.12.1
- 110/tcp open pop3 Dovecot pop3d
- 143/tcp open imap Dovecot imapd
- 443/tcp closed https
- 445/tcp closed microsoft-ds
- 3389/tcp closed ms-wbt-server
- Service Info: Host: b06s06.com
- Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 8.36 seconds
- S U B - D O M A I N F I N D E R
- ==================================
- [i] Total Subdomains Found : 1
- [+] Subdomain: top.models-list.org
- [-] IP: 89.248.166.76
- R E V E R S E I P L O O K U P
- ==================================
- [i] Total Sites Found On This Server : 2
- [#] top.models-list.org
- [-] CMS: Could Not Detect
- [#] www.mynewmodels.com,
- [-] CMS: Could Not Detect
- top.models-list.org
- [*] Performing TLD Brute force Enumeration against top.models-list.org
- [*] The operation could take up to: 00:01:07
- [*] A top.ac 66.96.161.132
- [*] A top.ae 86.96.130.64
- [*] A top.ae 86.96.163.42
- [*] A top.af 108.61.170.199
- [*] AAAA top.af 2001:19f0:6c01:547:5400:ff:fe7c:9f77
- [*] A top.biz.af 5.45.75.45
- [*] A top.ag 94.75.116.15
- [*] A top.ai 47.90.1.220
- [*] A top.am 50.62.112.1
- [*] A top.al 212.7.8.182
- [*] A top.com.ar 72.52.231.0
- [*] A top.as 72.52.4.119
- [*] A top.org.ar 190.183.59.134
- [*] A top.asia 77.221.130.34
- [*] A top.at 83.137.116.70
- [*] A top.co.asia 91.195.240.135
- [*] A top.co.at 213.229.60.9
- [*] CNAME top.biz.at free.biz.at
- [*] A free.biz.at 216.92.134.29
- [*] A top.com.au 69.172.201.153
- [*] A top.org.au 223.130.25.70
- [*] A top.org.aw 142.4.20.12
- [*] A top.net.au 203.87.108.74
- [*] A top.ax 104.27.185.202
- [*] A top.ax 104.27.184.202
- [*] AAAA top.ax 2400:cb00:2048:1::681b:b9ca
- [*] AAAA top.ax 2400:cb00:2048:1::681b:b8ca
- [*] A top.az 136.243.74.74
- [*] A top.co.ba 176.9.45.78
- [*] A top.com.ba 195.222.33.180
- [*] A top.ba 81.93.76.14
- [*] A top.be 86.39.240.67
- [*] A top.com.be 95.173.170.166
- [*] A top.bg 78.90.206.51
- [*] A top.bi 77.104.162.193
- [*] A top.biz 72.52.4.119
- [*] A top.com.br 177.154.148.10
- [*] A top.biz.by 71.18.52.2
- [*] A top.by 93.171.222.16
- [*] A top.biz.bz 199.59.242.150
- [*] A top.ca 199.59.242.150
- [*] A top.net.cc 54.252.89.206
- [*] A top.com.cc 54.252.107.64
- [*] A top.co.cc 175.126.123.219
- [*] A top.cc 112.74.87.111
- [*] A top.ch 35.156.3.16
- [*] A top.org.ch 72.52.4.122
- [*] A top.cl 216.75.37.169
- [*] A top.co.cm 85.25.140.105
- [*] A top.net.cm 85.25.140.105
- [*] A top.biz.cl 185.53.178.8
- [*] A top.cn 23.27.192.117
- [*] A top.co 208.73.211.70
- [*] A top.com.cn 118.26.164.16
- [*] A top.net.cn 23.27.192.117
- [*] A top.net.co 184.168.221.59
- [*] A top.com.com 52.33.196.199
- [*] A top.com.co 185.28.20.39
- [*] A top.net.com 199.59.242.150
- [*] A top.co.com 173.192.115.17
- [*] A top.com 184.168.221.59
- [*] A top.co.ca 66.196.36.16
- [*] A top.org.com 23.23.86.44
- [*] A top.biz.cr 72.52.4.122
- [*] A top.cr 198.1.104.236
- [*] CNAME top.biz.cm i.cns.cm
- [*] A i.cns.cm 118.184.56.30
- [*] A top.cx 153.231.198.148
- [*] A top.biz.cx 72.52.4.122
- [*] A top.net.cz 80.250.24.177
- [*] A top.biz.cz 185.53.179.7
- [*] A top.com.cz 62.109.128.30
- [*] A top.de 213.165.64.4
- [*] A top.cz 91.228.100.92
- [*] A top.com.de 199.59.242.150
- [*] CNAME top.org.de www.org.de
- [*] A www.org.de 78.47.128.8
- [*] A top.co.de 128.199.226.195
- [*] A top.dk 46.4.18.10
- [*] A top.ec 72.52.4.119
- [*] A top.ee 217.146.69.11
- [*] AAAA top.ee 2a02:29e8:770:0:3::21
- [*] A top.es 185.53.178.8
- [*] A top.com.es 72.52.4.122
- [*] A top.eu 86.39.240.67
- [*] A top.net.eu 78.46.90.98
- [*] A top.org.eu 78.46.90.98
- [*] A top.biz.fi 185.55.85.123
- [*] A top.fm 173.230.131.38
- [*] A top.biz.fm 173.230.131.38
- [*] A top.fo 104.27.131.13
- [*] A top.fo 104.27.130.13
- [*] AAAA top.fo 2400:cb00:2048:1::681b:820d
- [*] AAAA top.fo 2400:cb00:2048:1::681b:830d
- [*] A top.fr 37.187.182.95
- [*] A top.org.fr 149.202.133.35
- [*] A top.gd 72.52.4.119
- [*] A top.ge 188.93.95.26
- [*] A top.gg 185.26.105.244
- [*] A top.gf 128.65.195.88
- [*] A top.biz.gl 72.52.4.122
- [*] A top.co.gp 144.76.162.245
- [*] A top.gp 72.52.4.119
- [*] A top.gs 184.168.221.55
- [*] A top.gr 185.4.133.65
- [*] A top.gt 198.49.72.66
- [*] A top.hk 203.124.113.1
- [*] A top.co.hn 208.100.40.203
- [*] A top.hn 217.70.184.38
- [*] A top.hr 178.218.174.100
- [*] CNAME top.net.hr net.hr
- [*] A net.hr 192.0.78.24
- [*] A net.hr 192.0.78.25
- [*] CNAME top.biz.hn parkmydomain.vhostgo.com
- [*] A parkmydomain.vhostgo.com 107.186.245.118
- [*] A top.ht 174.129.233.169
- [*] A top.co.ht 72.52.4.122
- [*] A top.hu 185.80.49.249
- [*] A top.co.id 198.252.100.115
- [*] A top.ie 185.2.66.91
- [*] A top.org.il 194.90.156.145
- [*] A top.org.il 194.90.184.11
- [*] A top.im 89.31.143.1
- [*] A top.net.in 50.63.202.32
- [*] A top.in 72.52.4.119
- [*] A top.co.in 72.52.4.122
- [*] A top.org.in 72.52.4.122
- [*] A top.info 210.114.223.199
- [*] A top.io 138.201.54.27
- [*] A top.co.ir 216.158.77.118
- [*] A top.is 193.4.58.173
- [*] A top.it 185.2.4.102
- [*] CNAME top.je park.io
- [*] A park.io 54.243.148.214
- [*] A park.io 50.17.238.198
- [*] A top.co.jobs 50.17.193.222
- [*] A top.jobs 50.19.241.165
- [*] A top.com.jobs 50.19.241.165
- [*] A top.net.jobs 50.19.241.165
- [*] A top.biz.jobs 50.19.241.165
- [*] A top.org.jobs 50.19.241.165
- [*] A top.com.jo 104.238.99.152
- [*] A top.jp 52.198.47.173
- [*] A top.co.ke 72.52.4.122
- [*] A top.co.jp 211.13.196.139
- [*] A top.kg 195.38.166.72
- [*] A top.net.kg 178.208.83.11
- [*] CNAME top.kr parking3.dnstool.net
- [*] CNAME parking3.dnstool.net wwwp.3dupndown.co.kr
- [*] CNAME wwwp.3dupndown.co.kr wqkboog.x.incapdns.net
- [*] A wqkboog.x.incapdns.net 107.154.155.33
- [*] CNAME top.co.kr parking3.dnstool.net
- [*] CNAME parking3.dnstool.net wwwp.3dupndown.co.kr
- [*] CNAME wwwp.3dupndown.co.kr wqkboog.x.incapdns.net
- [*] A wqkboog.x.incapdns.net 107.154.155.33
- [*] A top.biz.ky 199.184.144.27
- [*] A top.kz 136.243.146.176
- [*] A top.la 72.52.4.119
- [*] A top.lc 144.76.162.245
- [*] A top.com.kz 82.200.247.241
- [*] CNAME top.biz.li 712936.parkingcrew.net
- [*] A 712936.parkingcrew.net 185.53.179.29
- [*] A top.li 72.52.4.119
- [*] A top.lk 208.76.243.50
- [*] A top.lt 79.98.25.1
- [*] A top.lu 194.154.192.85
- [*] A top.biz.lu 195.26.5.2
- [*] A top.lv 194.105.56.171
- [*] A top.biz.ly 64.136.20.39
- [*] A top.co.ma 5.135.5.49
- [*] A top.md 88.99.29.152
- [*] A top.biz.md 72.52.4.122
- [*] A top.me 198.204.239.194
- [*] A top.co.mk 87.76.31.211
- [*] A top.mk 212.7.8.186
- [*] A top.mn 218.100.84.130
- [*] A top.co.mobi 54.225.105.179
- [*] A top.com.mx 184.173.249.72
- [*] A top.com.my 209.99.40.223
- [*] A top.biz.my 202.190.174.44
- [*] A top.co.net 188.166.216.219
- [*] A top.net.net 52.50.81.210
- [*] A top.net 72.249.144.95
- [*] A top.org.net 23.23.86.44
- [*] A top.co.nf 185.176.40.54
- [*] A top.biz.nf 185.176.40.54
- [*] A top.ng 91.195.240.135
- [*] A top.com.ng 91.195.240.135
- [*] A top.nl 109.72.85.122
- [*] AAAA top.nl 2a00:f10:ff03:1::103
- [*] A top.com.nl 83.98.157.102
- [*] A top.net.nl 83.98.157.102
- [*] A top.co.nl 77.174.199.0
- [*] A top.co.nr 208.100.40.202
- [*] A top.no 195.18.148.21
- [*] A top.nu 217.116.211.149
- [*] CNAME top.co.nu co.nu
- [*] A co.nu 144.76.162.245
- [*] A top.com.nu 144.76.162.245
- [*] A top.net.nu 199.102.76.78
- [*] A top.org.nu 80.92.84.139
- [*] A top.org.nz 104.25.242.31
- [*] A top.org.nz 104.25.243.31
- [*] AAAA top.org.nz 2400:cb00:2048:1::6819:f21f
- [*] AAAA top.org.nz 2400:cb00:2048:1::6819:f31f
- [*] CNAME top.net.org pewtrusts.org
- [*] A pewtrusts.org 204.74.99.100
- [*] A top.com.org 23.23.86.44
- [*] A top.net.nz 103.250.119.215
- [*] A top.co.nz 35.190.14.252
- [*] A top.pe 103.224.182.249
- [*] A top.com.pe 72.52.4.122
- [*] A top.co.ph 45.79.222.138
- [*] A top.ph 192.64.147.201
- [*] A top.net.ph 45.79.222.138
- [*] A top.com.ph 72.52.4.122
- [*] A top.org.ph 45.79.222.138
- [*] A top.com.pk 174.136.29.165
- [*] A top.pl 178.33.53.57
- [*] A top.net.pl 91.200.92.2
- [*] A top.com.pl 176.9.137.196
- [*] A top.co.pl 213.239.198.135
- [*] A top.pm 103.224.182.241
- [*] A top.org.pl 77.55.152.162
- [*] A top.org.pm 208.73.211.177
- [*] A top.org.pm 208.73.211.165
- [*] A top.org.pm 208.73.210.202
- [*] A top.org.pm 208.73.210.217
- [*] A top.biz.pl 94.23.89.40
- [*] A top.pro 192.252.144.48
- [*] A top.co.ps 66.96.132.56
- [*] CNAME top.biz.ps biz.ps
- [*] A biz.ps 144.76.162.245
- [*] A top.co.pt 194.107.127.52
- [*] A top.pt 72.52.4.119
- [*] A top.co.pw 141.8.226.59
- [*] A top.net.pw 141.8.226.59
- [*] A top.pw 141.8.226.59
- [*] A top.biz.pw 141.8.226.59
- [*] A top.org.pw 141.8.226.59
- [*] A top.com.qa 82.148.100.102
- [*] A top.re 69.172.201.153
- [*] A top.org.re 217.70.184.38
- [*] A top.qa 208.91.197.91
- [*] A top.net.ro 69.64.52.127
- [*] A top.ro 193.25.113.232
- [*] A top.rs 217.26.210.185
- [*] A top.org.ro 188.241.152.102
- [*] A top.org.rs 178.218.166.204
- [*] A top.ru 185.77.233.40
- [*] A top.net.ru 138.201.187.251
- [*] A top.org.ru 37.140.192.250
- [*] A top.com.ru 193.232.159.145
- [*] A top.com.ru 193.232.158.144
- [*] A top.com.ru 193.232.159.144
- [*] A top.com.ru 193.232.158.145
- [*] A top.sa 208.91.197.91
- [*] A top.co.rs 217.26.213.91
- [*] A top.net.sa 77.240.80.85
- [*] A top.sc 78.109.25.58
- [*] A top.com.se 52.32.224.120
- [*] A top.biz.se 185.53.179.6
- [*] CNAME top.net.se 773147.parkingcrew.net
- [*] A 773147.parkingcrew.net 185.53.179.29
- [*] A top.sg 91.136.8.131
- [*] A top.sh 107.150.98.48
- [*] A top.com.sg 119.31.233.166
- [*] A top.si 91.223.115.153
- [*] A top.sk 37.9.175.5
- [*] A top.co.sl 91.195.240.135
- [*] A top.com.sr 143.95.106.249
- [*] A top.st 13.69.186.222
- [*] A top.biz.st 91.121.28.115
- [*] A top.co.su 72.52.4.122
- [*] A top.su 82.146.61.146
- [*] A top.biz.tc 64.136.20.39
- [*] A top.tc 144.76.162.245
- [*] A top.biz.tf 85.236.153.18
- [*] A top.tf 77.174.199.0
- [*] A top.net.tf 188.40.117.12
- [*] A top.net.tf 188.40.70.29
- [*] A top.net.tf 188.40.70.27
- [*] A top.tk 195.20.47.239
- [*] A top.co.tl 208.100.40.202
- [*] A top.tel 52.50.143.27
- [*] A top.to 222.122.205.134
- [*] A top.co.to 175.118.124.44
- [*] A top.travel 72.52.4.119
- [*] A top.com.tr 77.245.149.29
- [*] A top.co.th 203.146.170.57
- [*] A top.co.tv 31.186.25.163
- [*] A top.biz.tv 72.52.4.122
- [*] A top.org.tv 72.52.4.122
- [*] A top.com.tw 106.186.25.125
- [*] A top.tw 61.220.152.244
- [*] A top.co.tz 216.194.168.113
- [*] A top.org.tw 61.63.62.68
- [*] A top.ua 82.144.222.56
- [*] A top.net.ua 80.91.160.7
- [*] A top.co.ua 138.201.57.91
- [*] A top.com.ua 77.120.122.115
- [*] A top.biz.ua 95.213.135.229
- [*] AAAA top.biz.ua 2a00:ab00:4300:1df::2
- [*] A top.net.tw 60.249.15.213
- [*] A top.co.uk 212.36.97.12
- [*] A top.uk 212.36.97.12
- [*] A top.uz 83.69.139.158
- [*] A top.biz.uz 144.76.162.245
- [*] A top.vc 199.59.242.150
- [*] A top.net.ve 67.220.187.66
- [*] A top.vg 88.198.29.97
- [*] A top.com.ve 185.53.178.6
- [*] A top.co.vg 88.198.29.97
- [*] A top.com.vg 88.198.29.97
- [*] A top.net.vg 68.178.254.180
- [*] A top.biz.vg 89.31.143.20
- [*] A top.net.vn 112.213.89.3
- [*] A top.ws 184.168.221.104
- [*] A top.com.ws 202.4.48.211
- [*] A top.net.ws 202.4.48.211
- [*] A top.biz.ws 184.168.221.104
- [*] A top.org.ws 202.4.48.211
- [*] A top.yt 103.224.182.241
- [*] CNAME top.wf dnspod-free.mydnspod.net
- [*] A dnspod-free.mydnspod.net 49.51.10.19
- ; <<>> DiG 9.10.3-P4-Debian <<>> top.models-list.org any
- ;; global options: +cmd
- ;; Got answer:
- ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 28240
- ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
- ;; OPT PSEUDOSECTION:
- ; EDNS: version: 0, flags:; udp: 4096
- ;; QUESTION SECTION:
- ;top.models-list.org. IN ANY
- ;; ANSWER SECTION:
- top.models-list.org. 2627 IN A 89.248.166.76
- ;; Query time: 8 msec
- ;; SERVER: 192.168.1.254#53(192.168.1.254)
- ;; WHEN: Sat Sep 09 21:34:16 EDT 2017
- ;; MSG SIZE rcvd: 64
- Running:
- traceroute -T -O info -i eth0 top.models-list.org
- traceroute to top.models-list.org (89.248.166.76), 30 hops max, 60 byte packets
- 1 gateway (192.168.1.254) 0.371 ms 0.555 ms 0.722 ms
- 2 10.135.18.1 (10.135.18.1) 7.119 ms 7.204 ms 7.301 ms
- 3 75.154.223.222 (75.154.223.222) 29.378 ms 29.998 ms 30.171 ms
- 4 lag-113.ear3.NewYork1.Level3.net (4.15.212.245) 30.371 ms 30.505 ms 30.627 ms
- 5 ae-237-3613.edge6.Amsterdam1.Level3.net (4.69.162.242) 104.623 ms ae-240-3616.edge6.Amsterdam1.Level3.net (4.69.162.254) 104.657 ms 104.720 ms
- 6 * * *
- 7 no-reverse-dns-configured.com (89.248.166.76) <syn,ack> 103.635 ms 103.680 ms 104.098 ms
- ----- top.models-list.org -----
- Host's addresses:
- __________________
- top.models-list.org. 2618 IN A 89.248.166.76
- Tracing to top.models-list.org[a] via 192.168.1.254, maximum of 3 retries
- 192.168.1.254 (192.168.1.254) Got answer
- WhatWeb report for http://top.models-list.org
- Status : 200 OK
- Title : REAL Preteen Galleries! Unbelievable OMG !! Smallest beautiful bodies!! All high quality videos of only
- IP : 89.248.166.76
- Country : NETHERLANDS, NL
- Summary : HTTPServer[nginx/1.12.1], nginx[1.12.1]
- Detected Plugins:
- [ HTTPServer ]
- HTTP server header string. This plugin also attempts to
- identify the operating system from the server header.
- String : nginx/1.12.1 (from server string)
- [ nginx ]
- Nginx (Engine-X) is a free, open-source, high-performance
- HTTP server and reverse proxy, as well as an IMAP/POP3
- proxy server.
- Version : 1.12.1
- Website : http://nginx.net/
- HTTP Headers:
- HTTP/1.1 200 OK
- Server: nginx/1.12.1
- Date: Sat, 09 Sep 2017 23:35:51 GMT
- Content-Type: text/html; charset=UTF-8
- Transfer-Encoding: chunked
- Connection: close
- Accept-Ranges: bytes
- ^ ^
- _ __ _ ____ _ __ _ _ ____
- ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
- | V V // o // _/ | V V // 0 // 0 // _/
- |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
- <
- ...'
- WAFW00F - Web Application Firewall Detection Tool
- By Sandro Gauci && Wendel G. Henrique
- Checking http://top.models-list.org
- Generic Detection results:
- No WAF detected by the generic detection
- Number of requests: 13
- Trying zone transfer first...
- Unsuccessful in zone transfer (it was worth a shot)
- Okay, trying the good old fashioned way... brute force
- Checking for wildcard DNS...
- Nope. Good.
- Now performing 2280 test(s)...
- Subnets found (may want to probe here using nmap or unicornscan):
- Done with Fierce scan: http://ha.ckers.org/fierce/
- Found 0 entries.
- Have a nice day.
- lbd - load balancing detector 0.2 - Checks if a given domain uses load-balancing.
- Written by Stefan Behte (http://ge.mine.nu)
- Proof-of-concept! Might give false positives.
- Checking for DNS-Loadbalancing: NOT FOUND
- Checking for HTTP-Loadbalancing [Server]:
- nginx/1.12.1
- NOT FOUND
- Checking for HTTP-Loadbalancing [Date]: 23:37:36, 23:37:36, 23:37:37, 23:37:37, 23:37:38, 23:37:39, 23:37:39, 23:37:39, 23:37:40, 23:37:40, 23:37:40, 23:37:40, 23:37:41, 23:37:45, 23:37:45, 23:37:45, 23:37:45, 23:37:46, 23:37:46, 23:37:46, 23:37:47, 23:37:47, 23:37:48, 23:37:48, 23:37:48, 23:37:48, 23:37:49, 23:37:49, 23:37:49, 23:37:50, 23:37:50, 23:37:51, 23:37:51, 23:37:51, 23:37:52, 23:37:52, 23:37:52, 23:37:52, 23:37:53, 23:37:53, 23:37:53, 23:37:53, 23:37:54, 23:37:55, 23:38:00, 23:38:01, 23:38:02, 23:38:02, 23:38:02, 23:38:02, NOT FOUND
- Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
- top.models-list.org does NOT use Load-balancing.
- Starting smtp-user-enum v1.2 ( http://pentestmonkey.net/tools/smtp-user-enum )
- ----------------------------------------------------------
- | Scan Information |
- ----------------------------------------------------------
- Mode ..................... VRFY
- Worker Processes ......... 5
- Usernames file ........... users.txt
- Target count ............. 1
- Username count ........... 494
- Target TCP port .......... 25
- Query timeout ............ 5 secs
- Target domain ............
- ######## Scan started at Sat Sep 9 21:40:03 2017 #########
- ######## Scan completed at Sat Sep 9 21:48:18 2017 #########
- 0 results.
- 494 queries in 495 seconds (1.0 queries / sec)
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 21:48 EDT
- NSE: Loaded 146 scripts for scanning.
- NSE: Script Pre-scanning.
- Initiating NSE at 21:48
- Completed NSE at 21:48, 0.00s elapsed
- Initiating NSE at 21:48
- Completed NSE at 21:48, 0.00s elapsed
- Failed to resolve "top.models-list.org.txt".
- Initiating Parallel DNS resolution of 1 host. at 21:48
- Completed Parallel DNS resolution of 1 host. at 21:48, 0.50s elapsed
- Initiating SYN Stealth Scan at 21:48
- Scanning top.models-list.org (89.248.166.76) [100 ports]
- Discovered open port 3306/tcp on 89.248.166.76
- Discovered open port 143/tcp on 89.248.166.76
- Discovered open port 110/tcp on 89.248.166.76
- Discovered open port 80/tcp on 89.248.166.76
- Discovered open port 53/tcp on 89.248.166.76
- Discovered open port 993/tcp on 89.248.166.76
- Discovered open port 995/tcp on 89.248.166.76
- Increasing send delay for 89.248.166.76 from 0 to 5 due to 61 out of 152 dropped probes since last increase.
- Completed SYN Stealth Scan at 21:48, 3.61s elapsed (100 total ports)
- Initiating Service scan at 21:48
- Scanning 7 services on top.models-list.org (89.248.166.76)
- Completed Service scan at 21:48, 6.79s elapsed (7 services on 1 host)
- Initiating OS detection (try #1) against top.models-list.org (89.248.166.76)
- adjust_timeouts2: packet supposedly had rtt of -90296 microseconds. Ignoring time.
- adjust_timeouts2: packet supposedly had rtt of -90296 microseconds. Ignoring time.
- Retrying OS detection (try #2) against top.models-list.org (89.248.166.76)
- Initiating Traceroute at 21:48
- Completed Traceroute at 21:48, 3.02s elapsed
- Initiating Parallel DNS resolution of 7 hosts. at 21:48
- Completed Parallel DNS resolution of 7 hosts. at 21:48, 5.51s elapsed
- NSE: Script scanning 89.248.166.76.
- Initiating NSE at 21:48
- Completed NSE at 21:48, 14.72s elapsed
- Initiating NSE at 21:48
- Completed NSE at 21:48, 0.01s elapsed
- Nmap scan report for top.models-list.org (89.248.166.76)
- Host is up (0.13s latency).
- rDNS record for 89.248.166.76: no-reverse-dns-configured.com
- Not shown: 84 closed ports
- PORT STATE SERVICE VERSION
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 25/tcp filtered smtp
- 53/tcp open domain ISC BIND 9.8.2rc1
- | dns-nsid:
- |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4
- 80/tcp open http nginx 1.12.1
- | http-methods:
- | Supported Methods: GET HEAD POST OPTIONS TRACE
- |_ Potentially risky methods: TRACE
- |_http-server-header: nginx/1.12.1
- |_http-title: REAL Preteen Galleries! Unbelievable OMG !! Smallest beautiful...
- 81/tcp filtered hosts2-ns
- 110/tcp open pop3 Dovecot pop3d
- |_pop3-capabilities: PIPELINING SASL(PLAIN LOGIN DIGEST-MD5 CRAM-MD5) CAPA USER RESP-CODES TOP UIDL STLS
- | ssl-cert: Subject: commonName=imap.example.com
- | Issuer: commonName=imap.example.com
- | Public Key type: rsa
- | Public Key bits: 1024
- | Signature Algorithm: sha1WithRSAEncryption
- | Not valid before: 2015-06-12T12:04:14
- | Not valid after: 2016-06-11T12:04:14
- | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
- |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
- |_ssl-date: 2017-09-09T23:47:46+00:00; -2h01m10s from scanner time.
- 135/tcp filtered msrpc
- 139/tcp filtered netbios-ssn
- 143/tcp open imap Dovecot imapd
- |_ssl-date: 2017-09-09T23:47:46+00:00; -2h01m10s from scanner time.
- 445/tcp filtered microsoft-ds
- 465/tcp filtered smtps
- 587/tcp filtered submission
- 993/tcp open ssl/imap Dovecot imapd
- | ssl-cert: Subject: commonName=imap.example.com
- | Issuer: commonName=imap.example.com
- | Public Key type: rsa
- | Public Key bits: 1024
- | Signature Algorithm: sha1WithRSAEncryption
- | Not valid before: 2015-06-12T12:04:14
- | Not valid after: 2016-06-11T12:04:14
- | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
- |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
- 995/tcp open ssl/pop3 Dovecot pop3d
- | ssl-cert: Subject: commonName=imap.example.com
- | Issuer: commonName=imap.example.com
- | Public Key type: rsa
- | Public Key bits: 1024
- | Signature Algorithm: sha1WithRSAEncryption
- | Not valid before: 2015-06-12T12:04:14
- | Not valid after: 2016-06-11T12:04:14
- | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
- |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
- |_ssl-date: 2017-09-09T23:47:42+00:00; -2h01m10s from scanner time.
- 3306/tcp open mysql MySQL (unauthorized)
- Aggressive OS guesses: Linux 2.6.39 (99%), Linux 2.6.32 (95%), Synology DiskStation Manager 5.1 (94%), Linux 2.6.32 or 3.10 (94%), Linux 3.4 (94%), WatchGuard Fireware 11.8 (94%), Linux 3.10 (93%), Linux 3.1 - 3.2 (93%), Linux 2.6.32 - 2.6.39 (93%), Linux 3.2 - 3.8 (91%)
- No exact OS matches for host (test conditions non-ideal).
- Uptime guess: 11.783 days (since Tue Aug 29 03:01:01 2017)
- Network Distance: 10 hops
- TCP Sequence Prediction: Difficulty=262 (Good luck!)
- IP ID Sequence Generation: All zeros
- Service Info: OS: Red Hat Enterprise Linux 6; CPE: cpe:/o:redhat:enterprise_linux:6
- Host script results:
- |_clock-skew: mean: -2h01m10s, deviation: 0s, median: -2h01m10s
- TRACEROUTE (using port 554/tcp)
- HOP RTT ADDRESS
- 1 110.41 ms 10.13.0.1
- 2 109.94 ms 37.187.24.252
- 3 110.45 ms po101.gra-g1-a75.fr.eu (178.33.103.229)
- 4 ...
- 5 119.38 ms be100-1109.fra-1-a9.de.eu (213.186.32.213)
- 6 ...
- 7 124.39 ms vlan3555.bb1.ams2.nl.m247.com (176.10.83.128)
- 8 120.64 ms 176.10.83.119
- 9 ...
- 10 120.23 ms no-reverse-dns-configured.com (89.248.166.76)
- _/ _/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/
- _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
- _/ _/ _/_/_/_/ _/_/_/ _/ _/_/_/ _/_/_/_/ _/ _/_/_/ _/_/_/_
- _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
- _/_/_/_/ _/ _/ _/ _/_/_/_/ _/_/_/_/ _/ _/_/_/_/ _/ _/ [v1.06]
- _/ User-Agent Tester ↵
- _/ AKA: Purple Pimp ↵
- _/ ChrisJohnRiley ↵
- _/ blog.c22.cc ↵
- [>] Performing initial request and confirming stability
- [>] Using User-Agent string Mozilla/5.0
- [ ] URL (ENTERED): http://top.models-list.org
- [ ] Response Code: 200 OK
- [ ] Server: nginx/1.12.1
- [ ] Date: Sat, 09 Sep 2017 23:47:55 GMT
- [ ] Content-Type: text/html; charset=UTF-8
- [ ] Transfer-Encoding: chunked
- [ ] Connection: close
- [ ] Accept-Ranges: bytes
- [ ] Data (MD5): bea36b44354ccfea526ff572b761fe98
- [1] Pass
- [2] Pass
- [3] Pass
- [>] URL appears stable. Beginning test
- [>] Using DEFAULT User-Agent Strings
- [>] Using Crazy User-Agent Strings
- [>] Using Bot User-Agent Strings
- [>] Output: [+] Added Headers, [-] Removed Headers, [!] Altered Headers, [ ] No Change
- [>] Checks completed... try enabling VERBOSE mode for more detailed output
- [>] That's all folks... Fo' Shizzle!
- #########################################################################################
- Hostname smallmodels.net ISP Quasi Networks LTD. (AS29073)
- Continent Africa Flag
- SC
- Country Seychelles Country Code SC (SYC)
- Region Unknown Local time 10 Sep 2017 05:58 +04
- City Unknown Latitude -4.583
- IP Address 93.174.91.159 Longitude 55.667
- #########################################################################################
- smallmodels.net
- ###########################################################################################
- whois smallmodels.net
- Domain Name: SMALLMODELS.NET
- Registry Domain ID: 1778057866_DOMAIN_NET-VRSN
- Registrar WHOIS Server: whois.bizcn.com
- Registrar URL: http://www.bizcn.com
- Updated Date: 2017-04-28T08:20:45Z
- Creation Date: 2013-02-03T08:00:40Z
- Registry Expiry Date: 2018-02-03T08:00:40Z
- Registrar: Bizcn.com, Inc.
- Registrar IANA ID: 471
- Registrar Abuse Contact Email:
- Registrar Abuse Contact Phone:
- Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Name Server: NS23.CLOUDNS.NET
- Name Server: PNS21.CLOUDNS.NET
- Name Server: PNS23.CLOUDNS.NET
- Name Server: PNS24.CLOUDNS.NET
- Name Server: PNS28.CLOUDNS.NET
- Name Server: PNS30.CLOUDNS.NET
- Domain name: smallmodels.net
- Registry Domain ID: 1778057866_DOMAIN_NET-VRSN
- Registrar WHOIS Server: whois.bizcn.com
- Registrar URL: http://www.bizcn.com
- Updated Date: 2017-02-02T23:01:18Z
- Creation Date: 2013-02-03T08:00:40Z
- Registrar Registration Expiration Date: 2018-02-03T08:00:40Z
- Registrar: Bizcn.com,Inc.
- Registrar IANA ID: 471
- Registrar Abuse Contact Email: abuse@bizcn.com
- Registrar Abuse Contact Phone: +86.5922577888
- Reseller: Cnobin Technology HK Limited
- Domain Status: clientDeleteProhibited (http://www.icann.org/epp#clientDeleteProhibited)
- Domain Status: clientTransferProhibited (http://www.icann.org/epp#clientTransferProhibited)
- Registry Registrant ID: Not Available From Registry
- Registrant Name: Wuxi Yilian LLC
- Registrant Organization: Wuxi Yilian LLC
- Registrant Street: No.1001 Anling Road
- Registrant City: Xiamen
- Registrant State/Province: Fujian
- Registrant Postal Code: 361008
- Registrant Country: cn
- Registrant Phone: +86.5922577888
- Registrant Phone Ext:
- Registrant Fax: +86.5922179606
- Registrant Fax Ext:
- Registrant Email: whoisprivacyprotect@whoisservices.cn
- Registry Admin ID: Not Available From Registry
- Admin Name: Wuxi Yilian LLC
- Admin Organization: Wuxi Yilian LLC
- Admin Street: No.1001 Anling Road
- Admin City: Xiamen
- Admin State/Province: Fujian
- Admin Postal Code: 361008
- Admin Country: cn
- Admin Phone: +86.5922577888
- Admin Phone Ext:
- Admin Fax: +86.5922179606
- Admin Fax Ext:
- Admin Email: whoisprivacyprotect@whoisservices.cn
- Registry Tech ID: Not Available From Registry
- Tech Name: Wuxi Yilian LLC
- Tech Organization: Wuxi Yilian LLC
- Tech Street: No.1001 Anling Road
- Tech City: Xiamen
- Tech State/Province: Fujian
- Tech Postal Code: 361008
- Tech Country: cn
- Tech Phone: +86.5922577888
- Tech Phone Ext:
- Tech Fax: +86.5922179606
- Tech Fax Ext:
- Tech Email: whoisprivacyprotect@whoisservices.cn
- Name Server: pns23.cloudns.net
- Name Server: pns24.cloudns.net
- Name Server: pns21.cloudns.net
- Name Server: pns28.cloudns.net
- Name Server: pns30.cloudns.net
- Name Server: ns23.cloudns.net
- ###########################################################################################
- ;smallmodels.net. IN ANY
- ;; ANSWER SECTION:
- smallmodels.net. 2232 IN NS pns30.cloudns.net.
- smallmodels.net. 2232 IN NS pns23.cloudns.net.
- smallmodels.net. 2232 IN NS ns22.cloudns.net.
- smallmodels.net. 2232 IN NS ns24.cloudns.net.
- smallmodels.net. 2232 IN NS pns28.cloudns.net.
- smallmodels.net. 2232 IN NS pns25.cloudns.net.
- smallmodels.net. 2232 IN NS pns24.cloudns.net.
- smallmodels.net. 2232 IN NS pns22.cloudns.net.
- smallmodels.net. 2232 IN NS ns21.cloudns.net.
- smallmodels.net. 2232 IN NS pns21.cloudns.net.
- smallmodels.net. 2232 IN NS ns23.cloudns.net.
- smallmodels.net. 2232 IN NS pns29.cloudns.net.
- smallmodels.net. 2232 IN NS pns26.cloudns.net.
- smallmodels.net. 2232 IN NS pns27.cloudns.net.
- ###########################################################################################
- tcptraceroute -i eth0 smallmodels.net
- Running:
- traceroute -T -O info -i eth0 smallmodels.net
- traceroute to smallmodels.net (93.174.91.159), 30 hops max, 60 byte packets
- 1 gateway (192.168.1.254) 0.447 ms 0.618 ms 0.775 ms
- 2 10.135.18.1 (10.135.18.1) 16.137 ms 16.802 ms 17.100 ms
- 3 75.154.223.222 (75.154.223.222) 29.580 ms 29.634 ms 30.142 ms
- 4 lag-113.ear3.NewYork1.Level3.net (4.15.212.245) 30.787 ms 30.949 ms 31.161 ms
- 5 ae-237-3613.edge6.Amsterdam1.Level3.net (4.69.162.242) 129.013 ms 129.042 ms 129.098 ms
- 6 * * *
- 7 no-reverse-dns-configured.com (93.174.91.159) <syn,ack> 103.504 ms 103.727 ms 103.788 ms
- ###########################################################################################
- Checking for HTTP-Loadbalancing [Date]: 02:06:46, 02:06:47, 02:06:47, 02:06:47, 02:06:47, 02:06:48, 02:06:48, 02:06:48, 02:06:49, 02:06:49, 02:06:49, 02:06:49, 02:06:50, 02:06:50, 02:06:50, 02:06:50, 02:06:51, 02:06:51, 02:06:51, 02:06:51, 02:06:52, 02:06:52, 02:06:52, 02:06:53, 02:06:53, 02:06:53, 02:06:53, 02:06:54, 02:06:54, 02:06:54, 02:06:54, 02:06:55, 02:06:55, 02:06:55, 02:06:55, 02:06:56, 02:06:56, 02:06:56, 02:06:57, 02:06:57, 02:06:57, 02:06:57, 02:06:58, 02:06:58, 02:06:58, 02:06:58, 02:06:59, 02:06:59, 02:06:59, 02:07:00, NOT FOUND
- Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
- smallmodels.net does NOT use Load-balancing.
- ###########################################################################################
- nmap -PN -n -F -T4 -sV -A -oG temp.txt smallmodels.net
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 22:03 EDT
- Nmap scan report for smallmodels.net (93.174.91.159)
- Host is up (0.19s latency).
- Not shown: 89 closed ports
- PORT STATE SERVICE VERSION
- 21/tcp open ftp vsftpd 3.0.2
- 22/tcp open ssh OpenSSH 6.0p1 Debian 4+deb7u6 (protocol 2.0)
- | ssh-hostkey:
- | 1024 ab:16:56:89:21:7e:75:1c:77:f3:a2:7e:c2:f1:4c:09 (DSA)
- | 2048 22:f8:e3:f6:1a:1c:6a:99:09:6b:1e:7c:fd:30:e3:95 (RSA)
- |_ 256 a8:03:f4:96:36:d1:39:de:2e:4f:56:e9:0f:f3:63:56 (ECDSA)
- 25/tcp filtered smtp
- 53/tcp open domain
- | dns-nsid:
- |_ bind.version: 9.8.4-rpz2+rl005.12-P1
- 80/tcp open http nginx
- |_http-server-header: nginx
- |_http-title: virginity was, pictures teen, sweet teen
- 111/tcp open rpcbind 2-4 (RPC #100000)
- 135/tcp filtered msrpc
- 139/tcp filtered netbios-ssn
- 445/tcp filtered microsoft-ds
- 465/tcp filtered smtps
- 587/tcp filtered submission
- Aggressive OS guesses: Linux 2.6.39 (96%), Linux 3.2 - 3.8 (94%), Linux 3.8 (94%), WatchGuard Fireware 11.8 (94%), Linux 3.1 - 3.2 (94%), Linux 3.5 (93%), Linux 2.6.32 - 2.6.39 (92%), Linux 2.6.32 - 3.0 (91%), Linux 2.6.32 (91%), Linux 2.6.32 or 3.10 (91%)
- No exact OS matches for host (test conditions non-ideal).
- Network Distance: 11 hops
- Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
- TRACEROUTE (using port 143/tcp)
- HOP RTT ADDRESS
- 1 419.99 ms 10.13.0.1
- 2 677.91 ms 37.187.24.252
- 3 673.15 ms 178.33.103.231
- 4 710.56 ms 10.95.33.10
- 5 681.31 ms 91.121.131.19
- 6 687.29 ms 94.23.122.217
- 7 ...
- 8 700.05 ms 176.10.83.128
- 9 695.75 ms 176.10.83.5
- 10 ...
- 11 693.29 ms 93.174.91.159
- Protocol on 93.174.91.159:21/tcp matches ftp
- Protocol on 93.174.91.159:22/tcp matches ssh
- Protocol on 93.174.91.159:22/tcp matches ssh-openssh
- Protocol on 93.174.91.159:80/tcp matches http
- Protocol on 93.174.91.159:111/tcp matches rpc
- Protocol on 93.174.91.159:53/tcp matches dns
- this connect
- Protocol on 93.174.91.159:111/tcp matches rpc-rpcbind-v4
- Unidentified ports: none.
- amap v5.4 finished at 2017-09-09 22:06:03
- ###########################################################################################
- inetnum: 93.174.91.0 - 93.174.91.255
- netname: SC-QUASI52
- descr: QUASI
- country: SC
- org: ORG-QNL3-RIPE
- admin-c: QNL1-RIPE
- tech-c: QNL1-RIPE
- status: ASSIGNED PA
- mnt-by: QUASINETWORKS-MNT
- mnt-lower: QUASINETWORKS-MNT
- mnt-routes: QUASINETWORKS-MNT
- created: 2016-01-23T22:20:58Z
- last-modified: 2016-01-23T22:20:58Z
- source: RIPE
- organisation: ORG-QNL3-RIPE
- org-name: Quasi Networks LTD.
- org-type: OTHER
- address: Suite 1, Second Floor
- address: Sound & Vision House, Francis Rachel Street
- address: Victoria, Mahe, SEYCHELLES
- remarks: *****************************************************************************
- remarks: IMPORTANT INFORMATION
- remarks: *****************************************************************************
- remarks: We are a high bandwidth network provider offering bandwidth solutions.
- remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
- remarks: Please only use abuse@quasinetworks.com for abuse reports.
- remarks: For all other requests, please see the details on our website.
- remarks: *****************************************************************************
- abuse-mailbox: abuse@quasinetworks.com
- abuse-c: AR34302-RIPE
- mnt-ref: QUASINETWORKS-MNT
- mnt-by: QUASINETWORKS-MNT
- created: 2015-11-08T22:25:26Z
- last-modified: 2015-11-27T09:37:50Z
- source: RIPE # Filtered
- role: Quasi Networks LTD
- address: Suite 1, Second Floor
- address: Sound & Vision House, Francis Rachel Street
- address: Victoria, Mahe, SEYCHELLES
- remarks: *****************************************************************************
- remarks: IMPORTANT INFORMATION
- remarks: *****************************************************************************
- remarks: We are a high bandwidth network provider offering bandwidth solutions.
- remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
- remarks: Please only use abuse@quasinetworks.com for abuse reports.
- remarks: For all other requests, please see the details on our website.
- remarks: *****************************************************************************
- abuse-mailbox: abuse@quasinetworks.com
- nic-hdl: QNL1-RIPE
- mnt-by: QUASINETWORKS-MNT
- created: 2015-11-07T22:43:04Z
- last-modified: 2015-11-07T23:04:49Z
- source: RIPE # Filtered
- % Information related to '93.174.88.0/21as29073'
- route: 93.174.88.0/21
- descr: Quasi Networks LTD (IBC)
- origin: as29073
- mnt-by: QUASINETWORKS-MNT
- created: 2008-06-20T15:33:47Z
- last-modified: 2016-01-23T22:26:12Z
- source: RIPE
- % This query was served by the RIPE Database Query Service version 1.89.2 (WAGYU)
- ###########################################################################################
- [i] Scanning Site: http://smallmodels.net
- B A S I C I N F O
- ====================
- [+] Site Title: virginity was, pictures teen, sweet teen
- [+] IP address: 93.174.91.159
- [+] Web Server: nginx
- [+] CMS: Could Not Detect
- [+] Cloudflare: Not Detected
- [+] Robots File: Could NOT Find robots.txt!
- W H O I S L O O K U P
- ========================
- Domain Name: SMALLMODELS.NET
- Registry Domain ID: 1778057866_DOMAIN_NET-VRSN
- Registrar WHOIS Server: whois.bizcn.com
- Registrar URL: http://www.bizcn.com
- Updated Date: 2017-04-28T08:20:45Z
- Creation Date: 2013-02-03T08:00:40Z
- Registry Expiry Date: 2018-02-03T08:00:40Z
- Registrar: Bizcn.com, Inc.
- Registrar IANA ID: 471
- Registrar Abuse Contact Email:
- Registrar Abuse Contact Phone:
- Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Name Server: NS23.CLOUDNS.NET
- Name Server: PNS21.CLOUDNS.NET
- Name Server: PNS23.CLOUDNS.NET
- Name Server: PNS24.CLOUDNS.NET
- Name Server: PNS28.CLOUDNS.NET
- Name Server: PNS30.CLOUDNS.NET
- G E O I P L O O K U P
- =========================
- [i] IP Address: 93.174.91.159
- [i] Country: SC
- [i] State: N/A
- [i] City: N/A
- [i] Latitude: -4.583300
- [i] Longitude: 55.666698
- H T T P H E A D E R S
- =======================
- [i] HTTP/1.1 200 OK
- [i] Server: nginx
- [i] Date: Sun, 10 Sep 2017 02:06:41 GMT
- [i] Content-Type: text/html
- [i] Connection: close
- [i] Vary: Accept-Encoding
- [i] X-Powered-By: PHP/5.4.45-0+deb7u8
- [i] Vary: Accept-Encoding
- D N S L O O K U P
- ===================
- smallmodels.net. 56 IN A 93.174.91.159
- smallmodels.net. 3600 IN NS pns26.cloudns.net.
- smallmodels.net. 3600 IN NS pns23.cloudns.net.
- smallmodels.net. 3600 IN NS pns28.cloudns.net.
- smallmodels.net. 3600 IN NS pns25.cloudns.net.
- smallmodels.net. 3600 IN NS ns24.cloudns.net.
- smallmodels.net. 3600 IN NS ns21.cloudns.net.
- smallmodels.net. 3600 IN NS pns30.cloudns.net.
- smallmodels.net. 3600 IN NS pns27.cloudns.net.
- smallmodels.net. 3600 IN NS pns24.cloudns.net.
- smallmodels.net. 3600 IN NS pns29.cloudns.net.
- smallmodels.net. 3600 IN NS ns23.cloudns.net.
- smallmodels.net. 3600 IN NS ns22.cloudns.net.
- smallmodels.net. 3600 IN NS pns21.cloudns.net.
- smallmodels.net. 3600 IN NS pns22.cloudns.net.
- smallmodels.net. 3600 IN SOA ns21.cloudns.net. support.cloudns.net. 2017091010 7200 1800 1209600 3600
- S U B N E T C A L C U L A T I O N
- ====================================
- Address = 93.174.91.159
- Network = 93.174.91.159 / 32
- Netmask = 255.255.255.255
- Broadcast = not needed on Point-to-Point links
- Wildcard Mask = 0.0.0.0
- Hosts Bits = 0
- Max. Hosts = 1 (2^0 - 0)
- Host Range = { 93.174.91.159 - 93.174.91.159 }
- N M A P P O R T S C A N
- ============================
- Starting Nmap 7.01 ( https://nmap.org ) at 2017-09-10 02:03 UTC
- Nmap scan report for smallmodels.net (93.174.91.159)
- Host is up (0.083s latency).
- rDNS record for 93.174.91.159: no-reverse-dns-configured.com
- PORT STATE SERVICE VERSION
- 21/tcp open ftp vsftpd 3.0.2
- 22/tcp open ssh OpenSSH 6.0p1 Debian 4+deb7u6 (protocol 2.0)
- 23/tcp closed telnet
- 25/tcp closed smtp
- 80/tcp open http nginx
- 110/tcp closed pop3
- 143/tcp closed imap
- 443/tcp closed https
- 445/tcp closed microsoft-ds
- 3389/tcp closed ms-wbt-server
- Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
- Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 8.39 seconds
- S U B - D O M A I N F I N D E R
- ==================================
- [i] Total Subdomains Found : 1
- [+] Subdomain: smallmodels.net
- [-] IP: 89.248.166.21
- [*] Performing TLD Brute force Enumeration against smallmodels.net
- [*] The operation could take up to: 00:01:07
- [*] A smallmodels.biz.af 5.45.75.45
- [*] A smallmodels.co.asia 91.195.240.135
- [*] CNAME smallmodels.biz.at free.biz.at
- [*] A free.biz.at 216.92.134.29
- [*] A smallmodels.org.aw 142.4.20.12
- [*] A smallmodels.co.ba 176.9.45.78
- [*] A smallmodels.com.ba 195.222.33.180
- [*] A smallmodels.com.be 95.173.170.166
- [*] A smallmodels.biz.by 71.18.52.2
- [*] A smallmodels.biz.bz 199.59.242.150
- [*] A smallmodels.com.cc 54.252.107.64
- [*] A smallmodels.net.cc 54.252.89.206
- [*] A smallmodels.co.cc 175.126.123.219
- [*] A smallmodels.org.ch 72.52.4.122
- [*] A smallmodels.co.cm 85.25.140.105
- [*] A smallmodels.net.cm 85.25.140.105
- [*] A smallmodels.biz.cl 185.53.178.8
- [*] A smallmodels.com.com 52.33.196.199
- [*] A smallmodels.net.com 199.59.242.150
- [*] A smallmodels.co.com 173.192.115.17
- [*] A smallmodels.org.com 23.23.86.44
- [*] CNAME smallmodels.com HDRedirect-LB3-890977680.us-east-1.elb.amazonaws.com
- [*] A HDRedirect-LB3-890977680.us-east-1.elb.amazonaws.com 54.172.131.220
- [*] A HDRedirect-LB3-890977680.us-east-1.elb.amazonaws.com 52.71.185.125
- [*] CNAME smallmodels.biz.cm i.cns.cm
- [*] A i.cns.cm 118.184.56.30
- [*] A smallmodels.biz.cr 72.52.4.122
- [*] A smallmodels.biz.cx 72.52.4.122
- [*] A smallmodels.net.cz 80.250.24.177
- [*] A smallmodels.biz.cz 185.53.179.7
- [*] A smallmodels.com.cz 62.109.128.30
- [*] A smallmodels.cz 193.85.185.32
- [*] CNAME smallmodels.co.de co.de
- [*] A co.de 144.76.162.245
- [*] A smallmodels.com.de 50.56.68.37
- [*] CNAME smallmodels.org.de www.org.de
- [*] A www.org.de 78.47.128.8
- [*] A smallmodels.net.eu 78.46.90.98
- [*] A smallmodels.org.eu 78.46.90.98
- [*] A smallmodels.biz.fi 185.55.85.123
- [*] A smallmodels.fm 173.230.131.38
- [*] A smallmodels.biz.fm 173.230.131.38
- [*] A smallmodels.org.fr 149.202.133.35
- [*] A smallmodels.biz.gl 72.52.4.122
- [*] CNAME smallmodels.co.gp co.gp
- [*] A co.gp 144.76.162.245
- [*] A smallmodels.co.hn 208.100.40.203
- [*] CNAME smallmodels.net.hr net.hr
- [*] A net.hr 192.0.78.25
- [*] A net.hr 192.0.78.24
- [*] CNAME smallmodels.biz.hn parkmydomain.vhostgo.com
- [*] A parkmydomain.vhostgo.com 107.186.245.118
- [*] A smallmodels.co.ht 72.52.4.122
- [*] A smallmodels.co.jobs 50.17.193.222
- [*] A smallmodels.com.jobs 50.19.241.165
- [*] A smallmodels.net.jobs 50.19.241.165
- [*] A smallmodels.biz.jobs 50.19.241.165
- [*] A smallmodels.org.jobs 50.19.241.165
- [*] A smallmodels.biz.ky 199.184.144.27
- [*] CNAME smallmodels.biz.li 712936.parkingcrew.net
- [*] A 712936.parkingcrew.net 185.53.179.29
- [*] A smallmodels.biz.lu 195.26.5.2
- [*] A smallmodels.biz.ly 64.136.20.39
- [*] A smallmodels.biz.md 72.52.4.122
- [*] A smallmodels.co.mk 87.76.31.211
- [*] A smallmodels.co.mobi 54.225.105.179
- [*] A smallmodels.biz.my 202.190.174.44
- [*] A smallmodels.co.net 188.166.216.219
- [*] A smallmodels.net.net 52.50.81.210
- [*] A smallmodels.org.net 23.23.86.44
- [*] A smallmodels.net 94.102.48.103
- [*] A smallmodels.co.nl 37.97.184.204
- [*] A smallmodels.com.nl 83.98.157.102
- [*] A smallmodels.net.nl 83.98.157.102
- [*] A smallmodels.co.nr 208.100.40.202
- [*] CNAME smallmodels.co.nu co.nu
- [*] A co.nu 144.76.162.245
- [*] A smallmodels.net.nu 199.102.76.78
- [*] CNAME smallmodels.com.nu com.nu
- [*] A com.nu 144.76.162.245
- [*] A smallmodels.org.nu 80.92.84.139
- [*] A smallmodels.com.org 23.23.86.44
- [*] CNAME smallmodels.net.org pewtrusts.org
- [*] A pewtrusts.org 204.74.99.100
- [*] A smallmodels.org 157.7.184.14
- [*] A smallmodels.ph 45.79.222.138
- [*] A smallmodels.co.ph 45.79.222.138
- [*] A smallmodels.com.ph 45.79.222.138
- [*] A smallmodels.net.ph 45.79.222.138
- [*] A smallmodels.org.ph 45.79.222.138
- [*] A smallmodels.co.pl 212.91.6.55
- [*] A smallmodels.org.pm 208.73.211.165
- [*] A smallmodels.org.pm 208.73.210.202
- [*] A smallmodels.org.pm 208.73.210.217
- [*] A smallmodels.org.pm 208.73.211.177
- [*] A smallmodels.co.ps 66.96.132.56
- [*] CNAME smallmodels.biz.ps biz.ps
- [*] A biz.ps 144.76.162.245
- [*] A smallmodels.co.pt 194.107.127.52
- [*] A smallmodels.co.pw 141.8.226.59
- [*] A smallmodels.net.pw 141.8.226.59
- [*] A smallmodels.pw 141.8.226.58
- [*] A smallmodels.org.pw 141.8.226.59
- [*] A smallmodels.biz.pw 141.8.226.59
- [*] CNAME smallmodels.co.ro now.co.ro
- [*] A now.co.ro 185.27.255.9
- [*] A smallmodels.net.ro 69.64.52.127
- [*] A smallmodels.org.re 217.70.184.38
- [*] A smallmodels.com.ru 178.210.89.119
- [*] A smallmodels.biz.se 185.53.179.6
- [*] CNAME smallmodels.net.se 773147.parkingcrew.net
- [*] A 773147.parkingcrew.net 185.53.179.29
- [*] A smallmodels.co.sl 91.195.240.135
- [*] A smallmodels.com.sr 143.95.106.249
- [*] A smallmodels.biz.st 91.121.28.115
- [*] A smallmodels.co.su 72.52.4.122
- [*] A smallmodels.biz.tc 64.136.20.39
- [*] A smallmodels.biz.tf 85.236.153.18
- [*] A smallmodels.net.tf 188.40.70.29
- [*] A smallmodels.net.tf 188.40.70.27
- [*] A smallmodels.net.tf 188.40.117.12
- [*] A smallmodels.co.tl 208.100.40.202
- [*] A smallmodels.co.to 175.118.124.44
- [*] A smallmodels.co.tv 31.186.25.163
- [*] A smallmodels.biz.tv 72.52.4.122
- [*] A smallmodels.org.tv 72.52.4.122
- [*] CNAME smallmodels.biz.uz biz.uz
- [*] A biz.uz 144.76.162.245
- [*] A smallmodels.vg 88.198.29.97
- [*] A smallmodels.co.vg 88.198.29.97
- [*] A smallmodels.com.vg 88.198.29.97
- [*] A smallmodels.net.vg 68.178.254.180
- [*] A smallmodels.biz.vg 89.31.143.20
- [*] A smallmodels.ws 64.70.19.203
- [*] A smallmodels.biz.ws 184.168.221.104
- [*] A smallmodels.com.ws 202.4.48.211
- [*] A smallmodels.net.ws 202.4.48.211
- [*] A smallmodels.org.ws 202.4.48.211
- Domain Name: SMALLMODELS.NET
- Registry Domain ID: 1778057866_DOMAIN_NET-VRSN
- Registrar WHOIS Server: whois.bizcn.com
- Registrar URL: http://www.bizcn.com
- Updated Date: 2017-04-28T08:20:45Z
- Creation Date: 2013-02-03T08:00:40Z
- Registry Expiry Date: 2018-02-03T08:00:40Z
- Registrar: Bizcn.com, Inc.
- Registrar IANA ID: 471
- Registrar Abuse Contact Email:
- Registrar Abuse Contact Phone:
- Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Name Server: NS23.CLOUDNS.NET
- Name Server: PNS21.CLOUDNS.NET
- Name Server: PNS23.CLOUDNS.NET
- Name Server: PNS24.CLOUDNS.NET
- Name Server: PNS28.CLOUDNS.NET
- Name Server: PNS30.CLOUDNS.NET
- Domain name: smallmodels.net
- Registry Domain ID: 1778057866_DOMAIN_NET-VRSN
- Registrar WHOIS Server: whois.bizcn.com
- Registrar URL: http://www.bizcn.com
- Updated Date: 2017-02-02T23:01:18Z
- Creation Date: 2013-02-03T08:00:40Z
- Registrar Registration Expiration Date: 2018-02-03T08:00:40Z
- Registrar: Bizcn.com,Inc.
- Registrar IANA ID: 471
- Registrar Abuse Contact Email: abuse@bizcn.com
- Registrar Abuse Contact Phone: +86.5922577888
- Reseller: Cnobin Technology HK Limited
- Domain Status: clientDeleteProhibited (http://www.icann.org/epp#clientDeleteProhibited)
- Domain Status: clientTransferProhibited (http://www.icann.org/epp#clientTransferProhibited)
- Registry Registrant ID: Not Available From Registry
- Registrant Name: Wuxi Yilian LLC
- Registrant Organization: Wuxi Yilian LLC
- Registrant Street: No.1001 Anling Road
- Registrant City: Xiamen
- Registrant State/Province: Fujian
- Registrant Postal Code: 361008
- Registrant Country: cn
- Registrant Phone: +86.5922577888
- Registrant Phone Ext:
- Registrant Fax: +86.5922179606
- Registrant Fax Ext:
- Registrant Email: whoisprivacyprotect@whoisservices.cn
- Registry Admin ID: Not Available From Registry
- Admin Name: Wuxi Yilian LLC
- Admin Organization: Wuxi Yilian LLC
- Admin Street: No.1001 Anling Road
- Admin City: Xiamen
- Admin State/Province: Fujian
- Admin Postal Code: 361008
- Admin Country: cn
- Admin Phone: +86.5922577888
- Admin Phone Ext:
- Admin Fax: +86.5922179606
- Admin Fax Ext:
- Admin Email: whoisprivacyprotect@whoisservices.cn
- Registry Tech ID: Not Available From Registry
- Tech Name: Wuxi Yilian LLC
- Tech Organization: Wuxi Yilian LLC
- Tech Street: No.1001 Anling Road
- Tech City: Xiamen
- Tech State/Province: Fujian
- Tech Postal Code: 361008
- Tech Country: cn
- Tech Phone: +86.5922577888
- Tech Phone Ext:
- Tech Fax: +86.5922179606
- Tech Fax Ext:
- Tech Email: whoisprivacyprotect@whoisservices.cn
- Name Server: pns23.cloudns.net
- Name Server: pns24.cloudns.net
- Name Server: pns21.cloudns.net
- Name Server: pns28.cloudns.net
- Name Server: pns30.cloudns.net
- Name Server: ns23.cloudns.net
- ;smallmodels.net. IN ANY
- ;; ANSWER SECTION:
- smallmodels.net. 2232 IN NS pns28.cloudns.net.
- smallmodels.net. 2232 IN NS pns23.cloudns.net.
- smallmodels.net. 2232 IN NS pns27.cloudns.net.
- smallmodels.net. 2232 IN NS pns30.cloudns.net.
- smallmodels.net. 2232 IN NS pns24.cloudns.net.
- smallmodels.net. 2232 IN NS pns29.cloudns.net.
- smallmodels.net. 2232 IN NS pns26.cloudns.net.
- smallmodels.net. 2232 IN NS ns22.cloudns.net.
- smallmodels.net. 2232 IN NS pns22.cloudns.net.
- smallmodels.net. 2232 IN NS ns23.cloudns.net.
- smallmodels.net. 2232 IN NS pns25.cloudns.net.
- smallmodels.net. 2232 IN NS ns24.cloudns.net.
- smallmodels.net. 2232 IN NS pns21.cloudns.net.
- smallmodels.net. 2232 IN NS ns21.cloudns.net.
- ----- smallmodels.net -----
- Host's addresses:
- __________________
- smallmodels.net. 40 IN A 93.174.91.159
- Wildcard detection using: bkpnbylfekfc
- _______________________________________
- bkpnbylfekfc.smallmodels.net. 60 IN A 93.174.91.159
- !!!!!!!!!!!!!!!!!!!!!!!!!!!!
- Wildcards detected, all subdomains will point to the same IP address
- Omitting results containing 93.174.91.159.
- Maybe you are using OpenDNS servers.
- !!!!!!!!!!!!!!!!!!!!!!!!!!!!
- Name Servers:
- ______________
- pns29.cloudns.net. 143963 IN A 185.136.96.96
- pns30.cloudns.net. 130954 IN A 185.136.96.96
- pns26.cloudns.net. 143963 IN A 185.136.97.96
- pns24.cloudns.net. 120830 IN A 185.136.99.96
- ns23.cloudns.net. 119968 IN A 79.137.84.65
- pns23.cloudns.net. 120830 IN A 185.136.98.96
- ns24.cloudns.net. 155931 IN A 46.165.221.164
- pns25.cloudns.net. 143963 IN A 185.136.96.96
- pns28.cloudns.net. 88589 IN A 185.136.99.96
- ns22.cloudns.net. 119967 IN A 108.59.2.202
- pns21.cloudns.net. 120428 IN A 185.136.96.96
- pns22.cloudns.net. 120797 IN A 185.136.97.96
- pns27.cloudns.net. 143963 IN A 185.136.98.96
- ns21.cloudns.net. 119967 IN A 109.201.133.61
- smallmodels.net class C netranges:
- ___________________________________
- 93.174.91.0/24
- Performing reverse lookup on 256 ip addresses:
- _______________________________________________
- 0 results out of 256 IP addresses.
- smallmodels.net ip blocks:
- ___________________________
- WhatWeb report for http://smallmodels.net
- Status : 200 OK
- Title : virginity was, pictures teen, sweet teen
- IP : 93.174.91.159
- Country : NETHERLANDS, NL
- Summary : X-Powered-By[PHP/5.4.45-0+deb7u8], HTTPServer[nginx], PHP[5.4.45-0+deb7u8], Frame, nginx, Script[text/javascript]
- Detected Plugins:
- [ Frame ]
- This plugin detects instances of frame and iframe HTML
- elements.
- [ HTTPServer ]
- HTTP server header string. This plugin also attempts to
- identify the operating system from the server header.
- String : nginx (from server string)
- [ PHP ]
- PHP is a widely-used general-purpose scripting language
- that is especially suited for Web development and can be
- embedded into HTML. This plugin identifies PHP errors,
- modules and versions and extracts the local file path and
- username if present.
- Version : 5.4.45-0+deb7u8
- Google Dorks: (2)
- Website : http://www.php.net/
- [ Script ]
- This plugin detects instances of script HTML elements and
- returns the script language/type.
- String : text/javascript
- [ X-Powered-By ]
- X-Powered-By HTTP header
- String : PHP/5.4.45-0+deb7u8 (from x-powered-by string)
- [ nginx ]
- Nginx (Engine-X) is a free, open-source, high-performance
- HTTP server and reverse proxy, as well as an IMAP/POP3
- proxy server.
- Website : http://nginx.net/
- HTTP Headers:
- HTTP/1.1 200 OK
- Server: nginx
- Date: Sun, 10 Sep 2017 02:12:26 GMT
- Content-Type: text/html
- Content-Length: 15487
- Connection: close
- X-Powered-By: PHP/5.4.45-0+deb7u8
- Vary: Accept-Encoding
- Content-Encoding: gzip
- ------------------------------------
- [-] Resolving hostnames IPs...
- 93.174.91.159:www.smallmodels.net
- ^ ^
- _ __ _ ____ _ __ _ _ ____
- ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
- | V V // o // _/ | V V // 0 // 0 // _/
- |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
- <
- ...'
- WAFW00F - Web Application Firewall Detection Tool
- By Sandro Gauci && Wendel G. Henrique
- Checking http://smallmodels.net
- Generic Detection results:
- No WAF detected by the generic detection
- Number of requests: 13
- DNS Servers for smallmodels.net:
- pns26.cloudns.net
- pns22.cloudns.net
- pns21.cloudns.net
- pns28.cloudns.net
- pns24.cloudns.net
- ns23.cloudns.net
- pns23.cloudns.net
- pns25.cloudns.net
- ns21.cloudns.net
- pns29.cloudns.net
- pns30.cloudns.net
- ns24.cloudns.net
- ns22.cloudns.net
- lbd - load balancing detector 0.2 - Checks if a given domain uses load-balancing.
- Written by Stefan Behte (http://ge.mine.nu)
- Proof-of-concept! Might give false positives.
- Checking for DNS-Loadbalancing: NOT FOUND
- Checking for HTTP-Loadbalancing [Server]:
- nginx
- NOT FOUND
- Checking for HTTP-Loadbalancing [Date]: 02:21:50, 02:21:50, 02:21:50, 02:21:51, 02:21:51, 02:21:51, 02:21:51, 02:21:52, 02:21:55, 02:21:56, 02:21:57, 02:21:57, 02:21:57, 02:21:57, 02:21:58, 02:21:58, 02:21:58, 02:21:58, 02:21:59, 02:21:59, 02:21:59, 02:21:59, 02:22:00, 02:22:00, 02:22:00, 02:22:00, 02:22:01, 02:22:01, 02:22:01, 02:22:02, 02:22:02, 02:22:02, 02:22:02, 02:22:03, 02:22:03, 02:22:03, 02:22:03, 02:22:04, 02:22:04, 02:22:04, 02:22:05, 02:22:05, 02:22:05, 02:22:06, 02:22:06, 02:22:06, 02:22:07, 02:22:07, 02:22:07, 02:22:07, NOT FOUND
- Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
- smallmodels.net does NOT use Load-balancing.
- Starting smtp-user-enum v1.2 ( http://pentestmonkey.net/tools/smtp-user-enum )
- ----------------------------------------------------------
- | Scan Information |
- ----------------------------------------------------------
- Mode ..................... VRFY
- Worker Processes ......... 5
- Usernames file ........... users.txt
- Target count ............. 1
- Username count ........... 494
- Target TCP port .......... 25
- Query timeout ............ 5 secs
- Target domain ............
- ######## Scan started at Sat Sep 9 22:18:42 2017 #########
- ######## Scan completed at Sat Sep 9 22:26:57 2017 #########
- 0 results.
- 494 queries in 495 seconds (1.0 queries / sec)
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 22:26 EDT
- NSE: Loaded 146 scripts for scanning.
- NSE: Script Pre-scanning.
- Initiating NSE at 22:26
- Completed NSE at 22:26, 0.00s elapsed
- Initiating NSE at 22:26
- Completed NSE at 22:26, 0.00s elapsed
- Failed to resolve "smallmodels.net.txt".
- Initiating Parallel DNS resolution of 1 host. at 22:26
- Completed Parallel DNS resolution of 1 host. at 22:26, 0.06s elapsed
- Initiating SYN Stealth Scan at 22:26
- Scanning smallmodels.net (93.174.91.159) [100 ports]
- Discovered open port 22/tcp on 93.174.91.159
- Discovered open port 21/tcp on 93.174.91.159
- Discovered open port 80/tcp on 93.174.91.159
- Discovered open port 53/tcp on 93.174.91.159
- Discovered open port 111/tcp on 93.174.91.159
- Increasing send delay for 93.174.91.159 from 0 to 5 due to 63 out of 157 dropped probes since last increase.
- Completed SYN Stealth Scan at 22:27, 3.48s elapsed (100 total ports)
- Initiating Service scan at 22:27
- Scanning 5 services on smallmodels.net (93.174.91.159)
- Completed Service scan at 22:27, 11.38s elapsed (5 services on 1 host)
- Initiating OS detection (try #1) against smallmodels.net (93.174.91.159)
- Retrying OS detection (try #2) against smallmodels.net (93.174.91.159)
- adjust_timeouts2: packet supposedly had rtt of -53295 microseconds. Ignoring time.
- adjust_timeouts2: packet supposedly had rtt of -53295 microseconds. Ignoring time.
- Initiating Traceroute at 22:27
- Completed Traceroute at 22:27, 3.01s elapsed
- Initiating Parallel DNS resolution of 8 hosts. at 22:27
- Completed Parallel DNS resolution of 8 hosts. at 22:27, 5.51s elapsed
- NSE: Script scanning 93.174.91.159.
- Initiating NSE at 22:27
- Completed NSE at 22:28, 63.10s elapsed
- Initiating NSE at 22:28
- Completed NSE at 22:28, 0.34s elapsed
- Nmap scan report for smallmodels.net (93.174.91.159)
- Host is up (0.13s latency).
- rDNS record for 93.174.91.159: no-reverse-dns-configured.com
- Not shown: 89 closed ports
- PORT STATE SERVICE VERSION
- 21/tcp open ftp vsftpd 3.0.2
- 22/tcp open ssh OpenSSH 6.0p1 Debian 4+deb7u6 (protocol 2.0)
- | ssh-hostkey:
- | 1024 ab:16:56:89:21:7e:75:1c:77:f3:a2:7e:c2:f1:4c:09 (DSA)
- | 2048 22:f8:e3:f6:1a:1c:6a:99:09:6b:1e:7c:fd:30:e3:95 (RSA)
- |_ 256 a8:03:f4:96:36:d1:39:de:2e:4f:56:e9:0f:f3:63:56 (ECDSA)
- 25/tcp filtered smtp
- 53/tcp open domain
- | dns-nsid:
- |_ bind.version: 9.8.4-rpz2+rl005.12-P1
- 80/tcp open http nginx
- |_http-favicon: Unknown favicon MD5: C34DD2A3D94F9DDA8F0C943EAC5816ED
- | http-methods:
- |_ Supported Methods: POST OPTIONS
- |_http-server-header: nginx
- |_http-title: virginity was, pictures teen, sweet teen
- 111/tcp open rpcbind 2-4 (RPC #100000)
- 135/tcp filtered msrpc
- 139/tcp filtered netbios-ssn
- 445/tcp filtered microsoft-ds
- 465/tcp filtered smtps
- 587/tcp filtered submission
- Aggressive OS guesses: Linux 2.6.39 (96%), Linux 3.2 - 3.8 (95%), Linux 3.8 (95%), WatchGuard Fireware 11.8 (95%), Linux 3.1 - 3.2 (94%), Linux 2.6.32 - 2.6.39 (93%), Linux 3.5 (92%), Linux 3.0 - 3.2 (92%), Linux 2.6.32 (91%), Linux 3.0 (91%)
- No exact OS matches for host (test conditions non-ideal).
- Uptime guess: 6.417 days (since Sun Sep 3 12:27:47 2017)
- Network Distance: 11 hops
- TCP Sequence Prediction: Difficulty=261 (Good luck!)
- IP ID Sequence Generation: All zeros
- Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
- TRACEROUTE (using port 110/tcp)
- HOP RTT ADDRESS
- 1 109.55 ms 10.13.0.1
- 2 110.72 ms 37.187.24.252
- 3 110.70 ms po101.gra-g2-a75.fr.eu (178.33.103.231)
- 4 ...
- 5 119.00 ms be100-1113.fra-5-a9.de.eu (91.121.131.19)
- 6 118.98 ms be100-2.fra-1-a9.de.eu (94.23.122.217)
- 7 ...
- 8 124.45 ms vlan3555.bb1.ams2.nl.m247.com (176.10.83.128)
- 9 120.49 ms 176.10.83.5
- 10 ...
- 11 120.50 ms no-reverse-dns-configured.com (93.174.91.159)
- NSE: Script Post-scanning.
- Initiating NSE at 22:28
- Completed NSE at 22:28, 0.00s elapsed
- Initiating NSE at 22:28
- Completed NSE at 22:28, 0.00s elapsed
- Read data files from: /usr/bin/../share/nmap
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 92.78 seconds
- Raw packets sent: 258 (13.276KB) | Rcvd: 216 (12.476KB)
- _/ _/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/
- _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
- _/ _/ _/_/_/_/ _/_/_/ _/ _/_/_/ _/_/_/_/ _/ _/_/_/ _/_/_/_
- _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
- _/_/_/_/ _/ _/ _/ _/_/_/_/ _/_/_/_/ _/ _/_/_/_/ _/ _/ [v1.06]
- _/ User-Agent Tester ↵
- _/ AKA: Purple Pimp ↵
- _/ ChrisJohnRiley ↵
- _/ blog.c22.cc ↵
- [>] Performing initial request and confirming stability
- [>] Using User-Agent string Mozilla/5.0
- [ ] URL (ENTERED): http://smallmodels.net
- [ ] Response Code: 200 OK
- [ ] Server: nginx
- [ ] Date: Sun, 10 Sep 2017 02:32:14 GMT
- [ ] Content-Type: text/html
- [ ] Transfer-Encoding: chunked
- [ ] Connection: close
- [ ] Vary: Accept-Encoding
- [ ] X-Powered-By: PHP/5.4.45-0+deb7u8
- [ ] Vary: Accept-Encoding
- [ ] Data (MD5): 4698c44f52dbf23b268a2a232f5c5d4d
- [1] Pass
- [2] Pass
- [3] Pass
- [>] URL appears stable. Beginning test
- [>] Using DEFAULT User-Agent Strings
- [>] Using Crazy User-Agent Strings
- [>] Using Bot User-Agent Strings
- [>] Output: [+] Added Headers, [-] Removed Headers, [!] Altered Headers, [ ] No Change
- [>] Checks completed... try enabling VERBOSE mode for more detailed output
- [>] That's all folks... Fo' Shizzle!
- #########################################################################################
- Hostname littleshoolgirls.com ISP Quasi Networks LTD. (AS29073)
- Continent Africa Flag
- SC
- Country Seychelles Country Code SC (SYC)
- Region Unknown Local time 10 Sep 2017 06:18 +04
- City Unknown Latitude -4.583
- IP Address 94.102.48.103 Longitude 55.667
- ##########################################################################################
- whois littleshoolgirls.com
- Domain Name: LITTLESHOOLGIRLS.COM
- Registry Domain ID: 1777538070_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.pairnic.com
- Registrar URL: http://www.pairnic.com
- Updated Date: 2017-04-19T11:39:58Z
- Creation Date: 2013-01-31T17:56:46Z
- Registry Expiry Date: 2018-01-31T17:56:46Z
- Registrar: Pair Networks Inc.d/b/a pairNIC
- Registrar IANA ID: 99
- Registrar Abuse Contact Email:
- Registrar Abuse Contact Phone:
- Domain Status: ok https://icann.org/epp#ok
- Name Server: PNS21.CLOUDNS.NET
- Name Server: PNS22.CLOUDNS.NET
- Name Server: PNS23.CLOUDNS.NET
- Name Server: PNS24.CLOUDNS.NET
- DNSSEC: unsigned
- Domain Name: littleshoolgirls.com
- Registry Domain ID: 1777538070_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.pairDomains.com
- Registrar URL: https://www.pairDomains.com
- Updated Date: 2017-04-19T11:39:58+0000Z
- Creation Date: 2013-01-31T17:56:46+0000Z
- Registrar Registration Expiration Date: 2018-01-31T17:56:46+0000Z
- Registrar: pair Domains INC
- Registrar IANA ID: 99
- Registrar Abuse Contact Email: abuse@pairdomains.com
- Registrar Abuse Contact Phone: +1.8887247642
- Registry Registrant ID:
- Registrant Name: denis duchene
- Registrant Organization:
- Registrant Street: c/o pairDomains.com Whois Privacy PO Box 42319
- Registrant City: Pittsburgh
- Registrant State/Province: PA
- Registrant Postal Code: 15203
- Registrant Country: US
- Registrant Phone: +1.4123257437
- Registrant Phone Ext:
- Registrant Fax:
- Registrant Fax Ext:
- Registrant Email: 915q6w4i8499@nojunkemailaddress.com
- Registry Admin ID:
- Admin Name: denis duchene
- Admin Organization:
- Admin Street: c/o pairDomains.com Whois Privacy PO Box 42319
- Admin City: Pittsburgh
- Admin State/Province: PA
- Admin Postal Code: 15203
- Admin Country: US
- Admin Phone: +1.4123257437
- Admin Phone Ext:
- Admin Fax:
- Admin Fax Ext:
- Admin Email: 915q6w4i8499@nojunkemailaddress.com
- Registry Tech ID:
- Tech Name: denis duchene
- Tech Organization:
- Tech Street: c/o pairDomains.com Whois Privacy PO Box 42319
- Tech City: Pittsburgh
- Tech State/Province: PA
- Tech Postal Code: 15203
- Tech Country: US
- Tech Phone: +1.4123257437
- Tech Phone Ext:
- Tech Fax:
- Tech Fax Ext:
- Tech Email: 915q6w4i8499@nojunkemailaddress.com
- Name Server: PNS22.CLOUDNS.NET
- Name Server: PNS24.CLOUDNS.NET
- Name Server: PNS23.CLOUDNS.NET
- Name Server: PNS21.CLOUDNS.NET
- ###########################################################################################
- ;littleshoolgirls.com. IN ANY
- ;; ANSWER SECTION:
- littleshoolgirls.com. 35 IN A 94.102.48.103
- littleshoolgirls.com. 987 IN NS pns21.cloudns.net.
- littleshoolgirls.com. 987 IN NS ns22.cloudns.net.
- littleshoolgirls.com. 987 IN NS ns23.cloudns.net.
- littleshoolgirls.com. 987 IN NS pns24.cloudns.net.
- littleshoolgirls.com. 987 IN NS pns22.cloudns.net.
- littleshoolgirls.com. 987 IN NS ns21.cloudns.net.
- littleshoolgirls.com. 987 IN NS pns23.cloudns.net.
- littleshoolgirls.com. 987 IN NS ns24.cloudns.net.
- ;; Query time: 9 msec
- ;; SERVER: 192.168.1.254#53(192.168.1.254)
- ;; WHEN: Sat Sep 09 22:21:52 EDT 2017
- ;; MSG SIZE rcvd: 232
- ###########################################################################################
- Checking for HTTP-Loadbalancing [Date]: 02:26:00, 02:26:00, 02:26:00, 02:26:00, 02:26:01, 02:26:01, 02:26:01, 02:26:01, 02:26:02, 02:26:02, 02:26:02, 02:26:03, 02:26:03, 02:26:03, 02:26:03, 02:26:04, 02:26:04, 02:26:04, 02:26:04, 02:26:05, 02:26:05, 02:26:05, 02:26:05, 02:26:06, 02:26:06, 02:26:06, 02:26:07, 02:26:07, 02:26:07, 02:26:08, 02:26:08, 02:26:08, 02:26:08, 02:26:09, 02:26:09, 02:26:09, 02:26:09, 02:26:10, 02:26:10, 02:26:10, 02:26:10, 02:26:11, 02:26:11, 02:26:11, 02:26:12, 02:26:12, 02:26:12, 02:26:12, 02:26:13, 02:26:13, NOT FOUND
- ###########################################################################################
- nmap -PN -n -F -T4 -sV -A -oG temp.txt littleshoolgirls.com
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 22:22 EDT
- Nmap scan report for littleshoolgirls.com (94.102.48.103)
- Host is up (0.12s latency).
- Not shown: 89 closed ports
- PORT STATE SERVICE VERSION
- 21/tcp open ftp vsftpd 3.0.2
- 22/tcp open ssh OpenSSH 6.0p1 Debian 4+deb7u6 (protocol 2.0)
- | ssh-hostkey:
- | 1024 ab:16:56:89:21:7e:75:1c:77:f3:a2:7e:c2:f1:4c:09 (DSA)
- | 2048 22:f8:e3:f6:1a:1c:6a:99:09:6b:1e:7c:fd:30:e3:95 (RSA)
- |_ 256 a8:03:f4:96:36:d1:39:de:2e:4f:56:e9:0f:f3:63:56 (ECDSA)
- 25/tcp filtered smtp
- 53/tcp open domain
- | dns-nsid:
- |_ bind.version: 9.8.4-rpz2+rl005.12-P1
- 80/tcp open http nginx
- |_http-server-header: nginx
- |_http-title: teenstight teens pictures, teens your videos, drunk amateur...
- 111/tcp open rpcbind 2-4 (RPC #100000)
- 135/tcp filtered msrpc
- 139/tcp filtered netbios-ssn
- 445/tcp filtered microsoft-ds
- 465/tcp filtered smtps
- 587/tcp filtered submission
- Aggressive OS guesses: Linux 2.6.39 (96%), Linux 3.2 - 3.8 (94%), Linux 3.8 (94%), WatchGuard Fireware 11.8 (94%), Linux 3.1 - 3.2 (94%), Linux 2.6.32 - 2.6.39 (92%), Linux 3.5 (92%), Linux 3.0 - 3.2 (91%), Linux 2.6.32 (91%), Linux 3.0 (91%)
- No exact OS matches for host (test conditions non-ideal).
- Network Distance: 11 hops
- Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
- TRACEROUTE (using port 995/tcp)
- HOP RTT ADDRESS
- 1 109.18 ms 10.13.0.1
- 2 ...
- 3 110.47 ms 178.33.103.231
- 4 112.02 ms 10.95.33.10
- 5 119.03 ms 91.121.131.19
- 6 119.51 ms 94.23.122.217
- 7 ...
- 8 124.27 ms 176.10.83.128
- 9 120.36 ms 176.10.83.119
- 10 ...
- 11 120.38 ms 94.102.48.103
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 49.52 seconds
- ###########################################################################################
- amap -i temp.txt
- amap v5.4 (www.thc.org/thc-amap) started at 2017-09-09 22:23:37 - APPLICATION MAPPING mode
- Protocol on 94.102.48.103:80/tcp matches http
- Protocol on 94.102.48.103:22/tcp matches ssh
- Protocol on 94.102.48.103:22/tcp matches ssh-openssh
- Protocol on 94.102.48.103:21/tcp matches ftp
- Protocol on 94.102.48.103:111/tcp matches rpc
- Protocol on 94.102.48.103:53/tcp matches dns
- Protocol on 94.102.48.103:111/tcp matches rpc-rpcbind-v4
- inetnum: 94.102.48.0 - 94.102.48.150
- netname: SC-QUASI58
- descr: QUASI
- country: SC
- org: ORG-QNL3-RIPE
- admin-c: QNL1-RIPE
- tech-c: QNL1-RIPE
- status: ASSIGNED PA
- mnt-by: QUASINETWORKS-MNT
- mnt-lower: QUASINETWORKS-MNT
- mnt-routes: QUASINETWORKS-MNT
- created: 2011-05-07T22:25:22Z
- last-modified: 2016-01-23T22:29:27Z
- source: RIPE
- organisation: ORG-QNL3-RIPE
- org-name: Quasi Networks LTD.
- org-type: OTHER
- address: Suite 1, Second Floor
- address: Sound & Vision House, Francis Rachel Street
- address: Victoria, Mahe, SEYCHELLES
- remarks: *****************************************************************************
- remarks: IMPORTANT INFORMATION
- remarks: *****************************************************************************
- remarks: We are a high bandwidth network provider offering bandwidth solutions.
- remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
- remarks: Please only use abuse@quasinetworks.com for abuse reports.
- remarks: For all other requests, please see the details on our website.
- remarks: *****************************************************************************
- abuse-mailbox: abuse@quasinetworks.com
- abuse-c: AR34302-RIPE
- mnt-ref: QUASINETWORKS-MNT
- mnt-by: QUASINETWORKS-MNT
- created: 2015-11-08T22:25:26Z
- last-modified: 2015-11-27T09:37:50Z
- source: RIPE # Filtered
- role: Quasi Networks LTD
- address: Suite 1, Second Floor
- address: Sound & Vision House, Francis Rachel Street
- address: Victoria, Mahe, SEYCHELLES
- remarks: *****************************************************************************
- remarks: IMPORTANT INFORMATION
- remarks: *****************************************************************************
- remarks: We are a high bandwidth network provider offering bandwidth solutions.
- remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
- remarks: Please only use abuse@quasinetworks.com for abuse reports.
- remarks: For all other requests, please see the details on our website.
- remarks: *****************************************************************************
- abuse-mailbox: abuse@quasinetworks.com
- nic-hdl: QNL1-RIPE
- mnt-by: QUASINETWORKS-MNT
- created: 2015-11-07T22:43:04Z
- last-modified: 2015-11-07T23:04:49Z
- source: RIPE # Filtered
- % Information related to '94.102.48.0/20AS29073'
- route: 94.102.48.0/20
- descr: Quasi Networks LTD (IBC)
- origin: AS29073
- mnt-by: QUASINETWORKS-MNT
- created: 2008-09-02T11:55:23Z
- last-modified: 2016-01-23T22:40:05Z
- source: RIPE
- % This query was served by the RIPE Database Query Service version 1.89.2 (ANGUS)
- ###########################################################################################
- [i] Scanning Site: http://littleshoolgirls.com
- B A S I C I N F O
- ====================
- [+] Site Title: teenstight teens pictures, teens your videos, drunk amateur teens
- [+] IP address: 94.102.48.103
- [+] Web Server: nginx
- [+] CMS: Could Not Detect
- [+] Cloudflare: Not Detected
- [+] Robots File: Could NOT Find robots.txt!
- W H O I S L O O K U P
- ========================
- Domain Name: LITTLESHOOLGIRLS.COM
- Registry Domain ID: 1777538070_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.pairnic.com
- Registrar URL: http://www.pairnic.com
- Updated Date: 2017-04-19T11:39:58Z
- Creation Date: 2013-01-31T17:56:46Z
- Registry Expiry Date: 2018-01-31T17:56:46Z
- Registrar: Pair Networks Inc.d/b/a pairNIC
- Registrar IANA ID: 99
- Registrar Abuse Contact Email:
- Registrar Abuse Contact Phone:
- Domain Status: ok https://icann.org/epp#ok
- Name Server: PNS21.CLOUDNS.NET
- Name Server: PNS22.CLOUDNS.NET
- Name Server: PNS23.CLOUDNS.NET
- Name Server: PNS24.CLOUDNS.NET
- G E O I P L O O K U P
- =========================
- [i] IP Address: 94.102.48.103
- [i] Country: SC
- [i] State: N/A
- [i] City: N/A
- [i] Latitude: -4.583300
- [i] Longitude: 55.666698
- H T T P H E A D E R S
- =======================
- [i] HTTP/1.1 200 OK
- [i] Server: nginx
- [i] Date: Sun, 10 Sep 2017 02:25:15 GMT
- [i] Content-Type: text/html
- [i] Connection: close
- [i] Vary: Accept-Encoding
- [i] X-Powered-By: PHP/5.4.45-0+deb7u8
- [i] Set-Cookie: nnmod=1; expires=Sun, 10-Sep-2017 14:25:15 GMT
- [i] Vary: Accept-Encoding
- D N S L O O K U P
- ===================
- littleshoolgirls.com. 56 IN A 94.102.48.103
- littleshoolgirls.com. 3600 IN NS ns22.cloudns.net.
- littleshoolgirls.com. 3600 IN NS ns23.cloudns.net.
- littleshoolgirls.com. 3600 IN NS pns21.cloudns.net.
- littleshoolgirls.com. 3600 IN NS pns22.cloudns.net.
- littleshoolgirls.com. 3600 IN NS ns21.cloudns.net.
- littleshoolgirls.com. 3600 IN NS pns24.cloudns.net.
- littleshoolgirls.com. 3600 IN NS ns24.cloudns.net.
- littleshoolgirls.com. 3600 IN NS pns23.cloudns.net.
- littleshoolgirls.com. 3600 IN SOA ns21.cloudns.net. support.cloudns.net. 2017091015 7200 1800 1209600 3600
- S U B N E T C A L C U L A T I O N
- ====================================
- Address = 94.102.48.103
- Network = 94.102.48.103 / 32
- Netmask = 255.255.255.255
- Broadcast = not needed on Point-to-Point links
- Wildcard Mask = 0.0.0.0
- Hosts Bits = 0
- Max. Hosts = 1 (2^0 - 0)
- Host Range = { 94.102.48.103 - 94.102.48.103 }
- N M A P P O R T S C A N
- ============================
- Starting Nmap 7.01 ( https://nmap.org ) at 2017-09-10 02:21 UTC
- Nmap scan report for littleshoolgirls.com (94.102.48.103)
- Host is up (0.083s latency).
- PORT STATE SERVICE VERSION
- 21/tcp open ftp vsftpd 3.0.2
- 22/tcp open ssh OpenSSH 6.0p1 Debian 4+deb7u6 (protocol 2.0)
- 23/tcp closed telnet
- 25/tcp closed smtp
- 80/tcp open http nginx
- 110/tcp closed pop3
- 143/tcp closed imap
- 443/tcp closed https
- 445/tcp closed microsoft-ds
- 3389/tcp closed ms-wbt-server
- Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
- Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 7.21 seconds
- S U B - D O M A I N F I N D E R
- ==================================
- [i] Total Subdomains Found : 1
- [+] Subdomain: littleshoolgirls.com
- [-] IP: 94.102.48.103
- *] Performing TLD Brute force Enumeration against littleshoolgirls.com
- [*] The operation could take up to: 00:01:07
- [*] A littleshoolgirls.biz.af 5.45.75.45
- [*] CNAME littleshoolgirls.biz.at free.biz.at
- [*] A free.biz.at 216.92.134.29
- [*] A littleshoolgirls.co.asia 91.195.240.135
- [*] A littleshoolgirls.org.aw 142.4.20.12
- [*] A littleshoolgirls.co.ba 176.9.45.78
- [*] A littleshoolgirls.com.ba 195.222.33.180
- [*] A littleshoolgirls.com.be 95.173.170.166
- [*] A littleshoolgirls.biz.by 71.18.52.2
- [*] A littleshoolgirls.biz.bz 199.59.242.150
- [*] A littleshoolgirls.com.cc 54.252.107.64
- [*] A littleshoolgirls.net.cc 54.252.89.206
- [*] A littleshoolgirls.co.cc 175.126.123.219
- [*] A littleshoolgirls.org.ch 72.52.4.122
- [*] A littleshoolgirls.co.cm 85.25.140.105
- [*] A littleshoolgirls.net.cm 85.25.140.105
- [*] A littleshoolgirls.biz.cl 185.53.178.8
- [*] A littleshoolgirls.com.com 52.33.196.199
- [*] CNAME littleshoolgirls.biz.cm i.cns.cm
- [*] A i.cns.cm 118.184.56.30
- [*] A littleshoolgirls.net.com 199.59.242.150
- [*] A littleshoolgirls.org.com 23.23.86.44
- [*] A littleshoolgirls.com 80.82.79.116
- [*] A littleshoolgirls.co.com 173.192.115.17
- [*] A littleshoolgirls.biz.cr 72.52.4.122
- [*] A littleshoolgirls.biz.cx 72.52.4.122
- [*] A littleshoolgirls.com.cz 62.109.128.30
- [*] A littleshoolgirls.net.cz 80.250.24.177
- [*] A littleshoolgirls.biz.cz 185.53.179.7
- [*] CNAME littleshoolgirls.co.de co.de
- [*] A co.de 144.76.162.245
- [*] CNAME littleshoolgirls.org.de www.org.de
- [*] A www.org.de 78.47.128.8
- [*] A littleshoolgirls.com.de 50.56.68.37
- [*] A littleshoolgirls.net.eu 78.46.90.98
- [*] A littleshoolgirls.org.eu 78.46.90.98
- [*] A littleshoolgirls.biz.fi 185.55.85.123
- [*] A littleshoolgirls.fm 173.230.131.38
- [*] A littleshoolgirls.biz.fm 173.230.131.38
- [*] A littleshoolgirls.org.fr 149.202.133.35
- [*] A littleshoolgirls.biz.gl 72.52.4.122
- [*] CNAME littleshoolgirls.co.gp co.gp
- [*] A co.gp 144.76.162.245
- [*] A littleshoolgirls.co.hn 208.100.40.203
- [*] CNAME littleshoolgirls.net.hr net.hr
- [*] A net.hr 192.0.78.25
- [*] A net.hr 192.0.78.24
- [*] CNAME littleshoolgirls.biz.hn parkmydomain.vhostgo.com
- [*] A parkmydomain.vhostgo.com 107.186.245.118
- [*] A littleshoolgirls.co.ht 72.52.4.122
- [*] A littleshoolgirls.co.jobs 50.17.193.222
- [*] A littleshoolgirls.com.jobs 50.19.241.165
- [*] A littleshoolgirls.net.jobs 50.19.241.165
- [*] A littleshoolgirls.biz.jobs 50.19.241.165
- [*] A littleshoolgirls.org.jobs 50.19.241.165
- [*] A littleshoolgirls.biz.ky 199.184.144.27
- [*] CNAME littleshoolgirls.biz.li 712936.parkingcrew.net
- [*] A 712936.parkingcrew.net 185.53.179.29
- [*] A littleshoolgirls.biz.lu 195.26.5.2
- [*] A littleshoolgirls.biz.ly 64.136.20.39
- [*] A littleshoolgirls.biz.md 72.52.4.122
- [*] A littleshoolgirls.co.mk 87.76.31.211
- [*] A littleshoolgirls.co.mobi 54.225.105.179
- [*] A littleshoolgirls.biz.my 202.190.174.44
- [*] A littleshoolgirls.co.net 188.166.216.219
- [*] A littleshoolgirls.net.net 52.50.81.210
- [*] A littleshoolgirls.org.net 23.23.86.44
- [*] A littleshoolgirls.co.nl 37.97.184.204
- [*] A littleshoolgirls.com.nl 83.98.157.102
- [*] A littleshoolgirls.net.nl 83.98.157.102
- [*] A littleshoolgirls.co.nr 208.100.40.202
- [*] CNAME littleshoolgirls.co.nu co.nu
- [*] A co.nu 144.76.162.245
- [*] A littleshoolgirls.net.nu 199.102.76.78
- [*] CNAME littleshoolgirls.com.nu com.nu
- [*] A com.nu 144.76.162.245
- [*] A littleshoolgirls.org.nu 80.92.84.139
- [*] CNAME littleshoolgirls.net.org pewtrusts.org
- [*] A pewtrusts.org 204.74.99.100
- [*] A littleshoolgirls.com.org 23.23.86.44
- [*] A littleshoolgirls.ph 45.79.222.138
- [*] A littleshoolgirls.co.ph 45.79.222.138
- [*] A littleshoolgirls.com.ph 45.79.222.138
- [*] A littleshoolgirls.net.ph 45.79.222.138
- [*] A littleshoolgirls.org.ph 45.79.222.138
- [*] A littleshoolgirls.co.pl 212.91.6.55
- [*] A littleshoolgirls.org.pm 208.73.211.165
- [*] A littleshoolgirls.org.pm 208.73.211.177
- [*] A littleshoolgirls.org.pm 208.73.210.217
- [*] A littleshoolgirls.org.pm 208.73.210.202
- [*] A littleshoolgirls.co.ps 66.96.132.56
- [*] CNAME littleshoolgirls.biz.ps biz.ps
- [*] A biz.ps 144.76.162.245
- [*] A littleshoolgirls.pw 141.8.226.58
- [*] A littleshoolgirls.co.pt 194.107.127.52
- [*] A littleshoolgirls.co.pw 141.8.226.59
- [*] A littleshoolgirls.net.pw 141.8.226.59
- [*] A littleshoolgirls.biz.pw 141.8.226.59
- [*] A littleshoolgirls.org.pw 141.8.226.59
- [*] CNAME littleshoolgirls.co.ro now.co.ro
- [*] A now.co.ro 185.27.255.9
- [*] A littleshoolgirls.net.ro 69.64.52.127
- [*] A littleshoolgirls.org.re 217.70.184.38
- [*] A littleshoolgirls.com.ru 178.210.89.119
- [*] A littleshoolgirls.biz.se 185.53.179.6
- [*] CNAME littleshoolgirls.net.se 773147.parkingcrew.net
- [*] A 773147.parkingcrew.net 185.53.179.29
- [*] A littleshoolgirls.co.sl 91.195.240.135
- [*] A littleshoolgirls.com.sr 143.95.106.249
- [*] A littleshoolgirls.co.su 72.52.4.122
- [*] A littleshoolgirls.biz.st 91.121.28.115
- [*] A littleshoolgirls.biz.tc 64.136.20.39
- [*] A littleshoolgirls.biz.tf 85.236.153.18
- [*] A littleshoolgirls.co.tl 208.100.40.202
- [*] A littleshoolgirls.net.tf 188.40.117.12
- [*] A littleshoolgirls.net.tf 188.40.70.27
- [*] A littleshoolgirls.net.tf 188.40.70.29
- [*] A littleshoolgirls.co.to 175.118.124.44
- [*] A littleshoolgirls.co.tv 31.186.25.163
- [*] A littleshoolgirls.biz.tv 72.52.4.122
- [*] A littleshoolgirls.org.tv 72.52.4.122
- [*] CNAME littleshoolgirls.biz.uz biz.uz
- [*] A biz.uz 144.76.162.245
- [*] A littleshoolgirls.vg 88.198.29.97
- [*] A littleshoolgirls.co.vg 88.198.29.97
- [*] A littleshoolgirls.com.vg 88.198.29.97
- [*] A littleshoolgirls.net.vg 68.178.254.180
- [*] A littleshoolgirls.biz.vg 89.31.143.20
- [*] A littleshoolgirls.ws 64.70.19.203
- [*] A littleshoolgirls.biz.ws 184.168.221.104
- [*] A littleshoolgirls.net.ws 202.4.48.211
- [*] A littleshoolgirls.com.ws 202.4.48.211
- [*] A littleshoolgirls.org.ws 202.4.48.211
- R E V E R S E I P L O O K U P
- ==================================
- littleshoolgirls.com
- Domain Name: LITTLESHOOLGIRLS.COM
- Registry Domain ID: 1777538070_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.pairnic.com
- Registrar URL: http://www.pairnic.com
- Updated Date: 2017-04-19T11:39:58Z
- Creation Date: 2013-01-31T17:56:46Z
- Registry Expiry Date: 2018-01-31T17:56:46Z
- Registrar: Pair Networks Inc.d/b/a pairNIC
- Registrar IANA ID: 99
- Registrar Abuse Contact Email:
- Registrar Abuse Contact Phone:
- Domain Status: ok https://icann.org/epp#ok
- Name Server: PNS21.CLOUDNS.NET
- Name Server: PNS22.CLOUDNS.NET
- Name Server: PNS23.CLOUDNS.NET
- Name Server: PNS24.CLOUDNS.NET
- Domain Name: littleshoolgirls.com
- Registry Domain ID: 1777538070_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.pairDomains.com
- Registrar URL: https://www.pairDomains.com
- Updated Date: 2017-04-19T11:39:58+0000Z
- Creation Date: 2013-01-31T17:56:46+0000Z
- Registrar Registration Expiration Date: 2018-01-31T17:56:46+0000Z
- Registrar: pair Domains INC
- Registrar IANA ID: 99
- Registrar Abuse Contact Email: abuse@pairdomains.com
- Registrar Abuse Contact Phone: +1.8887247642
- Registry Registrant ID:
- Registrant Name: denis duchene
- Registrant Organization:
- Registrant Street: c/o pairDomains.com Whois Privacy PO Box 42319
- Registrant City: Pittsburgh
- Registrant State/Province: PA
- Registrant Postal Code: 15203
- Registrant Country: US
- Registrant Phone: +1.4123257437
- Registrant Phone Ext:
- Registrant Fax:
- Registrant Fax Ext:
- Registrant Email: 915q6w4i8499@nojunkemailaddress.com
- Registry Admin ID:
- Admin Name: denis duchene
- Admin Organization:
- Admin Street: c/o pairDomains.com Whois Privacy PO Box 42319
- Admin City: Pittsburgh
- Admin State/Province: PA
- Admin Postal Code: 15203
- Admin Country: US
- Admin Phone: +1.4123257437
- Admin Phone Ext:
- Admin Fax:
- Admin Fax Ext:
- Admin Email: 915q6w4i8499@nojunkemailaddress.com
- Registry Tech ID:
- Tech Name: denis duchene
- Tech Organization:
- Tech Street: c/o pairDomains.com Whois Privacy PO Box 42319
- Tech City: Pittsburgh
- Tech State/Province: PA
- Tech Postal Code: 15203
- Tech Country: US
- Tech Phone: +1.4123257437
- Tech Phone Ext:
- Tech Fax:
- Tech Fax Ext:
- Tech Email: 915q6w4i8499@nojunkemailaddress.com
- Name Server: PNS22.CLOUDNS.NET
- Name Server: PNS24.CLOUDNS.NET
- Name Server: PNS23.CLOUDNS.NET
- Name Server: PNS21.CLOUDNS.NET
- ;littleshoolgirls.com. IN ANY
- ;; ANSWER SECTION:
- littleshoolgirls.com. 1014 IN NS pns21.cloudns.net.
- littleshoolgirls.com. 1014 IN NS pns24.cloudns.net.
- littleshoolgirls.com. 1014 IN NS ns24.cloudns.net.
- littleshoolgirls.com. 1014 IN NS pns22.cloudns.net.
- littleshoolgirls.com. 1014 IN NS ns23.cloudns.net.
- littleshoolgirls.com. 1014 IN NS pns23.cloudns.net.
- littleshoolgirls.com. 1014 IN NS ns21.cloudns.net.
- littleshoolgirls.com. 1014 IN NS ns22.cloudns.net.
- Host's addresses:
- __________________
- littleshoolgirls.com. 53 IN A 94.102.48.103
- Wildcard detection using: xqrbkuymekkh
- _______________________________________
- xqrbkuymekkh.littleshoolgirls.com. 60 IN A 94.102.48.103
- !!!!!!!!!!!!!!!!!!!!!!!!!!!!
- Wildcards detected, all subdomains will point to the same IP address
- Omitting results containing 94.102.48.103.
- Maybe you are using OpenDNS servers.
- !!!!!!!!!!!!!!!!!!!!!!!!!!!!
- Name Servers:
- ______________
- pns23.cloudns.net. 119707 IN A 185.136.98.96
- ns22.cloudns.net. 118844 IN A 108.59.2.202
- ns23.cloudns.net. 118845 IN A 79.137.84.65
- ns21.cloudns.net. 118844 IN A 109.201.133.61
- pns21.cloudns.net. 119305 IN A 185.136.96.96
- pns24.cloudns.net. 119707 IN A 185.136.99.96
- ns24.cloudns.net. 154808 IN A 46.165.221.164
- pns22.cloudns.net. 119674 IN A 185.136.97.96
- Mail (MX) Servers:
- ___________________
- Can't perform recursion no subdomains.
- littleshoolgirls.com class C netranges:
- ________________________________________
- 94.102.48.0/24
- |\___ ns24.cloudns.net [littleshoolgirls.com] (2a00:0c98:2030:a006:0002:0000:0000:0001) Got authoritative answer
- |\___ ns24.cloudns.net [littleshoolgirls.com] (46.165.221.164) Got authoritative answer
- |\___ ns21.cloudns.net [littleshoolgirls.com] (2a00:1768:1001:0009:0000:0000:0000:0021) Got authoritative answer
- |\___ ns21.cloudns.net [littleshoolgirls.com] (109.201.133.61) Got authoritative answer
- |\___ pns23.cloudns.net [littleshoolgirls.com] (185.136.98.96) Got authoritative answer
- |\___ pns23.cloudns.net [littleshoolgirls.com] (2a06:fb00:0001:0000:0000:0000:0003:0096) Got authoritative answer
- |\___ ns23.cloudns.net [littleshoolgirls.com] (2001:41d0:0401:3100:0000:0000:0000:5784) Got authoritative answer
- |\___ ns23.cloudns.net [littleshoolgirls.com] (79.137.84.65) Got authoritative answer
- |\___ pns24.cloudns.net [littleshoolgirls.com] (2a06:fb00:0001:0000:0000:0000:0004:0096) Got authoritative answer
- |\___ pns24.cloudns.net [littleshoolgirls.com] (185.136.99.96) Got authoritative answer
- |\___ pns22.cloudns.net [littleshoolgirls.com] (185.136.97.96) Got authoritative answer
- |\___ ns22.cloudns.net [littleshoolgirls.com] (2604:9a00:2100:a006:0004:0000:0000:0001) Got authoritative answer
- |\___ ns22.cloudns.net [littleshoolgirls.com] (108.59.2.202) Got authoritative answer
- |\___ pns21.cloudns.net [littleshoolgirls.com] (2a06:fb00:0001:0000:0000:0000:0001:0096) Got authoritative answer
- \___ pns21.cloudns.net [littleshoolgirls.com] (185.136.96.96) Got authoritative answer
- WhatWeb report for http://littleshoolgirls.com
- Status : 200 OK
- Title : teenstight teens pictures, teens your videos, drunk amateur teens
- IP : 94.102.48.103
- Country : NETHERLANDS, NL
- Summary : X-Powered-By[PHP/5.4.45-0+deb7u8], HTTPServer[nginx], Cookies[nnmod], PHP[5.4.45-0+deb7u8], nginx, Script[text/javascript]
- Detected Plugins:
- [ Cookies ]
- Display the names of cookies in the HTTP headers. The
- values are not returned to save on space.
- String : nnmod
- [ HTTPServer ]
- HTTP server header string. This plugin also attempts to
- identify the operating system from the server header.
- String : nginx (from server string)
- [ PHP ]
- PHP is a widely-used general-purpose scripting language
- that is especially suited for Web development and can be
- embedded into HTML. This plugin identifies PHP errors,
- modules and versions and extracts the local file path and
- username if present.
- Version : 5.4.45-0+deb7u8
- Google Dorks: (2)
- Website : http://www.php.net/
- [ Script ]
- This plugin detects instances of script HTML elements and
- returns the script language/type.
- String : text/javascript
- [ X-Powered-By ]
- X-Powered-By HTTP header
- String : PHP/5.4.45-0+deb7u8 (from x-powered-by string)
- [ nginx ]
- Nginx (Engine-X) is a free, open-source, high-performance
- HTTP server and reverse proxy, as well as an IMAP/POP3
- proxy server.
- Website : http://nginx.net/
- HTTP Headers:
- HTTP/1.1 200 OK
- Server: nginx
- Date: Sun, 10 Sep 2017 02:29:37 GMT
- Content-Type: text/html
- Content-Length: 2918
- Connection: close
- X-Powered-By: PHP/5.4.45-0+deb7u8
- Set-Cookie: nnmod=1; expires=Sun, 10-Sep-2017 14:29:37 GMT
- Vary: Accept-Encoding
- Content-Encoding: gzip
- [+] Hosts found in search engines:
- ------------------------------------
- [-] Resolving hostnames IPs...
- 94.102.48.103:253Dwww.littleshoolgirls.com
- 94.102.48.103:Www.littleshoolgirls.com
- 94.102.48.103:www.littleshoolgirls.com
- ^ ^
- _ __ _ ____ _ __ _ _ ____
- ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
- | V V // o // _/ | V V // 0 // 0 // _/
- |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
- <
- ...'
- WAFW00F - Web Application Firewall Detection Tool
- By Sandro Gauci && Wendel G. Henrique
- Checking http://littleshoolgirls.com
- Generic Detection results:
- No WAF detected by the generic detection
- Number of requests: 13
- DNS Servers for littleshoolgirls.com:
- pns21.cloudns.net
- ns23.cloudns.net
- ns24.cloudns.net
- pns24.cloudns.net
- ns22.cloudns.net
- ns21.cloudns.net
- pns23.cloudns.net
- pns22.cloudns.net
- Trying zone transfer first...
- Testing pns21.cloudns.net
- Request timed out or transfer not allowed.
- Testing ns23.cloudns.net
- Request timed out or transfer not allowed.
- Testing ns24.cloudns.net
- Request timed out or transfer not allowed.
- Testing pns24.cloudns.net
- Request timed out or transfer not allowed.
- Testing ns22.cloudns.net
- Request timed out or transfer not allowed.
- Testing ns21.cloudns.net
- Request timed out or transfer not allowed.
- Testing pns23.cloudns.net
- Request timed out or transfer not allowed.
- Testing pns22.cloudns.net
- Request timed out or transfer not allowed.
- Starting smtp-user-enum v1.2 ( http://pentestmonkey.net/tools/smtp-user-enum )
- ----------------------------------------------------------
- | Scan Information |
- ----------------------------------------------------------
- Mode ..................... VRFY
- Worker Processes ......... 5
- Usernames file ........... users.txt
- Target count ............. 1
- Username count ........... 494
- Target TCP port .......... 25
- Query timeout ............ 5 secs
- Target domain ............
- ######## Scan started at Sat Sep 9 22:34:25 2017 #########
- ######## Scan completed at Sat Sep 9 22:42:40 2017 #########
- 0 results.
- 494 queries in 495 seconds (1.0 queries / sec)
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 22:42 EDT
- NSE: Loaded 146 scripts for scanning.
- NSE: Script Pre-scanning.
- Initiating NSE at 22:42
- Completed NSE at 22:42, 0.00s elapsed
- Initiating NSE at 22:42
- Completed NSE at 22:42, 0.00s elapsed
- Failed to resolve "littleshoolgirls.com.txt".
- Initiating Parallel DNS resolution of 1 host. at 22:42
- Completed Parallel DNS resolution of 1 host. at 22:42, 0.53s elapsed
- Initiating SYN Stealth Scan at 22:42
- Scanning littleshoolgirls.com (94.102.48.103) [100 ports]
- Discovered open port 21/tcp on 94.102.48.103
- Discovered open port 80/tcp on 94.102.48.103
- Discovered open port 22/tcp on 94.102.48.103
- Discovered open port 53/tcp on 94.102.48.103
- Discovered open port 111/tcp on 94.102.48.103
- Completed SYN Stealth Scan at 22:42, 3.28s elapsed (100 total ports)
- Initiating Service scan at 22:42
- Scanning 5 services on littleshoolgirls.com (94.102.48.103)
- Completed Service scan at 22:42, 11.37s elapsed (5 services on 1 host)
- Initiating OS detection (try #1) against littleshoolgirls.com (94.102.48.103)
- Retrying OS detection (try #2) against littleshoolgirls.com (94.102.48.103)
- adjust_timeouts2: packet supposedly had rtt of -130890 microseconds. Ignoring time.
- adjust_timeouts2: packet supposedly had rtt of -130890 microseconds. Ignoring time.
- Initiating Traceroute at 22:43
- Completed Traceroute at 22:43, 3.03s elapsed
- Initiating Parallel DNS resolution of 7 hosts. at 22:43
- Completed Parallel DNS resolution of 7 hosts. at 22:43, 5.51s elapsed
- NSE: Script scanning 94.102.48.103.
- Initiating NSE at 22:43
- Completed NSE at 22:43, 30.66s elapsed
- Initiating NSE at 22:43
- Completed NSE at 22:43, 0.59s elapsed
- Nmap scan report for littleshoolgirls.com (94.102.48.103)
- Host is up (0.13s latency).
- Not shown: 89 closed ports
- PORT STATE SERVICE VERSION
- 21/tcp open ftp vsftpd 3.0.2
- 22/tcp open ssh OpenSSH 6.0p1 Debian 4+deb7u6 (protocol 2.0)
- | ssh-hostkey:
- | 1024 ab:16:56:89:21:7e:75:1c:77:f3:a2:7e:c2:f1:4c:09 (DSA)
- | 2048 22:f8:e3:f6:1a:1c:6a:99:09:6b:1e:7c:fd:30:e3:95 (RSA)
- |_ 256 a8:03:f4:96:36:d1:39:de:2e:4f:56:e9:0f:f3:63:56 (ECDSA)
- 25/tcp filtered smtp
- 53/tcp open domain
- | dns-nsid:
- |_ bind.version: 9.8.4-rpz2+rl005.12-P1
- 80/tcp open http nginx
- |_http-favicon: Unknown favicon MD5: 9148DEBEB820D5EA5B01E73F08989CB1
- | http-methods:
- |_ Supported Methods: GET HEAD POST OPTIONS
- |_http-server-header: nginx
- |_http-title: teenstight teens pictures, teens your videos, drunk amateur...
- 111/tcp open rpcbind 2-4 (RPC #100000)
- 135/tcp filtered msrpc
- 139/tcp filtered netbios-ssn
- 445/tcp filtered microsoft-ds
- 465/tcp filtered smtps
- 587/tcp filtered submission
- Aggressive OS guesses: Linux 2.6.39 (95%), Linux 3.2 - 3.8 (95%), Linux 3.8 (95%), Linux 3.1 - 3.2 (94%), WatchGuard Fireware 11.8 (94%), Linux 2.6.32 - 2.6.39 (93%), Linux 3.5 (92%), Linux 3.0 - 3.2 (92%), Linux 2.6.32 (91%), Linux 3.0 (91%)
- No exact OS matches for host (test conditions non-ideal).
- Uptime guess: 6.479 days (since Sun Sep 3 11:13:51 2017)
- Network Distance: 11 hops
- TCP Sequence Prediction: Difficulty=263 (Good luck!)
- IP ID Sequence Generation: All zeros
- Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
- TRACEROUTE (using port 143/tcp)
- HOP RTT ADDRESS
- 1 109.48 ms 10.13.0.1
- 2 ...
- 3 110.19 ms po101.gra-g2-a75.fr.eu (178.33.103.231)
- 4 ...
- 5 119.42 ms be100-1113.fra-5-a9.de.eu (91.121.131.19)
- 6 119.45 ms be100-2.fra-1-a9.de.eu (94.23.122.217)
- 7 ...
- 8 158.26 ms vlan3555.bb1.ams2.nl.m247.com (176.10.83.128)
- 9 120.47 ms 176.10.83.119
- 10 ...
- 11 120.50 ms 94.102.48.103
- _/ _/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/
- _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
- _/ _/ _/_/_/_/ _/_/_/ _/ _/_/_/ _/_/_/_/ _/ _/_/_/ _/_/_/_
- _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
- _/_/_/_/ _/ _/ _/ _/_/_/_/ _/_/_/_/ _/ _/_/_/_/ _/ _/ [v1.06]
- _/ User-Agent Tester ↵
- _/ AKA: Purple Pimp ↵
- _/ ChrisJohnRiley ↵
- _/ blog.c22.cc ↵
- [>] Performing initial request and confirming stability
- [>] Using User-Agent string Mozilla/5.0
- [ ] URL (ENTERED): http://littleshoolgirls.com
- [ ] Response Code: 200 OK
- [ ] Server: nginx
- [ ] Date: Sun, 10 Sep 2017 02:47:26 GMT
- [ ] Content-Type: text/html
- [ ] Transfer-Encoding: chunked
- [ ] Connection: close
- [ ] Vary: Accept-Encoding
- [ ] X-Powered-By: PHP/5.4.45-0+deb7u8
- [ ] Set-Cookie: nnmod=1; expires=Sun, 10-Sep-2017 14:47:26 GMT
- [ ] Vary: Accept-Encoding
- [ ] Data (MD5): a9378b535c8f67af8d2e6283db8391df
- [1] Pass
- [2] Pass
- [3] Pass
- [>] URL appears stable. Beginning test
- [>] Using DEFAULT User-Agent Strings
- [>] Using Crazy User-Agent Strings
- [>] Using Bot User-Agent Strings
- [>] Output: [+] Added Headers, [-] Removed Headers, [!] Altered Headers, [ ] No Change
- [>] User-Agent String : Windows-Media-Player/9.00.00.4503
- [!] Data (MD5): 781d7dbcf62974b1cafe1884691ed55d
- [>] User-Agent String : Mozilla/5.0 (PLAYSTATION 3; 2.00)
- [!] Data (MD5): 6a0f0850a908e3e063736385ce7e39dc
- [>] User-Agent String : TrackBack/1.02
- [!] Data (MD5): 528b6388938ade008ab348ea5cefb490
- [>] User-Agent String : wispr
- [!] Data (MD5): fae121f1194e12b65a15eb7fd2e509a1
- [>] User-Agent String : EMPTY USER-AGENT STRING!
- [!] Data (MD5): d567bcee8be31fc74401cf28e268e0eb
- [>] User-Agent String : Googlebot/2.1 (+http://www.google.com/bot.html)
- [!] Data (MD5): 84a43f2b7538ee1482409353ea2323dc
- [>] User-Agent String : Googlebot-Image/1.0
- [!] Data (MD5): 10bdf4a11b332b641b44ca2617bebdd2
- [>] User-Agent String : Mediapartners-Google
- [!] Data (MD5): af381428a10d5266ba7b9a357977a6d2
- [>] User-Agent String : Mozilla/2.0 (compatible; Ask Jeeves)
- [!] Data (MD5): d7b1213384a6e7c1413a0068c1e7ff34
- [>] User-Agent String : msnbot-Products/1.0 (+http://search.msn.com/msnbot.htm)
- [!] Data (MD5): d3c86f2962e5c14006d5706f73788978
- [>] User-Agent String : mmcrawler
- [!] Data (MD5): b5586335e511fa0340da2c1c2dda6885
- [>] Checks completed... try enabling VERBOSE mode for more detailed output
- [>] That's all folks... Fo' Shizzle!
- ########################################################################################
- Hostname top.top-dolls.net ISP Quasi Networks LTD. (AS29073)
- Continent Africa Flag
- SC
- Country Seychelles Country Code SC (SYC)
- Region Unknown Local time 10 Sep 2017 06:40 +04
- City Unknown Latitude -4.583
- IP Address 94.102.48.34 Longitude 55.667
- ##########################################################################################
- ###########################################################################################
- dig top.top-dolls.net any
- ; <<>> DiG 9.10.3-P4-Debian <<>> top.top-dolls.net any
- ;; global options: +cmd
- ;; Got answer:
- ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 47348
- ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
- ;; OPT PSEUDOSECTION:
- ; EDNS: version: 0, flags:; udp: 4096
- ;; QUESTION SECTION:
- ;top.top-dolls.net. IN ANY
- ;; ANSWER SECTION:
- top.top-dolls.net. 1278 IN A 94.102.48.34
- ;; Query time: 8 msec
- ;; SERVER: 192.168.1.254#53(192.168.1.254)
- ;; WHEN: Sat Sep 09 22:44:37 EDT 2017
- ;; MSG SIZE rcvd: 62
- Checking for HTTP-Loadbalancing [Date]: 00:43:51, 00:43:52, 00:43:52, 00:43:52, 00:43:52, 00:43:53, 00:43:53, 00:43:53, 00:43:53, 00:43:54, 00:43:54, 00:43:54, 00:43:54, 00:43:55, 00:43:55, 00:43:55, 00:43:56, 00:43:56, 00:43:56, 00:43:56, 00:43:57, 00:43:57, 00:43:57, 00:43:57, 00:43:58, 00:43:58, 00:43:58, 00:43:58, 00:43:59, 00:43:59, 00:43:59, 00:44:00, 00:44:00, 00:44:00, 00:44:00, 00:44:01, 00:44:01, 00:44:01, 00:44:01, 00:44:02, 00:44:02, 00:44:02, 00:44:02, 00:44:03, 00:44:03, 00:44:03, 00:44:04, 00:44:04, 00:44:04, 00:44:04, NOT FOUND
- ###########################################################################################
- nmap -PN -n -F -T4 -sV -A -oG temp.txt top.top-dolls.net
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 22:45 EDT
- Nmap scan report for top.top-dolls.net (94.102.48.34)
- Host is up (0.13s latency).
- Not shown: 84 closed ports
- PORT STATE SERVICE VERSION
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 25/tcp filtered smtp
- 53/tcp open domain ISC BIND 9.8.2rc1
- | dns-nsid:
- |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4
- 80/tcp open http nginx 1.12.1
- | http-methods:
- |_ Potentially risky methods: TRACE
- |_http-server-header: nginx/1.12.1
- |_http-title: Apache HTTP Server Test Page powered by CentOS
- 81/tcp filtered hosts2-ns
- 110/tcp open pop3 Dovecot pop3d
- |_pop3-capabilities: USER UIDL SASL(PLAIN LOGIN DIGEST-MD5 CRAM-MD5) TOP PIPELINING RESP-CODES CAPA STLS
- | ssl-cert: Subject: commonName=imap.example.com
- | Not valid before: 2015-06-12T12:04:14
- |_Not valid after: 2016-06-11T12:04:14
- |_ssl-date: 2017-09-10T00:44:40+00:00; -2h01m10s from scanner time.
- 135/tcp filtered msrpc
- 139/tcp filtered netbios-ssn
- 143/tcp open imap Dovecot imapd
- |_imap-capabilities: completed ENABLE ID Capability SASL-IR AUTH=CRAM-MD5A0001 AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=PLAIN OK STARTTLS LOGIN-REFERRALS IDLE IMAP4rev1 LITERAL+
- | ssl-cert: Subject: commonName=imap.example.com
- | Not valid before: 2015-06-12T12:04:14
- |_Not valid after: 2016-06-11T12:04:14
- |_ssl-date: 2017-09-10T00:44:39+00:00; -2h01m10s from scanner time.
- 445/tcp filtered microsoft-ds
- 465/tcp filtered smtps
- 587/tcp filtered submission
- 993/tcp open ssl/imap Dovecot imapd
- | ssl-cert: Subject: commonName=imap.example.com
- | Not valid before: 2015-06-12T12:04:14
- |_Not valid after: 2016-06-11T12:04:14
- |_ssl-date: 2017-09-10T00:44:35+00:00; -2h01m11s from scanner time.
- 995/tcp open ssl/pop3 Dovecot pop3d
- | ssl-cert: Subject: commonName=imap.example.com
- | Not valid before: 2015-06-12T12:04:14
- |_Not valid after: 2016-06-11T12:04:14
- |_ssl-date: 2017-09-10T00:44:35+00:00; -2h01m11s from scanner time.
- 3306/tcp open mysql MySQL (unauthorized)
- Device type: general purpose
- Running: Linux 2.6.X
- OS CPE: cpe:/o:linux:linux_kernel:2.6.39
- OS details: Linux 2.6.39
- Network Distance: 10 hops
- Service Info: OS: Red Hat Enterprise Linux 6; CPE: cpe:/o:redhat:enterprise_linux:6
- Host script results:
- |_clock-skew: mean: -2h01m10s, deviation: 0s, median: -2h01m11s
- TRACEROUTE (using port 8888/tcp)
- HOP RTT ADDRESS
- 1 110.60 ms 10.13.0.1
- 2 ...
- 3 110.64 ms 178.33.103.229
- 4 ...
- 5 119.39 ms 213.186.32.213
- 6 ...
- 7 124.40 ms 176.10.83.128
- 8 120.39 ms 176.10.83.119
- 9 ...
- 10 120.22 ms 94.102.48.34
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 29.43 seconds
- ###########################################################################################
- amap -i temp.txt
- amap v5.4 (www.thc.org/thc-amap) started at 2017-09-09 22:45:57 - APPLICATION MAPPING mode
- Protocol on 94.102.48.34:80/tcp matches http
- Protocol on 94.102.48.34:80/tcp matches http-apache-2
- Protocol on 94.102.48.34:110/tcp matches pop3
- Protocol on 94.102.48.34:3306/tcp matches mysql
- Protocol on 94.102.48.34:3306/tcp matches mysql-secured
- Protocol on 94.102.48.34:143/tcp matches imap
- Protocol on 94.102.48.34:993/tcp matches ssl
- Protocol on 94.102.48.34:995/tcp matches ssl
- Protocol on 94.102.48.34:53/tcp matches dns
- inetnum: 94.102.48.0 - 94.102.48.150
- netname: SC-QUASI58
- descr: QUASI
- country: SC
- org: ORG-QNL3-RIPE
- admin-c: QNL1-RIPE
- tech-c: QNL1-RIPE
- status: ASSIGNED PA
- mnt-by: QUASINETWORKS-MNT
- mnt-lower: QUASINETWORKS-MNT
- mnt-routes: QUASINETWORKS-MNT
- created: 2011-05-07T22:25:22Z
- last-modified: 2016-01-23T22:29:27Z
- source: RIPE
- organisation: ORG-QNL3-RIPE
- org-name: Quasi Networks LTD.
- org-type: OTHER
- address: Suite 1, Second Floor
- address: Sound & Vision House, Francis Rachel Street
- address: Victoria, Mahe, SEYCHELLES
- remarks: *****************************************************************************
- remarks: IMPORTANT INFORMATION
- remarks: *****************************************************************************
- remarks: We are a high bandwidth network provider offering bandwidth solutions.
- remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
- remarks: Please only use abuse@quasinetworks.com for abuse reports.
- remarks: For all other requests, please see the details on our website.
- remarks: *****************************************************************************
- abuse-mailbox: abuse@quasinetworks.com
- abuse-c: AR34302-RIPE
- mnt-ref: QUASINETWORKS-MNT
- mnt-by: QUASINETWORKS-MNT
- created: 2015-11-08T22:25:26Z
- last-modified: 2015-11-27T09:37:50Z
- source: RIPE # Filtered
- role: Quasi Networks LTD
- address: Suite 1, Second Floor
- address: Sound & Vision House, Francis Rachel Street
- address: Victoria, Mahe, SEYCHELLES
- remarks: *****************************************************************************
- remarks: IMPORTANT INFORMATION
- remarks: *****************************************************************************
- remarks: We are a high bandwidth network provider offering bandwidth solutions.
- remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
- remarks: Please only use abuse@quasinetworks.com for abuse reports.
- remarks: For all other requests, please see the details on our website.
- remarks: *****************************************************************************
- abuse-mailbox: abuse@quasinetworks.com
- nic-hdl: QNL1-RIPE
- mnt-by: QUASINETWORKS-MNT
- created: 2015-11-07T22:43:04Z
- last-modified: 2015-11-07T23:04:49Z
- source: RIPE # Filtered
- % Information related to '94.102.48.0/20AS29073'
- route: 94.102.48.0/20
- descr: Quasi Networks LTD (IBC)
- origin: AS29073
- mnt-by: QUASINETWORKS-MNT
- created: 2008-09-02T11:55:23Z
- last-modified: 2016-01-23T22:40:05Z
- source: RIPE
- % This query was served by the RIPE Database Query Service version 1.89.2 (WAGYU)
- ###########################################################################################
- [i] Scanning Site: http://top.top-dolls.net
- B A S I C I N F O
- ====================
- [+] Site Title:
- [+] IP address: 94.102.48.34
- [+] Web Server: nginx/1.12.1
- [+] CMS: Could Not Detect
- [+] Cloudflare: Not Detected
- [+] Robots File: Could NOT Find robots.txt!
- G E O I P L O O K U P
- =========================
- [i] IP Address: 94.102.48.34
- [i] Country: SC
- [i] State: N/A
- [i] City: N/A
- [i] Latitude: -4.583300
- [i] Longitude: 55.666698
- H T T P H E A D E R S
- =======================
- [i] HTTP/1.1 403 Forbidden
- [i] Server: nginx/1.12.1
- [i] Date: Sun, 10 Sep 2017 00:43:18 GMT
- [i] Content-Type: text/html; charset=UTF-8
- [i] Content-Length: 4961
- [i] Connection: close
- [i] Accept-Ranges: bytes
- D N S L O O K U P
- ===================
- top.top-dolls.net. 3596 IN A 94.102.48.34
- S U B N E T C A L C U L A T I O N
- ====================================
- Address = 94.102.48.34
- Network = 94.102.48.34 / 32
- Netmask = 255.255.255.255
- Broadcast = not needed on Point-to-Point links
- Wildcard Mask = 0.0.0.0
- Hosts Bits = 0
- Max. Hosts = 1 (2^0 - 0)
- Host Range = { 94.102.48.34 - 94.102.48.34 }
- N M A P P O R T S C A N
- ============================
- Starting Nmap 7.01 ( https://nmap.org ) at 2017-09-10 02:44 UTC
- Nmap scan report for top.top-dolls.net (94.102.48.34)
- Host is up (0.083s latency).
- rDNS record for 94.102.48.34: no-reverse-dns-configured.com
- PORT STATE SERVICE VERSION
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 23/tcp closed telnet
- 25/tcp open smtp Postfix smtpd
- 80/tcp open http nginx 1.12.1
- 110/tcp open pop3 Dovecot pop3d
- 143/tcp open imap Dovecot imapd
- 443/tcp closed https
- 445/tcp closed microsoft-ds
- 3389/tcp closed ms-wbt-server
- S U B - D O M A I N F I N D E R
- ==================================
- [i] Total Subdomains Found : 1
- [+] Subdomain: top.top-dolls.net
- [-] IP: 94.102.48.34
- [*] Performing TLD Brute force Enumeration against top.top-dolls.net
- [*] The operation could take up to: 00:01:07
- [*] A top.ac 66.96.161.132
- [*] A top.ae 86.96.163.42
- [*] A top.ae 86.96.130.64
- [*] A top.biz.af 5.45.75.45
- [*] A top.ag 94.75.116.15
- [*] A top.af 108.61.170.199
- [*] AAAA top.af 2001:19f0:6c01:547:5400:ff:fe7c:9f77
- [*] A top.ai 47.90.1.220
- [*] A top.al 212.7.8.182
- [*] A top.am 50.62.112.1
- [*] A top.com.ar 72.52.231.0
- [*] A top.org.ar 190.183.59.134
- [*] A top.as 72.52.4.119
- [*] A top.co.at 213.229.60.9
- [*] CNAME top.biz.at free.biz.at
- [*] A free.biz.at 216.92.134.29
- [*] A top.net.au 203.87.108.74
- [*] A top.at 83.137.116.70
- [*] A top.com.au 69.172.201.153
- [*] A top.asia 77.221.130.34
- [*] A top.org.aw 142.4.20.12
- [*] A top.org.au 223.130.25.70
- [*] A top.ax 104.27.184.202
- [*] A top.ax 104.27.185.202
- [*] AAAA top.ax 2400:cb00:2048:1::681b:b9ca
- [*] AAAA top.ax 2400:cb00:2048:1::681b:b8ca
- [*] A top.az 136.243.74.74
- [*] A top.ba 81.93.76.14
- [*] A top.co.ba 176.9.45.78
- [*] A top.com.ba 195.222.33.180
- [*] A top.be 86.39.240.67
- [*] A top.co.asia 91.195.240.135
- [*] A top.com.be 95.173.170.166
- [*] A top.bg 78.90.206.51
- [*] A top.bi 77.104.162.193
- [*] A top.biz 72.52.4.119
- [*] A top.com.br 177.154.148.10
- [*] A top.by 93.171.222.16
- [*] A top.biz.by 71.18.52.2
- [*] A top.biz.bz 199.59.242.150
- [*] A top.ca 199.59.242.150
- [*] A top.com.cc 54.252.107.64
- [*] A top.net.cc 54.252.89.206
- [*] A top.co.cc 175.126.123.219
- [*] A top.ch 35.156.3.16
- [*] A top.cc 112.74.87.111
- [*] A top.org.ch 72.52.4.122
- [*] A top.cl 216.75.37.169
- [*] A top.co.cm 85.25.140.105
- [*] A top.net.cm 85.25.140.105
- [*] A top.biz.cl 185.53.178.8
- [*] A top.cn 23.27.192.117
- [*] A top.net.cn 23.27.192.117
- [*] A top.co 208.73.211.70
- [*] A top.com.co 185.28.20.39
- [*] A top.net.co 184.168.221.59
- [*] A top.com 184.168.221.59
- [*] A top.com.com 52.33.196.199
- [*] A top.net.com 199.59.242.150
- [*] A top.co.com 173.192.115.17
- [*] A top.org.com 23.23.86.44
- [*] A top.cr 198.1.104.236
- [*] A top.com.cn 118.26.164.16
- [*] A top.biz.cr 72.52.4.122
- [*] CNAME top.biz.cm i.cns.cm
- [*] A i.cns.cm 118.184.56.30
- [*] A top.cx 153.231.198.148
- [*] A top.cz 91.228.100.92
- [*] A top.net.cz 80.250.24.177
- [*] A top.biz.cx 72.52.4.122
- [*] A top.co.de 128.199.226.195
- [*] A top.com.de 199.59.242.150
- [*] A top.de 213.165.64.4
- [*] A top.com.cz 62.109.128.30
- [*] CNAME top.org.de www.org.de
- [*] A www.org.de 78.47.128.8
- [*] A top.co.ca 66.196.36.16
- [*] A top.biz.cz 185.53.179.7
- [*] A top.dk 46.4.18.10
- [*] A top.ec 72.52.4.119
- [*] A top.ee 217.146.69.11
- [*] AAAA top.ee 2a02:29e8:770:0:3::21
- [*] A top.com.es 72.52.4.122
- [*] A top.es 185.53.178.8
- [*] A top.eu 86.39.240.67
- [*] A top.net.eu 78.46.90.98
- [*] A top.org.eu 78.46.90.98
- [*] A top.biz.fi 185.55.85.123
- [*] A top.fm 173.230.131.38
- [*] A top.biz.fm 173.230.131.38
- [*] A top.fo 104.27.131.13
- [*] A top.fo 104.27.130.13
- [*] AAAA top.fo 2400:cb00:2048:1::681b:820d
- [*] AAAA top.fo 2400:cb00:2048:1::681b:830d
- [*] A top.fr 37.187.182.95
- [*] A top.org.fr 149.202.133.35
- [*] A top.ge 188.93.95.26
- [*] A top.gd 72.52.4.119
- [*] A top.gf 128.65.195.88
- [*] A top.gg 185.26.105.244
- [*] A top.biz.gl 72.52.4.122
- [*] A top.gp 72.52.4.119
- [*] A top.co.gp 144.76.162.245
- [*] A top.gr 185.4.133.65
- [*] A top.gs 184.168.221.55
- [*] A top.gt 198.49.72.66
- [*] A top.hk 203.124.113.1
- [*] A top.hn 217.70.184.38
- [*] A top.co.hn 208.100.40.203
- [*] A top.hr 178.218.174.100
- [*] CNAME top.net.hr net.hr
- [*] A net.hr 192.0.78.24
- [*] A net.hr 192.0.78.25
- [*] A top.ht 174.129.233.169
- [*] A top.co.ht 72.52.4.122
- [*] A top.hu 185.80.49.249
- [*] CNAME top.biz.hn parkmydomain.vhostgo.com
- [*] A parkmydomain.vhostgo.com 107.186.245.118
- [*] A top.co.id 198.252.100.115
- [*] A top.ie 185.2.66.91
- [*] A top.im 89.31.143.1
- [*] A top.org.il 194.90.184.11
- [*] A top.org.il 194.90.156.145
- [*] A top.in 72.52.4.119
- [*] A top.co.in 72.52.4.122
- [*] A top.info 210.114.223.199
- [*] A top.net.in 50.63.202.32
- [*] A top.org.in 72.52.4.122
- [*] A top.io 138.201.54.27
- [*] A top.co.ir 216.158.77.118
- [*] A top.is 193.4.58.173
- [*] CNAME top.je park.io
- [*] A park.io 50.17.238.198
- [*] A park.io 54.243.148.214
- [*] A top.it 185.2.4.102
- [*] A top.com.jo 104.238.99.152
- [*] A top.co.jobs 50.17.193.222
- [*] A top.jobs 50.19.241.165
- [*] A top.net.jobs 50.19.241.165
- [*] A top.com.jobs 50.19.241.165
- [*] A top.biz.jobs 50.19.241.165
- [*] A top.org.jobs 50.19.241.165
- [*] A top.jp 52.198.47.173
- [*] A top.co.jp 211.13.196.139
- [*] A top.kg 195.38.166.72
- [*] A top.co.ke 72.52.4.122
- [*] A top.net.kg 178.208.83.11
- [*] CNAME top.co.kr parking3.dnstool.net
- [*] CNAME parking3.dnstool.net wwwp.3dupndown.co.kr
- [*] CNAME wwwp.3dupndown.co.kr wqkboog.x.incapdns.net
- [*] A wqkboog.x.incapdns.net 107.154.155.33
- [*] CNAME top.kr parking3.dnstool.net
- [*] CNAME parking3.dnstool.net wwwp.3dupndown.co.kr
- [*] CNAME wwwp.3dupndown.co.kr wqkboog.x.incapdns.net
- [*] A wqkboog.x.incapdns.net 107.154.155.33
- [*] A top.com.kz 82.200.247.241
- [*] A top.kz 136.243.146.176
- [*] A top.biz.ky 199.184.144.27
- [*] A top.la 72.52.4.119
- [*] A top.lc 144.76.162.245
- [*] A top.li 72.52.4.119
- [*] CNAME top.biz.li 712936.parkingcrew.net
- [*] A 712936.parkingcrew.net 185.53.179.29
- [*] A top.lk 208.76.243.50
- [*] A top.lt 79.98.25.1
- [*] A top.lu 194.154.192.85
- [*] A top.biz.lu 195.26.5.2
- [*] A top.lv 194.105.56.171
- [*] A top.biz.ly 64.136.20.39
- [*] A top.co.ma 5.135.5.49
- [*] A top.md 88.99.29.152
- [*] A top.biz.md 72.52.4.122
- [*] A top.me 198.204.239.194
- [*] A top.mk 212.7.8.186
- [*] A top.co.mk 87.76.31.211
- [*] A top.mn 218.100.84.130
- [*] A top.co.mobi 54.225.105.179
- [*] A top.com.mx 184.173.249.72
- [*] A top.com.my 209.99.40.223
- [*] A top.biz.my 202.190.174.44
- [*] A top.net 72.249.144.95
- [*] A top.co.net 188.166.216.219
- [*] A top.net.net 52.50.81.210
- [*] A top.co.nf 185.176.40.54
- [*] A top.biz.nf 185.176.40.54
- [*] A top.org.net 23.23.86.44
- [*] A top.nl 109.72.85.122
- [*] AAAA top.nl 2a00:f10:ff03:1::103
- [*] A top.co.nl 77.174.199.0
- [*] A top.com.nl 83.98.157.102
- [*] A top.net.nl 83.98.157.102
- [*] A top.ng 91.195.240.135
- [*] A top.no 195.18.148.21
- [*] A top.com.ng 91.195.240.135
- [*] A top.co.nr 208.100.40.202
- [*] A top.nu 217.116.211.149
- [*] A top.net.nu 199.102.76.78
- [*] A top.org.nu 80.92.84.139
- [*] CNAME top.co.nu co.nu
- [*] A co.nu 144.76.162.245
- [*] A top.com.nu 144.76.162.245
- [*] A top.net.nz 103.250.119.215
- [*] A top.org.nz 104.25.242.31
- [*] A top.org.nz 104.25.243.31
- [*] AAAA top.org.nz 2400:cb00:2048:1::6819:f21f
- [*] AAAA top.org.nz 2400:cb00:2048:1::6819:f31f
- [*] CNAME top.co.nz park.worldcloudshops.com
- [*] A park.worldcloudshops.com 35.190.14.252
- [*] A top.com.org 23.23.86.44
- [*] CNAME top.net.org pewtrusts.org
- [*] A pewtrusts.org 204.74.99.100
- [*] A top.pe 103.224.182.249
- [*] A top.com.pe 72.52.4.122
- [*] A top.ph 192.64.147.201
- [*] A top.com.ph 72.52.4.122
- [*] A top.co.ph 45.79.222.138
- [*] A top.net.ph 45.79.222.138
- [*] A top.org.ph 45.79.222.138
- [*] A top.com.pk 174.136.29.165
- [*] A top.pl 178.33.53.57
- [*] A top.co.pl 213.239.198.135
- [*] A top.com.pl 176.9.137.196
- [*] A top.net.pl 91.200.92.2
- [*] A top.biz.pl 94.23.89.40
- [*] A top.org.pl 77.55.152.162
- [*] A top.pm 103.224.182.241
- [*] A top.org.pm 208.73.210.202
- [*] A top.org.pm 208.73.211.165
- [*] A top.org.pm 208.73.211.177
- [*] A top.org.pm 208.73.210.217
- [*] A top.pro 192.252.144.48
- [*] A top.co.ps 66.96.132.56
- [*] CNAME top.biz.ps biz.ps
- [*] A biz.ps 144.76.162.245
- [*] A top.co.pt 194.107.127.52
- [*] A top.pt 72.52.4.119
- [*] A top.pw 141.8.226.59
- [*] A top.co.pw 141.8.226.59
- [*] A top.net.pw 141.8.226.59
- [*] A top.biz.pw 141.8.226.59
- [*] A top.org.pw 141.8.226.59
- [*] A top.com.qa 82.148.100.102
- [*] A top.re 69.172.201.153
- [*] A top.org.re 217.70.184.38
- [*] A top.ro 193.25.113.232
- [*] A top.qa 208.91.197.91
- [*] A top.net.ro 69.64.52.127
- [*] A top.org.ro 188.241.152.102
- [*] A top.rs 217.26.210.185
- [*] A top.co.rs 217.26.213.91
- [*] A top.org.rs 178.218.166.204
- [*] A top.ru 185.77.233.40
- [*] A top.net.ru 138.201.187.251
- [*] A top.org.ru 37.140.192.250
- [*] A top.com.ru 193.232.158.144
- [*] A top.com.ru 193.232.159.144
- [*] A top.com.ru 193.232.158.145
- [*] A top.com.ru 193.232.159.145
- [*] A top.net.sa 77.240.80.85
- [*] A top.sa 208.91.197.91
- [*] A top.sc 78.109.25.58
- [*] A top.com.se 52.32.224.120
- [*] A top.sg 91.136.8.131
- [*] A top.biz.se 185.53.179.6
- [*] A top.com.sg 119.31.233.166
- [*] CNAME top.net.se 773147.parkingcrew.net
- [*] A 773147.parkingcrew.net 185.53.179.29
- [*] A top.sh 107.150.98.48
- [*] A top.si 91.223.115.153
- [*] A top.sk 37.9.175.5
- [*] A top.com.sr 143.95.106.249
- [*] A top.co.sl 91.195.240.135
- [*] A top.st 13.69.186.222
- [*] A top.biz.st 91.121.28.115
- [*] A top.su 82.146.61.146
- [*] A top.co.su 72.52.4.122
- [*] A top.tc 144.76.162.245
- [*] A top.biz.tc 64.136.20.39
- [*] A top.tel 52.50.143.27
- [*] A top.tf 77.174.199.0
- [*] A top.net.tf 188.40.70.29
- [*] A top.net.tf 188.40.70.27
- [*] A top.net.tf 188.40.117.12
- [*] A top.biz.tf 85.236.153.18
- [*] A top.tk 195.20.47.239
- [*] A top.co.tl 208.100.40.202
- [*] A top.com.tr 77.245.149.29
- [*] A top.travel 72.52.4.119
- [*] A top.co.to 175.118.124.44
- [*] A top.co.th 203.146.170.57
- [*] A top.co.tv 31.186.25.163
- [*] A top.tw 61.220.152.244
- [*] A top.to 222.122.205.134
- [*] A top.com.tw 106.186.25.125
- [*] A top.net.tw 60.249.15.213
- [*] A top.biz.tv 72.52.4.122
- [*] A top.org.tv 72.52.4.122
- [*] A top.org.tw 61.63.62.68
- [*] A top.ua 82.144.222.56
- [*] A top.co.ua 138.201.57.91
- [*] A top.com.ua 77.120.122.115
- [*] A top.net.ua 80.91.160.7
- [*] A top.co.tz 216.194.168.113
- [*] A top.uk 212.36.97.12
- [*] A top.co.uk 212.36.97.12
- [*] A top.biz.ua 95.213.135.229
- [*] AAAA top.biz.ua 2a00:ab00:4300:1df::2
- [*] A top.biz.uz 144.76.162.245
- [*] A top.vc 199.59.242.150
- [*] A top.net.ve 67.220.187.66
- [*] A top.vg 88.198.29.97
- [*] A top.co.vg 88.198.29.97
- [*] A top.com.vg 88.198.29.97
- [*] A top.net.vg 68.178.254.180
- [*] A top.biz.vg 89.31.143.20
- [*] A top.com.ve 185.53.178.6
- [*] A top.uz 83.69.139.158
- [*] A top.ws 184.168.221.104
- [*] A top.net.vn 112.213.89.3
- [*] A top.com.ws 202.4.48.211
- [*] A top.net.ws 202.4.48.211
- [*] A top.biz.ws 184.168.221.104
- [*] A top.org.ws 202.4.48.211
- [*] CNAME top.wf dnspod-free.mydnspod.net
- [*] A dnspod-free.mydnspod.net 49.51.10.192
- [*] A top.yt 103.224.182.241
- ----- top.top-dolls.net -----
- Host's addresses:
- __________________
- top.top-dolls.net. 1189 IN A 94.102.48.34
- Name Servers:
- ______________
- top.top-dolls.net NS record query failed: NOERROR
- dnsmap 0.30 - DNS Network Mapper by pagvac (gnucitizen.org)
- [+] searching (sub)domains for top.top-dolls.net using built-in wordlist
- [+] using maximum random delay of 10 millisecond(s) between requests
- [+] 0 (sub)domains and 0 IP address(es) found
- [+] completion time: 153 second(s)
- Tracing to top.top-dolls.net[a] via 192.168.1.254, maximum of 3 retries
- 192.168.1.254 (192.168.1.254) Got answer
- WhatWeb report for http://top.top-dolls.net
- Status : 403 Forbidden
- Title : Apache HTTP Server Test Page powered by CentOS
- IP : 94.102.48.34
- Country : NETHERLANDS, NL
- Summary : PoweredBy[Apache,CentOS], Email[webmaster@example.com], HTTPServer[nginx/1.12.1], nginx[1.12.1]
- Detected Plugins:
- [ Email ]
- Extract email addresses. Find valid email address and
- syntactically invalid email addresses from mailto: link
- tags. We match syntactically invalid links containing
- mailto: to catch anti-spam email addresses, eg. bob at
- gmail.com. This uses the simplified email regular
- expression from
- http://www.regular-expressions.info/email.html for valid
- email address matching.
- String : webmaster@example.com
- [ HTTPServer ]
- HTTP server header string. This plugin also attempts to
- identify the operating system from the server header.
- String : nginx/1.12.1 (from server string)
- [ PoweredBy ]
- This plugin identifies instances of 'Powered by x' text and
- attempts to extract the value for x.
- String : Apache,CentOS
- [ nginx ]
- Nginx (Engine-X) is a free, open-source, high-performance
- HTTP server and reverse proxy, as well as an IMAP/POP3
- proxy server.
- Version : 1.12.1
- Website : http://nginx.net/
- HTTP Headers:
- HTTP/1.1 403 Forbidden
- Server: nginx/1.12.1
- Date: Sun, 10 Sep 2017 00:47:30 GMT
- Content-Type: text/html; charset=UTF-8
- Content-Length: 4961
- Connection: close
- Accept-Ranges: bytes
- ^ ^
- _ __ _ ____ _ __ _ _ ____
- ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
- | V V // o // _/ | V V // 0 // 0 // _/
- |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
- <
- ...'
- WAFW00F - Web Application Firewall Detection Tool
- By Sandro Gauci && Wendel G. Henrique
- Checking http://top.top-dolls.net
- Generic Detection results:
- No WAF detected by the generic detection
- Number of requests: 12
- Trying zone transfer first...
- Unsuccessful in zone transfer (it was worth a shot)
- Okay, trying the good old fashioned way... brute force
- Checking for wildcard DNS...
- Nope. Good.
- Now performing 2280 test(s)...
- Subnets found (may want to probe here using nmap or unicornscan):
- Done with Fierce scan: http://ha.ckers.org/fierce/
- Found 0 entries.
- Have a nice day.
- lbd - load balancing detector 0.2 - Checks if a given domain uses load-balancing.
- Written by Stefan Behte (http://ge.mine.nu)
- Proof-of-concept! Might give false positives.
- Checking for DNS-Loadbalancing: NOT FOUND
- Checking for HTTP-Loadbalancing [Server]:
- nginx/1.12.1
- NOT FOUND
- Checking for HTTP-Loadbalancing [Date]: 00:47:59, 00:47:59, 00:48:00, 00:48:00, 00:48:00, 00:48:00, 00:48:01, 00:48:01, 00:48:01, 00:48:01, 00:48:02, 00:48:02, 00:48:02, 00:48:03, 00:48:03, 00:48:03, 00:48:03, 00:48:04, 00:48:04, 00:48:04, 00:48:04, 00:48:05, 00:48:05, 00:48:05, 00:48:05, 00:48:06, 00:48:06, 00:48:06, 00:48:07, 00:48:07, 00:48:07, 00:48:07, 00:48:08, 00:48:08, 00:48:08, 00:48:08, 00:48:09, 00:48:09, 00:48:09, 00:48:09, 00:48:10, 00:48:10, 00:48:10, 00:48:11, 00:48:11, 00:48:11, 00:48:11, 00:48:12, 00:48:12, 00:48:12, NOT FOUND
- Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
- top.top-dolls.net does NOT use Load-balancing.
- Starting smtp-user-enum v1.2 ( http://pentestmonkey.net/tools/smtp-user-enum )
- ----------------------------------------------------------
- | Scan Information |
- ----------------------------------------------------------
- Mode ..................... VRFY
- Worker Processes ......... 5
- Usernames file ........... users.txt
- Target count ............. 1
- Username count ........... 494
- Target TCP port .......... 25
- Query timeout ............ 5 secs
- Target domain ............
- ######## Scan started at Sat Sep 9 22:49:35 2017 #########
- ######## Scan completed at Sat Sep 9 22:57:50 2017 #########
- 0 results.
- 494 queries in 495 seconds (1.0 queries / sec)
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 22:57 EDT
- NSE: Loaded 146 scripts for scanning.
- NSE: Script Pre-scanning.
- Initiating NSE at 22:57
- Completed NSE at 22:57, 0.00s elapsed
- Initiating NSE at 22:57
- Completed NSE at 22:57, 0.00s elapsed
- Failed to resolve "top.top-dolls.net.txt".
- Initiating Parallel DNS resolution of 1 host. at 22:57
- Completed Parallel DNS resolution of 1 host. at 22:57, 0.56s elapsed
- Initiating SYN Stealth Scan at 22:57
- Scanning top.top-dolls.net (94.102.48.34) [100 ports]
- Discovered open port 993/tcp on 94.102.48.34
- Discovered open port 110/tcp on 94.102.48.34
- Discovered open port 3306/tcp on 94.102.48.34
- Discovered open port 143/tcp on 94.102.48.34
- Discovered open port 995/tcp on 94.102.48.34
- Discovered open port 80/tcp on 94.102.48.34
- Discovered open port 53/tcp on 94.102.48.34
- Increasing send delay for 94.102.48.34 from 0 to 5 due to 59 out of 146 dropped probes since last increase.
- Completed SYN Stealth Scan at 22:57, 3.29s elapsed (100 total ports)
- Initiating Service scan at 22:57
- Scanning 7 services on top.top-dolls.net (94.102.48.34)
- Completed Service scan at 22:58, 6.78s elapsed (7 services on 1 host)
- Initiating OS detection (try #1) against top.top-dolls.net (94.102.48.34)
- adjust_timeouts2: packet supposedly had rtt of -78958 microseconds. Ignoring time.
- adjust_timeouts2: packet supposedly had rtt of -78958 microseconds. Ignoring time.
- adjust_timeouts2: packet supposedly had rtt of -80403 microseconds. Ignoring time.
- adjust_timeouts2: packet supposedly had rtt of -80403 microseconds. Ignoring time.
- Retrying OS detection (try #2) against top.top-dolls.net (94.102.48.34)
- Initiating Traceroute at 22:58
- Completed Traceroute at 22:58, 3.01s elapsed
- Initiating Parallel DNS resolution of 7 hosts. at 22:58
- Completed Parallel DNS resolution of 7 hosts. at 22:58, 5.51s elapsed
- NSE: Script scanning 94.102.48.34.
- Initiating NSE at 22:58
- Completed NSE at 22:58, 13.97s elapsed
- Initiating NSE at 22:58
- Completed NSE at 22:58, 0.01s elapsed
- Nmap scan report for top.top-dolls.net (94.102.48.34)
- Host is up (0.13s latency).
- rDNS record for 94.102.48.34: no-reverse-dns-configured.com
- Not shown: 84 closed ports
- PORT STATE SERVICE VERSION
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 25/tcp filtered smtp
- 53/tcp open domain ISC BIND 9.8.2rc1
- | dns-nsid:
- |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4
- 80/tcp open http nginx 1.12.1
- |_http-favicon: Unknown favicon MD5: D41D8CD98F00B204E9800998ECF8427E
- | http-methods:
- | Supported Methods: GET HEAD POST OPTIONS TRACE
- |_ Potentially risky methods: TRACE
- |_http-server-header: nginx/1.12.1
- |_http-title: Apache HTTP Server Test Page powered by CentOS
- 81/tcp filtered hosts2-ns
- 110/tcp open pop3 Dovecot pop3d
- |_pop3-capabilities: TOP CAPA PIPELINING UIDL STLS RESP-CODES USER SASL(PLAIN LOGIN DIGEST-MD5 CRAM-MD5)
- | ssl-cert: Subject: commonName=imap.example.com
- | Issuer: commonName=imap.example.com
- | Public Key type: rsa
- | Public Key bits: 1024
- | Signature Algorithm: sha1WithRSAEncryption
- | Not valid before: 2015-06-12T12:04:14
- | Not valid after: 2016-06-11T12:04:14
- | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
- |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
- |_ssl-date: 2017-09-10T00:57:10+00:00; -2h01m10s from scanner time.
- 135/tcp filtered msrpc
- 139/tcp filtered netbios-ssn
- 143/tcp open imap Dovecot imapd
- |_imap-capabilities: IMAP4rev1 LOGIN-REFERRALS AUTH=DIGEST-MD5 ID AUTH=LOGIN completed STARTTLS Capability OK AUTH=CRAM-MD5A0001 AUTH=PLAIN IDLE LITERAL+ ENABLE SASL-IR
- | ssl-cert: Subject: commonName=imap.example.com
- | Issuer: commonName=imap.example.com
- | Public Key type: rsa
- | Public Key bits: 1024
- | Signature Algorithm: sha1WithRSAEncryption
- | Not valid before: 2015-06-12T12:04:14
- | Not valid after: 2016-06-11T12:04:14
- | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
- |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
- |_ssl-date: 2017-09-10T00:57:10+00:00; -2h01m10s from scanner time.
- 445/tcp filtered microsoft-ds
- 465/tcp filtered smtps
- 587/tcp filtered submission
- 993/tcp open ssl/imap Dovecot imapd
- | ssl-cert: Subject: commonName=imap.example.com
- | Issuer: commonName=imap.example.com
- | Public Key type: rsa
- | Public Key bits: 1024
- | Signature Algorithm: sha1WithRSAEncryption
- | Not valid before: 2015-06-12T12:04:14
- | Not valid after: 2016-06-11T12:04:14
- | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
- |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
- |_ssl-date: 2017-09-10T00:57:09+00:00; -2h01m10s from scanner time.
- 995/tcp open ssl/pop3 Dovecot pop3d
- | ssl-cert: Subject: commonName=imap.example.com
- | Issuer: commonName=imap.example.com
- | Public Key type: rsa
- | Public Key bits: 1024
- | Signature Algorithm: sha1WithRSAEncryption
- | Not valid before: 2015-06-12T12:04:14
- | Not valid after: 2016-06-11T12:04:14
- | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
- |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
- |_ssl-date: 2017-09-10T00:57:07+00:00; -2h01m11s from scanner time.
- 3306/tcp open mysql MySQL (unauthorized)
- Aggressive OS guesses: Linux 2.6.39 (99%), Linux 2.6.32 (95%), Linux 2.6.32 or 3.10 (95%), WatchGuard Fireware 11.8 (95%), Synology DiskStation Manager 5.1 (94%), Linux 3.1 - 3.2 (94%), Linux 3.4 (94%), Linux 3.10 (93%), Linux 2.6.32 - 2.6.39 (93%), Linux 2.6.32 - 3.0 (92%)
- No exact OS matches for host (test conditions non-ideal).
- Uptime guess: 11.832 days (since Tue Aug 29 03:01:01 2017)
- Network Distance: 10 hops
- TCP Sequence Prediction: Difficulty=257 (Good luck!)
- IP ID Sequence Generation: All zeros
- Service Info: OS: Red Hat Enterprise Linux 6; CPE: cpe:/o:redhat:enterprise_linux:6
- Host script results:
- |_clock-skew: mean: -2h01m10s, deviation: 0s, median: -2h01m10s
- TRACEROUTE (using port 5900/tcp)
- HOP RTT ADDRESS
- 1 110.21 ms 10.13.0.1
- 2 ...
- 3 110.25 ms po101.gra-g1-a75.fr.eu (178.33.103.229)
- 4 112.29 ms 10.95.33.8
- 5 119.09 ms be100-1109.fra-1-a9.de.eu (213.186.32.213)
- 6 ...
- 7 124.33 ms vlan3555.bb1.ams2.nl.m247.com (176.10.83.128)
- 8 120.62 ms 176.10.83.119
- 9 ...
- 10 120.67 ms no-reverse-dns-configured.com (94.102.48.34)
- NSE: Script Post-scanning.
- Initiating NSE at 22:58
- Completed NSE at 22:58, 0.00s elapsed
- Initiating NSE at 22:58
- Completed NSE at 22:58, 0.00s elapsed
- Read data files from: /usr/bin/../share/nmap
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 39.77 seconds
- Raw packets sent: 292 (15.702KB) | Rcvd: 222 (11.728KB)
- _/ _/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/
- _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
- _/ _/ _/_/_/_/ _/_/_/ _/ _/_/_/ _/_/_/_/ _/ _/_/_/ _/_/_/_
- _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
- _/_/_/_/ _/ _/ _/ _/_/_/_/ _/_/_/_/ _/ _/_/_/_/ _/ _/ [v1.06]
- _/ User-Agent Tester ↵
- _/ AKA: Purple Pimp ↵
- _/ ChrisJohnRiley ↵
- _/ blog.c22.cc ↵
- [>] Performing initial request and confirming stability
- [>] Using User-Agent string Mozilla/5.0
- [*] HTTPError: HTTP Error 403: Forbidden
- ########################################################################################
- Hostname www.youngs-list.com ISP Quasi Networks LTD. (AS29073)
- Continent Africa Flag
- SC
- Country Seychelles Country Code SC (SYC)
- Region Unknown Local time 10 Sep 2017 07:06 +04
- City Unknown Latitude -4.583
- IP Address 80.82.79.11 Longitude 55.667
- ########################################################################################
- youngs-list.com
- ###########################################################################################
- whois youngs-list.com
- Domain Name: YOUNGS-LIST.COM
- Registry Domain ID: 1465281303_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.nic.ru
- Registrar URL: http://nic.ru
- Updated Date: 2017-04-27T12:19:35Z
- Creation Date: 2008-05-05T09:26:42Z
- Registry Expiry Date: 2018-05-05T09:26:42Z
- Registrar: Regional Network Information Center, JSC dba RU-CENTER
- Registrar IANA ID: 463
- Registrar Abuse Contact Email: tld-abuse@nic.ru
- Registrar Abuse Contact Phone: +7 (495) 994-46-01
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Name Server: NS1.YOUNGS-LIST.COM
- Name Server: NS2.YOUNGS-LIST.COM
- Domain Name: YOUNGS-LIST.COM
- Registry Domain ID: 1465281303_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.nic.ru
- Registrar URL: http://www.nic.ru
- Updated Date: 2017-04-27T08:19:27Z
- Creation Date: 2008-05-05T09:26:42Z
- Registrar Registration Expiration Date: 2018-05-04T21:00:00Z
- Registrar: Regional Network Information Center, JSC dba RU-CENTER
- Registrar IANA ID: 463
- Registrar Abuse Contact Email: tld-abuse@nic.ru
- Registrar Abuse Contact Phone: +7.4959944601
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Registry Registrant ID:
- Registrant Name: Maksim A Boyko
- Registrant Organization: Maksim A Boyko
- Registrant Street: Pavlovskaya 98
- Registrant City: Odessa
- Registrant Postal Code: 184681
- Registrant Country: UA
- Registrant Phone: +380.2890115
- Registrant Phone Ext:
- Registrant Email: pandabox@bk.ru
- Registry Admin ID:
- Admin Name: Maksim A Boyko
- Admin Organization: Maksim A Boyko
- Admin Street: Pavlovskaya 98
- Admin City: Odessa
- Admin Postal Code: 184681
- Admin Country: UA
- Admin Phone: +380.2890115
- Admin Phone Ext:
- Admin Email: pandabox@bk.ru
- Registry Tech ID:
- Tech Name: Maksim A Boyko
- Tech Organization: Maksim A Boyko
- Tech Street: Pavlovskaya 98
- Tech City: Odessa
- Tech Postal Code: 184681
- Tech Country: UA
- Tech Phone: +380.2890115
- Tech Phone Ext:
- Tech Email: pandabox@bk.ru
- Name Server: ns1.youngs-list.com 93.174.93.111
- Name Server: ns2.youngs-list.com 192.133.136.162
- DNSSEC: unsigned
- URL of the ICANN WHOIS Data Problem Reporting System: http://wdprs.internic.net/
- For more information on Whois status codes, please visit: https://icann.org/epp
- >>> Last update of WHOIS database: 2017.09.10T03:08:14Z <<<
- ###########################################################################################
- dig youngs-list.com any
- ; <<>> DiG 9.10.3-P4-Debian <<>> youngs-list.com any
- ;; global options: +cmd
- ;; Got answer:
- ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 62102
- ;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 1
- ;; OPT PSEUDOSECTION:
- ; EDNS: version: 0, flags:; udp: 4096
- ;; QUESTION SECTION:
- ;youngs-list.com. IN ANY
- ;; ANSWER SECTION:
- youngs-list.com. 3065 IN A 80.82.79.11
- youngs-list.com. 3064 IN NS ns1.dxgirlz.com.
- youngs-list.com. 3064 IN NS ns2.dxgirlz.com.
- ###########################################################################################
- Checking for HTTP-Loadbalancing [Date]: 01:07:20, 01:07:20, 01:07:20, 01:07:21, 01:07:21, 01:07:21, 01:07:21, 01:07:22, 01:07:22, 01:07:22, 01:07:22, 01:07:23, 01:07:23, 01:07:23, 01:07:24, 01:07:24, 01:07:24, 01:07:24, 01:07:25, 01:07:25, 01:07:25, 01:07:25, 01:07:26, 01:07:26, 01:07:26, 01:07:26, 01:07:27, 01:07:27, 01:07:27, 01:07:28, 01:07:28, 01:07:28, 01:07:28, 01:07:29, 01:07:29, 01:07:29, 01:07:29, 01:07:30, 01:07:30, 01:07:30, 01:07:30, 01:07:31, 01:07:31, 01:07:31, 01:07:31, 01:07:32, 01:07:32, 01:07:32, 01:07:33, 01:07:33,
- ###########################################################################################
- nmap -PN -n -F -T4 -sV -A -oG temp.txt youngs-list.com
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 23:09 EDT
- Nmap scan report for youngs-list.com (80.82.79.11)
- Host is up (0.42s latency).
- Not shown: 84 closed ports
- PORT STATE SERVICE VERSION
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 25/tcp filtered smtp
- 53/tcp open tcpwrapped
- | dns-nsid:
- |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4
- 80/tcp open tcpwrapped
- |_http-server-header: nginx/1.12.1
- |_http-title: Did not follow redirect to http://www.youngs-list.com/new.html
- 81/tcp filtered hosts2-ns
- 110/tcp open tcpwrapped
- |_pop3-capabilities: PIPELINING SASL(PLAIN LOGIN DIGEST-MD5 CRAM-MD5) USER RESP-CODES UIDL CAPA STLS TOP
- | ssl-cert: Subject: commonName=imap.example.com
- | Not valid before: 2015-06-12T12:04:14
- |_Not valid after: 2016-06-11T12:04:14
- |_ssl-date: 2017-09-10T01:09:13+00:00; -2h01m10s from scanner time.
- 135/tcp filtered msrpc
- 139/tcp filtered netbios-ssn
- 143/tcp open tcpwrapped
- |_imap-capabilities: completed IMAP4rev1 OK ID STARTTLS SASL-IR ENABLE AUTH=CRAM-MD5A0001 LITERAL+ AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=PLAIN LOGIN-REFERRALS IDLE Capability
- | ssl-cert: Subject: commonName=imap.example.com
- | Not valid before: 2015-06-12T12:04:14
- |_Not valid after: 2016-06-11T12:04:14
- |_ssl-date: 2017-09-10T01:09:13+00:00; -2h01m10s from scanner time.
- 445/tcp filtered microsoft-ds
- 465/tcp filtered smtps
- 587/tcp filtered submission
- 993/tcp open tcpwrapped
- |_imap-capabilities: IMAP4rev1 OK ID completed SASL-IR ENABLE AUTH=PLAIN LITERAL+ AUTH=LOGIN AUTH=CRAM-MD5A0001 AUTH=DIGEST-MD5 LOGIN-REFERRALS IDLE Capability
- | ssl-cert: Subject: commonName=imap.example.com
- | Not valid before: 2015-06-12T12:04:14
- |_Not valid after: 2016-06-11T12:04:14
- |_ssl-date: 2017-09-10T01:09:11+00:00; -2h01m10s from scanner time.
- 995/tcp open tcpwrapped
- |_pop3-capabilities: PIPELINING USER RESP-CODES UIDL CAPA SASL(PLAIN LOGIN DIGEST-MD5 CRAM-MD5) TOP
- | ssl-cert: Subject: commonName=imap.example.com
- | Not valid before: 2015-06-12T12:04:14
- |_Not valid after: 2016-06-11T12:04:14
- |_ssl-date: 2017-09-10T01:09:10+00:00; -2h01m11s from scanner time.
- 3306/tcp open tcpwrapped
- Aggressive OS guesses: Linux 2.6.39 (99%), Linux 2.6.32 (95%), Linux 2.6.32 or 3.10 (95%), WatchGuard Fireware 11.8 (95%), Synology DiskStation Manager 5.1 (94%), Linux 3.1 - 3.2 (94%), Linux 3.4 (94%), Linux 3.10 (93%), Linux 2.6.32 - 2.6.39 (93%), Linux 2.6.32 - 3.0 (92%)
- No exact OS matches for host (test conditions non-ideal).
- Network Distance: 11 hops
- Host script results:
- |_clock-skew: mean: -2h01m10s, deviation: 0s, median: -2h01m10s
- TRACEROUTE (using port 5060/tcp)
- HOP RTT ADDRESS
- 1 109.53 ms 10.13.0.1
- 2 145.98 ms 37.187.24.252
- 3 110.43 ms 178.33.103.231
- 4 ...
- 5 119.11 ms 91.121.131.19
- 6 118.96 ms 94.23.122.217
- 7 ...
- 8 124.69 ms 176.10.83.128
- 9 120.16 ms 176.10.83.119
- 10 ...
- 11 120.22 ms 80.82.79.11
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 69.13 seconds
- ###########################################################################################
- amap -i temp.txt
- amap v5.4 (www.thc.org/thc-amap) started at 2017-09-09 23:10:34 - APPLICATION MAPPING mode
- Protocol on 80.82.79.11:80/tcp matches http
- Protocol on 80.82.79.11:80/tcp matches http-apache-2
- Protocol on 80.82.79.11:143/tcp matches imap
- Protocol on 80.82.79.11:110/tcp matches pop3
- Protocol on 80.82.79.11:993/tcp matches ssl
- Protocol on 80.82.79.11:3306/tcp matches mysql
- Protocol on 80.82.79.11:3306/tcp matches mysql-secured
- Protocol on 80.82.79.11:995/tcp matches ssl
- Protocol on 80.82.79.11:53/tcp matches dns
- Unidentified ports: none.
- amap v5.4 finished at 2017-09-09 23:10:52
- ###########################################################################################
- inetnum: 80.82.79.0 - 80.82.79.255
- netname: SC-QUASI80
- descr: QUASI
- country: SC
- org: ORG-QNL3-RIPE
- admin-c: QNL1-RIPE
- tech-c: QNL1-RIPE
- status: ASSIGNED PA
- mnt-by: QUASINETWORKS-MNT
- mnt-lower: QUASINETWORKS-MNT
- mnt-routes: QUASINETWORKS-MNT
- created: 2010-08-25T21:29:49Z
- last-modified: 2016-01-23T23:04:27Z
- source: RIPE
- organisation: ORG-QNL3-RIPE
- org-name: Quasi Networks LTD.
- org-type: OTHER
- address: Suite 1, Second Floor
- address: Sound & Vision House, Francis Rachel Street
- address: Victoria, Mahe, SEYCHELLES
- remarks: *****************************************************************************
- remarks: IMPORTANT INFORMATION
- remarks: *****************************************************************************
- remarks: We are a high bandwidth network provider offering bandwidth solutions.
- remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
- remarks: Please only use abuse@quasinetworks.com for abuse reports.
- remarks: For all other requests, please see the details on our website.
- remarks: *****************************************************************************
- abuse-mailbox: abuse@quasinetworks.com
- abuse-c: AR34302-RIPE
- mnt-ref: QUASINETWORKS-MNT
- mnt-by: QUASINETWORKS-MNT
- created: 2015-11-08T22:25:26Z
- last-modified: 2015-11-27T09:37:50Z
- source: RIPE # Filtered
- role: Quasi Networks LTD
- address: Suite 1, Second Floor
- address: Sound & Vision House, Francis Rachel Street
- address: Victoria, Mahe, SEYCHELLES
- remarks: *****************************************************************************
- remarks: IMPORTANT INFORMATION
- remarks: *****************************************************************************
- remarks: We are a high bandwidth network provider offering bandwidth solutions.
- remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
- remarks: Please only use abuse@quasinetworks.com for abuse reports.
- remarks: For all other requests, please see the details on our website.
- remarks: *****************************************************************************
- abuse-mailbox: abuse@quasinetworks.com
- nic-hdl: QNL1-RIPE
- mnt-by: QUASINETWORKS-MNT
- created: 2015-11-07T22:43:04Z
- last-modified: 2015-11-07T23:04:49Z
- source: RIPE # Filtered
- % Information related to '80.82.79.0/24AS29073'
- route: 80.82.79.0/24
- descr: Quasi Networks LTD (IBC)
- origin: AS29073
- mnt-by: QUASINETWORKS-MNT
- created: 2010-08-25T21:31:02Z
- last-modified: 2016-01-23T23:04:45Z
- source: RIPE
- % This query was served by the RIPE Database Query Service version 1.89.2 (HEREFORD)
- ###########################################################################################
- [i] Scanning Site: http://youngs-list.com
- B A S I C I N F O
- ====================
- [+] Site Title:
- [+] IP address: 80.82.79.11
- [+] Web Server: nginx/1.12.1
- [+] CMS: Could Not Detect
- [+] Cloudflare: Not Detected
- [+] Robots File: Could NOT Find robots.txt!
- W H O I S L O O K U P
- ========================
- Domain Name: YOUNGS-LIST.COM
- Registry Domain ID: 1465281303_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.nic.ru
- Registrar URL: http://nic.ru
- Updated Date: 2017-04-27T12:19:35Z
- Creation Date: 2008-05-05T09:26:42Z
- Registry Expiry Date: 2018-05-05T09:26:42Z
- Registrar: Regional Network Information Center, JSC dba RU-CENTER
- Registrar IANA ID: 463
- Registrar Abuse Contact Email: tld-abuse@nic.ru
- Registrar Abuse Contact Phone: +7 (495) 994-46-01
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Name Server: NS1.YOUNGS-LIST.COM
- Name Server: NS2.YOUNGS-LIST.COM
- G E O I P L O O K U P
- =========================
- [i] IP Address: 80.82.79.11
- [i] Country: SC
- [i] State: N/A
- [i] City: N/A
- [i] Latitude: -4.583300
- [i] Longitude: 55.666698
- H T T P H E A D E R S
- =======================
- [i] HTTP/1.1 301 Moved Permanently
- [i] Server: nginx/1.12.1
- [i] Date: Sun, 10 Sep 2017 01:07:23 GMT
- [i] Content-Type: text/html; charset=iso-8859-1
- [i] Content-Length: 324
- [i] Connection: close
- [i] Location: http://www.youngs-list.com/new.html
- [i] HTTP/1.1 404 Not Found
- [i] Server: nginx/1.12.1
- [i] Date: Sun, 10 Sep 2017 01:07:23 GMT
- [i] Content-Type: text/html; charset=iso-8859-1
- [i] Content-Length: 291
- [i] Connection: close
- D N S L O O K U P
- ===================
- youngs-list.com. 3597 IN A 80.82.79.11
- youngs-list.com. 3600 IN NS ns2.dxgirlz.com.
- youngs-list.com. 3600 IN NS ns1.dxgirlz.com.
- youngs-list.com. 3600 IN SOA b06s06.com. root.dxgirlz.com. 2015061501 10800 3600 604800 86400
- youngs-list.com. 3600 IN TXT "v=spf1 ip4:93.174.93.111 a mx ~all"
- S U B N E T C A L C U L A T I O N
- ====================================
- Address = 80.82.79.11
- Network = 80.82.79.11 / 32
- Netmask = 255.255.255.255
- Broadcast = not needed on Point-to-Point links
- Wildcard Mask = 0.0.0.0
- Hosts Bits = 0
- Max. Hosts = 1 (2^0 - 0)
- Host Range = { 80.82.79.11 - 80.82.79.11 }
- N M A P P O R T S C A N
- ============================
- Starting Nmap 7.01 ( https://nmap.org ) at 2017-09-10 03:08 UTC
- Nmap scan report for youngs-list.com (80.82.79.11)
- Host is up (0.082s latency).
- rDNS record for 80.82.79.11: no-reverse-dns-configured.com
- PORT STATE SERVICE VERSION
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 23/tcp closed telnet
- 25/tcp open smtp Postfix smtpd
- 80/tcp open http nginx 1.12.1
- 110/tcp open pop3 Dovecot pop3d
- 143/tcp open imap Dovecot imapd
- 443/tcp closed https
- 445/tcp closed microsoft-ds
- 3389/tcp closed ms-wbt-server
- S U B - D O M A I N F I N D E R
- ==================================
- [i] Total Subdomains Found : 1
- [+] Subdomain: youngs-list.com
- [-] IP: 80.82.79.11
- [*] Performing TLD Brute force Enumeration against youngs-list.com
- [*] The operation could take up to: 00:01:07
- [*] A youngs-list.biz.af 5.45.75.45
- [*] A youngs-list.co.asia 91.195.240.135
- [*] CNAME youngs-list.biz.at free.biz.at
- [*] A free.biz.at 216.92.134.29
- [*] A youngs-list.org.aw 142.4.20.12
- [*] A youngs-list.co.ba 176.9.45.78
- [*] A youngs-list.com.ba 195.222.33.180
- [*] A youngs-list.com.be 95.173.170.166
- [*] A youngs-list.biz.by 71.18.52.2
- [*] A youngs-list.biz.bz 199.59.242.150
- [*] A youngs-list.com.cc 54.252.107.64
- [*] A youngs-list.net.cc 54.252.89.206
- [*] A youngs-list.co.cc 175.126.123.219
- [*] A youngs-list.org.ch 72.52.4.122
- [*] A youngs-list.co.cm 85.25.140.105
- [*] A youngs-list.net.cm 85.25.140.105
- [*] A youngs-list.biz.cl 185.53.178.8
- [*] A youngs-list.com.com 52.33.196.199
- [*] A youngs-list.net.com 199.59.242.150
- [*] CNAME youngs-list.biz.cm i.cns.cm
- [*] A i.cns.cm 118.184.56.30
- [*] A youngs-list.org.com 23.23.86.44
- [*] A youngs-list.com 80.82.79.11
- [*] A youngs-list.co.com 173.192.115.17
- [*] A youngs-list.biz.cr 72.52.4.122
- [*] A youngs-list.biz.cx 72.52.4.122
- [*] A youngs-list.com.cz 62.109.128.30
- [*] A youngs-list.net.cz 80.250.24.177
- [*] A youngs-list.biz.cz 54.72.9.51
- [*] CNAME youngs-list.co.de co.de
- [*] A co.de 144.76.162.245
- [*] CNAME youngs-list.org.de www.org.de
- [*] A www.org.de 78.47.128.8
- [*] A youngs-list.com.de 50.56.68.37
- [*] A youngs-list.net.eu 78.46.90.98
- [*] A youngs-list.org.eu 78.46.90.98
- [*] A youngs-list.biz.fi 185.55.85.123
- [*] A youngs-list.fm 173.230.131.38
- [*] A youngs-list.biz.fm 173.230.131.38
- [*] A youngs-list.org.fr 149.202.133.35
- [*] A youngs-list.biz.gl 72.52.4.122
- [*] CNAME youngs-list.co.gp co.gp
- [*] A co.gp 144.76.162.245
- [*] A youngs-list.co.hn 208.100.40.203
- [*] CNAME youngs-list.net.hr net.hr
- [*] A net.hr 192.0.78.24
- [*] A net.hr 192.0.78.25
- [*] CNAME youngs-list.biz.hn parkmydomain.vhostgo.com
- [*] A parkmydomain.vhostgo.com 107.186.245.118
- [*] A youngs-list.co.ht 72.52.4.122
- [*] A youngs-list.co.jobs 50.17.193.222
- [*] A youngs-list.com.jobs 50.19.241.165
- [*] A youngs-list.net.jobs 50.19.241.165
- [*] A youngs-list.org.jobs 50.19.241.165
- [*] A youngs-list.biz.jobs 50.19.241.165
- [*] A youngs-list.biz.ky 199.184.144.27
- [*] CNAME youngs-list.biz.li 712936.parkingcrew.net
- [*] A 712936.parkingcrew.net 185.53.179.29
- [*] A youngs-list.biz.lu 195.26.5.2
- [*] A youngs-list.biz.ly 64.136.20.39
- [*] A youngs-list.biz.md 72.52.4.122
- [*] A youngs-list.co.mk 87.76.31.211
- [*] A youngs-list.co.mobi 54.225.105.179
- [*] A youngs-list.biz.my 202.190.174.44
- [*] A youngs-list.co.net 188.166.216.219
- [*] A youngs-list.net.net 52.50.81.210
- [*] A youngs-list.org.net 23.23.86.44
- [*] A youngs-list.co.nl 37.97.184.204
- [*] A youngs-list.com.nl 83.98.157.102
- [*] A youngs-list.net.nl 83.98.157.102
- [*] A youngs-list.co.nr 208.100.40.202
- [*] CNAME youngs-list.co.nu co.nu
- [*] A co.nu 144.76.162.245
- [*] CNAME youngs-list.com.nu com.nu
- [*] A com.nu 144.76.162.245
- [*] A youngs-list.net.nu 199.102.76.78
- [*] A youngs-list.org.nu 80.92.84.139
- [*] A youngs-list.com.org 23.23.86.44
- [*] CNAME youngs-list.net.org pewtrusts.org
- [*] A pewtrusts.org 204.74.99.100
- [*] A youngs-list.ph 45.79.222.138
- [*] A youngs-list.co.ph 45.79.222.138
- [*] A youngs-list.com.ph 45.79.222.138
- [*] A youngs-list.net.ph 45.79.222.138
- [*] A youngs-list.org.ph 45.79.222.138
- [*] A youngs-list.co.pl 212.91.6.55
- [*] A youngs-list.org.pm 208.73.210.202
- [*] A youngs-list.org.pm 208.73.210.217
- [*] A youngs-list.org.pm 208.73.211.165
- [*] A youngs-list.org.pm 208.73.211.177
- [*] A youngs-list.co.ps 66.96.132.56
- [*] CNAME youngs-list.biz.ps biz.ps
- [*] A biz.ps 144.76.162.245
- [*] A youngs-list.co.pt 194.107.127.52
- [*] A youngs-list.co.pw 141.8.226.59
- [*] A youngs-list.net.pw 141.8.226.59
- [*] A youngs-list.pw 141.8.226.58
- [*] A youngs-list.biz.pw 141.8.226.59
- [*] A youngs-list.org.pw 141.8.226.59
- [*] CNAME youngs-list.co.ro now.co.ro
- [*] A now.co.ro 185.27.255.9
- [*] A youngs-list.net.ro 69.64.52.127
- [*] A youngs-list.org.re 217.70.184.38
- [*] A youngs-list.com.ru 178.210.89.119
- [*] A youngs-list.biz.se 185.53.179.6
- [*] CNAME youngs-list.net.se 773147.parkingcrew.net
- [*] A 773147.parkingcrew.net 185.53.179.29
- [*] A youngs-list.co.sl 91.195.240.135
- [*] A youngs-list.com.sr 143.95.106.249
- [*] A youngs-list.biz.st 91.121.28.115
- [*] A youngs-list.co.su 72.52.4.122
- [*] A youngs-list.biz.tc 64.136.20.39
- [*] A youngs-list.biz.tf 85.236.153.18
- [*] A youngs-list.net.tf 188.40.70.29
- [*] A youngs-list.net.tf 188.40.70.27
- [*] A youngs-list.net.tf 188.40.117.12
- [*] A youngs-list.co.tl 208.100.40.202
- [*] A youngs-list.co.to 175.118.124.44
- [*] A youngs-list.co.tv 31.186.25.163
- [*] A youngs-list.biz.tv 72.52.4.122
- [*] A youngs-list.org.tv 72.52.4.122
- [*] CNAME youngs-list.biz.uz biz.uz
- [*] A biz.uz 144.76.162.245
- [*] A youngs-list.vg 88.198.29.97
- [*] A youngs-list.co.vg 88.198.29.97
- [*] A youngs-list.com.vg 88.198.29.97
- [*] A youngs-list.net.vg 68.178.254.180
- [*] A youngs-list.biz.vg 89.31.143.20
- [*] A youngs-list.ws 64.70.19.203
- [*] A youngs-list.com.ws 202.4.48.211
- [*] A youngs-list.net.ws 202.4.48.211
- [*] A youngs-list.biz.ws 184.168.221.104
- [*] A youngs-list.org.ws 202.4.48.211
- R E V E R S E I P L O O K U P
- ==================================
- [i] Total Sites Found On This Server : 8
- [#] crazy-models.photo-angels.name
- [-] CMS: Could Not Detect
- [#] nn-girls.biz
- [-] CMS: Could Not Detect
- [#] sgirls.hotdolls.info
- [-] CMS: Could Not Detect
- [#] teeny-video.photo-angels.name
- [-] CMS: Could Not Detect
- [#] www.atlasphones.com
- [-] CMS: Could Not Detect
- [#] www.charming-dolls.info
- [-] CMS: Could Not Detect
- [#] www.youngs-list.com
- [-] CMS: Could Not Detect
- [#] youngs-list.com,
- [-] CMS: Could Not Detect
- youngs-list.com
- Domain Name: YOUNGS-LIST.COM
- Registry Domain ID: 1465281303_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.nic.ru
- Registrar URL: http://nic.ru
- Updated Date: 2017-04-27T12:19:35Z
- Creation Date: 2008-05-05T09:26:42Z
- Registry Expiry Date: 2018-05-05T09:26:42Z
- Registrar: Regional Network Information Center, JSC dba RU-CENTER
- Registrar IANA ID: 463
- Registrar Abuse Contact Email: tld-abuse@nic.ru
- Registrar Abuse Contact Phone: +7 (495) 994-46-01
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Name Server: NS1.YOUNGS-LIST.COM
- Name Server: NS2.YOUNGS-LIST.COM
- DNSSEC: unsigned
- Domain Name: YOUNGS-LIST.COM
- Registry Domain ID: 1465281303_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.nic.ru
- Registrar URL: http://www.nic.ru
- Updated Date: 2017-04-27T08:19:27Z
- Creation Date: 2008-05-05T09:26:42Z
- Registrar Registration Expiration Date: 2018-05-04T21:00:00Z
- Registrar: Regional Network Information Center, JSC dba RU-CENTER
- Registrar IANA ID: 463
- Registrar Abuse Contact Email: tld-abuse@nic.ru
- Registrar Abuse Contact Phone: +7.4959944601
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Registry Registrant ID:
- Registrant Name: Maksim A Boyko
- Registrant Organization: Maksim A Boyko
- Registrant Street: Pavlovskaya 98
- Registrant City: Odessa
- Registrant Postal Code: 184681
- Registrant Country: UA
- Registrant Phone: +380.2890115
- Registrant Phone Ext:
- Registrant Email: pandabox@bk.ru
- Registry Admin ID:
- Admin Name: Maksim A Boyko
- Admin Organization: Maksim A Boyko
- Admin Street: Pavlovskaya 98
- Admin City: Odessa
- Admin Postal Code: 184681
- Admin Country: UA
- Admin Phone: +380.2890115
- Admin Phone Ext:
- Admin Email: pandabox@bk.ru
- Registry Tech ID:
- Tech Name: Maksim A Boyko
- Tech Organization: Maksim A Boyko
- Tech Street: Pavlovskaya 98
- Tech City: Odessa
- Tech Postal Code: 184681
- Tech Country: UA
- Tech Phone: +380.2890115
- Tech Phone Ext:
- Tech Email: pandabox@bk.ru
- Name Server: ns1.youngs-list.com 93.174.93.111
- Name Server: ns2.youngs-list.com 192.133.136.162
- ;youngs-list.com. IN ANY
- ;; ANSWER SECTION:
- youngs-list.com. 3067 IN A 80.82.79.11
- youngs-list.com. 3066 IN NS ns2.dxgirlz.com.
- youngs-list.com. 3066 IN NS ns1.dxgirlz.com.
- ----- youngs-list.com -----
- Host's addresses:
- __________________
- youngs-list.com. 3044 IN A 80.82.79.11
- Name Servers:
- ______________
- ns1.dxgirlz.com. 2856 IN A 93.174.93.111
- ns2.dxgirlz.com. 2856 IN A 192.133.136.162
- Mail (MX) Servers:
- ___________________
- Trying Zone Transfers and getting Bind Versions:
- _________________________________________________
- Trying Zone Transfer for youngs-list.com on ns1.dxgirlz.com ...
- youngs-list.com. 3600 IN SOA (
- youngs-list.com. 3600 IN NS ns1.dxgirlz.com.
- youngs-list.com. 3600 IN NS ns2.dxgirlz.com.
- youngs-list.com. 3600 IN A 80.82.79.11
- youngs-list.com. 3600 IN TXT "v=spf1
- www.youngs-list.com. 3600 IN A 80.82.79.11
- Trying Zone Transfer for youngs-list.com on ns2.dxgirlz.com ...
- youngs-list.com. 3600 IN SOA (
- youngs-list.com. 3600 IN NS ns1.dxgirlz.com.
- youngs-list.com. 3600 IN NS ns2.dxgirlz.com.
- youngs-list.com. 3600 IN A 80.82.79.11
- youngs-list.com. 3600 IN TXT "v=spf1
- www.youngs-list.com. 3600 IN A 80.82.79.11
- youngs-list.com class C netranges:
- ___________________________________
- 80.82.79.0/24
- Performing reverse lookup on 256 ip addresses:
- _______________________________________________
- 0 results out of 256 IP addresses.
- youngs-list.com ip blocks:
- ___________________________
- done.
- dnsmap 0.30 - DNS Network Mapper by pagvac (gnucitizen.org)
- [+] searching (sub)domains for youngs-list.com using built-in wordlist
- [+] using maximum random delay of 10 millisecond(s) between requests
- www.youngs-list.com
- IP address #1: 80.82.79.11
- [+] 1 (sub)domains and 1 IP address(es) found
- [+] completion time: 142 second(s)
- WhatWeb report for http://youngs-list.com
- Status : 301 Moved Permanently
- Title : 301 Moved Permanently
- IP : 80.82.79.11
- Country : NETHERLANDS, NL
- Summary : HTTPServer[nginx/1.12.1], RedirectLocation[http://www.youngs-list.com/new.html], nginx[1.12.1]
- Detected Plugins:
- [ HTTPServer ]
- HTTP server header string. This plugin also attempts to
- identify the operating system from the server header.
- String : nginx/1.12.1 (from server string)
- [ RedirectLocation ]
- HTTP Server string location. used with http-status 301 and
- 302
- String : http://www.youngs-list.com/new.html (from location)
- [ nginx ]
- Nginx (Engine-X) is a free, open-source, high-performance
- HTTP server and reverse proxy, as well as an IMAP/POP3
- proxy server.
- Version : 1.12.1
- Website : http://nginx.net/
- HTTP Headers:
- HTTP/1.1 301 Moved Permanently
- Server: nginx/1.12.1
- Date: Sun, 10 Sep 2017 01:11:20 GMT
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 324
- Connection: close
- Location: http://www.youngs-list.com/new.html
- WhatWeb report for http://www.youngs-list.com/new.html
- Status : 404 Not Found
- Title : 404 Not Found
- IP : 80.82.79.11
- Country : NETHERLANDS, NL
- Summary : HTTPServer[nginx/1.12.1], nginx[1.12.1]
- Detected Plugins:
- [ HTTPServer ]
- HTTP server header string. This plugin also attempts to
- identify the operating system from the server header.
- String : nginx/1.12.1 (from server string)
- [ nginx ]
- Nginx (Engine-X) is a free, open-source, high-performance
- HTTP server and reverse proxy, as well as an IMAP/POP3
- proxy server.
- Version : 1.12.1
- Website : http://nginx.net/
- HTTP Headers:
- HTTP/1.1 404 Not Found
- Server: nginx/1.12.1
- Date: Sun, 10 Sep 2017 01:11:20 GMT
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 291
- Connection: close
- [+] Hosts found in search engines:
- ------------------------------------
- [-] Resolving hostnames IPs...
- 80.82.79.11:www.youngs-list.com
- ^ ^
- _ __ _ ____ _ __ _ _ ____
- ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
- | V V // o // _/ | V V // 0 // 0 // _/
- |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
- <
- ...'
- WAFW00F - Web Application Firewall Detection Tool
- By Sandro Gauci && Wendel G. Henrique
- Checking http://youngs-list.com
- Generic Detection results:
- No WAF detected by the generic detection
- Number of requests: 13
- DNS Servers for youngs-list.com:
- ns2.dxgirlz.com
- ns1.dxgirlz.com
- Trying zone transfer first...
- Testing ns2.dxgirlz.com
- Whoah, it worked - misconfigured DNS server found:
- youngs-list.com. 3600 IN SOA ( b06s06.com. root.dxgirlz.com.
- 2015061501 ;serial
- 10800 ;refresh
- 3600 ;retry
- 604800 ;expire
- 86400 ;minimum
- )
- youngs-list.com. 3600 IN NS ns1.dxgirlz.com.
- youngs-list.com. 3600 IN NS ns2.dxgirlz.com.
- youngs-list.com. 3600 IN A 80.82.79.11
- youngs-list.com. 3600 IN TXT "v=spf1 ip4:93.174.93.111 a mx ~all"
- www.youngs-list.com. 3600 IN A 80.82.79.11
- There isn't much point continuing, you have everything.
- Have a nice day.
- Exiting...
- lbd - load balancing detector 0.2 - Checks if a given domain uses load-balancing.
- Written by Stefan Behte (http://ge.mine.nu)
- Proof-of-concept! Might give false positives.
- Checking for DNS-Loadbalancing: NOT FOUND
- Checking for HTTP-Loadbalancing [Server]:
- nginx/1.12.1
- NOT FOUND
- Checking for HTTP-Loadbalancing [Date]: 01:11:50, 01:11:50, 01:11:51, 01:11:51, 01:11:51, 01:11:51, 01:11:52, 01:11:52, 01:11:52, 01:11:52, 01:11:53, 01:11:53, 01:11:53, 01:11:54, 01:11:54, 01:11:54, 01:11:54, 01:11:55, 01:11:55, 01:11:55, 01:11:55, 01:11:56, 01:11:56, 01:11:56, 01:11:56, 01:11:57, 01:11:57, 01:11:57, 01:11:58, 01:11:58, 01:11:58, 01:11:58, 01:11:59, 01:11:59, 01:11:59, 01:11:59, 01:12:00, 01:12:00, 01:12:00, 01:12:00, 01:12:01, 01:12:01, 01:12:01, 01:12:02, 01:12:02, 01:12:02, 01:12:02, 01:12:03, 01:12:03, 01:12:03, NOT FOUND
- Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
- youngs-list.com does NOT use Load-balancing.
- Starting smtp-user-enum v1.2 ( http://pentestmonkey.net/tools/smtp-user-enum )
- ----------------------------------------------------------
- | Scan Information |
- ----------------------------------------------------------
- Mode ..................... VRFY
- Worker Processes ......... 5
- Usernames file ........... users.txt
- Target count ............. 1
- Username count ........... 494
- Target TCP port .......... 25
- Query timeout ............ 5 secs
- Target domain ............
- ######## Scan started at Sat Sep 9 23:13:26 2017 #########
- ######## Scan completed at Sat Sep 9 23:21:41 2017 #########
- 0 results.
- 494 queries in 495 seconds (1.0 queries / sec)
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 23:21 EDT
- NSE: Loaded 146 scripts for scanning.
- NSE: Script Pre-scanning.
- Initiating NSE at 23:21
- Completed NSE at 23:21, 0.00s elapsed
- Initiating NSE at 23:21
- Completed NSE at 23:21, 0.00s elapsed
- Failed to resolve "youngs-list.com.txt".
- Initiating Parallel DNS resolution of 1 host. at 23:21
- Completed Parallel DNS resolution of 1 host. at 23:21, 0.69s elapsed
- Initiating SYN Stealth Scan at 23:21
- Scanning youngs-list.com (80.82.79.11) [100 ports]
- Discovered open port 143/tcp on 80.82.79.11
- Discovered open port 3306/tcp on 80.82.79.11
- Discovered open port 80/tcp on 80.82.79.11
- Discovered open port 110/tcp on 80.82.79.11
- Discovered open port 995/tcp on 80.82.79.11
- Discovered open port 993/tcp on 80.82.79.11
- Discovered open port 53/tcp on 80.82.79.11
- Completed SYN Stealth Scan at 23:21, 3.29s elapsed (100 total ports)
- Initiating Service scan at 23:21
- Scanning 7 services on youngs-list.com (80.82.79.11)
- Completed Service scan at 23:21, 6.95s elapsed (7 services on 1 host)
- Initiating OS detection (try #1) against youngs-list.com (80.82.79.11)
- Initiating Traceroute at 23:21
- Completed Traceroute at 23:21, 3.00s elapsed
- Initiating Parallel DNS resolution of 8 hosts. at 23:21
- Completed Parallel DNS resolution of 8 hosts. at 23:22, 5.61s elapsed
- NSE: Script scanning 80.82.79.11.
- Initiating NSE at 23:22
- Completed NSE at 23:22, 13.54s elapsed
- Initiating NSE at 23:22
- Completed NSE at 23:22, 0.01s elapsed
- Nmap scan report for youngs-list.com (80.82.79.11)
- Host is up (0.14s latency).
- rDNS record for 80.82.79.11: no-reverse-dns-configured.com
- Not shown: 84 closed ports
- PORT STATE SERVICE VERSION
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 25/tcp filtered smtp
- 53/tcp open domain ISC BIND 9.8.2rc1
- | dns-nsid:
- |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4
- 80/tcp open http nginx 1.12.1
- | http-methods:
- |_ Supported Methods: GET HEAD POST OPTIONS
- |_http-server-header: nginx/1.12.1
- |_http-title: Did not follow redirect to http://www.youngs-list.com/new.html
- 81/tcp filtered hosts2-ns
- 110/tcp open pop3 Dovecot pop3d
- |_pop3-capabilities: SASL(PLAIN LOGIN DIGEST-MD5 CRAM-MD5) PIPELINING USER UIDL STLS TOP RESP-CODES CAPA
- | ssl-cert: Subject: commonName=imap.example.com
- | Issuer: commonName=imap.example.com
- | Public Key type: rsa
- | Public Key bits: 1024
- | Signature Algorithm: sha1WithRSAEncryption
- | Not valid before: 2015-06-12T12:04:14
- | Not valid after: 2016-06-11T12:04:14
- | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
- |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
- |_ssl-date: 2017-09-10T01:21:00+00:00; -2h01m10s from scanner time.
- 135/tcp filtered msrpc
- 139/tcp filtered netbios-ssn
- 143/tcp open imap Dovecot imapd
- |_imap-capabilities: LITERAL+ LOGIN-REFERRALS STARTTLS IDLE AUTH=LOGIN completed ID OK AUTH=PLAIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5A0001 Capability ENABLE IMAP4rev1 SASL-IR
- | ssl-cert: Subject: commonName=imap.example.com
- | Issuer: commonName=imap.example.com
- | Public Key type: rsa
- | Public Key bits: 1024
- | Signature Algorithm: sha1WithRSAEncryption
- | Not valid before: 2015-06-12T12:04:14
- | Not valid after: 2016-06-11T12:04:14
- | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
- |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
- |_ssl-date: 2017-09-10T01:20:59+00:00; -2h01m10s from scanner time.
- 445/tcp filtered microsoft-ds
- 465/tcp filtered smtps
- 587/tcp filtered submission
- 993/tcp open ssl/imap Dovecot imapd
- | ssl-cert: Subject: commonName=imap.example.com
- | Issuer: commonName=imap.example.com
- | Public Key type: rsa
- | Public Key bits: 1024
- | Signature Algorithm: sha1WithRSAEncryption
- | Not valid before: 2015-06-12T12:04:14
- | Not valid after: 2016-06-11T12:04:14
- | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
- |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
- |_ssl-date: 2017-09-10T01:20:56+00:00; -2h01m10s from scanner time.
- 995/tcp open ssl/pop3 Dovecot pop3d
- | ssl-cert: Subject: commonName=imap.example.com
- | Issuer: commonName=imap.example.com
- | Public Key type: rsa
- | Public Key bits: 1024
- | Signature Algorithm: sha1WithRSAEncryption
- | Not valid before: 2015-06-12T12:04:14
- | Not valid after: 2016-06-11T12:04:14
- | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
- |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
- |_ssl-date: 2017-09-10T01:20:55+00:00; -2h01m11s from scanner time.
- 3306/tcp open mysql MySQL (unauthorized)
- Device type: general purpose
- Running: Linux 2.6.X
- OS CPE: cpe:/o:linux:linux_kernel:2.6.39
- OS details: Linux 2.6.39
- Uptime guess: 11.848 days (since Tue Aug 29 03:01:01 2017)
- Network Distance: 11 hops
- TCP Sequence Prediction: Difficulty=258 (Good luck!)
- IP ID Sequence Generation: All zeros
- Service Info: OS: Red Hat Enterprise Linux 6; CPE: cpe:/o:redhat:enterprise_linux:6
- Host script results:
- |_clock-skew: mean: -2h01m10s, deviation: 0s, median: -2h01m10s
- TRACEROUTE (using port 3389/tcp)
- HOP RTT ADDRESS
- 1 109.57 ms 10.13.0.1
- 2 110.02 ms 37.187.24.252
- 3 112.75 ms po101.gra-g2-a75.fr.eu (178.33.103.231)
- 4 ...
- 5 121.76 ms be100-1113.fra-5-a9.de.eu (91.121.131.19)
- 6 121.49 ms be100-2.fra-1-a9.de.eu (94.23.122.217)
- 7 ...
- 8 132.26 ms vlan3555.bb1.ams2.nl.m247.com (176.10.83.128)
- 9 122.78 ms 176.10.83.119
- 10 ...
- 11 122.85 ms no-reverse-dns-configured.com (80.82.79.11)
- --------------------------------------------------
- _/ _/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/
- _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
- _/ _/ _/_/_/_/ _/_/_/ _/ _/_/_/ _/_/_/_/ _/ _/_/_/ _/_/_/_
- _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
- _/_/_/_/ _/ _/ _/ _/_/_/_/ _/_/_/_/ _/ _/_/_/_/ _/ _/ [v1.06]
- _/ User-Agent Tester ↵
- _/ AKA: Purple Pimp ↵
- _/ ChrisJohnRiley ↵
- _/ blog.c22.cc ↵
- [>] Performing initial request and confirming stability
- [>] Using User-Agent string Mozilla/5.0
- [*] HTTPError: HTTP Error 404: Not Found
- ##########################################################################################
- Hostname preteen-art.info ISP Quasi Networks LTD. (AS29073)
- Continent Africa Flag
- SC
- Country Seychelles Country Code SC (SYC)
- Region Unknown Local time 10 Sep 2017 07:09 +04
- City Unknown Latitude -4.583
- IP Address 80.82.79.116 Longitude 55.667
- ###########################################################################################
- preteen-art.info
- ###########################################################################################
- whois preteen-art.info
- Domain Name: PRETEEN-ART.INFO
- Registry Domain ID: D503300000038978206-LRMS
- Registrar WHOIS Server:
- Registrar URL: http://www.ukraine.com.ua
- Updated Date: 2017-06-25T20:31:58Z
- Creation Date: 2017-04-26T17:20:10Z
- Registry Expiry Date: 2018-04-26T17:20:10Z
- Registrar Registration Expiration Date:
- Registrar: Hosting Ukraine LLC
- Registrar IANA ID: 2374
- Registrar Abuse Contact Email:
- Registrar Abuse Contact Phone:
- Reseller:
- Domain Status: ok https://icann.org/epp#ok
- Registry Registrant ID: C201778539-LRMS
- Registrant Name: Privacy Protection
- Registrant Organization:
- Registrant Street: PO Box 65
- Registrant City: Kiev
- Registrant State/Province:
- Registrant Postal Code: 04112
- Registrant Country: UA
- Registrant Phone: +380.443927433
- Registrant Phone Ext:
- Registrant Fax:
- Registrant Fax Ext:
- Registrant Email: abuse@ukraine.com.ua
- Registry Admin ID: C201778539-LRMS
- Admin Name: Privacy Protection
- Admin Organization:
- Admin Street: PO Box 65
- Admin City: Kiev
- Admin State/Province:
- Admin Postal Code: 04112
- Admin Country: UA
- Admin Phone: +380.443927433
- Admin Phone Ext:
- Admin Fax:
- Admin Fax Ext:
- Admin Email: abuse@ukraine.com.ua
- Registry Tech ID: C201778539-LRMS
- Tech Name: Privacy Protection
- Tech Organization:
- Tech Street: PO Box 65
- Tech City: Kiev
- Tech State/Province:
- Tech Postal Code: 04112
- Tech Country: UA
- Tech Phone: +380.443927433
- Tech Phone Ext:
- Tech Fax:
- Tech Fax Ext:
- Tech Email: abuse@ukraine.com.ua
- Registry Billing ID: C201778539-LRMS
- Billing Name: Privacy Protection
- Billing Organization:
- Billing Street: PO Box 65
- Billing City: Kiev
- Billing State/Province:
- Billing Postal Code: 04112
- Billing Country: UA
- Billing Phone: +380.443927433
- Billing Phone Ext:
- Billing Fax:
- Billing Fax Ext:
- Billing Email: abuse@ukraine.com.ua
- Name Server: PNS21.CLOUDNS.NET
- Name Server: PNS22.CLOUDNS.NET
- Name Server: PNS24.CLOUDNS.NET
- Name Server: PNS23.CLOUDNS.NET
- ;preteen-art.info. IN ANY
- ;; ANSWER SECTION:
- preteen-art.info. 54 IN A 80.82.79.116
- preteen-art.info. 1480 IN NS pns21.cloudns.net.
- preteen-art.info. 1480 IN NS pns24.cloudns.net.
- preteen-art.info. 1480 IN NS ns23.cloudns.net.
- preteen-art.info. 1480 IN NS ns24.cloudns.net.
- preteen-art.info. 1480 IN NS ns22.cloudns.net.
- preteen-art.info. 1480 IN NS ns21.cloudns.net.
- preteen-art.info. 1480 IN NS pns23.cloudns.net.
- preteen-art.info. 1480 IN NS pns22.cloudns.net.
- ###########################################################################################
- Checking for HTTP-Loadbalancing [Date]: 03:33:33, 03:33:33, 03:33:34, 03:33:34, 03:33:35, 03:33:36, 03:33:36, 03:33:36, 03:33:37, 03:33:38, 03:33:38, 03:33:38, 03:33:38, 03:33:39, 03:33:39, 03:33:39, 03:33:40, 03:33:40, 03:33:40, 03:33:40, 03:33:41, 03:33:41, 03:33:41, 03:33:41, 03:33:42, 03:33:42, 03:33:43, 03:33:43, 03:33:44, 03:33:44, 03:33:45, 03:33:45, 03:33:45, 03:33:45, 03:33:46, 03:33:46, 03:33:46, 03:33:47, 03:33:47, 03:33:47, 03:33:47, 03:33:48, 03:33:48, 03:33:48, 03:33:48, 03:33:49, 03:33:49, 03:33:51, 03:33:54, 03:33:54,
- ###########################################################################################
- nmap -PN -n -F -T4 -sV -A -oG temp.txt preteen-art.info
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 23:30 EDT
- Nmap scan report for preteen-art.info (80.82.79.116)
- Host is up (0.13s latency).
- Not shown: 89 closed ports
- PORT STATE SERVICE VERSION
- 21/tcp open ftp vsftpd 3.0.2
- 22/tcp open ssh OpenSSH 6.0p1 Debian 4+deb7u6 (protocol 2.0)
- | ssh-hostkey:
- | 1024 ab:16:56:89:21:7e:75:1c:77:f3:a2:7e:c2:f1:4c:09 (DSA)
- | 2048 22:f8:e3:f6:1a:1c:6a:99:09:6b:1e:7c:fd:30:e3:95 (RSA)
- |_ 256 a8:03:f4:96:36:d1:39:de:2e:4f:56:e9:0f:f3:63:56 (ECDSA)
- 25/tcp filtered smtp
- 53/tcp open domain
- | dns-nsid:
- |_ bind.version: 9.8.4-rpz2+rl005.12-P1
- 80/tcp open http nginx
- |_http-server-header: nginx
- |_http-title: for virgin teen, girls small teen
- 111/tcp open rpcbind 2-4 (RPC #100000)
- 135/tcp filtered msrpc
- 139/tcp filtered netbios-ssn
- 445/tcp filtered microsoft-ds
- 465/tcp filtered smtps
- 587/tcp filtered submission
- Aggressive OS guesses: Linux 2.6.39 (95%), Linux 3.2 - 3.8 (94%), Linux 3.8 (94%), WatchGuard Fireware 11.8 (94%), Linux 3.1 - 3.2 (94%), Linux 3.5 (93%), Linux 2.6.32 - 2.6.39 (92%), Linux 3.0 - 3.2 (91%), Linux 2.6.32 - 3.0 (91%), Linux 2.6.32 (91%)
- No exact OS matches for host (test conditions non-ideal).
- Network Distance: 10 hops
- Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
- TRACEROUTE (using port 3389/tcp)
- HOP RTT ADDRESS
- 1 156.95 ms 10.13.0.1
- 2 ...
- 3 156.99 ms 178.33.103.229
- 4 ...
- 5 157.02 ms 213.186.32.213
- 6 ...
- 7 157.09 ms 176.10.83.128
- 8 157.05 ms 176.10.83.5
- 9 ...
- 10 157.11 ms 80.82.79.116
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 54.23 seconds
- ###########################################################################################
- amap -i temp.txt
- amap v5.4 (www.thc.org/thc-amap) started at 2017-09-09 23:31:23 - APPLICATION MAPPING mode
- Protocol on 80.82.79.116:80/tcp matches http
- Protocol on 80.82.79.116:21/tcp matches ftp
- Protocol on 80.82.79.116:22/tcp matches ssh
- Protocol on 80.82.79.116:22/tcp matches ssh-openssh
- Protocol on 80.82.79.116:111/tcp matches rpc
- Protocol on 80.82.79.116:53/tcp matches dns
- Protocol on 80.82.79.116:111/tcp matches rpc-rpcbind-v4
- Unidentified ports: none.
- amap v5.4 finished at 2017-09-09 23:31:36
- ###########################################################################################
- %
- inetnum: 80.82.79.0 - 80.82.79.255
- netname: SC-QUASI80
- descr: QUASI
- country: SC
- org: ORG-QNL3-RIPE
- admin-c: QNL1-RIPE
- tech-c: QNL1-RIPE
- status: ASSIGNED PA
- mnt-by: QUASINETWORKS-MNT
- mnt-lower: QUASINETWORKS-MNT
- mnt-routes: QUASINETWORKS-MNT
- created: 2010-08-25T21:29:49Z
- last-modified: 2016-01-23T23:04:27Z
- source: RIPE
- organisation: ORG-QNL3-RIPE
- org-name: Quasi Networks LTD.
- org-type: OTHER
- address: Suite 1, Second Floor
- address: Sound & Vision House, Francis Rachel Street
- address: Victoria, Mahe, SEYCHELLES
- remarks: *****************************************************************************
- remarks: IMPORTANT INFORMATION
- remarks: *****************************************************************************
- remarks: We are a high bandwidth network provider offering bandwidth solutions.
- remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
- remarks: Please only use abuse@quasinetworks.com for abuse reports.
- remarks: For all other requests, please see the details on our website.
- remarks: *****************************************************************************
- abuse-mailbox: abuse@quasinetworks.com
- abuse-c: AR34302-RIPE
- mnt-ref: QUASINETWORKS-MNT
- mnt-by: QUASINETWORKS-MNT
- created: 2015-11-08T22:25:26Z
- last-modified: 2015-11-27T09:37:50Z
- source: RIPE # Filtered
- role: Quasi Networks LTD
- address: Suite 1, Second Floor
- address: Sound & Vision House, Francis Rachel Street
- address: Victoria, Mahe, SEYCHELLES
- remarks: *****************************************************************************
- remarks: IMPORTANT INFORMATION
- remarks: *****************************************************************************
- remarks: We are a high bandwidth network provider offering bandwidth solutions.
- remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
- remarks: Please only use abuse@quasinetworks.com for abuse reports.
- remarks: For all other requests, please see the details on our website.
- remarks: *****************************************************************************
- abuse-mailbox: abuse@quasinetworks.com
- nic-hdl: QNL1-RIPE
- mnt-by: QUASINETWORKS-MNT
- created: 2015-11-07T22:43:04Z
- last-modified: 2015-11-07T23:04:49Z
- source: RIPE # Filtered
- % Information related to '80.82.79.0/24AS29073'
- route: 80.82.79.0/24
- descr: Quasi Networks LTD (IBC)
- origin: AS29073
- mnt-by: QUASINETWORKS-MNT
- created: 2010-08-25T21:31:02Z
- last-modified: 2016-01-23T23:04:45Z
- source: RIPE
- % This query was served by the RIPE Database Query Service version 1.89.2 (HEREFORD)
- ###########################################################################################
- [i] Scanning Site: http://preteen-art.info
- B A S I C I N F O
- ====================
- [+] Site Title: for virgin teen, girls small teen
- [+] IP address: 80.82.79.116
- [+] Web Server: nginx
- [+] CMS: Could Not Detect
- [+] Cloudflare: Not Detected
- [+] Robots File: Could NOT Find robots.txt!
- W H O I S L O O K U P
- ========================
- Domain Name: PRETEEN-ART.INFO
- Registry Domain ID: D503300000038978206-LRMS
- Registrar WHOIS Server:
- Registrar URL: http://www.ukraine.com.ua
- Updated Date: 2017-06-25T20:31:58Z
- Creation Date: 2017-04-26T17:20:10Z
- Registry Expiry Date: 2018-04-26T17:20:10Z
- Registrar Registration Expiration Date:
- Registrar: Hosting Ukraine LLC
- Registrar IANA ID: 2374
- Registrar Abuse Contact Email:
- Registrar Abuse Contact Phone:
- Reseller:
- Domain Status: ok https://icann.org/epp#ok
- Registry Registrant ID: C201778539-LRMS
- Registrant Name: Privacy Protection
- Registrant Organization:
- Registrant Street: PO Box 65
- Registrant City: Kiev
- Registrant State/Province:
- Registrant Postal Code: 04112
- Registrant Country: UA
- Registrant Phone: +380.443927433
- Registrant Phone Ext:
- Registrant Fax:
- Registrant Fax Ext:
- Registrant Email: abuse@ukraine.com.ua
- Registry Admin ID: C201778539-LRMS
- Admin Name: Privacy Protection
- Admin Organization:
- Admin Street: PO Box 65
- Admin City: Kiev
- Admin State/Province:
- Admin Postal Code: 04112
- Admin Country: UA
- Admin Phone: +380.443927433
- Admin Phone Ext:
- Admin Fax:
- Admin Fax Ext:
- Admin Email: abuse@ukraine.com.ua
- Registry Tech ID: C201778539-LRMS
- Tech Name: Privacy Protection
- Tech Organization:
- Tech Street: PO Box 65
- Tech City: Kiev
- Tech State/Province:
- Tech Postal Code: 04112
- Tech Country: UA
- Tech Phone: +380.443927433
- Tech Phone Ext:
- Tech Fax:
- Tech Fax Ext:
- Tech Email: abuse@ukraine.com.ua
- Registry Billing ID: C201778539-LRMS
- Billing Name: Privacy Protection
- Billing Organization:
- Billing Street: PO Box 65
- Billing City: Kiev
- Billing State/Province:
- Billing Postal Code: 04112
- Billing Country: UA
- Billing Phone: +380.443927433
- Billing Phone Ext:
- Billing Fax:
- Billing Fax Ext:
- Billing Email: abuse@ukraine.com.ua
- Name Server: PNS21.CLOUDNS.NET
- Name Server: PNS22.CLOUDNS.NET
- Name Server: PNS24.CLOUDNS.NET
- Name Server: PNS23.CLOUDNS.NET
- G E O I P L O O K U P
- =========================
- [i] IP Address: 80.82.79.116
- [i] Country: SC
- [i] State: N/A
- [i] City: N/A
- [i] Latitude: -4.583300
- [i] Longitude: 55.666698
- H T T P H E A D E R S
- =======================
- [i] HTTP/1.1 200 OK
- [i] Server: nginx
- [i] Date: Sun, 10 Sep 2017 03:33:20 GMT
- [i] Content-Type: text/html
- [i] Connection: close
- [i] Vary: Accept-Encoding
- [i] X-Powered-By: PHP/5.4.45-0+deb7u8
- [i] Set-Cookie: site_id=1; expires=Sun, 10-Sep-2017 15:33:20 GMT
- [i] Vary: Accept-Encoding
- D N S L O O K U P
- ===================
- preteen-art.info. 56 IN A 80.82.79.116
- preteen-art.info. 3600 IN NS ns23.cloudns.net.
- preteen-art.info. 3600 IN NS ns22.cloudns.net.
- preteen-art.info. 3600 IN NS ns21.cloudns.net.
- preteen-art.info. 3600 IN NS pns23.cloudns.net.
- preteen-art.info. 3600 IN NS ns24.cloudns.net.
- preteen-art.info. 3600 IN NS pns22.cloudns.net.
- preteen-art.info. 3600 IN NS pns21.cloudns.net.
- preteen-art.info. 3600 IN NS pns24.cloudns.net.
- preteen-art.info. 3600 IN SOA ns21.cloudns.net. support.cloudns.net. 2017091018 7200 1800 1209600 3600
- S U B N E T C A L C U L A T I O N
- ====================================
- Address = 80.82.79.116
- Network = 80.82.79.116 / 32
- Netmask = 255.255.255.255
- Broadcast = not needed on Point-to-Point links
- Wildcard Mask = 0.0.0.0
- Hosts Bits = 0
- Max. Hosts = 1 (2^0 - 0)
- Host Range = { 80.82.79.116 - 80.82.79.116 }
- N M A P P O R T S C A N
- ============================
- Starting Nmap 7.01 ( https://nmap.org ) at 2017-09-10 03:29 UTC
- Nmap scan report for preteen-art.info (80.82.79.116)
- Host is up (0.083s latency).
- rDNS record for 80.82.79.116: no-reverse-dns-configured.com
- PORT STATE SERVICE VERSION
- 21/tcp open ftp vsftpd 3.0.2
- 22/tcp open ssh OpenSSH 6.0p1 Debian 4+deb7u6 (protocol 2.0)
- 23/tcp closed telnet
- 25/tcp closed smtp
- 80/tcp open http nginx
- 110/tcp closed pop3
- 143/tcp closed imap
- 443/tcp closed https
- 445/tcp closed microsoft-ds
- 3389/tcp closed ms-wbt-server
- Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
- Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 7.27 seconds
- S U B - D O M A I N F I N D E R
- ==================================
- [i] Total Subdomains Found : 1
- [+] Subdomain: preteen-art.info
- [-] IP: 80.82.79.116
- [*] Performing TLD Brute force Enumeration against preteen-art.info
- [*] The operation could take up to: 00:01:07
- [*] A preteen-art.biz.af 5.45.75.45
- [*] CNAME preteen-art.biz.at free.biz.at
- [*] A free.biz.at 216.92.134.29
- [*] A preteen-art.org.aw 142.4.20.12
- [*] A preteen-art.co.ba 176.9.45.78
- [*] A preteen-art.com.ba 195.222.33.180
- [*] A preteen-art.com.be 95.173.170.166
- [*] A preteen-art.co.asia 91.195.240.135
- [*] A preteen-art.biz.by 71.18.52.2
- [*] A preteen-art.biz.bz 199.59.242.150
- [*] A preteen-art.com.cc 54.252.107.64
- [*] A preteen-art.net.cc 54.252.89.206
- [*] A preteen-art.co.cc 175.126.123.219
- [*] A preteen-art.org.ch 72.52.4.122
- [*] A preteen-art.co.cm 85.25.140.105
- [*] A preteen-art.net.cm 85.25.140.105
- [*] A preteen-art.biz.cl 185.53.178.8
- [*] A preteen-art.com.com 52.33.196.199
- [*] A preteen-art.com 167.114.156.214
- [*] A preteen-art.net.com 199.59.242.150
- [*] A preteen-art.co.com 173.192.115.17
- [*] A preteen-art.org.com 23.23.86.44
- [*] A preteen-art.biz.cr 72.52.4.122
- [*] CNAME preteen-art.biz.cm i.cns.cm
- [*] A i.cns.cm 118.184.56.30
- [*] A preteen-art.biz.cx 72.52.4.122
- [*] A preteen-art.net.cz 80.250.24.177
- [*] A preteen-art.de 212.227.111.250
- [*] A preteen-art.biz.cz 185.53.179.7
- [*] A preteen-art.com.cz 62.109.128.30
- [*] A preteen-art.com.de 50.56.68.37
- [*] CNAME preteen-art.co.de co.de
- [*] A co.de 144.76.162.245
- [*] CNAME preteen-art.org.de www.org.de
- [*] A www.org.de 78.47.128.8
- [*] A preteen-art.net.eu 78.46.90.98
- [*] A preteen-art.org.eu 78.46.90.98
- [*] A preteen-art.biz.fi 185.55.85.123
- [*] A preteen-art.fm 173.230.131.38
- [*] A preteen-art.biz.fm 173.230.131.38
- [*] A preteen-art.org.fr 149.202.133.35
- [*] A preteen-art.biz.gl 72.52.4.122
- [*] CNAME preteen-art.co.gp co.gp
- [*] A co.gp 144.76.162.245
- [*] A preteen-art.co.hn 208.100.40.203
- [*] CNAME preteen-art.net.hr net.hr
- [*] A net.hr 192.0.78.24
- [*] A net.hr 192.0.78.25
- [*] CNAME preteen-art.biz.hn parkmydomain.vhostgo.com
- [*] A parkmydomain.vhostgo.com 107.186.245.118
- [*] A preteen-art.co.ht 72.52.4.122
- [*] A preteen-art.info 89.248.166.21
- [*] A preteen-art.co.jobs 50.17.193.222
- [*] A preteen-art.com.jobs 50.19.241.165
- [*] A preteen-art.biz.jobs 50.19.241.165
- [*] A preteen-art.net.jobs 50.19.241.165
- [*] A preteen-art.org.jobs 50.19.241.165
- [*] A preteen-art.biz.ky 199.184.144.27
- [*] CNAME preteen-art.biz.li 712936.parkingcrew.net
- [*] A 712936.parkingcrew.net 185.53.179.29
- [*] A preteen-art.biz.lu 195.26.5.2
- [*] A preteen-art.biz.ly 64.136.20.39
- [*] A preteen-art.biz.md 72.52.4.122
- [*] A preteen-art.co.mk 87.76.31.211
- [*] A preteen-art.co.mobi 54.225.105.179
- [*] A preteen-art.biz.my 202.190.174.44
- [*] A preteen-art.co.net 188.166.216.219
- [*] A preteen-art.net.net 52.50.81.210
- [*] A preteen-art.net 45.33.9.234
- [*] A preteen-art.org.net 23.23.86.44
- [*] A preteen-art.co.nl 37.97.184.204
- [*] A preteen-art.com.nl 83.98.157.102
- [*] A preteen-art.net.nl 83.98.157.102
- [*] A preteen-art.co.nr 208.100.40.202
- [*] CNAME preteen-art.co.nu co.nu
- [*] A co.nu 144.76.162.245
- [*] CNAME preteen-art.com.nu com.nu
- [*] A com.nu 144.76.162.245
- [*] A preteen-art.net.nu 199.102.76.78
- [*] A preteen-art.org.nu 80.92.84.139
- [*] CNAME preteen-art.net.org pewtrusts.org
- [*] A pewtrusts.org 204.74.99.100
- [*] A preteen-art.com.org 23.23.86.44
- [*] A preteen-art.ph 45.79.222.138
- [*] A preteen-art.co.ph 45.79.222.138
- [*] A preteen-art.com.ph 45.79.222.138
- [*] A preteen-art.net.ph 45.79.222.138
- [*] A preteen-art.org.ph 45.79.222.138
- [*] A preteen-art.co.pl 212.91.6.55
- [*] A preteen-art.org.pm 208.73.211.177
- [*] A preteen-art.org.pm 208.73.210.202
- [*] A preteen-art.org.pm 208.73.211.165
- [*] A preteen-art.org.pm 208.73.210.217
- [*] A preteen-art.co.ps 66.96.132.56
- [*] CNAME preteen-art.biz.ps biz.ps
- [*] A biz.ps 144.76.162.245
- [*] A preteen-art.co.pt 194.107.127.52
- [*] A preteen-art.co.pw 141.8.226.59
- [*] A preteen-art.pw 141.8.226.58
- [*] A preteen-art.net.pw 141.8.226.59
- [*] A preteen-art.biz.pw 141.8.226.59
- [*] A preteen-art.org.pw 141.8.226.59
- [*] CNAME preteen-art.co.ro now.co.ro
- [*] A now.co.ro 185.27.255.9
- [*] A preteen-art.net.ro 69.64.52.127
- [*] A preteen-art.org.re 217.70.184.38
- [*] A preteen-art.com.ru 178.210.89.119
- [*] A preteen-art.biz.se 185.53.179.6
- [*] CNAME preteen-art.net.se 773147.parkingcrew.net
- [*] A 773147.parkingcrew.net 185.53.179.29
- [*] A preteen-art.co.sl 91.195.240.135
- [*] A preteen-art.com.sr 143.95.106.249
- [*] A preteen-art.biz.st 91.121.28.115
- [*] A preteen-art.co.su 72.52.4.122
- [*] A preteen-art.biz.tc 64.136.20.39
- [*] A preteen-art.biz.tf 85.236.153.18
- [*] A preteen-art.net.tf 188.40.70.27
- [*] A preteen-art.net.tf 188.40.117.12
- [*] A preteen-art.net.tf 188.40.70.29
- [*] A preteen-art.co.tl 208.100.40.202
- [*] A preteen-art.co.to 175.118.124.44
- [*] A preteen-art.co.tv 31.186.25.163
- [*] A preteen-art.biz.tv 72.52.4.122
- [*] A preteen-art.org.tv 72.52.4.122
- [*] CNAME preteen-art.biz.uz biz.uz
- [*] A biz.uz 144.76.162.245
- [*] A preteen-art.vg 88.198.29.97
- [*] A preteen-art.co.vg 88.198.29.97
- [*] A preteen-art.com.vg 88.198.29.97
- [*] A preteen-art.net.vg 68.178.254.180
- [*] A preteen-art.biz.vg 89.31.143.20
- [*] A preteen-art.ws 64.70.19.203
- [*] A preteen-art.com.ws 202.4.48.211
- [*] A preteen-art.net.ws 202.4.48.211
- [*] A preteen-art.org.ws 202.4.48.211
- [*] A preteen-art.biz.ws 184.168.221.104
- R E V E R S E I P L O O K U P
- ==================================
- [i] Total Sites Found On This Server : 2
- [#] preteen-art.info
- [-] CMS: Could Not Detect
- [#] teendolls.online,
- [-] CMS: Could Not Detect
- preteen-art.info
- Domain Name: PRETEEN-ART.INFO
- Registry Domain ID: D503300000038978206-LRMS
- Registrar WHOIS Server:
- Registrar URL: http://www.ukraine.com.ua
- Updated Date: 2017-06-25T20:31:58Z
- Creation Date: 2017-04-26T17:20:10Z
- Registry Expiry Date: 2018-04-26T17:20:10Z
- Registrar Registration Expiration Date:
- Registrar: Hosting Ukraine LLC
- Registrar IANA ID: 2374
- Registrar Abuse Contact Email:
- Registrar Abuse Contact Phone:
- Reseller:
- Domain Status: ok https://icann.org/epp#ok
- Registry Registrant ID: C201778539-LRMS
- Registrant Name: Privacy Protection
- Registrant Organization:
- Registrant Street: PO Box 65
- Registrant City: Kiev
- Registrant State/Province:
- Registrant Postal Code: 04112
- Registrant Country: UA
- Registrant Phone: +380.443927433
- Registrant Phone Ext:
- Registrant Fax:
- Registrant Fax Ext:
- Registrant Email: abuse@ukraine.com.ua
- Registry Admin ID: C201778539-LRMS
- Admin Name: Privacy Protection
- Admin Organization:
- Admin Street: PO Box 65
- Admin City: Kiev
- Admin State/Province:
- Admin Postal Code: 04112
- Admin Country: UA
- Admin Phone: +380.443927433
- Admin Phone Ext:
- Admin Fax:
- Admin Fax Ext:
- Admin Email: abuse@ukraine.com.ua
- Registry Tech ID: C201778539-LRMS
- Tech Name: Privacy Protection
- Tech Organization:
- Tech Street: PO Box 65
- Tech City: Kiev
- Tech State/Province:
- Tech Postal Code: 04112
- Tech Country: UA
- Tech Phone: +380.443927433
- Tech Phone Ext:
- Tech Fax:
- Tech Fax Ext:
- Tech Email: abuse@ukraine.com.ua
- Registry Billing ID: C201778539-LRMS
- Billing Name: Privacy Protection
- Billing Organization:
- Billing Street: PO Box 65
- Billing City: Kiev
- Billing State/Province:
- Billing Postal Code: 04112
- Billing Country: UA
- Billing Phone: +380.443927433
- Billing Phone Ext:
- Billing Fax:
- Billing Fax Ext:
- Billing Email: abuse@ukraine.com.ua
- Name Server: PNS21.CLOUDNS.NET
- Name Server: PNS22.CLOUDNS.NET
- Name Server: PNS24.CLOUDNS.NET
- Name Server: PNS23.CLOUDNS.NET
- ;preteen-art.info. IN ANY
- ;; ANSWER SECTION:
- preteen-art.info. 56 IN A 80.82.79.116
- preteen-art.info. 1482 IN NS pns21.cloudns.net.
- preteen-art.info. 1482 IN NS ns21.cloudns.net.
- preteen-art.info. 1482 IN NS ns22.cloudns.net.
- preteen-art.info. 1482 IN NS pns24.cloudns.net.
- preteen-art.info. 1482 IN NS pns22.cloudns.net.
- preteen-art.info. 1482 IN NS ns23.cloudns.net.
- preteen-art.info. 1482 IN NS ns24.cloudns.net.
- preteen-art.info. 1482 IN NS pns23.cloudns.net.
- Host's addresses:
- __________________
- preteen-art.info. 45 IN A 80.82.79.116
- Wildcard detection using: dfzsoiabzgya
- _______________________________________
- dfzsoiabzgya.preteen-art.info. 60 IN A 80.82.79.116
- !!!!!!!!!!!!!!!!!!!!!!!!!!!!
- Wildcards detected, all subdomains will point to the same IP address
- Omitting results containing 80.82.79.116.
- Maybe you are using OpenDNS servers.
- !!!!!!!!!!!!!!!!!!!!!!!!!!!!
- Name Servers:
- ______________
- pns24.cloudns.net. 114834 IN A 185.136.99.96
- pns23.cloudns.net. 153160 IN A 185.136.98.96
- pns21.cloudns.net. 114834 IN A 185.136.96.96
- ns22.cloudns.net. 132523 IN A 108.59.2.202
- ns21.cloudns.net. 54205 IN A 109.201.133.61
- ns24.cloudns.net. 148264 IN A 46.165.221.164
- ns23.cloudns.net. 164590 IN A 79.137.84.65
- pns22.cloudns.net. 114833 IN A 185.136.97.96
- Mail (MX) Servers:
- ___________________
- preteen-art.info class C netranges:
- ____________________________________
- 80.82.79.0/24
- Performing reverse lookup on 256 ip addresses:
- _______________________________________________
- 0 results out of 256 IP addresses.
- preteen-art.info ip blocks:
- ____________________________
- |\___ ns22.cloudns.net [preteen-art.info] (2604:9a00:2100:a006:0004:0000:0000:0001) Got authoritative answer
- |\___ ns22.cloudns.net [preteen-art.info] (108.59.2.202) Got authoritative answer
- |\___ ns23.cloudns.net [preteen-art.info] (2001:41d0:0401:3100:0000:0000:0000:5784) * * *
- |\___ ns23.cloudns.net [preteen-art.info] (79.137.84.65) Got authoritative answer
- |\___ pns24.cloudns.net [preteen-art.info] (2a06:fb00:0001:0000:0000:0000:0004:0096) Got authoritative answer
- |\___ pns24.cloudns.net [preteen-art.info] (185.136.99.96) Got authoritative answer
- |\___ pns22.cloudns.net [preteen-art.info] (2a06:fb00:0001:0000:0000:0000:0002:0096) Got authoritative answer
- |\___ pns22.cloudns.net [preteen-art.info] (185.136.97.96) Got authoritative answer
- |\___ pns21.cloudns.net [preteen-art.info] (2a06:fb00:0001:0000:0000:0000:0001:0096) Got authoritative answer
- |\___ pns21.cloudns.net [preteen-art.info] (185.136.96.96) Got authoritative answer
- |\___ ns21.cloudns.net [preteen-art.info] (109.201.133.61) Got authoritative answer
- |\___ ns21.cloudns.net [preteen-art.info] (2a00:1768:1001:0009:0000:0000:0000:0021) Got authoritative answer
- |\___ ns24.cloudns.net [preteen-art.info] (2a00:0c98:2030:a006:0002:0000:0000:0001) Got authoritative answer
- |\___ ns24.cloudns.net [preteen-art.info] (46.165.221.164) Got authoritative answer
- |\___ pns23.cloudns.net [preteen-art.info] (2a06:fb00:0001:0000:0000:0000:0003:0096) Got authoritative answer
- \___ pns23.cloudns.net [preteen-art.info] (185.136.98.96) Got authoritative answer
- WhatWeb report for http://preteen-art.info
- Status : 200 OK
- Title : for virgin teen, girls small teen
- IP : 80.82.79.116
- Country : NETHERLANDS, NL
- Summary : X-Powered-By[PHP/5.4.45-0+deb7u8], HTTPServer[nginx], Cookies[site_id], PHP[5.4.45-0+deb7u8], nginx, Script[text/javascript]
- Detected Plugins:
- [ Cookies ]
- Display the names of cookies in the HTTP headers. The
- values are not returned to save on space.
- String : site_id
- [ HTTPServer ]
- HTTP server header string. This plugin also attempts to
- identify the operating system from the server header.
- String : nginx (from server string)
- [ PHP ]
- PHP is a widely-used general-purpose scripting language
- that is especially suited for Web development and can be
- embedded into HTML. This plugin identifies PHP errors,
- modules and versions and extracts the local file path and
- username if present.
- Version : 5.4.45-0+deb7u8
- Google Dorks: (2)
- Website : http://www.php.net/
- [ Script ]
- This plugin detects instances of script HTML elements and
- returns the script language/type.
- String : text/javascript
- [ X-Powered-By ]
- X-Powered-By HTTP header
- String : PHP/5.4.45-0+deb7u8 (from x-powered-by string)
- [ nginx ]
- Nginx (Engine-X) is a free, open-source, high-performance
- HTTP server and reverse proxy, as well as an IMAP/POP3
- proxy server.
- Website : http://nginx.net/
- HTTP Headers:
- HTTP/1.1 200 OK
- Server: nginx
- Date: Sun, 10 Sep 2017 03:38:56 GMT
- Content-Type: text/html
- Content-Length: 2909
- Connection: close
- X-Powered-By: PHP/5.4.45-0+deb7u8
- Set-Cookie: site_id=1; expires=Sun, 10-Sep-2017 15:38:56 GMT
- Vary: Accept-Encoding
- Content-Encoding: gzip
- ^ ^
- _ __ _ ____ _ __ _ _ ____
- ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
- | V V // o // _/ | V V // 0 // 0 // _/
- |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
- <
- ...'
- WAFW00F - Web Application Firewall Detection Tool
- By Sandro Gauci && Wendel G. Henrique
- Checking http://preteen-art.info
- Generic Detection results:
- No WAF detected by the generic detection
- Number of requests: 13
- DNS Servers for preteen-art.info:
- pns21.cloudns.net
- pns22.cloudns.net
- ns22.cloudns.net
- pns23.cloudns.net
- ns21.cloudns.net
- pns24.cloudns.net
- ns23.cloudns.net
- ns24.cloudns.net
- Starting smtp-user-enum v1.2 ( http://pentestmonkey.net/tools/smtp-user-enum )
- ----------------------------------------------------------
- | Scan Information |
- ----------------------------------------------------------
- Mode ..................... VRFY
- Worker Processes ......... 5
- Usernames file ........... users.txt
- Target count ............. 1
- Username count ........... 494
- Target TCP port .......... 25
- Query timeout ............ 5 secs
- Target domain ............
- ######## Scan started at Sat Sep 9 23:42:55 2017 #########
- ######## Scan completed at Sat Sep 9 23:51:10 2017 #########
- 0 results.
- 494 queries in 495 seconds (1.0 queries / sec)
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 23:51 EDT
- NSE: Loaded 146 scripts for scanning.
- NSE: Script Pre-scanning.
- Initiating NSE at 23:51
- Completed NSE at 23:51, 0.00s elapsed
- Initiating NSE at 23:51
- Completed NSE at 23:51, 0.00s elapsed
- Failed to resolve "preteen-art.info.txt".
- Initiating Parallel DNS resolution of 1 host. at 23:51
- Completed Parallel DNS resolution of 1 host. at 23:51, 0.59s elapsed
- Initiating SYN Stealth Scan at 23:51
- Scanning preteen-art.info (80.82.79.116) [100 ports]
- Discovered open port 53/tcp on 80.82.79.116
- Discovered open port 80/tcp on 80.82.79.116
- Discovered open port 21/tcp on 80.82.79.116
- Discovered open port 22/tcp on 80.82.79.116
- Discovered open port 111/tcp on 80.82.79.116
- Completed SYN Stealth Scan at 23:51, 3.63s elapsed (100 total ports)
- Initiating Service scan at 23:51
- Scanning 5 services on preteen-art.info (80.82.79.116)
- Completed Service scan at 23:51, 11.37s elapsed (5 services on 1 host)
- Initiating OS detection (try #1) against preteen-art.info (80.82.79.116)
- Retrying OS detection (try #2) against preteen-art.info (80.82.79.116)
- Initiating Traceroute at 23:51
- Completed Traceroute at 23:51, 3.01s elapsed
- Initiating Parallel DNS resolution of 7 hosts. at 23:51
- Completed Parallel DNS resolution of 7 hosts. at 23:51, 5.62s elapsed
- NSE: Script scanning 80.82.79.116.
- Initiating NSE at 23:51
- Completed NSE at 23:52, 32.19s elapsed
- Initiating NSE at 23:52
- Completed NSE at 23:52, 0.34s elapsed
- Nmap scan report for preteen-art.info (80.82.79.116)
- Host is up (0.18s latency).
- rDNS record for 80.82.79.116: no-reverse-dns-configured.com
- Not shown: 89 closed ports
- PORT STATE SERVICE VERSION
- 21/tcp open ftp vsftpd 3.0.2
- 22/tcp open ssh OpenSSH 6.0p1 Debian 4+deb7u6 (protocol 2.0)
- | ssh-hostkey:
- | 1024 ab:16:56:89:21:7e:75:1c:77:f3:a2:7e:c2:f1:4c:09 (DSA)
- | 2048 22:f8:e3:f6:1a:1c:6a:99:09:6b:1e:7c:fd:30:e3:95 (RSA)
- |_ 256 a8:03:f4:96:36:d1:39:de:2e:4f:56:e9:0f:f3:63:56 (ECDSA)
- 25/tcp filtered smtp
- 53/tcp open domain
- | dns-nsid:
- |_ bind.version: 9.8.4-rpz2+rl005.12-P1
- 80/tcp open http nginx
- |_http-favicon: Unknown favicon MD5: E10A0146806273296BECCD951556D611
- | http-methods:
- |_ Supported Methods: GET HEAD POST
- |_http-server-header: nginx
- |_http-title: for virgin teen, girls small teen
- 111/tcp open rpcbind 2-4 (RPC #100000)
- 135/tcp filtered msrpc
- 139/tcp filtered netbios-ssn
- 445/tcp filtered microsoft-ds
- 465/tcp filtered smtps
- 587/tcp filtered submission
- Aggressive OS guesses: Linux 2.6.39 (96%), Linux 3.2 - 3.8 (95%), Linux 3.8 (95%), WatchGuard Fireware 11.8 (95%), Linux 3.1 - 3.2 (94%), Linux 3.5 (93%), Linux 2.6.32 - 2.6.39 (93%), Linux 3.0 - 3.2 (92%), Linux 2.6.32 - 3.0 (92%), Linux 2.6.32 (91%)
- No exact OS matches for host (test conditions non-ideal).
- Uptime guess: 6.527 days (since Sun Sep 3 11:13:52 2017)
- Network Distance: 10 hops
- TCP Sequence Prediction: Difficulty=259 (Good luck!)
- IP ID Sequence Generation: All zeros
- Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
- TRACEROUTE (using port 8080/tcp)
- HOP RTT ADDRESS
- 1 408.56 ms 10.13.0.1
- 2 ...
- 3 413.27 ms po101.gra-g1-a75.fr.eu (178.33.103.229)
- 4 424.32 ms 10.95.33.8
- 5 424.36 ms be100-1109.fra-1-a9.de.eu (213.186.32.213)
- 6 ...
- 7 467.97 ms vlan3555.bb1.ams2.nl.m247.com (176.10.83.128)
- 8 467.84 ms 176.10.83.5
- 9 ...
- 10 467.90 ms no-reverse-dns-configured.com (80.82.79.116)
- _/ _/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/
- _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
- _/ _/ _/_/_/_/ _/_/_/ _/ _/_/_/ _/_/_/_/ _/ _/_/_/ _/_/_/_
- _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
- _/_/_/_/ _/ _/ _/ _/_/_/_/ _/_/_/_/ _/ _/_/_/_/ _/ _/ [v1.06]
- _/ User-Agent Tester ↵
- _/ AKA: Purple Pimp ↵
- _/ ChrisJohnRiley ↵
- _/ blog.c22.cc ↵
- [>] Performing initial request and confirming stability
- [>] Using User-Agent string Mozilla/5.0
- [ ] URL (ENTERED): http://preteen-art.info
- [ ] Response Code: 200 OK
- [ ] Server: nginx
- [ ] Date: Sun, 10 Sep 2017 03:55:58 GMT
- [ ] Content-Type: text/html
- [ ] Transfer-Encoding: chunked
- [ ] Connection: close
- [ ] Vary: Accept-Encoding
- [ ] X-Powered-By: PHP/5.4.45-0+deb7u8
- [ ] Set-Cookie: site_id=1; expires=Sun, 10-Sep-2017 15:55:58 GMT
- [ ] Vary: Accept-Encoding
- [ ] Data (MD5): 96f209843590bb6aba7d59904bdc78f3
- [1] Pass
- [2] Pass
- [3] Pass
- [>] URL appears stable. Beginning test
- [>] Using DEFAULT User-Agent Strings
- [>] Using Crazy User-Agent Strings
- [>] Using Bot User-Agent Strings
- [>] Output: [+] Added Headers, [-] Removed Headers, [!] Altered Headers, [ ] No Change
- [>] User-Agent String : Windows-Media-Player/9.00.00.4503
- [!] Data (MD5): b1d179b8237ca36aceb474efec763bf3
- [>] User-Agent String : Mozilla/5.0 (PLAYSTATION 3; 2.00)
- [!] Data (MD5): 427377b3885c947fc95dfb6d2cfe7305
- [>] User-Agent String : TrackBack/1.02
- [!] Data (MD5): 088be84a7a168744c6a94445b5c2e50e
- [>] User-Agent String : wispr
- [!] Data (MD5): 70b62f4d7d5c0eb9b892494d1537c534
- [>] User-Agent String : EMPTY USER-AGENT STRING!
- [!] Data (MD5): 89069f1591f0c6e749fcca836c2fcb14
- [>] User-Agent String : Googlebot/2.1 (+http://www.google.com/bot.html)
- [!] Data (MD5): 16eb4f40d5e17e4b12c79fc8c9d43ba6
- [>] User-Agent String : Googlebot-Image/1.0
- [!] Data (MD5): 0965bc18cb2ac8d18d5d99764016903c
- [>] User-Agent String : Mediapartners-Google
- [!] Data (MD5): 7e34014131d2105ec31d3810dd6c7bfb
- [>] User-Agent String : Mozilla/2.0 (compatible; Ask Jeeves)
- [!] Data (MD5): 41f61ece1c6010755324db743e6d16f3
- [>] User-Agent String : msnbot-Products/1.0 (+http://search.msn.com/msnbot.htm)
- [!] Data (MD5): 9da6e4cf49ae8eaf0d9e1a70d10635f5
- [>] User-Agent String : mmcrawler
- [!] Data (MD5): 966ce151ffd750c0390362d536387b23
- [>] Checks completed... try enabling VERBOSE mode for more detailed output
- [>] That's all folks... Fo' Shizzle!
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement