OPDeathEathers v.s Hunter-Unit full Recon JTSEC

1. ##########################################################################################
2. Hostname www.sweet-youngs.com ISP Quasi Networks LTD. (AS29073)
3. Continent Africa Flag
4. SC
5. Country Seychelles Country Code SC (SYC)
6. Region Unknown Local time 09 Sep 2017 22:32 +04
7. City Unknown Latitude -4.583
8. IP Address 94.102.48.35 Longitude 55.667
9. ##########################################################################################
10. sweet-youngs.com
11.  
12. whois sweet-youngs.com
13. Domain Name: SWEET-YOUNGS.COM
14. Registry Domain ID: 1465281305_DOMAIN_COM-VRSN
15. Registrar WHOIS Server: whois.nic.ru
16. Registrar URL: http://nic.ru
17. Updated Date: 2017-04-27T10:45:09Z
18. Creation Date: 2008-05-05T09:26:43Z
19. Registry Expiry Date: 2018-05-05T09:26:43Z
20. Registrar: Regional Network Information Center, JSC dba RU-CENTER
21. Registrar IANA ID: 463
22. Registrar Abuse Contact Email: tld-abuse@nic.ru
23. Registrar Abuse Contact Phone: +7 (495) 994-46-01
24. Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
25. Name Server: NS1.DXGIRLZ.COM
26. Name Server: NS2.DXGIRLZ.COM
27. DNSSEC: unsigned
28. URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/
29.  
30. Domain Name: SWEET-YOUNGS.COM
31. Registry Domain ID: 1465281305_DOMAIN_COM-VRSN
32. Registrar WHOIS Server: whois.nic.ru
33. Registrar URL: http://www.nic.ru
34. Creation Date: 2008-05-05T09:26:43Z
35. Registrar Registration Expiration Date: 2018-05-04T21:00:00Z
36. Registrar: Regional Network Information Center, JSC dba RU-CENTER
37. Registrar IANA ID: 463
38. Registrar Abuse Contact Email: tld-abuse@nic.ru
39. Registrar Abuse Contact Phone: +7.4959944601
40. Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
41. Registry Registrant ID:
42. Registrant Name: Evgeniy Kahanov
43. Registrant Organization: Evgeniy Kahanov
44. Registrant Street: 12 Saharova str., 7
45. Registrant City: Lvov
46. Registrant Postal Code: 79019
47. Registrant Country: UA
48. Registrant Phone: +380.322320539
49. Registrant Phone Ext:
50. Registrant Email: karalama10@mail.ru
51. Registry Admin ID:
52. Admin Name: Evgeniy Kahanov
53. Admin Organization: Evgeniy Kahanov
54. Admin Street: 12 Saharova str., 7
55. Admin City: Lvov
56. Admin Postal Code: 79019
57. Admin Country: UA
58. Admin Phone: +380.322320539
59. Admin Phone Ext:
60. Admin Email: karalama10@mail.ru
61. Registry Tech ID:
62. Tech Name: Evgeniy Kahanov
63. Tech Organization: Evgeniy Kahanov
64. Tech Street: 12 Saharova str., 7
65. Tech City: Lvov
66. Tech Postal Code: 79019
67. Tech Country: UA
68. Tech Phone: +380.322320539
69. Tech Phone Ext:
70. Tech Email: karalama10@mail.ru
71. Name Server: ns1.dxgirlz.com
72. Name Server: ns2.dxgirlz.com
73. DNSSEC: unsigned
74. URL of the ICANN WHOIS Data Problem Reporting System: http://wdprs.internic.net/
75. For more information on Whois status codes, please visit: https://icann.org/epp
76. >>> Last update of WHOIS database: 2017.09.09T18:35:41Z <<<
77. ###########################################################################################
78.  
79. ;sweet-youngs.com. IN ANY
80.  
81. ;; ANSWER SECTION:
82. sweet-youngs.com. 3334 IN A 94.102.48.35
83. sweet-youngs.com. 3334 IN NS ns1.dxgirlz.com.
84. sweet-youngs.com. 3334 IN NS ns2.dxgirlz.com.
85. ###########################################################################################
86.  
87. tcptraceroute -i eth0 sweet-youngs.com
88.  
89. Running:
90. traceroute -T -O info -i eth0 sweet-youngs.com
91. traceroute to sweet-youngs.com (94.102.48.35), 30 hops max, 60 byte packets
92. 1 gateway (192.168.1.254) 0.553 ms 0.759 ms 0.930 ms
93. 2 10.135.18.1 (10.135.18.1) 7.273 ms 7.366 ms 7.849 ms
94. 3 75.154.223.222 (75.154.223.222) 29.858 ms 29.946 ms 30.016 ms
95. 4 lag-113.ear3.NewYork1.Level3.net (4.15.212.245) 150.329 ms 150.800 ms 150.878 ms
96. 5 ae-240-3616.edge6.Amsterdam1.Level3.net (4.69.162.254) 104.612 ms 104.701 ms 105.129 ms
97. 6 * * *
98. 7 no-reverse-dns-configured.com (94.102.48.35) <syn,ack> 103.339 ms 103.912 ms 103.767 ms
99.  
100. ###########################################################################################
101. [*] Performing TLD Brute force Enumeration against sweet-youngs.com
102. [*] The operation could take up to: 00:01:07
103. [*] A sweet-youngs.biz.af 5.45.75.45
104. [*] A sweet-youngs.co.asia 91.195.240.135
105. [*] CNAME sweet-youngs.biz.at free.biz.at
106. [*] A free.biz.at 216.92.134.29
107. [*] A sweet-youngs.org.aw 142.4.20.12
108. [*] A sweet-youngs.co.ba 176.9.45.78
109. [*] A sweet-youngs.com.ba 195.222.33.180
110. [*] A sweet-youngs.com.be 95.173.170.166
111. [*] A sweet-youngs.biz.by 71.18.52.2
112. [*] A sweet-youngs.biz.bz 199.59.242.150
113. [*] A sweet-youngs.com.cc 54.252.107.64
114. [*] A sweet-youngs.net.cc 54.252.89.206
115. [*] A sweet-youngs.co.cc 175.126.123.219
116. [*] A sweet-youngs.org.ch 72.52.4.122
117. [*] A sweet-youngs.co.cm 85.25.140.105
118. [*] A sweet-youngs.biz.cl 185.53.178.8
119. [*] A sweet-youngs.net.cm 85.25.140.105
120. [*] A sweet-youngs.com.com 52.33.196.199
121. [*] A sweet-youngs.net.com 199.59.242.150
122. [*] A sweet-youngs.org.com 23.23.86.44
123. [*] A sweet-youngs.co.com 173.192.115.17
124. [*] A sweet-youngs.com 94.102.48.35
125. [*] A sweet-youngs.biz.cr 72.52.4.122
126. [*] CNAME sweet-youngs.biz.cm i.cns.cm
127. [*] A i.cns.cm 118.184.56.30
128. [*] A sweet-youngs.biz.cx 72.52.4.122
129. [*] A sweet-youngs.biz.cz 185.53.179.7
130. [*] A sweet-youngs.net.cz 80.250.24.177
131. [*] A sweet-youngs.com.cz 62.109.128.30
132. [*] A sweet-youngs.com.de 50.56.68.37
133. [*] CNAME sweet-youngs.org.de www.org.de
134. [*] A www.org.de 78.47.128.8
135. [*] CNAME sweet-youngs.co.de co.de
136. [*] A co.de 144.76.162.245
137. [*] A sweet-youngs.org.eu 78.46.90.98
138. [*] A sweet-youngs.biz.fi 185.55.85.123
139. [*] A sweet-youngs.net.eu 78.46.90.98
140. [*] A sweet-youngs.fm 173.230.131.38
141. [*] A sweet-youngs.biz.fm 173.230.131.38
142. [*] A sweet-youngs.org.fr 149.202.133.35
143. [*] A sweet-youngs.biz.gl 72.52.4.122
144. [*] CNAME sweet-youngs.co.gp co.gp
145. [*] A co.gp 144.76.162.245
146. [*] A sweet-youngs.co.hn 208.100.40.203
147. [*] CNAME sweet-youngs.net.hr net.hr
148. [*] A net.hr 192.0.78.25
149. [*] A net.hr 192.0.78.24
150. [*] A sweet-youngs.co.ht 72.52.4.122
151. [*] CNAME sweet-youngs.biz.hn parkmydomain.vhostgo.com
152. [*] A parkmydomain.vhostgo.com 107.186.245.118
153. [*] A sweet-youngs.co.jobs 50.17.193.222
154. [*] A sweet-youngs.com.jobs 50.19.241.165
155. [*] A sweet-youngs.net.jobs 50.19.241.165
156. [*] A sweet-youngs.biz.jobs 50.19.241.165
157. [*] A sweet-youngs.org.jobs 50.19.241.165
158. [*] A sweet-youngs.biz.ky 199.184.144.27
159. [*] CNAME sweet-youngs.biz.li 712936.parkingcrew.net
160. [*] A 712936.parkingcrew.net 185.53.179.29
161. [*] A sweet-youngs.biz.lu 195.26.5.2
162. [*] A sweet-youngs.biz.ly 64.136.20.39
163. [*] A sweet-youngs.biz.md 72.52.4.122
164. [*] A sweet-youngs.co.mk 87.76.31.211
165. [*] A sweet-youngs.co.mobi 54.225.105.179
166. [*] A sweet-youngs.biz.my 202.190.174.44
167. [*] A sweet-youngs.co.net 188.166.216.219
168. [*] A sweet-youngs.net.net 52.50.81.210
169. [*] A sweet-youngs.org.net 23.23.86.44
170. [*] A sweet-youngs.com.nl 83.98.157.102
171. [*] A sweet-youngs.net.nl 83.98.157.102
172. [*] A sweet-youngs.co.nl 37.97.184.204
173. [*] A sweet-youngs.co.nr 208.100.40.202
174. [*] CNAME sweet-youngs.co.nu co.nu
175. [*] A co.nu 144.76.162.245
176. [*] CNAME sweet-youngs.com.nu com.nu
177. [*] A com.nu 144.76.162.245
178. [*] A sweet-youngs.net.nu 199.102.76.78
179. [*] A sweet-youngs.org.nu 80.92.84.139
180. [*] A sweet-youngs.com.org 23.23.86.44
181. [*] CNAME sweet-youngs.net.org pewtrusts.org
182. [*] A pewtrusts.org 204.74.99.100
183. [*] A sweet-youngs.ph 45.79.222.138
184. [*] A sweet-youngs.co.ph 45.79.222.138
185. [*] A sweet-youngs.com.ph 45.79.222.138
186. [*] A sweet-youngs.net.ph 45.79.222.138
187. [*] A sweet-youngs.org.ph 45.79.222.138
188. [*] A sweet-youngs.org.pm 208.73.210.217
189. [*] A sweet-youngs.org.pm 208.73.210.202
190. [*] A sweet-youngs.org.pm 208.73.211.165
191. [*] A sweet-youngs.org.pm 208.73.211.177
192. [*] A sweet-youngs.co.pl 212.91.6.55
193. [*] A sweet-youngs.co.ps 66.96.132.56
194. [*] A sweet-youngs.co.pt 194.107.127.52
195. [*] CNAME sweet-youngs.biz.ps biz.ps
196. [*] A biz.ps 144.76.162.245
197. [*] A sweet-youngs.pw 141.8.226.58
198. [*] A sweet-youngs.co.pw 141.8.226.59
199. [*] A sweet-youngs.net.pw 141.8.226.59
200. [*] A sweet-youngs.biz.pw 141.8.226.59
201. [*] A sweet-youngs.org.pw 141.8.226.59
202. [*] A sweet-youngs.org.re 217.70.184.38
203. [*] A sweet-youngs.net.ro 69.64.52.127
204. [*] CNAME sweet-youngs.co.ro now.co.ro
205. [*] A now.co.ro 185.27.255.9
206. [*] A sweet-youngs.com.ru 178.210.89.119
207. [*] A sweet-youngs.biz.se 54.72.9.51
208. [*] CNAME sweet-youngs.net.se 773147.parkingcrew.net
209. [*] A 773147.parkingcrew.net 185.53.179.29
210. [*] A sweet-youngs.co.sl 91.195.240.135
211. [*] A sweet-youngs.com.sr 143.95.106.249
212. [*] A sweet-youngs.biz.st 91.121.28.115
213. [*] A sweet-youngs.co.su 72.52.4.122
214. [*] A sweet-youngs.biz.tc 64.136.20.39
215. [*] A sweet-youngs.biz.tf 85.236.153.18
216. [*] A sweet-youngs.net.tf 188.40.70.29
217. [*] A sweet-youngs.net.tf 188.40.117.12
218. [*] A sweet-youngs.net.tf 188.40.70.27
219. [*] A sweet-youngs.co.tl 208.100.40.202
220. [*] A sweet-youngs.co.to 175.118.124.44
221. [*] A sweet-youngs.co.tv 31.186.25.163
222. [*] A sweet-youngs.biz.tv 72.52.4.122
223. [*] A sweet-youngs.org.tv 72.52.4.122
224. [*] CNAME sweet-youngs.biz.uz biz.uz
225. [*] A biz.uz 144.76.162.245
226. [*] A sweet-youngs.vg 88.198.29.97
227. [*] A sweet-youngs.co.vg 88.198.29.97
228. [*] A sweet-youngs.com.vg 88.198.29.97
229. [*] A sweet-youngs.net.vg 68.178.254.180
230. [*] A sweet-youngs.biz.vg 89.31.143.20
231. [*] A sweet-youngs.ws 64.70.19.203
232. [*] A sweet-youngs.com.ws 202.4.48.211
233. [*] A sweet-youngs.net.ws 202.4.48.211
234. [*] A sweet-youngs.org.ws 202.4.48.211
235. [*] A sweet-youngs.biz.ws 184.168.221.104
236.  
237. ###########################################################################################
238.  
239. Checking for HTTP-Loadbalancing [Date]: 16:34:47, 16:34:47, 16:34:47, 16:34:47, 16:34:48, 16:34:48, 16:34:48, 16:34:49, 16:34:49, 16:34:49, 16:34:49, 16:34:50, 16:34:50, 16:34:50, 16:34:50, 16:34:51, 16:34:51, 16:34:51, 16:34:51, 16:34:52, 16:34:52, 16:34:52, 16:34:52, 16:34:53, 16:34:53, 16:34:53, 16:34:53, 16:34:54, 16:34:54, 16:34:54, 16:34:54, 16:34:55, 16:34:55, 16:34:55, 16:34:56, 16:34:56, 16:34:56, 16:34:56, 16:34:57, 16:34:57, 16:34:57, 16:34:57, 16:34:58, 16:34:58, 16:34:58, 16:34:58, 16:34:59, 16:34:59, 16:34:59, 16:34:59, NOT FOUND
240.  
241. Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
242.  
243. sweet-youngs.com does NOT use Load-balancing.
244.  
245. ###########################################################################################
246.  
247. ###########################################################################################
248.  
249. nmap -PN -n -F -T4 -sV -A -oG temp.txt sweet-youngs.com
250.  
251. Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 14:36 EDT
252. Nmap scan report for sweet-youngs.com (94.102.48.35)
253. Host is up (0.12s latency).
254. Not shown: 84 closed ports
255. PORT STATE SERVICE VERSION
256. 21/tcp filtered ftp
257. 22/tcp filtered ssh
258. 25/tcp filtered smtp
259. 53/tcp open domain ISC BIND 9.8.2rc1
260. | dns-nsid:
261. |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4
262. 80/tcp open http nginx 1.12.1
263. |_http-server-header: nginx/1.12.1
264. |_http-title: Did not follow redirect to http://www.sweet-youngs.com/new.html
265. 81/tcp filtered hosts2-ns
266. 110/tcp open pop3 Dovecot pop3d
267. |_pop3-capabilities: SASL(PLAIN LOGIN DIGEST-MD5 CRAM-MD5) STLS RESP-CODES UIDL CAPA PIPELINING TOP USER
268. | ssl-cert: Subject: commonName=imap.example.com
269. | Not valid before: 2015-06-12T12:04:14
270. |_Not valid after: 2016-06-11T12:04:14
271. |_ssl-date: 2017-09-09T16:35:42+00:00; -2h01m10s from scanner time.
272. 135/tcp filtered msrpc
273. 139/tcp filtered netbios-ssn
274. 143/tcp open imap Dovecot imapd
275. |_imap-capabilities: IMAP4rev1 STARTTLS ID AUTH=CRAM-MD5A0001 SASL-IR AUTH=LOGIN IDLE Capability OK AUTH=DIGEST-MD5 LOGIN-REFERRALS ENABLE completed AUTH=PLAIN LITERAL+
276. | ssl-cert: Subject: commonName=imap.example.com
277. | Not valid before: 2015-06-12T12:04:14
278. |_Not valid after: 2016-06-11T12:04:14
279. |_ssl-date: 2017-09-09T16:35:40+00:00; -2h01m10s from scanner time.
280. 445/tcp filtered microsoft-ds
281. 465/tcp filtered smtps
282. 587/tcp filtered submission
283. 993/tcp open ssl/imap Dovecot imapd
284. |_imap-capabilities: AUTH=PLAIN ID AUTH=CRAM-MD5A0001 SASL-IR AUTH=LOGIN IDLE Capability OK AUTH=DIGEST-MD5 LOGIN-REFERRALS ENABLE completed IMAP4rev1 LITERAL+
285. | ssl-cert: Subject: commonName=imap.example.com
286. | Not valid before: 2015-06-12T12:04:14
287. |_Not valid after: 2016-06-11T12:04:14
288. |_ssl-date: 2017-09-09T16:35:38+00:00; -2h01m10s from scanner time.
289. 995/tcp open ssl/pop3 Dovecot pop3d
290. | ssl-cert: Subject: commonName=imap.example.com
291. | Not valid before: 2015-06-12T12:04:14
292. |_Not valid after: 2016-06-11T12:04:14
293. |_ssl-date: 2017-09-09T16:35:37+00:00; -2h01m10s from scanner time.
294. 3306/tcp open mysql MySQL (unauthorized)
295. Device type: general purpose|firewall|storage-misc|WAP|webcam
296. Running (JUST GUESSING): Linux 2.6.X|3.X|4.X|2.4.X (99%), WatchGuard Fireware 11.X (94%), Synology DiskStation Manager 5.X (94%), Tandberg embedded (90%)
297. OS CPE: cpe:/o:linux:linux_kernel:2.6.39 cpe:/o:linux:linux_kernel:3.10 cpe:/o:watchguard:fireware:11.8 cpe:/o:linux:linux_kernel cpe:/a:synology:diskstation_manager:5.1 cpe:/o:linux:linux_kernel:4.2 cpe:/o:linux:linux_kernel:2.4 cpe:/h:tandberg:vcs
298. Aggressive OS guesses: Linux 2.6.39 (99%), Linux 2.6.32 (94%), Linux 2.6.32 or 3.10 (94%), Linux 3.4 (94%), WatchGuard Fireware 11.8 (94%), Synology DiskStation Manager 5.1 (94%), Linux 3.10 (94%), Linux 3.1 - 3.2 (94%), Linux 2.6.32 - 2.6.39 (92%), Linux 2.6.32 - 3.0 (91%)
299. No exact OS matches for host (test conditions non-ideal).
300. Network Distance: 11 hops
301. Service Info: OS: Red Hat Enterprise Linux 6; CPE: cpe:/o:redhat:enterprise_linux:6
302.  
303. Host script results:
304. |_clock-skew: mean: -2h01m10s, deviation: 0s, median: -2h01m10s
305.  
306. TRACEROUTE (using port 1723/tcp)
307. HOP RTT ADDRESS
308. 1 109.40 ms 10.13.0.1
309. 2 ...
310. 3 109.94 ms 178.33.103.231
311. 4 111.29 ms 10.95.33.10
312. 5 119.53 ms 91.121.131.19
313. 6 119.32 ms 94.23.122.217
314. 7 ...
315. 8 124.31 ms 176.10.83.128
316. 9 120.32 ms 176.10.83.5
317. 10 ...
318. 11 120.34 ms 94.102.48.35
319.  
320. OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
321. Nmap done: 1 IP address (1 host up) scanned in 35.62 seconds
322.  
323. ###########################################################################################
324.  
325. amap -i temp.txt
326. amap v5.4 (www.thc.org/thc-amap) started at 2017-09-09 14:36:58 - APPLICATION MAPPING mode
327.  
328. Protocol on 94.102.48.35:80/tcp matches http
329. Protocol on 94.102.48.35:80/tcp matches http-apache-2
330. Protocol on 94.102.48.35:110/tcp matches pop3
331. Protocol on 94.102.48.35:143/tcp matches imap
332. Protocol on 94.102.48.35:3306/tcp matches mysql
333. Protocol on 94.102.48.35:3306/tcp matches mysql-secured
334. Protocol on 94.102.48.35:995/tcp matches ssl
335. Protocol on 94.102.48.35:993/tcp matches ssl
336. Protocol on 94.102.48.35:53/tcp matches dns
337.  
338. Unidentified ports: none.
339.  
340. amap v5.4 finished at 2017-09-09 14:37:16
341. ###########################################################################################
342.  
343. inetnum: 94.102.48.0 - 94.102.48.150
344. netname: SC-QUASI58
345. descr: QUASI
346. country: SC
347. org: ORG-QNL3-RIPE
348. admin-c: QNL1-RIPE
349. tech-c: QNL1-RIPE
350. status: ASSIGNED PA
351. mnt-by: QUASINETWORKS-MNT
352. mnt-lower: QUASINETWORKS-MNT
353. mnt-routes: QUASINETWORKS-MNT
354. created: 2011-05-07T22:25:22Z
355. last-modified: 2016-01-23T22:29:27Z
356. source: RIPE
357.  
358. organisation: ORG-QNL3-RIPE
359. org-name: Quasi Networks LTD.
360. org-type: OTHER
361. address: Suite 1, Second Floor
362. address: Sound & Vision House, Francis Rachel Street
363. address: Victoria, Mahe, SEYCHELLES
364. remarks: *****************************************************************************
365. remarks: IMPORTANT INFORMATION
366. remarks: *****************************************************************************
367. remarks: We are a high bandwidth network provider offering bandwidth solutions.
368. remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
369. remarks: Please only use abuse@quasinetworks.com for abuse reports.
370. remarks: For all other requests, please see the details on our website.
371. remarks: *****************************************************************************
372. abuse-mailbox: abuse@quasinetworks.com
373. abuse-c: AR34302-RIPE
374. mnt-ref: QUASINETWORKS-MNT
375. mnt-by: QUASINETWORKS-MNT
376. created: 2015-11-08T22:25:26Z
377. last-modified: 2015-11-27T09:37:50Z
378. source: RIPE # Filtered
379.  
380. role: Quasi Networks LTD
381. address: Suite 1, Second Floor
382. address: Sound & Vision House, Francis Rachel Street
383. address: Victoria, Mahe, SEYCHELLES
384. remarks: *****************************************************************************
385. remarks: IMPORTANT INFORMATION
386. remarks: *****************************************************************************
387. remarks: We are a high bandwidth network provider offering bandwidth solutions.
388. remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
389. remarks: Please only use abuse@quasinetworks.com for abuse reports.
390. remarks: For all other requests, please see the details on our website.
391. remarks: *****************************************************************************
392. abuse-mailbox: abuse@quasinetworks.com
393. nic-hdl: QNL1-RIPE
394. mnt-by: QUASINETWORKS-MNT
395. created: 2015-11-07T22:43:04Z
396. last-modified: 2015-11-07T23:04:49Z
397. source: RIPE # Filtered
398.  
399. % Information related to '94.102.48.0/20AS29073'
400.  
401. route: 94.102.48.0/20
402. descr: Quasi Networks LTD (IBC)
403. origin: AS29073
404. mnt-by: QUASINETWORKS-MNT
405. created: 2008-09-02T11:55:23Z
406. last-modified: 2016-01-23T22:40:05Z
407. source: RIPE
408.  
409.  
410. ########################################################################################
411. *] Performing General Enumeration of Domain:
412. [*] Checking for Zone Transfer for sweet-youngs.com name servers
413. [*] Resolving SOA Record
414. [-] Error while resolving SOA record.
415. [*] Resolving NS Records
416. [*] NS Servers found:
417. [*] NS ns1.dxgirlz.com 93.174.93.111
418. [*] NS ns2.dxgirlz.com 192.133.136.162
419. [*] Removing any duplicate NS server IP Addresses...
420. [*]
421. [*] Trying NS server 93.174.93.111
422. [+] 93.174.93.111 Has port 53 TCP Open
423. [+] Zone Transfer was successful!!
424. [*] NS ns1.dxgirlz.com 93.174.93.111
425. [*] NS ns2.dxgirlz.com 192.133.136.162
426. [*] TXT v=spf1 ip4:93.174.93.111 a mx ~all
427. [*] A @.sweet-youngs.com 94.102.48.35
428. [*] A www.sweet-youngs.com 94.102.48.35
429. [*]
430. [*] Trying NS server 192.133.136.162
431. [+] 192.133.136.162 Has port 53 TCP Open
432. [+] Zone Transfer was successful!!
433. [*] NS ns1.dxgirlz.com 93.174.93.111
434. [*] NS ns2.dxgirlz.com 192.133.136.162
435. [*] TXT v=spf1 ip4:93.174.93.111 a mx ~all
436. [*] A @.sweet-youngs.com 94.102.48.35
437. [*] A www.sweet-youngs.com 94.102.48.35
438. [*] Checking for Zone Transfer for sweet-youngs.com name servers
439. [*] Resolving SOA Record
440. [-] Error while resolving SOA record.
441. [*] Resolving NS Records
442. [*] NS Servers found:
443. [*] NS ns2.dxgirlz.com 192.133.136.162
444. [*] NS ns1.dxgirlz.com 93.174.93.111
445. [*] Removing any duplicate NS server IP Addresses...
446. [*]
447. [*] Trying NS server 93.174.93.111
448. [+] 93.174.93.111 Has port 53 TCP Open
449. [+] Zone Transfer was successful!!
450. [*] NS ns1.dxgirlz.com 93.174.93.111
451. [*] NS ns2.dxgirlz.com 192.133.136.162
452. [*] TXT v=spf1 ip4:93.174.93.111 a mx ~all
453. [*] A @.sweet-youngs.com 94.102.48.35
454. [*] A www.sweet-youngs.com 94.102.48.35
455. [*]
456. [*] Trying NS server 192.133.136.162
457. [+] 192.133.136.162 Has port 53 TCP Open
458. [+] Zone Transfer was successful!!
459. [*] NS ns1.dxgirlz.com 93.174.93.111
460. [*] NS ns2.dxgirlz.com 192.133.136.162
461. [*] TXT v=spf1 ip4:93.174.93.111 a mx ~all
462. [*] A @.sweet-youngs.com 94.102.48.35
463. [*] A www.sweet-youngs.com 94.102.48.35
464. [-] DNSSEC is not configured for sweet-youngs.com
465. [-] Error while resolving SOA record.
466. [*] NS ns1.dxgirlz.com 93.174.93.111
467. [*] Bind Version for 93.174.93.111 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4
468. [*] NS ns2.dxgirlz.com 192.133.136.162
469. [*] Bind Version for 192.133.136.162 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4
470. [-] Could not Resolve MX Records for sweet-youngs.com
471. [*] A sweet-youngs.com 94.102.48.35
472. [*] TXT sweet-youngs.com v=spf1 ip4:93.174.93.111 a mx ~all
473. [*] Expanding IP ranges found in DNS and TXT records for Reverse Look-up
474. [*] Performing Reverse Look-up of SPF Ranges
475. [*] Performing Reverse Lookup from 93.174.93.111 to 93.174.93.111
476. [+] 0 Records Found
477. [*] Enumerating SRV Records
478. [-] No SRV Records Found for sweet-youngs.com
479. [+] 0 Records Found
480. [*] Performing Google Search Enumeration
481. [+] 0 Records Found
482. [i] Scanning Site: http://sweet-youngs.com
483.  
484.  
485.  
486. B A S I C I N F O
487. ====================
488.  
489.  
490. [+] Site Title:
491. [+] IP address: 94.102.48.35
492. [+] Web Server: nginx/1.12.1
493. [+] CMS: Could Not Detect
494. [+] Cloudflare: Not Detected
495. [+] Robots File: Could NOT Find robots.txt!
496.  
497.  
498.  
499.  
500. W H O I S L O O K U P
501. ========================
502.  
503. Domain Name: SWEET-YOUNGS.COM
504. Registry Domain ID: 1465281305_DOMAIN_COM-VRSN
505. Registrar WHOIS Server: whois.nic.ru
506. Registrar URL: http://nic.ru
507. Updated Date: 2017-04-27T10:45:09Z
508. Creation Date: 2008-05-05T09:26:43Z
509. Registry Expiry Date: 2018-05-05T09:26:43Z
510. Registrar: Regional Network Information Center, JSC dba RU-CENTER
511. Registrar IANA ID: 463
512. Registrar Abuse Contact Email: tld-abuse@nic.ru
513. Registrar Abuse Contact Phone: +7 (495) 994-46-01
514. Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
515. Name Server: NS1.DXGIRLZ.COM
516. Name Server: NS2.DXGIRLZ.COM
517. DNSSEC: unsigned
518.  
519.  
520.  
521.  
522. G E O I P L O O K U P
523. =========================
524.  
525. [i] IP Address: 94.102.48.35
526. [i] Country: SC
527. [i] State: N/A
528. [i] City: N/A
529. [i] Latitude: -4.583300
530. [i] Longitude: 55.666698
531.  
532.  
533.  
534.  
535. H T T P H E A D E R S
536. =======================
537.  
538.  
539. [i] HTTP/1.1 301 Moved Permanently
540. [i] Server: nginx/1.12.1
541. [i] Date: Sat, 09 Sep 2017 16:34:50 GMT
542. [i] Content-Type: text/html; charset=iso-8859-1
543. [i] Content-Length: 326
544. [i] Connection: close
545. [i] Location: http://www.sweet-youngs.com/new.html
546. [i] HTTP/1.1 404 Not Found
547. [i] Server: nginx/1.12.1
548. [i] Date: Sat, 09 Sep 2017 16:34:51 GMT
549. [i] Content-Type: text/html; charset=iso-8859-1
550. [i] Content-Length: 292
551. [i] Connection: close
552.  
553.  
554.  
555.  
556. D N S L O O K U P
557. ===================
558.  
559. sweet-youngs.com. 3596 IN A 94.102.48.35
560. sweet-youngs.com. 3600 IN NS ns2.dxgirlz.com.
561. sweet-youngs.com. 3600 IN NS ns1.dxgirlz.com.
562. sweet-youngs.com. 3600 IN SOA b06s06.com. root.dxgirlz.com. 2015061601 10800 3600 604800 86400
563. sweet-youngs.com. 3600 IN TXT "v=spf1 ip4:93.174.93.111 a mx ~all"
564.  
565.  
566.  
567.  
568. S U B N E T C A L C U L A T I O N
569. ====================================
570.  
571. Address = 94.102.48.35
572. Network = 94.102.48.35 / 32
573. Netmask = 255.255.255.255
574. Broadcast = not needed on Point-to-Point links
575. Wildcard Mask = 0.0.0.0
576. Hosts Bits = 0
577. Max. Hosts = 1 (2^0 - 0)
578. Host Range = { 94.102.48.35 - 94.102.48.35 }
579.  
580.  
581.  
582. N M A P P O R T S C A N
583. ============================
584.  
585.  
586. Starting Nmap 7.01 ( https://nmap.org ) at 2017-09-09 18:36 UTC
587. Nmap scan report for sweet-youngs.com (94.102.48.35)
588. Host is up (0.082s latency).
589. rDNS record for 94.102.48.35: no-reverse-dns-configured.com
590. PORT STATE SERVICE VERSION
591. 21/tcp filtered ftp
592. 22/tcp filtered ssh
593. 23/tcp closed telnet
594. 25/tcp open smtp Postfix smtpd
595. 80/tcp open http nginx 1.12.1
596. 110/tcp open pop3 Dovecot pop3d
597. 143/tcp open imap Dovecot imapd
598. 443/tcp closed https
599. 445/tcp closed microsoft-ds
600. 3389/tcp closed ms-wbt-server
601. Service Info: Host: b06s06.com
602.  
603. Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
604. Nmap done: 1 IP address (1 host up) scanned in 8.58 seconds
605.  
606.  
607.  
608. S U B - D O M A I N F I N D E R
609. ==================================
610.  
611.  
612. [i] Total Subdomains Found : 1
613.  
614. [+] Subdomain: sweet-youngs.com
615. [-] IP: 94.102.48.35
616.  
617.  
618.  
619.  
620.  
621. Crawling Types & Descriptions:
622. sweet-youngs.com
623.  
624.  
625. Domain Name: SWEET-YOUNGS.COM
626. Registry Domain ID: 1465281305_DOMAIN_COM-VRSN
627. Registrar WHOIS Server: whois.nic.ru
628. Registrar URL: http://nic.ru
629. Updated Date: 2017-04-27T10:45:09Z
630. Creation Date: 2008-05-05T09:26:43Z
631. Registry Expiry Date: 2018-05-05T09:26:43Z
632. Registrar: Regional Network Information Center, JSC dba RU-CENTER
633. Registrar IANA ID: 463
634. Registrar Abuse Contact Email: tld-abuse@nic.ru
635. Registrar Abuse Contact Phone: +7 (495) 994-46-01
636. Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
637. Name Server: NS1.DXGIRLZ.COM
638. Name Server: NS2.DXGIRLZ.COM
639. DNSSEC: unsigned
640.  
641. Domain Name: SWEET-YOUNGS.COM
642. Registry Domain ID: 1465281305_DOMAIN_COM-VRSN
643. Registrar WHOIS Server: whois.nic.ru
644. Registrar URL: http://www.nic.ru
645. Creation Date: 2008-05-05T09:26:43Z
646. Registrar Registration Expiration Date: 2018-05-04T21:00:00Z
647. Registrar: Regional Network Information Center, JSC dba RU-CENTER
648. Registrar IANA ID: 463
649. Registrar Abuse Contact Email: tld-abuse@nic.ru
650. Registrar Abuse Contact Phone: +7.4959944601
651. Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
652. Registry Registrant ID:
653. Registrant Name: Evgeniy Kahanov
654. Registrant Organization: Evgeniy Kahanov
655. Registrant Street: 12 Saharova str., 7
656. Registrant City: Lvov
657. Registrant Postal Code: 79019
658. Registrant Country: UA
659. Registrant Phone: +380.322320539
660. Registrant Phone Ext:
661. Registrant Email: karalama10@mail.ru
662. Registry Admin ID:
663. Admin Name: Evgeniy Kahanov
664. Admin Organization: Evgeniy Kahanov
665. Admin Street: 12 Saharova str., 7
666. Admin City: Lvov
667. Admin Postal Code: 79019
668. Admin Country: UA
669. Admin Phone: +380.322320539
670. Admin Phone Ext:
671. Admin Email: karalama10@mail.ru
672. Registry Tech ID:
673. Tech Name: Evgeniy Kahanov
674. Tech Organization: Evgeniy Kahanov
675. Tech Street: 12 Saharova str., 7
676. Tech City: Lvov
677. Tech Postal Code: 79019
678. Tech Country: UA
679. Tech Phone: +380.322320539
680. Tech Phone Ext:
681. Tech Email: karalama10@mail.ru
682. Name Server: ns1.dxgirlz.com
683. Name Server: ns2.dxgirlz.com
684.  
685. ;sweet-youngs.com. IN ANY
686.  
687. ;; ANSWER SECTION:
688. sweet-youngs.com. 3307 IN A 94.102.48.35
689. sweet-youngs.com. 3307 IN NS ns1.dxgirlz.com.
690. sweet-youngs.com. 3307 IN NS ns2.dxgirlz.com.
691.  
692. ;; Query time: 8 msec
693. ;; SERVER: 192.168.1.254#53(192.168.1.254)
694. ;; WHEN: Sat Sep 09 14:36:08 EDT 2017
695. ;; MSG SIZE rcvd: 105
696.  
697.  
698. Running:
699. traceroute -T -O info -i eth0 sweet-youngs.com
700. traceroute to sweet-youngs.com (94.102.48.35), 30 hops max, 60 byte packets
701. 1 gateway (192.168.1.254) 0.448 ms 0.647 ms 0.818 ms
702. 2 10.135.18.1 (10.135.18.1) 8.385 ms 9.406 ms 13.568 ms
703. 3 75.154.223.222 (75.154.223.222) 29.581 ms 30.063 ms 30.136 ms
704. 4 lag-113.ear3.NewYork1.Level3.net (4.15.212.245) 30.546 ms 30.782 ms 31.338 ms
705. 5 ae-237-3613.edge6.Amsterdam1.Level3.net (4.69.162.242) 104.861 ms ae-240-3616.edge6.Amsterdam1.Level3.net (4.69.162.254) 105.038 ms ae-237-3613.edge6.Amsterdam1.Level3.net (4.69.162.242) 104.933 ms
706. 6 * * *
707. 7 no-reverse-dns-configured.com (94.102.48.35) <syn,ack> 103.682 ms 104.517 ms 104.637 ms
708.  
709. ----- sweet-youngs.com -----
710.  
711.  
712. Host's addresses:
713. __________________
714.  
715. sweet-youngs.com. 3298 IN A 94.102.48.35
716.  
717.  
718. Name Servers:
719. ______________
720.  
721. ns1.dxgirlz.com. 957 IN A 93.174.93.111
722. ns2.dxgirlz.com. 957 IN A 192.133.136.162
723.  
724.  
725. Mail (MX) Servers:
726. ___________________
727.  
728.  
729.  
730. Trying Zone Transfers and getting Bind Versions:
731. _________________________________________________
732.  
733.  
734. Trying Zone Transfer for sweet-youngs.com on ns1.dxgirlz.com ...
735. sweet-youngs.com. 3600 IN SOA (
736. sweet-youngs.com. 3600 IN NS ns1.dxgirlz.com.
737. sweet-youngs.com. 3600 IN NS ns2.dxgirlz.com.
738. sweet-youngs.com. 3600 IN A 94.102.48.35
739. sweet-youngs.com. 3600 IN TXT "v=spf1
740. www.sweet-youngs.com. 3600 IN A 94.102.48.35
741.  
742. Trying Zone Transfer for sweet-youngs.com on ns2.dxgirlz.com ...
743. sweet-youngs.com. 3600 IN SOA (
744. sweet-youngs.com. 3600 IN NS ns1.dxgirlz.com.
745. sweet-youngs.com. 3600 IN NS ns2.dxgirlz.com.
746. sweet-youngs.com. 3600 IN A 94.102.48.35
747. sweet-youngs.com. 3600 IN TXT "v=spf1
748. www.sweet-youngs.com. 3600 IN A 94.102.48.35
749.  
750.  
751.  
752. sweet-youngs.com class C netranges:
753. ____________________________________
754.  
755. 94.102.48.0/24
756.  
757.  
758. Performing reverse lookup on 256 ip addresses:
759. _______________________________________________
760.  
761.  
762. 0 results out of 256 IP addresses.
763.  
764.  
765. sweet-youngs.com ip blocks:
766. ____________________________
767.  
768. www.sweet-youngs.com
769. IP address #1: 94.102.48.35
770.  
771. [+] 1 (sub)domains and 1 IP address(es) found
772. [+] completion time: 142 second(s)
773.  
774.  
775.  
776. WhatWeb report for http://sweet-youngs.com
777. Status : 301 Moved Permanently
778. Title : 301 Moved Permanently
779. IP : 94.102.48.35
780. Country : NETHERLANDS, NL
781.  
782. Summary : HTTPServer[nginx/1.12.1], RedirectLocation[http://www.sweet-youngs.com/new.html], nginx[1.12.1]
783.  
784. Detected Plugins:
785. [ HTTPServer ]
786. HTTP server header string. This plugin also attempts to
787. identify the operating system from the server header.
788.  
789. String : nginx/1.12.1 (from server string)
790.  
791. [ RedirectLocation ]
792. HTTP Server string location. used with http-status 301 and
793. 302
794.  
795. String : http://www.sweet-youngs.com/new.html (from location)
796.  
797. [ nginx ]
798. Nginx (Engine-X) is a free, open-source, high-performance
799. HTTP server and reverse proxy, as well as an IMAP/POP3
800. proxy server.
801.  
802. Version : 1.12.1
803. Website : http://nginx.net/
804.  
805. HTTP Headers:
806. HTTP/1.1 301 Moved Permanently
807. Server: nginx/1.12.1
808. Date: Sat, 09 Sep 2017 16:38:16 GMT
809. Content-Type: text/html; charset=iso-8859-1
810. Content-Length: 326
811. Connection: close
812. Location: http://www.sweet-youngs.com/new.html
813.  
814. WhatWeb report for http://www.sweet-youngs.com/new.html
815. Status : 404 Not Found
816. Title : 404 Not Found
817. IP : 94.102.48.35
818. Country : NETHERLANDS, NL
819.  
820. Summary : HTTPServer[nginx/1.12.1], nginx[1.12.1]
821.  
822. Detected Plugins:
823. [ HTTPServer ]
824. HTTP server header string. This plugin also attempts to
825. identify the operating system from the server header.
826.  
827. String : nginx/1.12.1 (from server string)
828.  
829. [ nginx ]
830. Nginx (Engine-X) is a free, open-source, high-performance
831. HTTP server and reverse proxy, as well as an IMAP/POP3
832. proxy server.
833.  
834. Version : 1.12.1
835. Website : http://nginx.net/
836.  
837. HTTP Headers:
838. HTTP/1.1 404 Not Found
839. Server: nginx/1.12.1
840. Date: Sat, 09 Sep 2017 16:38:16 GMT
841. Content-Type: text/html; charset=iso-8859-1
842. Content-Length: 292
843. Connection: close
844.  
845.  
846. [+] Hosts found in search engines:
847. ------------------------------------
848. [-] Resolving hostnames IPs...
849. 94.102.48.35:www.sweet-youngs.com
850.  
851.  
852.  
853. ^ ^
854. _ __ _ ____ _ __ _ _ ____
855. ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
856. | V V // o // _/ | V V // 0 // 0 // _/
857. |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
858. <
859. ...'
860.  
861. WAFW00F - Web Application Firewall Detection Tool
862.  
863. By Sandro Gauci && Wendel G. Henrique
864.  
865. Checking http://sweet-youngs.com
866. Generic Detection results:
867. No WAF detected by the generic detection
868. Number of requests: 13
869.  
870.  
871. DNS Servers for sweet-youngs.com:
872. ns1.dxgirlz.com
873. ns2.dxgirlz.com
874.  
875. Trying zone transfer first...
876. Testing ns1.dxgirlz.com
877.  
878. Whoah, it worked - misconfigured DNS server found:
879. sweet-youngs.com. 3600 IN SOA ( b06s06.com. root.dxgirlz.com.
880. 2015061601 ;serial
881. 10800 ;refresh
882. 3600 ;retry
883. 604800 ;expire
884. 86400 ;minimum
885. )
886. sweet-youngs.com. 3600 IN NS ns1.dxgirlz.com.
887. sweet-youngs.com. 3600 IN NS ns2.dxgirlz.com.
888. sweet-youngs.com. 3600 IN A 94.102.48.35
889. sweet-youngs.com. 3600 IN TXT "v=spf1 ip4:93.174.93.111 a mx ~all"
890. www.sweet-youngs.com. 3600 IN A 94.102.48.35
891.  
892. There isn't much point continuing, you have everything.
893. Have a nice day.
894. Exiting...
895.  
896.  
897.  
898. lbd - load balancing detector 0.2 - Checks if a given domain uses load-balancing.
899. Written by Stefan Behte (http://ge.mine.nu)
900. Proof-of-concept! Might give false positives.
901.  
902. Checking for DNS-Loadbalancing: NOT FOUND
903. Checking for HTTP-Loadbalancing [Server]:
904. nginx/1.12.1
905. NOT FOUND
906.  
907. Checking for HTTP-Loadbalancing [Date]: 16:38:57, 16:38:57, 16:38:57, 16:38:58, 16:38:58, 16:38:58, 16:38:58, 16:38:59, 16:38:59, 16:38:59, 16:38:59, 16:39:00, 16:39:00, 16:39:00, 16:39:00, 16:39:01, 16:39:01, 16:39:01, 16:39:01, 16:39:02, 16:39:02, 16:39:02, 16:39:02, 16:39:03, 16:39:03, 16:39:03, 16:39:03, 16:39:04, 16:39:04, 16:39:04, 16:39:05, 16:39:05, 16:39:05, 16:39:05, 16:39:06, 16:39:06, 16:39:06, 16:39:06, 16:39:07, 16:39:07, 16:39:07, 16:39:07, 16:39:08, 16:39:08, 16:39:08, 16:39:08, 16:39:09, 16:39:09, 16:39:09, 16:39:09, NOT FOUND
908.  
909. Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
910.  
911. sweet-youngs.com does NOT use Load-balancing.
912.  
913.  
914.  
915. Starting smtp-user-enum v1.2 ( http://pentestmonkey.net/tools/smtp-user-enum )
916.  
917. ----------------------------------------------------------
918. | Scan Information |
919. ----------------------------------------------------------
920.  
921. Mode ..................... VRFY
922. Worker Processes ......... 5
923. Usernames file ........... users.txt
924. Target count ............. 1
925. Username count ........... 494
926. Target TCP port .......... 25
927. Query timeout ............ 5 secs
928. Target domain ............
929.  
930. ######## Scan started at Sat Sep 9 14:40:32 2017 #########
931. ######## Scan completed at Sat Sep 9 14:48:47 2017 #########
932. 0 results.
933.  
934. 494 queries in 495 seconds (1.0 queries / sec)
935.  
936.  
937.  
938. Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 14:48 EDT
939. NSE: Loaded 146 scripts for scanning.
940. NSE: Script Pre-scanning.
941. Initiating NSE at 14:48
942. Completed NSE at 14:48, 0.00s elapsed
943. Initiating NSE at 14:48
944. Completed NSE at 14:48, 0.00s elapsed
945. Failed to resolve "sweet-youngs.com.txt".
946. Initiating Parallel DNS resolution of 1 host. at 14:48
947. Completed Parallel DNS resolution of 1 host. at 14:48, 0.47s elapsed
948. Initiating SYN Stealth Scan at 14:48
949. Scanning sweet-youngs.com (94.102.48.35) [100 ports]
950. Discovered open port 143/tcp on 94.102.48.35
951. Discovered open port 3306/tcp on 94.102.48.35
952. Discovered open port 110/tcp on 94.102.48.35
953. Discovered open port 993/tcp on 94.102.48.35
954. Discovered open port 995/tcp on 94.102.48.35
955. Discovered open port 80/tcp on 94.102.48.35
956. Discovered open port 53/tcp on 94.102.48.35
957. Increasing send delay for 94.102.48.35 from 0 to 5 due to 61 out of 152 dropped probes since last increase.
958. Completed SYN Stealth Scan at 14:48, 3.07s elapsed (100 total ports)
959. Initiating Service scan at 14:48
960. Scanning 7 services on sweet-youngs.com (94.102.48.35)
961. Completed Service scan at 14:48, 6.95s elapsed (7 services on 1 host)
962. Initiating OS detection (try #1) against sweet-youngs.com (94.102.48.35)
963. Retrying OS detection (try #2) against sweet-youngs.com (94.102.48.35)
964. adjust_timeouts2: packet supposedly had rtt of -105152 microseconds. Ignoring time.
965. adjust_timeouts2: packet supposedly had rtt of -105152 microseconds. Ignoring time.
966. Initiating Traceroute at 14:49
967. Completed Traceroute at 14:49, 3.02s elapsed
968. Initiating Parallel DNS resolution of 7 hosts. at 14:49
969. Completed Parallel DNS resolution of 7 hosts. at 14:49, 5.61s elapsed
970. NSE: Script scanning 94.102.48.35.
971. Initiating NSE at 14:49
972. Completed NSE at 14:49, 12.76s elapsed
973. Initiating NSE at 14:49
974. Completed NSE at 14:49, 0.00s elapsed
975. Nmap scan report for sweet-youngs.com (94.102.48.35)
976. Host is up (0.13s latency).
977. rDNS record for 94.102.48.35: no-reverse-dns-configured.com
978. Not shown: 84 closed ports
979. PORT STATE SERVICE VERSION
980. 21/tcp filtered ftp
981. 22/tcp filtered ssh
982. 25/tcp filtered smtp
983. 53/tcp open domain ISC BIND 9.8.2rc1
984. | dns-nsid:
985. |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4
986. 80/tcp open http nginx 1.12.1
987. |_http-favicon: Unknown favicon MD5: D41D8CD98F00B204E9800998ECF8427E
988. | http-methods:
989. |_ Supported Methods: GET HEAD POST OPTIONS
990. |_http-server-header: nginx/1.12.1
991. |_http-title: Did not follow redirect to http://www.sweet-youngs.com/new.html
992. 81/tcp filtered hosts2-ns
993. 110/tcp open pop3 Dovecot pop3d
994. |_pop3-capabilities: RESP-CODES SASL(PLAIN LOGIN DIGEST-MD5 CRAM-MD5) USER PIPELINING CAPA UIDL STLS TOP
995. | ssl-cert: Subject: commonName=imap.example.com
996. | Issuer: commonName=imap.example.com
997. | Public Key type: rsa
998. | Public Key bits: 1024
999. | Signature Algorithm: sha1WithRSAEncryption
1000. | Not valid before: 2015-06-12T12:04:14
1001. | Not valid after: 2016-06-11T12:04:14
1002. | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
1003. |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
1004. |_ssl-date: 2017-09-09T16:48:07+00:00; -2h01m10s from scanner time.
1005. 135/tcp filtered msrpc
1006. 139/tcp filtered netbios-ssn
1007. 143/tcp open imap Dovecot imapd
1008. |_imap-capabilities: IMAP4rev1 completed LOGIN-REFERRALS AUTH=PLAIN LITERAL+ Capability ENABLE AUTH=LOGIN ID AUTH=DIGEST-MD5 AUTH=CRAM-MD5A0001 OK SASL-IR STARTTLS IDLE
1009. | ssl-cert: Subject: commonName=imap.example.com
1010. | Issuer: commonName=imap.example.com
1011. | Public Key type: rsa
1012. | Public Key bits: 1024
1013. | Signature Algorithm: sha1WithRSAEncryption
1014. | Not valid before: 2015-06-12T12:04:14
1015. | Not valid after: 2016-06-11T12:04:14
1016. | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
1017. |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
1018. |_ssl-date: 2017-09-09T16:48:07+00:00; -2h01m10s from scanner time.
1019. 445/tcp filtered microsoft-ds
1020. 465/tcp filtered smtps
1021. 587/tcp filtered submission
1022. 993/tcp open ssl/imap Dovecot imapd
1023. | ssl-cert: Subject: commonName=imap.example.com
1024. | Issuer: commonName=imap.example.com
1025. | Public Key type: rsa
1026. | Public Key bits: 1024
1027. | Signature Algorithm: sha1WithRSAEncryption
1028. | Not valid before: 2015-06-12T12:04:14
1029. | Not valid after: 2016-06-11T12:04:14
1030. | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
1031. |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
1032. |_ssl-date: 2017-09-09T16:48:06+00:00; -2h01m10s from scanner time.
1033. 995/tcp open ssl/pop3 Dovecot pop3d
1034. | ssl-cert: Subject: commonName=imap.example.com
1035. | Issuer: commonName=imap.example.com
1036. | Public Key type: rsa
1037. | Public Key bits: 1024
1038. | Signature Algorithm: sha1WithRSAEncryption
1039. | Not valid before: 2015-06-12T12:04:14
1040. | Not valid after: 2016-06-11T12:04:14
1041. | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
1042. |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
1043. |_ssl-date: 2017-09-09T16:48:05+00:00; -2h01m10s from scanner time.
1044. 3306/tcp open mysql MySQL (unauthorized)
1045.  
1046. TRACEROUTE (using port 1723/tcp)
1047. HOP RTT ADDRESS
1048. 1 108.87 ms 10.13.0.1
1049. 2 ...
1050. 3 109.96 ms po101.gra-g2-a75.fr.eu (178.33.103.231)
1051. 4 ...
1052. 5 119.21 ms be100-1113.fra-5-a9.de.eu (91.121.131.19)
1053. 6 119.23 ms be100-2.fra-1-a9.de.eu (94.23.122.217)
1054. 7 ...
1055. 8 136.71 ms vlan3555.bb1.ams2.nl.m247.com (176.10.83.128)
1056. 9 120.50 ms 176.10.83.5
1057. 10 ...
1058. 11 120.53 ms no-reverse-dns-configured.com (94.102.48.35)
1059.  
1060.  
1061.  
1062.  
1063.  
1064. _/ _/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/
1065. _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
1066. _/ _/ _/_/_/_/ _/_/_/ _/ _/_/_/ _/_/_/_/ _/ _/_/_/ _/_/_/_
1067. _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
1068. _/_/_/_/ _/ _/ _/ _/_/_/_/ _/_/_/_/ _/ _/_/_/_/ _/ _/ [v1.06]
1069.  
1070. _/ User-Agent Tester ↵
1071. _/ AKA: Purple Pimp ↵
1072. _/ ChrisJohnRiley ↵
1073. _/ blog.c22.cc ↵
1074.  
1075. [>] Performing initial request and confirming stability
1076. [>] Using User-Agent string Mozilla/5.0
1077.  
1078. [*] HTTPError: HTTP Error 404: Not Found
1079.  
1080. #########################################################################################
1081. Hostname 100nonude.info ISP Quasi Networks LTD. (AS29073)
1082. Continent Africa Flag
1083. SC
1084. Country Seychelles Country Code SC (SYC)
1085. Region Unknown Local time 09 Sep 2017 22:57 +04
1086. City Unknown Latitude -4.583
1087. IP Address 93.174.93.40 Longitude 55.667
1088. #############################################################################################
1089.  
1090. whois 100nonude.info
1091. Domain Name: 100NONUDE.INFO
1092. Registry Domain ID: D503300000038501535-LRMS
1093. Registrar WHOIS Server:
1094. Registrar URL: http://www.nic.ru
1095. Updated Date: 2017-06-12T20:32:55Z
1096. Creation Date: 2017-04-13T08:10:42Z
1097. Registry Expiry Date: 2018-04-13T08:10:42Z
1098. Registrar Registration Expiration Date:
1099. Registrar: Regional Network Information Center, JSC dba RU-CENTER
1100. Registrar IANA ID: 463
1101. Registrar Abuse Contact Email:
1102. Registrar Abuse Contact Phone:
1103. Reseller:
1104. Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
1105. Registry Registrant ID: C201182491-LRMS
1106. Registrant Name: Barinov Andrey
1107. Registrant Organization: Barinov Andrey
1108. Registrant Street: Gvardeyskaya st. 11-51
1109. Registrant City: Melitopol
1110. Registrant State/Province:
1111. Registrant Postal Code: 72307
1112. Registrant Country: UA
1113. Registrant Phone: +380.684506451
1114. Registrant Phone Ext:
1115. Registrant Fax:
1116. Registrant Fax Ext:
1117. Registrant Email: barinandr@mail.ru
1118. Registry Admin ID: C201182491-LRMS
1119. Admin Name: Barinov Andrey
1120. Admin Organization: Barinov Andrey
1121. Admin Street: Gvardeyskaya st. 11-51
1122. Admin City: Melitopol
1123. Admin State/Province:
1124. Admin Postal Code: 72307
1125. Admin Country: UA
1126. Admin Phone: +380.684506451
1127. Admin Phone Ext:
1128. Admin Fax:
1129. Admin Fax Ext:
1130. Admin Email: barinandr@mail.ru
1131. Registry Tech ID: C201182491-LRMS
1132. Tech Name: Barinov Andrey
1133. Tech Organization: Barinov Andrey
1134. Tech Street: Gvardeyskaya st. 11-51
1135. Tech City: Melitopol
1136. Tech State/Province:
1137. Tech Postal Code: 72307
1138. Tech Country: UA
1139. Tech Phone: +380.684506451
1140. Tech Phone Ext:
1141. Tech Fax:
1142. Tech Fax Ext:
1143. Tech Email: barinandr@mail.ru
1144. Registry Billing ID: C201182491-LRMS
1145. Billing Name: Barinov Andrey
1146. Billing Organization: Barinov Andrey
1147. Billing Street: Gvardeyskaya st. 11-51
1148. Billing City: Melitopol
1149. Billing State/Province:
1150. Billing Postal Code: 72307
1151. Billing Country: UA
1152. Billing Phone: +380.684506451
1153. Billing Phone Ext:
1154. Billing Fax:
1155. Billing Fax Ext:
1156. Billing Email: barinandr@mail.ru
1157. Name Server: NS1.DNS-FORCE.NET
1158. Name Server: NS2.DNS-FORCE.NET
1159.  
1160. ###########################################################################################
1161.  
1162. ;100nonude.info. IN ANY
1163.  
1164. ;; ANSWER SECTION:
1165. 100nonude.info. 27357 IN A 93.174.93.40
1166. 100nonude.info. 27357 IN NS ns1.dns-force.net.
1167. 100nonude.info. 27357 IN NS ns2.dns-force.net.
1168.  
1169. ;; Query time: 8 msec
1170. ;; SERVER: 192.168.1.254#53(192.168.1.254)
1171. ;; WHEN: Sat Sep 09 14:59:53 EDT 2017
1172. ;; MSG SIZE rcvd: 108
1173.  
1174. ###########################################################################################
1175. #
1176.  
1177. tcptraceroute -i eth0 100nonude.info
1178.  
1179. Running:
1180. traceroute -T -O info -i eth0 100nonude.info
1181. traceroute to 100nonude.info (93.174.93.40), 30 hops max, 60 byte packets
1182. 1 gateway (192.168.1.254) 0.410 ms 0.587 ms 0.758 ms
1183. 2 10.135.18.1 (10.135.18.1) 15.530 ms 17.020 ms 17.164 ms
1184. 3 75.154.223.222 (75.154.223.222) 29.737 ms 29.906 ms 30.272 ms
1185. 4 lag-113.ear3.NewYork1.Level3.net (4.15.212.245) 30.506 ms 30.834 ms 30.997 ms
1186. 5 ae-237-3613.edge6.Amsterdam1.Level3.net (4.69.162.242) 104.834 ms ae-238-3614.edge6.Amsterdam1.Level3.net (4.69.162.246) 104.952 ms ae-237-3613.edge6.Amsterdam1.Level3.net (4.69.162.242) 105.063 ms
1187. 6 * * *
1188. 7 93.174.93.40 (93.174.93.40) <syn,ack> 103.895 ms 103.743 ms 103.827 ms
1189.  
1190. ###########################################################################################
1191.  
1192. ###########################################################################################
1193.  
1194.  
1195. Checking for HTTP-Loadbalancing [Date]: 17:36:58, 17:36:58, 17:36:59, 17:36:59, 17:36:59, 17:37:00, 17:37:00, 17:37:00, 17:37:00, 17:37:01, 17:37:01, 17:37:01, 17:37:02, 17:37:02, 17:37:02, 17:37:02, 17:37:03, 17:37:03, 17:37:03, 17:37:04, 17:37:04, 17:37:04, 17:37:04, 17:37:05, 17:37:05, 17:37:05, 17:37:06, 17:37:06, 17:37:06, 17:37:06, 17:37:07, 17:37:07, 17:37:07, 17:37:08, 17:37:10, 17:37:14, 17:37:15, 17:37:17, 17:37:21, 17:37:22, 17:37:23, 17:37:25, 17:37:30, 17:37:30, 17:37:30, 17:37:30, 17:37:31, 17:37:31, 17:37:31, 17:37:32, NOT FOUND
1196.  
1197. ###########################################################################################
1198.  
1199. nmap -PN -n -F -T4 -sV -A -oG temp.txt 100nonude.info
1200.  
1201. Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 15:01 EDT
1202. Nmap scan report for 100nonude.info (93.174.93.40)
1203. Host is up (0.16s latency).
1204. Not shown: 92 closed ports
1205. PORT STATE SERVICE VERSION
1206. 22/tcp open ssh OpenSSH 5.3 (protocol 2.0)
1207. | ssh-hostkey:
1208. |_ 2048 c6:97:3d:68:af:14:9e:c0:1a:9c:a4:f6:75:32:ae:6f (RSA)
1209. 25/tcp filtered smtp
1210. 80/tcp open http nginx 1.0.15
1211. |_http-generator: CuteHTML
1212. |_http-server-header: nginx/1.0.15
1213. |_http-title: ? 100 NoNude Models ?
1214. 135/tcp filtered msrpc
1215. 139/tcp filtered netbios-ssn
1216. 445/tcp filtered microsoft-ds
1217. 465/tcp filtered smtps
1218. 587/tcp filtered submission
1219. Aggressive OS guesses: Linux 2.6.32 (92%), Linux 2.6.35 (92%), Linux 2.6.39 (92%), Linux 3.10 (92%), Linux 3.10 - 3.12 (92%), Linux 3.4 (92%), Linux 3.5 (92%), Linux 4.2 (92%), Linux 4.4 (92%), Synology DiskStation Manager 5.1 (92%)
1220. No exact OS matches for host (test conditions non-ideal).
1221. Network Distance: 11 hops
1222.  
1223. TRACEROUTE (using port 8888/tcp)
1224. HOP RTT ADDRESS
1225. 1 110.05 ms 10.13.0.1
1226. 2 ...
1227. 3 110.07 ms 178.33.103.231
1228. 4 ...
1229. 5 118.83 ms 91.121.131.19
1230. 6 119.06 ms 94.23.122.217
1231. 7 ...
1232. 8 124.08 ms 176.10.83.128
1233. 9 120.05 ms 176.10.83.5
1234. 10 ...
1235. 11 120.41 ms 93.174.93.40
1236.  
1237. OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
1238. Nmap done: 1 IP address (1 host up) scanned in 63.34 seconds
1239.  
1240. ###########################################################################################
1241.  
1242. amap -i temp.txt
1243. amap v5.4 (www.thc.org/thc-amap) started at 2017-09-09 15:02:04 - APPLICATION MAPPING mode
1244.  
1245. Protocol on 93.174.93.40:80/tcp matches http
1246. Protocol on 93.174.93.40:22/tcp matches ssh
1247. Protocol on 93.174.93.40:22/tcp matches ssh-openssh
1248. Protocol on 93.174.93.40:80/tcp matches http-apache-2
1249.  
1250. Unidentified ports: none.
1251.  
1252. amap v5.4 finished at 2017-09-09 15:02:10
1253. #############################################################################################
1254. inetnum: 93.174.93.0 - 93.174.93.255
1255. netname: SC-QUASI55
1256. descr: QUASI
1257. country: SC
1258. org: ORG-QNL3-RIPE
1259. admin-c: QNL1-RIPE
1260. tech-c: QNL1-RIPE
1261. status: ASSIGNED PA
1262. mnt-by: QUASINETWORKS-MNT
1263. mnt-lower: QUASINETWORKS-MNT
1264. mnt-routes: QUASINETWORKS-MNT
1265. created: 2008-06-29T21:36:16Z
1266. last-modified: 2016-01-23T22:23:14Z
1267. source: RIPE
1268.  
1269. organisation: ORG-QNL3-RIPE
1270. org-name: Quasi Networks LTD.
1271. org-type: OTHER
1272. address: Suite 1, Second Floor
1273. address: Sound & Vision House, Francis Rachel Street
1274. address: Victoria, Mahe, SEYCHELLES
1275. remarks: *****************************************************************************
1276. remarks: IMPORTANT INFORMATION
1277. remarks: *****************************************************************************
1278. remarks: We are a high bandwidth network provider offering bandwidth solutions.
1279. remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
1280. remarks: Please only use abuse@quasinetworks.com for abuse reports.
1281. remarks: For all other requests, please see the details on our website.
1282. remarks: *****************************************************************************
1283. abuse-mailbox: abuse@quasinetworks.com
1284. abuse-c: AR34302-RIPE
1285. mnt-ref: QUASINETWORKS-MNT
1286. mnt-by: QUASINETWORKS-MNT
1287. created: 2015-11-08T22:25:26Z
1288. last-modified: 2015-11-27T09:37:50Z
1289. source: RIPE # Filtered
1290.  
1291. role: Quasi Networks LTD
1292. address: Suite 1, Second Floor
1293. address: Sound & Vision House, Francis Rachel Street
1294. address: Victoria, Mahe, SEYCHELLES
1295. remarks: *****************************************************************************
1296. remarks: IMPORTANT INFORMATION
1297. remarks: *****************************************************************************
1298. remarks: We are a high bandwidth network provider offering bandwidth solutions.
1299. remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
1300. remarks: Please only use abuse@quasinetworks.com for abuse reports.
1301. remarks: For all other requests, please see the details on our website.
1302. remarks: *****************************************************************************
1303. abuse-mailbox: abuse@quasinetworks.com
1304. nic-hdl: QNL1-RIPE
1305. mnt-by: QUASINETWORKS-MNT
1306. created: 2015-11-07T22:43:04Z
1307. last-modified: 2015-11-07T23:04:49Z
1308. source: RIPE # Filtered
1309.  
1310. % Information related to '93.174.88.0/21as29073'
1311.  
1312. route: 93.174.88.0/21
1313. descr: Quasi Networks LTD (IBC)
1314. origin: as29073
1315. mnt-by: QUASINETWORKS-MNT
1316. created: 2008-06-20T15:33:47Z
1317. last-modified: 2016-01-23T22:26:12Z
1318. source: RIPE
1319.  
1320. % This query was served by the RIPE Database Query Service version 1.89.2 (ANGUS)
1321.  
1322.  
1323. ###########################################################################################
1324. [*] Performing TLD Brute force Enumeration against 100nonude.info
1325. [*] The operation could take up to: 00:01:07
1326. [*] A 100nonude.biz.af 5.45.75.45
1327. [*] A 100nonude.co.asia 91.195.240.135
1328. [*] CNAME 100nonude.biz.at free.biz.at
1329. [*] A free.biz.at 216.92.134.29
1330. [*] A 100nonude.org.aw 142.4.20.12
1331. [*] A 100nonude.co.ba 176.9.45.78
1332. [*] A 100nonude.com.ba 195.222.33.180
1333. [*] A 100nonude.com.be 95.173.170.166
1334. [*] A 100nonude.biz 185.66.9.92
1335. [*] A 100nonude.biz.by 71.18.52.2
1336. [*] A 100nonude.biz.bz 199.59.242.150
1337. [*] A 100nonude.net.cc 54.252.89.206
1338. [*] A 100nonude.com.cc 54.252.107.64
1339. [*] A 100nonude.co.cc 10.10.10.10
1340. [*] A 100nonude.org.ch 72.52.4.122
1341. [*] A 100nonude.biz.cl 185.53.178.8
1342. [*] A 100nonude.com 69.172.201.153
1343. [*] A 100nonude.com.com 52.33.196.199
1344. [*] A 100nonude.net.com 199.59.242.150
1345. [*] A 100nonude.co.com 173.192.115.17
1346. [*] A 100nonude.org.com 23.23.86.44
1347. [*] A 100nonude.co.cm 85.25.140.105
1348. [*] A 100nonude.net.cm 85.25.140.105
1349. [*] CNAME 100nonude.biz.cm i.cns.cm
1350. [*] A i.cns.cm 118.184.56.30
1351. [*] A 100nonude.biz.cr 72.52.4.122
1352. [*] A 100nonude.biz.cx 72.52.4.122
1353. [*] A 100nonude.biz.cz 185.53.179.7
1354. [*] A 100nonude.net.cz 80.250.24.177
1355. [*] A 100nonude.com.cz 62.109.128.30
1356. [*] A 100nonude.com.de 50.56.68.37
1357. [*] CNAME 100nonude.org.de www.org.de
1358. [*] A www.org.de 78.47.128.8
1359. [*] CNAME 100nonude.co.de co.de
1360. [*] A co.de 144.76.162.245
1361. [*] A 100nonude.net.eu 78.46.90.98
1362. [*] A 100nonude.org.eu 78.46.90.98
1363. [*] A 100nonude.biz.fi 185.55.85.123
1364. [*] A 100nonude.fm 173.230.131.38
1365. [*] A 100nonude.biz.fm 173.230.131.38
1366. [*] A 100nonude.org.fr 149.202.133.35
1367. [*] A 100nonude.biz.gl 72.52.4.122
1368. [*] CNAME 100nonude.co.gp co.gp
1369. [*] A co.gp 144.76.162.245
1370. [*] A 100nonude.co.hn 208.100.40.203
1371. [*] CNAME 100nonude.net.hr net.hr
1372. [*] A net.hr 192.0.78.24
1373. [*] A net.hr 192.0.78.25
1374. [*] CNAME 100nonude.biz.hn parkmydomain.vhostgo.com
1375. [*] A parkmydomain.vhostgo.com 107.186.245.118
1376. [*] A 100nonude.co.ht 72.52.4.122
1377. [*] A 100nonude.info 93.174.93.40
1378. [*] A 100nonude.co.jobs 50.17.193.222
1379. [*] A 100nonude.com.jobs 50.19.241.165
1380. [*] A 100nonude.net.jobs 50.19.241.165
1381. [*] A 100nonude.biz.jobs 50.19.241.165
1382. [*] A 100nonude.org.jobs 50.19.241.165
1383. [*] A 100nonude.biz.ky 199.184.144.27
1384. [*] CNAME 100nonude.biz.li 712936.parkingcrew.net
1385. [*] A 712936.parkingcrew.net 185.53.179.29
1386. [*] A 100nonude.biz.lu 195.26.5.2
1387. [*] A 100nonude.biz.ly 64.136.20.39
1388. [*] A 100nonude.biz.md 72.52.4.122
1389. [*] A 100nonude.co.mk 87.76.31.211
1390. [*] A 100nonude.co.mobi 54.225.105.179
1391. [*] A 100nonude.biz.my 202.190.174.44
1392. [*] A 100nonude.co.net 188.166.216.219
1393. [*] A 100nonude.net.net 52.50.81.210
1394. [*] A 100nonude.org.net 23.23.86.44
1395. [*] A 100nonude.net.nl 83.98.157.102
1396. [*] A 100nonude.com.nl 83.98.157.102
1397. [*] A 100nonude.co.nl 37.97.184.204
1398. [*] A 100nonude.co.nr 208.100.40.202
1399. [*] A 100nonude.org.nu 80.92.84.139
1400. [*] A 100nonude.net.nu 199.102.76.78
1401. [*] CNAME 100nonude.co.nu co.nu
1402. [*] A co.nu 144.76.162.245
1403. [*] CNAME 100nonude.com.nu com.nu
1404. [*] A com.nu 144.76.162.245
1405. [*] A 100nonude.org 69.64.146.192
1406. [*] A 100nonude.com.org 23.23.86.44
1407. [*] CNAME 100nonude.net.org pewtrusts.org
1408. [*] A pewtrusts.org 204.74.99.100
1409. [*] A 100nonude.ph 45.79.222.138
1410. [*] A 100nonude.co.ph 45.79.222.138
1411. [*] A 100nonude.com.ph 45.79.222.138
1412. [*] A 100nonude.net.ph 45.79.222.138
1413. [*] A 100nonude.org.ph 45.79.222.138
1414. [*] A 100nonude.co.pl 212.91.6.55
1415. [*] A 100nonude.org.pm 208.73.211.165
1416. [*] A 100nonude.org.pm 208.73.210.217
1417. [*] A 100nonude.org.pm 208.73.211.177
1418. [*] A 100nonude.org.pm 208.73.210.202
1419. [*] A 100nonude.co.ps 66.96.132.56
1420. [*] A 100nonude.pw 141.8.226.58
1421. [*] A 100nonude.co.pw 141.8.226.59
1422. [*] A 100nonude.co.pt 194.107.127.52
1423. [*] CNAME 100nonude.biz.ps biz.ps
1424. [*] A biz.ps 144.76.162.245
1425. [*] A 100nonude.net.pw 141.8.226.59
1426. [*] A 100nonude.biz.pw 141.8.226.59
1427. [*] A 100nonude.org.pw 141.8.226.59
1428. [*] CNAME 100nonude.co.ro now.co.ro
1429. [*] A now.co.ro 185.27.255.9
1430. [*] A 100nonude.org.re 217.70.184.38
1431. [*] A 100nonude.net.ro 69.64.52.127
1432. [*] A 100nonude.com.ru 178.210.89.119
1433. [*] A 100nonude.biz.se 185.53.179.6
1434. [*] CNAME 100nonude.net.se 773147.parkingcrew.net
1435. [*] A 773147.parkingcrew.net 185.53.179.29
1436. [*] A 100nonude.co.sl 91.195.240.135
1437. [*] A 100nonude.com.sr 143.95.106.249
1438. [*] A 100nonude.biz.st 91.121.28.115
1439. [*] A 100nonude.co.su 72.52.4.122
1440. [*] A 100nonude.biz.tc 64.136.20.39
1441. [*] A 100nonude.biz.tf 85.236.153.18
1442. [*] A 100nonude.net.tf 188.40.70.27
1443. [*] A 100nonude.net.tf 188.40.70.29
1444. [*] A 100nonude.net.tf 188.40.117.12
1445. [*] A 100nonude.co.tl 208.100.40.202
1446. [*] A 100nonude.co.to 175.118.124.44
1447. [*] A 100nonude.co.tv 31.186.25.163
1448. [*] A 100nonude.biz.tv 72.52.4.122
1449. [*] A 100nonude.org.tv 72.52.4.122
1450. [*] CNAME 100nonude.biz.uz biz.uz
1451. [*] A biz.uz 144.76.162.245
1452. [*] A 100nonude.vg 88.198.29.97
1453. [*] A 100nonude.co.vg 88.198.29.97
1454. [*] A 100nonude.com.vg 88.198.29.97
1455. [*] A 100nonude.net.vg 68.178.254.180
1456. [*] A 100nonude.biz.vg 89.31.143.20
1457. [*] A 100nonude.ws 64.70.19.203
1458. [*] A 100nonude.com.ws 202.4.48.211
1459. [*] A 100nonude.net.ws 202.4.48.211
1460. [*] A 100nonude.org.ws 202.4.48.211
1461. [*] A 100nonude.biz.ws 184.168.221.104
1462. [i] Scanning Site: http://100nonude.info
1463.  
1464.  
1465.  
1466. B A S I C I N F O
1467. ====================
1468.  
1469.  
1470. [+] Site Title: ? 100 NoNude Models ?
1471. [+] IP address: 93.174.93.40
1472. [+] Web Server: nginx/1.0.15
1473. [+] CMS: Could Not Detect
1474. [+] Cloudflare: Not Detected
1475. [+] Robots File: Found
1476.  
1477. -------------[ contents ]----------------
1478. User-agent: *
1479. Disallow:
1480. Host: nonstop-nn.info
1481. Sitemap: http://nonstop-nn.info/sitemap.xml
1482. -----------[end of contents]-------------
1483.  
1484.  
1485.  
1486. W H O I S L O O K U P
1487. ========================
1488.  
1489. Domain Name: 100NONUDE.INFO
1490. Registry Domain ID: D503300000038501535-LRMS
1491. Registrar WHOIS Server:
1492. Registrar URL: http://www.nic.ru
1493. Updated Date: 2017-06-12T20:32:55Z
1494. Creation Date: 2017-04-13T08:10:42Z
1495. Registry Expiry Date: 2018-04-13T08:10:42Z
1496. Registrar Registration Expiration Date:
1497. Registrar: Regional Network Information Center, JSC dba RU-CENTER
1498. Registrar IANA ID: 463
1499. Registrar Abuse Contact Email:
1500. Registrar Abuse Contact Phone:
1501. Reseller:
1502. Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
1503. Registry Registrant ID: C201182491-LRMS
1504. Registrant Name: Barinov Andrey
1505. Registrant Organization: Barinov Andrey
1506. Registrant Street: Gvardeyskaya st. 11-51
1507. Registrant City: Melitopol
1508. Registrant State/Province:
1509. Registrant Postal Code: 72307
1510. Registrant Country: UA
1511. Registrant Phone: +380.684506451
1512. Registrant Phone Ext:
1513. Registrant Fax:
1514. Registrant Fax Ext:
1515. Registrant Email: barinandr@mail.ru
1516. Registry Admin ID: C201182491-LRMS
1517. Admin Name: Barinov Andrey
1518. Admin Organization: Barinov Andrey
1519. Admin Street: Gvardeyskaya st. 11-51
1520. Admin City: Melitopol
1521. Admin State/Province:
1522. Admin Postal Code: 72307
1523. Admin Country: UA
1524. Admin Phone: +380.684506451
1525. Admin Phone Ext:
1526. Admin Fax:
1527. Admin Fax Ext:
1528. Admin Email: barinandr@mail.ru
1529. Registry Tech ID: C201182491-LRMS
1530. Tech Name: Barinov Andrey
1531. Tech Organization: Barinov Andrey
1532. Tech Street: Gvardeyskaya st. 11-51
1533. Tech City: Melitopol
1534. Tech State/Province:
1535. Tech Postal Code: 72307
1536. Tech Country: UA
1537. Tech Phone: +380.684506451
1538. Tech Phone Ext:
1539. Tech Fax:
1540. Tech Fax Ext:
1541. Tech Email: barinandr@mail.ru
1542. Registry Billing ID: C201182491-LRMS
1543. Billing Name: Barinov Andrey
1544. Billing Organization: Barinov Andrey
1545. Billing Street: Gvardeyskaya st. 11-51
1546. Billing City: Melitopol
1547. Billing State/Province:
1548. Billing Postal Code: 72307
1549. Billing Country: UA
1550. Billing Phone: +380.684506451
1551. Billing Phone Ext:
1552. Billing Fax:
1553. Billing Fax Ext:
1554. Billing Email: barinandr@mail.ru
1555. Name Server: NS1.DNS-FORCE.NET
1556. Name Server: NS2.DNS-FORCE.NET
1557. G E O I P L O O K U P
1558. =========================
1559.  
1560. [i] IP Address: 93.174.93.40
1561. [i] Country: SC
1562. [i] State: N/A
1563. [i] City: N/A
1564. [i] Latitude: -4.583300
1565. [i] Longitude: 55.666698
1566.  
1567.  
1568.  
1569.  
1570. H T T P H E A D E R S
1571. =======================
1572.  
1573.  
1574. [i] HTTP/1.1 200 OK
1575. [i] Server: nginx/1.0.15
1576. [i] Date: Sat, 09 Sep 2017 19:54:55 GMT
1577. [i] Content-Type: text/html; charset=UTF-8
1578. [i] Connection: close
1579. [i] Accept-Ranges: bytes
1580. [i] Vary: Accept-Encoding
1581.  
1582.  
1583.  
1584.  
1585. D N S L O O K U P
1586. ===================
1587.  
1588. 100nonude.info. 78155 IN A 93.174.93.40
1589. 100nonude.info. 78159 IN NS ns2.dns-force.net.
1590. 100nonude.info. 78159 IN NS ns1.dns-force.net.
1591. 100nonude.info. 78159 IN SOA ns1.dns-force.net. hostmaster.dns-force.net. 2012050402 28800 7200 864000 86400
1592.  
1593.  
1594.  
1595.  
1596. S U B N E T C A L C U L A T I O N
1597. ====================================
1598.  
1599. Address = 93.174.93.40
1600. Network = 93.174.93.40 / 32
1601. Netmask = 255.255.255.255
1602. Broadcast = not needed on Point-to-Point links
1603. Wildcard Mask = 0.0.0.0
1604. Hosts Bits = 0
1605. Max. Hosts = 1 (2^0 - 0)
1606. Host Range = { 93.174.93.40 - 93.174.93.40 }
1607.  
1608.  
1609.  
1610. N M A P P O R T S C A N
1611. ============================
1612.  
1613.  
1614. Starting Nmap 7.01 ( https://nmap.org ) at 2017-09-09 21:18 UTC
1615. Nmap scan report for 100nonude.info (93.174.93.40)
1616. Host is up (0.083s latency).
1617. PORT STATE SERVICE VERSION
1618. 21/tcp closed ftp
1619. 22/tcp open ssh OpenSSH 5.3 (protocol 2.0)
1620. 23/tcp closed telnet
1621. 25/tcp closed smtp
1622. 80/tcp open http nginx 1.0.15
1623. 110/tcp closed pop3
1624. 143/tcp closed imap
1625. 443/tcp closed https
1626. 445/tcp closed microsoft-ds
1627. 3389/tcp closed ms-wbt-server
1628.  
1629.  
1630. S U B - D O M A I N F I N D E R
1631. ==================================
1632.  
1633.  
1634. [i] Total Subdomains Found : 1
1635.  
1636. [+] Subdomain: 100nonude.info
1637. [-] IP: 93.174.93.40
1638. 100nonude.info
1639.  
1640.  
1641. Domain Name: 100NONUDE.INFO
1642. Registry Domain ID: D503300000038501535-LRMS
1643. Registrar WHOIS Server:
1644. Registrar URL: http://www.nic.ru
1645. Updated Date: 2017-06-12T20:32:55Z
1646. Creation Date: 2017-04-13T08:10:42Z
1647. Registry Expiry Date: 2018-04-13T08:10:42Z
1648. Registrar Registration Expiration Date:
1649. Registrar: Regional Network Information Center, JSC dba RU-CENTER
1650. Registrar IANA ID: 463
1651. Registrar Abuse Contact Email:
1652. Registrar Abuse Contact Phone:
1653. Reseller:
1654. Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
1655. Registry Registrant ID: C201182491-LRMS
1656. Registrant Name: Barinov Andrey
1657. Registrant Organization: Barinov Andrey
1658. Registrant Street: Gvardeyskaya st. 11-51
1659. Registrant City: Melitopol
1660. Registrant State/Province:
1661. Registrant Postal Code: 72307
1662. Registrant Country: UA
1663. Registrant Phone: +380.684506451
1664. Registrant Phone Ext:
1665. Registrant Fax:
1666. Registrant Fax Ext:
1667. Registrant Email: barinandr@mail.ru
1668. Registry Admin ID: C201182491-LRMS
1669. Admin Name: Barinov Andrey
1670. Admin Organization: Barinov Andrey
1671. Admin Street: Gvardeyskaya st. 11-51
1672. Admin City: Melitopol
1673. Admin State/Province:
1674. Admin Postal Code: 72307
1675. Admin Country: UA
1676. Admin Phone: +380.684506451
1677. Admin Phone Ext:
1678. Admin Fax:
1679. Admin Fax Ext:
1680. Admin Email: barinandr@mail.ru
1681. Registry Tech ID: C201182491-LRMS
1682. Tech Name: Barinov Andrey
1683. Tech Organization: Barinov Andrey
1684. Tech Street: Gvardeyskaya st. 11-51
1685. Tech City: Melitopol
1686. Tech State/Province:
1687. Tech Postal Code: 72307
1688. Tech Country: UA
1689. Tech Phone: +380.684506451
1690. Tech Phone Ext:
1691. Tech Fax:
1692. Tech Fax Ext:
1693. Tech Email: barinandr@mail.ru
1694. Registry Billing ID: C201182491-LRMS
1695. Billing Name: Barinov Andrey
1696. Billing Organization: Barinov Andrey
1697. Billing Street: Gvardeyskaya st. 11-51
1698. Billing City: Melitopol
1699. Billing State/Province:
1700. Billing Postal Code: 72307
1701. Billing Country: UA
1702. Billing Phone: +380.684506451
1703. Billing Phone Ext:
1704. Billing Fax:
1705. Billing Fax Ext:
1706. Billing Email: barinandr@mail.ru
1707. Name Server: NS1.DNS-FORCE.NET
1708. Name Server: NS2.DNS-FORCE.NET
1709.  
1710.  
1711. ;100nonude.info. IN ANY
1712.  
1713. ;; ANSWER SECTION:
1714. 100nonude.info. 19074 IN A 93.174.93.40
1715. 100nonude.info. 19074 IN NS ns2.dns-force.net.
1716. 100nonude.info. 19074 IN NS ns1.dns-force.net.
1717.  
1718. ;; Query time: 8 msec
1719. ;; SERVER: 192.168.1.254#53(192.168.1.254)
1720. ;; WHEN: Sat Sep 09 17:17:56 EDT 2017
1721. ;; MSG SIZE rcvd: 108
1722.  
1723.  
1724. Running:
1725. traceroute -T -O info -i eth0 100nonude.info
1726. traceroute to 100nonude.info (93.174.93.40), 30 hops max, 60 byte packets
1727. 1 gateway (192.168.1.254) 0.509 ms 0.706 ms 0.872 ms
1728. 2 10.135.18.1 (10.135.18.1) 7.443 ms 7.825 ms 8.151 ms
1729. 3 75.154.223.222 (75.154.223.222) 29.672 ms 29.757 ms 30.225 ms
1730. 4 lag-113.ear3.NewYork1.Level3.net (4.15.212.245) 30.429 ms 30.590 ms 30.953 ms
1731. 5 ae-238-3614.edge6.Amsterdam1.Level3.net (4.69.162.246) 104.616 ms ae-237-3613.edge6.Amsterdam1.Level3.net (4.69.162.242) 104.813 ms ae-238-3614.edge6.Amsterdam1.Level3.net (4.69.162.246) 104.985 ms
1732. 6 * * *
1733. 7 93.174.93.40 (93.174.93.40) <syn,ack> 103.497 ms 103.616 ms 103.966 ms
1734.  
1735. ----- 100nonude.info -----
1736.  
1737.  
1738. Host's addresses:
1739. __________________
1740.  
1741. 100nonude.info. 19068 IN A 93.174.93.40
1742.  
1743.  
1744. Wildcard detection using: cwgpsyonxjju
1745. _______________________________________
1746.  
1747. cwgpsyonxjju.100nonude.info. 86400 IN A 93.174.93.40
1748.  
1749.  
1750. !!!!!!!!!!!!!!!!!!!!!!!!!!!!
1751.  
1752. Wildcards detected, all subdomains will point to the same IP address
1753. Omitting results containing 93.174.93.40.
1754. Maybe you are using OpenDNS servers.
1755.  
1756. !!!!!!!!!!!!!!!!!!!!!!!!!!!!
1757.  
1758.  
1759. Name Servers:
1760. ______________
1761.  
1762. ns1.dns-force.net. 33300 IN A 94.102.49.121
1763.  
1764.  
1765. Mail (MX) Servers:
1766. ___________________
1767.  
1768.  
1769.  
1770. Trying Zone Transfers and getting Bind Versions:
1771. _________________________________________________
1772.  
1773.  
1774. Trying Zone Transfer for 100nonude.info on ns2.dns-force.net ...
1775. AXFR record query failed: no socket TCP[93.174.93.40] Connection refused
1776.  
1777. Trying Zone Transfer for 100nonude.info on ns1.dns-force.net ...
1778. 100nonude.info. 86400 IN SOA (
1779. 100nonude.info. 86400 IN A 93.174.93.40
1780. 100nonude.info. 86400 IN NS ns1.dns-force.net.
1781. 100nonude.info. 86400 IN NS ns2.dns-force.net.
1782. *.100nonude.info. 86400 IN A 93.174.93.40
1783.  
1784.  
1785.  
1786. 100nonude.info class C netranges:
1787. __________________________________
1788.  
1789. 93.174.93.0/24
1790.  
1791.  
1792. Performing reverse lookup on 256 ip addresses:
1793. _______________________________________________
1794.  
1795.  
1796. 0 results out of 256 IP addresses.
1797.  
1798.  
1799.  
1800. WhatWeb report for http://100nonude.info
1801. Status : 200 OK
1802. Title : ? 100 NoNude Models ?
1803. IP : 93.174.93.40
1804. Country : NETHERLANDS, NL
1805.  
1806. Summary : MetaGenerator[CuteHTML], HTTPServer[nginx/1.0.15], nginx[1.0.15], Script[JavaScript,text/javascript], AddThis
1807.  
1808. Detected Plugins:
1809. [ AddThis ]
1810. AddThis is a free way to boost traffic back to your site by
1811. making it easier for visitors to share your content.
1812.  
1813. Website : http://www.addthis.com/
1814.  
1815. [ HTTPServer ]
1816. HTTP server header string. This plugin also attempts to
1817. identify the operating system from the server header.
1818.  
1819. String : nginx/1.0.15 (from server string)
1820.  
1821. [ MetaGenerator ]
1822. This plugin identifies meta generator tags and extracts its
1823. value.
1824.  
1825. String : CuteHTML
1826.  
1827. [ Script ]
1828. This plugin detects instances of script HTML elements and
1829. returns the script language/type.
1830.  
1831. String : JavaScript,text/javascript
1832.  
1833. [ nginx ]
1834. Nginx (Engine-X) is a free, open-source, high-performance
1835. HTTP server and reverse proxy, as well as an IMAP/POP3
1836. proxy server.
1837.  
1838. Version : 1.0.15
1839. Website : http://nginx.net/
1840.  
1841. HTTP Headers:
1842. HTTP/1.1 200 OK
1843. Server: nginx/1.0.15
1844. Date: Sat, 09 Sep 2017 19:55:54 GMT
1845. Content-Type: text/html; charset=UTF-8
1846. Connection: close
1847. Accept-Ranges: bytes
1848. Vary: Accept-Encoding
1849. Content-Encoding: gzip
1850. Content-Length: 12452
1851.  
1852.  
1853. [+] Hosts found in search engines:
1854. ------------------------------------
1855. [-] Resolving hostnames IPs...
1856. 93.174.93.40:www.100nonude.info
1857.  
1858.  
1859.  
1860. ^ ^
1861. _ __ _ ____ _ __ _ _ ____
1862. ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
1863. | V V // o // _/ | V V // 0 // 0 // _/
1864. |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
1865. <
1866. ...'
1867.  
1868. WAFW00F - Web Application Firewall Detection Tool
1869.  
1870. By Sandro Gauci && Wendel G. Henrique
1871.  
1872. Checking http://100nonude.info
1873. Generic Detection results:
1874. No WAF detected by the generic detection
1875. Number of requests: 13
1876.  
1877.  
1878. DNS Servers for 100nonude.info:
1879. ns2.dns-force.net
1880. ns1.dns-force.net
1881.  
1882. Trying zone transfer first...
1883. Testing ns2.dns-force.net
1884. Request timed out or transfer not allowed.
1885. Testing ns1.dns-force.net
1886.  
1887. Whoah, it worked - misconfigured DNS server found:
1888. 100nonude.info. 86400 IN SOA ( ns1.dns-force.net. hostmaster.dns-force.net.
1889. 2012050402 ;serial
1890. 28800 ;refresh
1891. 7200 ;retry
1892. 864000 ;expire
1893. 86400 ;minimum
1894. )
1895. 100nonude.info. 86400 IN A 93.174.93.40
1896. 100nonude.info. 86400 IN NS ns1.dns-force.net.
1897. 100nonude.info. 86400 IN NS ns2.dns-force.net.
1898. *.100nonude.info. 86400 IN A 93.174.93.40
1899.  
1900.  
1901. Checking for HTTP-Loadbalancing [Date]: 19:56:50, 19:56:50, 19:56:50, 19:56:51, 19:56:51, 19:56:51, 19:56:52, 19:56:52, 19:56:52, 19:56:53, 19:56:53, 19:56:53, 19:56:53, 19:56:54, 19:56:54, 19:56:54, 19:56:55, 19:56:55, 19:56:55, 19:56:55, 19:56:56, 19:56:56, 19:56:56, 19:56:57, 19:56:57, 19:56:57, 19:56:57, 19:56:58, 19:56:58, 19:56:58, 19:56:59, 19:56:59, 19:56:59, 19:56:59, 19:57:00, 19:57:00, 19:57:00, 19:57:01, 19:57:01, 19:57:01, 19:57:01, 19:57:02, 19:57:02, 19:57:02, 19:57:03, 19:57:03, 19:57:03, 19:57:04, 19:57:04, 19:57:04, NOT FOUND
1902.  
1903. Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
1904.  
1905. 100nonude.info does NOT use Load-balancing.
1906.  
1907.  
1908.  
1909. Starting smtp-user-enum v1.2 ( http://pentestmonkey.net/tools/smtp-user-enum )
1910.  
1911. ----------------------------------------------------------
1912. | Scan Information |
1913. ----------------------------------------------------------
1914.  
1915. Mode ..................... VRFY
1916. Worker Processes ......... 5
1917. Usernames file ........... users.txt
1918. Target count ............. 1
1919. Username count ........... 494
1920. Target TCP port .......... 25
1921. Query timeout ............ 5 secs
1922. Target domain ............
1923.  
1924. ######## Scan started at Sat Sep 9 17:20:31 2017 #########
1925. ######## Scan completed at Sat Sep 9 17:28:46 2017 #########
1926. 0 results.
1927.  
1928. 494 queries in 495 seconds (1.0 queries / sec)
1929.  
1930.  
1931.  
1932. Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 17:28 EDT
1933. NSE: Loaded 146 scripts for scanning.
1934. NSE: Script Pre-scanning.
1935. Initiating NSE at 17:28
1936. Completed NSE at 17:28, 0.00s elapsed
1937. Initiating NSE at 17:28
1938. Completed NSE at 17:28, 0.00s elapsed
1939. Failed to resolve "100nonude.info.txt".
1940. Initiating Parallel DNS resolution of 1 host. at 17:28
1941. Completed Parallel DNS resolution of 1 host. at 17:28, 0.60s elapsed
1942. Initiating SYN Stealth Scan at 17:28
1943. Scanning 100nonude.info (93.174.93.40) [100 ports]
1944. Discovered open port 80/tcp on 93.174.93.40
1945. Discovered open port 22/tcp on 93.174.93.40
1946. Increasing send delay for 93.174.93.40 from 0 to 5 due to 59 out of 146 dropped probes since last increase.
1947. Increasing send delay for 93.174.93.40 from 5 to 10 due to 11 out of 25 dropped probes since last increase.
1948. Completed SYN Stealth Scan at 17:28, 7.12s elapsed (100 total ports)
1949. Initiating Service scan at 17:28
1950. Scanning 2 services on 100nonude.info (93.174.93.40)
1951. Completed Service scan at 17:29, 6.28s elapsed (2 services on 1 host)
1952. Initiating OS detection (try #1) against 100nonude.info (93.174.93.40)
1953. adjust_timeouts2: packet supposedly had rtt of -94333 microseconds. Ignoring time.
1954. adjust_timeouts2: packet supposedly had rtt of -110194 microseconds. Ignoring time.
1955. adjust_timeouts2: packet supposedly had rtt of -110194 microseconds. Ignoring time.
1956. Retrying OS detection (try #2) against 100nonude.info (93.174.93.40)
1957. Initiating Traceroute at 17:29
1958. Completed Traceroute at 17:29, 3.01s elapsed
1959. Initiating Parallel DNS resolution of 8 hosts. at 17:29
1960. Completed Parallel DNS resolution of 8 hosts. at 17:29, 5.51s elapsed
1961. NSE: Script scanning 93.174.93.40.
1962. Initiating NSE at 17:29
1963. Completed NSE at 17:29, 25.31s elapsed
1964. Initiating NSE at 17:29
1965. Completed NSE at 17:29, 0.00s elapsed
1966. Nmap scan report for 100nonude.info (93.174.93.40)
1967. Host is up (0.12s latency).
1968. Not shown: 92 closed ports
1969. PORT STATE SERVICE VERSION
1970. 22/tcp open ssh OpenSSH 5.3 (protocol 2.0)
1971. | ssh-hostkey:
1972. |_ 2048 c6:97:3d:68:af:14:9e:c0:1a:9c:a4:f6:75:32:ae:6f (RSA)
1973. 25/tcp filtered smtp
1974. 80/tcp open http nginx 1.0.15
1975. |_http-favicon: Unknown favicon MD5: D92B1936AF11EC235A2BD448C0E1BFF6
1976. |_http-generator: CuteHTML
1977. | http-methods:
1978. |_ Supported Methods: POST OPTIONS GET HEAD
1979. |_http-server-header: nginx/1.0.15
1980. |_http-title: ? 100 NoNude Models ?
1981. 135/tcp filtered msrpc
1982. 139/tcp filtered netbios-ssn
1983. 445/tcp filtered microsoft-ds
1984. 465/tcp filtered smtps
1985. 587/tcp filtered submission
1986. Aggressive OS guesses: Linux 2.6.32 or 3.10 (91%), Tandberg VCS video conferencing system (91%), Synology DiskStation Manager 5.1 (90%), Linux 2.6.32 (90%), Linux 2.6.35 (90%), Linux 2.6.37 (89%), Linux 3.18 (89%), DD-WRT v24-sp2 (Linux 2.4.36) (88%), Linux 2.6.32 - 2.6.35 (88%), Linux 2.6.39 (88%)
1987. No exact OS matches for host (test conditions non-ideal).
1988. Uptime guess: 22.069 days (since Fri Aug 18 15:50:49 2017)
1989. Network Distance: 11 hops
1990. TCP Sequence Prediction: Difficulty=246 (Good luck!)
1991. IP ID Sequence Generation: All zeros
1992.  
1993. TRACEROUTE (using port 23/tcp)
1994. HOP RTT ADDRESS
1995. 1 110.19 ms 10.13.0.1
1996. 2 ...
1997. 3 110.43 ms po101.gra-g2-a75.fr.eu (178.33.103.231)
1998. 4 112.49 ms 10.95.33.10
1999. 5 119.01 ms be100-1113.fra-5-a9.de.eu (91.121.131.19)
2000. 6 119.04 ms be100-2.fra-1-a9.de.eu (94.23.122.217)
2001. 7 ...
2002. 8 124.50 ms vlan3555.bb1.ams2.nl.m247.com (176.10.83.128)
2003. 9 120.28 ms 176.10.83.5
2004. 10 ...
2005. 11 120.44 ms 93.174.93.40
2006.  
2007.  
2008.  
2009.  
2010. _/ _/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/
2011. _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
2012. _/ _/ _/_/_/_/ _/_/_/ _/ _/_/_/ _/_/_/_/ _/ _/_/_/ _/_/_/_
2013. _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
2014. _/_/_/_/ _/ _/ _/ _/_/_/_/ _/_/_/_/ _/ _/_/_/_/ _/ _/ [v1.06]
2015.  
2016. _/ User-Agent Tester ↵
2017. _/ AKA: Purple Pimp ↵
2018. _/ ChrisJohnRiley ↵
2019. _/ blog.c22.cc ↵
2020.  
2021. [>] Performing initial request and confirming stability
2022. [>] Using User-Agent string Mozilla/5.0
2023.  
2024. [ ] URL (ENTERED): http://100nonude.info
2025. [ ] Response Code: 200 OK
2026. [ ] Server: nginx/1.0.15
2027. [ ] Date: Sat, 09 Sep 2017 20:06:34 GMT
2028. [ ] Content-Type: text/html; charset=UTF-8
2029. [ ] Transfer-Encoding: chunked
2030. [ ] Connection: close
2031. [ ] Accept-Ranges: bytes
2032. [ ] Vary: Accept-Encoding
2033. [ ] Data (MD5): 87c6c60cd93c32ccd594791ea8ede54d
2034.  
2035. [1] Pass
2036. [2] Pass
2037. [3] Pass
2038.  
2039. [>] URL appears stable. Beginning test
2040.  
2041. [>] Using DEFAULT User-Agent Strings
2042.  
2043. [>] Using Crazy User-Agent Strings
2044. [>] Using Bot User-Agent Strings
2045.  
2046. [>] Output: [+] Added Headers, [-] Removed Headers, [!] Altered Headers, [ ] No Change
2047.  
2048.  
2049. [>] User-Agent String : Windows-Media-Player/9.00.00.4503
2050.  
2051.  
2052. [!] Data (MD5): 144fd0404615872960264b53118f1b22
2053.  
2054.  
2055. [>] User-Agent String : Mozilla/5.0 (PLAYSTATION 3; 2.00)
2056.  
2057.  
2058. [!] Data (MD5): 02c56a171176be875efebd8b525dc1e0
2059.  
2060.  
2061. [>] User-Agent String : TrackBack/1.02
2062.  
2063.  
2064. [!] Data (MD5): 0a2533a1c242a1d9b047a5f0f811c63d
2065.  
2066.  
2067. [>] User-Agent String : wispr
2068.  
2069.  
2070. [!] Data (MD5): ceee78c85b52f2757304662f5e662281
2071.  
2072.  
2073. [>] User-Agent String : EMPTY USER-AGENT STRING!
2074.  
2075.  
2076. [!] Data (MD5): c22a6da3b3a035a8e06825b23cb8409b
2077.  
2078.  
2079. [>] User-Agent String : Googlebot/2.1 (+http://www.google.com/bot.html)
2080.  
2081.  
2082. [!] Data (MD5): 66d4a995ecae72ca9dba1b9951b59808
2083.  
2084.  
2085. [>] User-Agent String : Googlebot-Image/1.0
2086.  
2087.  
2088. [!] Data (MD5): 39a5bb826a8c6b9d2e5e25a822afbb82
2089.  
2090.  
2091. [>] User-Agent String : Mediapartners-Google
2092.  
2093.  
2094. [!] Data (MD5): 97ddd72c9398785ae791946ad46f015c
2095.  
2096.  
2097. [>] User-Agent String : Mozilla/2.0 (compatible; Ask Jeeves)
2098.  
2099.  
2100. [!] Data (MD5): 2831a3ffc5feac75b6f598e7e2e05ec6
2101.  
2102.  
2103. [>] User-Agent String : msnbot-Products/1.0 (+http://search.msn.com/msnbot.htm)
2104.  
2105.  
2106. [!] Data (MD5): 0a34fa4d84770aa02225c6b28f24ee1f
2107.  
2108.  
2109. [>] User-Agent String : mmcrawler
2110.  
2111.  
2112. [!] Data (MD5): 4265d1f2f8187725c89f0206f70b4b69
2113.  
2114.  
2115. [>] Checks completed... try enabling VERBOSE mode for more detailed output
2116.  
2117. [>] That's all folks... Fo' Shizzle!
2118. #########################################################################################
2119. Hostname sgirls.hotdolls.info ISP Quasi Networks LTD. (AS29073)
2120. Continent Africa Flag
2121. SC
2122. Country Seychelles Country Code SC (SYC)
2123. Region Unknown Local time 09 Sep 2017 23:19 +04
2124. City Unknown Latitude -4.583
2125. IP Address 80.82.79.11 Longitude 55.667
2126. #########################################################################################
2127. s
2128. dig sgirls.hotdolls.info any
2129.  
2130. ; <<>> DiG 9.10.3-P4-Debian <<>> sgirls.hotdolls.info any
2131. ;; global options: +cmd
2132. ;; Got answer:
2133. ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 142
2134. ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
2135.  
2136. ;; OPT PSEUDOSECTION:
2137. ; EDNS: version: 0, flags:; udp: 4096
2138. ;; QUESTION SECTION:
2139. ;sgirls.hotdolls.info. IN ANY
2140.  
2141. ;; ANSWER SECTION:
2142. sgirls.hotdolls.info. 1778 IN A 80.82.79.11
2143.  
2144. ;; Query time: 9 msec
2145. ;; SERVER: 192.168.1.254#53(192.168.1.254)
2146. ;; WHEN: Sat Sep 09 17:56:55 EDT 2017
2147. ;; MSG SIZE rcvd: 65
2148.  
2149.  
2150. ###########################################################################################
2151.  
2152. tcptraceroute -i eth0 sgirls.hotdolls.info
2153.  
2154. Running:
2155. traceroute -T -O info -i eth0 sgirls.hotdolls.info
2156. traceroute to sgirls.hotdolls.info (80.82.79.11), 30 hops max, 60 byte packets
2157. 1 gateway (192.168.1.254) 0.377 ms 0.538 ms 0.698 ms
2158. 2 10.135.18.1 (10.135.18.1) 6.921 ms 7.570 ms 7.602 ms
2159. 3 75.154.223.222 (75.154.223.222) 29.862 ms 29.913 ms 29.979 ms
2160. 4 lag-113.ear3.NewYork1.Level3.net (4.15.212.245) 35.050 ms 35.239 ms 35.299 ms
2161. 5 ae-240-3616.edge6.Amsterdam1.Level3.net (4.69.162.254) 105.067 ms ae-239-3615.edge6.Amsterdam1.Level3.net (4.69.162.250) 105.142 ms 105.185 ms
2162. 6 * * *
2163. 7 no-reverse-dns-configured.com (80.82.79.11) <syn,ack> 103.541 ms 103.603 ms *
2164.  
2165. ###########################################################################################
2166.  
2167. ###########################################################################################
2168.  
2169. nmap -PN -n -F -T4 -sV -A -oG temp.txt sgirls.hotdolls.info
2170.  
2171. Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 17:59 EDT
2172. Nmap scan report for sgirls.hotdolls.info (80.82.79.11)
2173. Host is up (0.29s latency).
2174. Not shown: 84 closed ports
2175. PORT STATE SERVICE VERSION
2176. 21/tcp filtered ftp
2177. 22/tcp filtered ssh
2178. 25/tcp filtered smtp
2179. 53/tcp open domain ISC BIND 9.8.2rc1
2180. 80/tcp open http nginx 1.12.1
2181. |_http-server-header: nginx/1.12.1
2182. |_http-title: SCHOOLGIRLS LIST - Preteen Models, Young Russian Teen Models, ...
2183. 81/tcp filtered hosts2-ns
2184. 110/tcp open pop3 Dovecot pop3d
2185. |_pop3-capabilities: SASL(PLAIN LOGIN DIGEST-MD5 CRAM-MD5) TOP CAPA RESP-CODES STLS UIDL PIPELINING USER
2186. 135/tcp filtered msrpc
2187. 139/tcp filtered netbios-ssn
2188. 143/tcp open imap Dovecot imapd
2189. 445/tcp filtered microsoft-ds
2190. 465/tcp filtered smtps
2191. 587/tcp filtered submission
2192. 993/tcp open ssl/imaps?
2193. |_imap-capabilities: CAPABILITY
2194. | ssl-cert: Subject: commonName=imap.example.com
2195. | Not valid before: 2015-06-12T12:04:14
2196. |_Not valid after: 2016-06-11T12:04:14
2197. |_ssl-date: 2017-09-09T19:58:33+00:00; -2h01m11s from scanner time.
2198. 995/tcp open ssl/pop3s?
2199. | ssl-cert: Subject: commonName=imap.example.com
2200. | Not valid before: 2015-06-12T12:04:14
2201. |_Not valid after: 2016-06-11T12:04:14
2202. |_ssl-date: 2017-09-09T19:58:33+00:00; -2h01m11s from scanner time.
2203. 3306/tcp open mysql MySQL (unauthorized)
2204. Device type: general purpose|firewall|storage-misc|WAP|webcam
2205. Running (JUST GUESSING): Linux 2.6.X|3.X|4.X|2.4.X (99%), WatchGuard Fireware 11.X (94%),
2206. TRACEROUTE (using port 1723/tcp)
2207. HOP RTT ADDRESS
2208. 1 ...
2209. 2 1395.74 ms 37.187.24.252
2210. 3 1391.48 ms 178.33.103.231
2211. 4 1399.49 ms 10.95.33.10
2212. 5 1411.49 ms 91.121.131.19
2213. 6 1405.31 ms 94.23.122.217
2214. 7 ...
2215. 8 1424.33 ms 176.10.83.128
2216. 9 1420.00 ms 176.10.83.119
2217. 10 ...
2218. 11 1417.55 ms 80.82.79.11
2219.  
2220. OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
2221. Nmap done: 1 IP address (1 host up) scanned in 111.60 seconds
2222.  
2223. ###########################################################################################
2224.  
2225. amap -i temp.txt
2226. amap v5.4 (www.thc.org/thc-amap) started at 2017-09-09 18:00:52 - APPLICATION MAPPING mode
2227.  
2228. Protocol on 80.82.79.11:80/tcp matches http
2229. Protocol on 80.82.79.11:80/tcp matches http-apache-2
2230. Protocol on 80.82.79.11:110/tcp matches pop3
2231. Protocol on 80.82.79.11:143/tcp matches imap
2232. Protocol on 80.82.79.11:3306/tcp matches mysql
2233. Protocol on 80.82.79.11:3306/tcp matches mysql-secured
2234. Protocol on 80.82.79.11:993/tcp matches ssl
2235. Protocol on 80.82.79.11:995/tcp matches ssl
2236. Protocol on 80.82.79.11:53/tcp matches dns
2237.  
2238. Unidentified ports: none.
2239.  
2240. amap v5.4 finished at 2017-09-09 18:01:15
2241.  
2242. ###########################################################################################
2243.  
2244.  
2245. inetnum: 80.82.79.0 - 80.82.79.255
2246. netname: SC-QUASI80
2247. descr: QUASI
2248. country: SC
2249. org: ORG-QNL3-RIPE
2250. admin-c: QNL1-RIPE
2251. tech-c: QNL1-RIPE
2252. status: ASSIGNED PA
2253. mnt-by: QUASINETWORKS-MNT
2254. mnt-lower: QUASINETWORKS-MNT
2255. mnt-routes: QUASINETWORKS-MNT
2256. created: 2010-08-25T21:29:49Z
2257. last-modified: 2016-01-23T23:04:27Z
2258. source: RIPE
2259.  
2260. organisation: ORG-QNL3-RIPE
2261. org-name: Quasi Networks LTD.
2262. org-type: OTHER
2263. address: Suite 1, Second Floor
2264. address: Sound & Vision House, Francis Rachel Street
2265. address: Victoria, Mahe, SEYCHELLES
2266. remarks: *****************************************************************************
2267. remarks: IMPORTANT INFORMATION
2268. remarks: *****************************************************************************
2269. remarks: We are a high bandwidth network provider offering bandwidth solutions.
2270. remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
2271. remarks: Please only use abuse@quasinetworks.com for abuse reports.
2272. remarks: For all other requests, please see the details on our website.
2273. remarks: *****************************************************************************
2274. abuse-mailbox: abuse@quasinetworks.com
2275. abuse-c: AR34302-RIPE
2276. mnt-ref: QUASINETWORKS-MNT
2277. mnt-by: QUASINETWORKS-MNT
2278. created: 2015-11-08T22:25:26Z
2279. last-modified: 2015-11-27T09:37:50Z
2280. source: RIPE # Filtered
2281.  
2282. role: Quasi Networks LTD
2283. address: Suite 1, Second Floor
2284. address: Sound & Vision House, Francis Rachel Street
2285. address: Victoria, Mahe, SEYCHELLES
2286. remarks: *****************************************************************************
2287. remarks: IMPORTANT INFORMATION
2288. remarks: *****************************************************************************
2289. remarks: We are a high bandwidth network provider offering bandwidth solutions.
2290. remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
2291. remarks: Please only use abuse@quasinetworks.com for abuse reports.
2292. remarks: For all other requests, please see the details on our website.
2293. remarks: *****************************************************************************
2294. abuse-mailbox: abuse@quasinetworks.com
2295. nic-hdl: QNL1-RIPE
2296. mnt-by: QUASINETWORKS-MNT
2297. created: 2015-11-07T22:43:04Z
2298. last-modified: 2015-11-07T23:04:49Z
2299. source: RIPE # Filtered
2300.  
2301. % Information related to '80.82.79.0/24AS29073'
2302.  
2303. route: 80.82.79.0/24
2304. descr: Quasi Networks LTD (IBC)
2305. origin: AS29073
2306. mnt-by: QUASINETWORKS-MNT
2307. created: 2010-08-25T21:31:02Z
2308. last-modified: 2016-01-23T23:04:45Z
2309. source: RIPE
2310.  
2311. % This query was served by the RIPE Database Query Service version 1.89.2 (ANGUS)
2312.  
2313. ###########################################################################################
2314. [i] Scanning Site: http://sgirls.hotdolls.info
2315.  
2316.  
2317.  
2318. B A S I C I N F O
2319. ====================
2320.  
2321.  
2322. [+] Site Title: SCHOOLGIRLS LIST - Preteen Models, Young Russian Teen Models, Teen Models, Young Teen Models Nonnude, Young Teen Portfolio Models, Teen Fashion Models, Teen Glamour Models, Teen Girl Models, Teen Models Gallery, Models Teen, Teen Model
2323. [+] IP address: 80.82.79.11
2324. [+] Web Server: nginx/1.12.1
2325. [+] CMS: Could Not Detect
2326. [+] Cloudflare: Not Detected
2327. [+] Robots File: Could NOT Find robots.txt!
2328.  
2329.  
2330.  
2331.  
2332. G E O I P L O O K U P
2333. =========================
2334.  
2335. [i] IP Address: 80.82.79.11
2336. [i] Country: SC
2337. [i] State: N/A
2338. [i] City: N/A
2339. [i] Latitude: -4.583300
2340. [i] Longitude: 55.666698
2341.  
2342.  
2343.  
2344.  
2345. H T T P H E A D E R S
2346. =======================
2347.  
2348.  
2349. [i] HTTP/1.1 200 OK
2350. [i] Server: nginx/1.12.1
2351. [i] Date: Sat, 09 Sep 2017 19:56:14 GMT
2352. [i] Content-Type: text/html; charset=UTF-8
2353. [i] Connection: close
2354. [i] Accept-Ranges: bytes
2355.  
2356.  
2357.  
2358.  
2359. D N S L O O K U P
2360. ===================
2361.  
2362. sgirls.hotdolls.info. 1796 IN A 80.82.79.11
2363.  
2364.  
2365.  
2366.  
2367. S U B N E T C A L C U L A T I O N
2368. ====================================
2369.  
2370. Address = 80.82.79.11
2371. Network = 80.82.79.11 / 32
2372. Netmask = 255.255.255.255
2373. Broadcast = not needed on Point-to-Point links
2374. Wildcard Mask = 0.0.0.0
2375. Hosts Bits = 0
2376. Max. Hosts = 1 (2^0 - 0)
2377. Host Range = { 80.82.79.11 - 80.82.79.11 }
2378.  
2379.  
2380.  
2381. N M A P P O R T S C A N
2382. ============================
2383.  
2384.  
2385. Starting Nmap 7.01 ( https://nmap.org ) at 2017-09-09 21:57 UTC
2386. Nmap scan report for sgirls.hotdolls.info (80.82.79.11)
2387. Host is up (0.082s latency).
2388. rDNS record for 80.82.79.11: no-reverse-dns-configured.com
2389. PORT STATE SERVICE VERSION
2390. 21/tcp filtered ftp
2391. 22/tcp filtered ssh
2392. 23/tcp closed telnet
2393. 25/tcp open smtp Postfix smtpd
2394. 80/tcp open http nginx 1.12.1
2395. 110/tcp open pop3 Dovecot pop3d
2396. 143/tcp open imap Dovecot imapd
2397. 443/tcp closed https
2398. 445/tcp closed microsoft-ds
2399. 3389/tcp closed ms-wbt-server
2400. Service Info: Host: b06s06.com
2401.  
2402. Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
2403. Nmap done: 1 IP address (1 host up) scanned in 8.44 seconds
2404.  
2405.  
2406.  
2407. S U B - D O M A I N F I N D E R
2408. ==================================
2409.  
2410.  
2411. [i] Total Subdomains Found : 1
2412.  
2413. [+] Subdomain: sgirls.hotdolls.info
2414. [-] IP: 80.82.79.11
2415.  
2416.  
2417.  
2418.  
2419.  
2420. R E V E R S E I P L O O K U P
2421. ==================================
2422.  
2423.  
2424. [i] Total Sites Found On This Server : 7
2425.  
2426.  
2427. [#] crazy-models.photo-angels.name
2428. [-] CMS: Could Not Detect
2429.  
2430. [#] nn-girls.biz
2431. [-] CMS: Could Not Detect
2432.  
2433. [#] sgirls.hotdolls.info
2434. [-] CMS: Could Not Detect
2435.  
2436. [#] teeny-video.photo-angels.name
2437. [-] CMS: Could Not Detect
2438.  
2439. [#] www.atlasphones.com
2440. [-] CMS: Could Not Detect
2441.  
2442. [#] www.charming-dolls.info
2443. [-] CMS: Could Not Detect
2444.  
2445. [#] www.youngs-list.com,
2446. [-] CMS: Could Not Detect
2447. [*] Performing TLD Brute force Enumeration against sgirls.hotdolls.info
2448. [*] The operation could take up to: 00:01:07
2449. [*] A sgirls.biz.af 5.45.75.45
2450. [*] A sgirls.co.asia 91.195.240.135
2451. [*] CNAME sgirls.biz.at free.biz.at
2452. [*] A free.biz.at 216.92.134.29
2453. [*] A sgirls.org.aw 142.4.20.12
2454. [*] A sgirls.com.ba 195.222.33.180
2455. [*] A sgirls.com.be 95.173.170.166
2456. [*] A sgirls.co.ba 176.9.45.78
2457. [*] A sgirls.biz.by 71.18.52.2
2458. [*] A sgirls.biz.bz 199.59.242.150
2459. [*] A sgirls.net.cc 54.252.89.206
2460. [*] A sgirls.com.cc 54.252.107.64
2461. [*] A sgirls.co.cc 175.126.123.219
2462. [*] A sgirls.org.ch 72.52.4.122
2463. [*] A sgirls.co.cm 85.25.140.105
2464. [*] A sgirls.net.cm 85.25.140.105
2465. [*] A sgirls.biz.cl 185.53.178.8
2466. [*] A sgirls.com.com 52.33.196.199
2467. [*] A sgirls.net.com 199.59.242.150
2468. [*] A sgirls.org.com 23.23.86.44
2469. [*] A sgirls.co.com 173.192.115.17
2470. [*] A sgirls.com 98.124.245.24
2471. [*] A sgirls.biz.cr 72.52.4.122
2472. [*] CNAME sgirls.biz.cm i.cns.cm
2473. [*] A i.cns.cm 118.184.56.30
2474. [*] A sgirls.biz.cx 72.52.4.122
2475. [*] A sgirls.net.cz 80.250.24.177
2476. [*] A sgirls.biz.cz 185.53.179.7
2477. [*] A sgirls.cz 46.28.105.3
2478. [*] AAAA sgirls.cz 2a02:2b88:1:4::17
2479. [*] A sgirls.com.cz 62.109.128.30
2480. [*] CNAME sgirls.co.de co.de
2481. [*] A co.de 144.76.162.245
2482. [*] CNAME sgirls.org.de www.org.de
2483. [*] A www.org.de 78.47.128.8
2484. [*] A sgirls.com.de 50.56.68.37
2485. [*] A sgirls.de 85.114.133.20
2486. [*] A sgirls.net.eu 78.46.90.98
2487. [*] A sgirls.org.eu 78.46.90.98
2488. [*] A sgirls.biz.fi 185.55.85.123
2489. [*] A sgirls.fm 173.230.131.38
2490. [*] A sgirls.biz.fm 173.230.131.38
2491. [*] A sgirls.org.fr 149.202.133.35
2492. [*] A sgirls.biz.gl 72.52.4.122
2493. [*] CNAME sgirls.co.gp co.gp
2494. [*] A co.gp 144.76.162.245
2495. [*] A sgirls.co.hn 208.100.40.203
2496. [*] CNAME sgirls.net.hr net.hr
2497. [*] A net.hr 192.0.78.24
2498. [*] A net.hr 192.0.78.25
2499. [*] CNAME sgirls.biz.hn parkmydomain.vhostgo.com
2500. [*] A parkmydomain.vhostgo.com 107.186.245.118
2501. [*] A sgirls.co.ht 72.52.4.122
2502. [*] A sgirls.co.jobs 50.17.193.222
2503. [*] A sgirls.net.jobs 50.19.241.165
2504. [*] A sgirls.com.jobs 50.19.241.165
2505. [*] A sgirls.biz.jobs 50.19.241.165
2506. [*] A sgirls.org.jobs 50.19.241.165
2507. [*] A sgirls.biz.ky 199.184.144.27
2508. [*] CNAME sgirls.biz.li 712936.parkingcrew.net
2509. [*] A 712936.parkingcrew.net 185.53.179.29
2510. [*] A sgirls.biz.lu 195.26.5.2
2511. [*] A sgirls.biz.ly 64.136.20.39
2512. [*] A sgirls.biz.md 72.52.4.122
2513. [*] A sgirls.co.mk 87.76.31.211
2514. [*] A sgirls.co.mobi 54.225.105.179
2515. [*] A sgirls.biz.my 202.190.174.44
2516. [*] A sgirls.net 88.85.68.115
2517. [*] A sgirls.co.net 188.166.216.219
2518. [*] A sgirls.net.net 52.50.81.210
2519. [*] A sgirls.org.net 23.23.86.44
2520. [*] A sgirls.co.nl 37.97.184.204
2521. [*] A sgirls.com.nl 83.98.157.102
2522. [*] A sgirls.net.nl 83.98.157.102
2523. [*] A sgirls.co.nr 208.100.40.202
2524. [*] CNAME sgirls.co.nu co.nu
2525. [*] A co.nu 144.76.162.245
2526. [*] CNAME sgirls.com.nu com.nu
2527. [*] A com.nu 144.76.162.245
2528. [*] A sgirls.net.nu 199.102.76.78
2529. [*] A sgirls.org.nu 80.92.84.139
2530. [*] A sgirls.com.org 23.23.86.44
2531. [*] CNAME sgirls.net.org pewtrusts.org
2532. [*] A pewtrusts.org 204.74.99.100
2533. [*] A sgirls.ph 45.79.222.138
2534. [*] A sgirls.co.ph 45.79.222.138
2535. [*] A sgirls.com.ph 45.79.222.138
2536. [*] A sgirls.net.ph 45.79.222.138
2537. [*] A sgirls.org.ph 45.79.222.138
2538. [*] A sgirls.co.pl 212.91.6.55
2539. [*] A sgirls.org.pm 208.73.211.165
2540. [*] A sgirls.org.pm 208.73.210.202
2541. [*] A sgirls.org.pm 208.73.210.217
2542. [*] A sgirls.org.pm 208.73.211.177
2543. [*] A sgirls.co.ps 66.96.132.56
2544. [*] CNAME sgirls.biz.ps biz.ps
2545. [*] A biz.ps 144.76.162.245
2546. [*] A sgirls.co.pt 194.107.127.52
2547. [*] A sgirls.co.pw 141.8.226.59
2548. [*] A sgirls.net.pw 141.8.226.59
2549. [*] A sgirls.biz.pw 141.8.226.59
2550. [*] A sgirls.org.pw 141.8.226.59
2551. [*] CNAME sgirls.co.ro now.co.ro
2552. [*] A now.co.ro 185.27.255.9
2553. [*] A sgirls.net.ro 69.64.52.127
2554. [*] A sgirls.org.re 217.70.184.38
2555. [*] A sgirls.ru 185.53.179.40
2556. [*] A sgirls.com.ru 178.210.89.119
2557. [*] A sgirls.biz.se 185.53.179.6
2558. [*] CNAME sgirls.net.se 773147.parkingcrew.net
2559. [*] A 773147.parkingcrew.net 185.53.179.29
2560. [*] A sgirls.co.sl 91.195.240.135
2561. [*] A sgirls.com.sr 143.95.106.249
2562. [*] A sgirls.biz.st 91.121.28.115
2563. [*] A sgirls.co.su 72.52.4.122
2564. [*] A sgirls.biz.tc 64.136.20.39
2565. [*] A sgirls.biz.tf 85.236.153.18
2566. [*] A sgirls.net.tf 188.40.117.12
2567. [*] A sgirls.net.tf 188.40.70.29
2568. [*] A sgirls.net.tf 188.40.70.27
2569. [*] A sgirls.co.tl 208.100.40.202
2570. [*] A sgirls.co.to 175.118.124.44
2571. [*] A sgirls.co.tv 31.186.25.163
2572. [*] A sgirls.biz.tv 72.52.4.122
2573. [*] A sgirls.org.tv 72.52.4.122
2574. [*] CNAME sgirls.biz.uz biz.uz
2575. [*] A biz.uz 144.76.162.245
2576. [*] A sgirls.vg 88.198.29.97
2577. [*] A sgirls.co.vg 88.198.29.97
2578. [*] A sgirls.com.vg 88.198.29.97
2579. [*] A sgirls.net.vg 68.178.254.180
2580. [*] A sgirls.biz.vg 89.31.143.20
2581. [*] A sgirls.ws 64.70.19.203
2582. [*] A sgirls.com.ws 202.4.48.211
2583. [*] A sgirls.net.ws 202.4.48.211
2584. [*] A sgirls.biz.ws 184.168.221.104
2585. [*] A sgirls.org.ws 202.4.48.211
2586.  
2587. IN ANY
2588.  
2589. ;; ANSWER SECTION:
2590. sgirls.hotdolls.info. 1786 IN A 80.82.79.11
2591.  
2592. ;; Query time: 8 msec
2593. ;; SERVER: 192.168.1.254#53(192.168.1.254)
2594. ;; WHEN: Sat Sep 09 17:56:47 EDT 2017
2595. ;; MSG SIZE rcvd: 65
2596.  
2597.  
2598. traceroute -T -O info -i eth0 sgirls.hotdolls.info
2599. traceroute to sgirls.hotdolls.info (80.82.79.11), 30 hops max, 60 byte packets
2600. 1 gateway (192.168.1.254) 0.493 ms 0.691 ms 0.861 ms
2601. 2 10.135.18.1 (10.135.18.1) 14.308 ms 19.953 ms 23.800 ms
2602. 3 75.154.223.222 (75.154.223.222) 29.925 ms 29.999 ms 30.157 ms
2603. 4 lag-113.ear3.NewYork1.Level3.net (4.15.212.245) 37.953 ms 38.623 ms 38.625 ms
2604. 5 ae-239-3615.edge6.Amsterdam1.Level3.net (4.69.162.250) 104.714 ms 104.745 ms 104.815 ms
2605. 6 * * *
2606. 7 no-reverse-dns-configured.com (80.82.79.11) <syn,ack> 103.494 ms 103.310 ms 103.343 ms
2607.  
2608. ----- sgirls.hotdolls.info -----
2609.  
2610.  
2611. Host's addresses:
2612. __________________
2613.  
2614. sgirls.hotdolls.info. 1780 IN A 80.82.79.11
2615.  
2616.  
2617. Name Servers:
2618. ______________
2619.  
2620. sgirls.hotdolls.info NS record query failed: NOERROR
2621.  
2622.  
2623. WhatWeb report for http://sgirls.hotdolls.info
2624. Status : 200 OK
2625. Title : SCHOOLGIRLS LIST - Preteen Models, Young Russian Teen Models, Teen Models, Young Teen Models Nonnude, Young Teen Portfolio Models, Teen Fashion Models, Teen Glamour Models, Teen Girl Models, Teen Models Gallery, Models Teen, Teen Model
2626. IP : 80.82.79.11
2627. Country : NETHERLANDS, NL
2628.  
2629. Summary : HTTPServer[nginx/1.12.1], nginx[1.12.1], Script[JavaScript]
2630.  
2631. Detected Plugins:
2632. [ HTTPServer ]
2633. HTTP server header string. This plugin also attempts to
2634. identify the operating system from the server header.
2635.  
2636. String : nginx/1.12.1 (from server string)
2637.  
2638. [ Script ]
2639. This plugin detects instances of script HTML elements and
2640. returns the script language/type.
2641.  
2642. String : JavaScript
2643.  
2644. [ nginx ]
2645. Nginx (Engine-X) is a free, open-source, high-performance
2646. HTTP server and reverse proxy, as well as an IMAP/POP3
2647. proxy server.
2648.  
2649. Version : 1.12.1
2650. Website : http://nginx.net/
2651.  
2652. HTTP Headers:
2653. HTTP/1.1 200 OK
2654. Server: nginx/1.12.1
2655. Date: Sat, 09 Sep 2017 19:57:30 GMT
2656. Content-Type: text/html; charset=UTF-8
2657. Transfer-Encoding: chunked
2658. Connection: close
2659. Accept-Ranges: bytes
2660.  
2661.  
2662.  
2663. ^ ^
2664. _ __ _ ____ _ __ _ _ ____
2665. ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
2666. | V V // o // _/ | V V // 0 // 0 // _/
2667. |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
2668. <
2669.  
2670.  
2671.  
2672. lbd - load balancing detector 0.2 - Checks if a given domain uses load-balancing.
2673. Written by Stefan Behte (http://ge.mine.nu)
2674. Proof-of-concept! Might give false positives.
2675.  
2676. Checking for DNS-Loadbalancing: NOT FOUND
2677. Checking for HTTP-Loadbalancing [Server]:
2678. nginx/1.12.1
2679. NOT FOUND
2680.  
2681. Checking for HTTP-Loadbalancing [Date]: 20:00:28, 20:00:29, 20:00:29, 20:00:32, 20:00:32, 20:00:32, 20:00:33, 20:00:33, 20:00:34, 20:00:34, 20:00:34, 20:00:34, 20:00:35, 20:00:35, 20:00:35, 20:00:36, 20:00:40, 20:00:40, 20:00:41, 20:00:46, 20:00:54, 20:00:55, 20:00:56, 20:00:56, 20:00:56, 20:00:57, 20:01:07, 20:01:09, 20:01:10, 20:01:11, 20:01:12, 20:01:13, 20:01:17, 20:01:20, 20:01:20, 20:01:21, 20:01:21, 20:01:21, 20:01:22, 20:01:22, 20:01:22, 20:01:23, 20:01:27, 20:01:27, 20:01:28, 20:01:28, 20:01:28, 20:01:28, 20:01:29, 20:01:29, NOT FOUND
2682.  
2683. Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
2684.  
2685. sgirls.hotdolls.info does NOT use Load-balancing.
2686.  
2687.  
2688.  
2689. Starting smtp-user-enum v1.2 ( http://pentestmonkey.net/tools/smtp-user-enum )
2690.  
2691. ----------------------------------------------------------
2692. | Scan Information |
2693. ----------------------------------------------------------
2694.  
2695. Mode ..................... VRFY
2696. Worker Processes ......... 5
2697. Usernames file ........... users.txt
2698. Target count ............. 1
2699. Username count ........... 494
2700. Target TCP port .......... 25
2701. Query timeout ............ 5 secs
2702. Target domain ............
2703.  
2704. ######## Scan started at Sat Sep 9 18:03:24 2017 #########
2705. ######## Scan completed at Sat Sep 9 18:11:39 2017 #########
2706. 0 results.
2707.  
2708. 494 queries in 495 seconds (1.0 queries / sec)
2709.  
2710.  
2711.  
2712. Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 18:11 EDT
2713. NSE: Loaded 146 scripts for scanning.
2714. NSE: Script Pre-scanning.
2715. Initiating NSE at 18:11
2716. Completed NSE at 18:11, 0.00s elapsed
2717. Initiating NSE at 18:11
2718. Completed NSE at 18:11, 0.00s elapsed
2719. Failed to resolve "sgirls.hotdolls.info.txt".
2720. Initiating Parallel DNS resolution of 1 host. at 18:11
2721. Completed Parallel DNS resolution of 1 host. at 18:11, 0.53s elapsed
2722. Initiating SYN Stealth Scan at 18:11
2723. Scanning sgirls.hotdolls.info (80.82.79.11) [100 ports]
2724. Discovered open port 995/tcp on 80.82.79.11
2725. Discovered open port 53/tcp on 80.82.79.11
2726. Discovered open port 143/tcp on 80.82.79.11
2727. Discovered open port 993/tcp on 80.82.79.11
2728. Discovered open port 3306/tcp on 80.82.79.11
2729. Discovered open port 110/tcp on 80.82.79.11
2730. Discovered open port 80/tcp on 80.82.79.11
2731. Increasing send delay for 80.82.79.11 from 0 to 5 due to 61 out of 152 dropped probes since last increase.
2732. Completed SYN Stealth Scan at 18:11, 4.55s elapsed (100 total ports)
2733. Initiating Service scan at 18:11
2734. Scanning 7 services on sgirls.hotdolls.info (80.82.79.11)
2735. Completed Service scan at 18:11, 6.94s elapsed (7 services on 1 host)
2736. Initiating OS detection (try #1) against sgirls.hotdolls.info (80.82.79.11)
2737. Initiating Traceroute at 18:11
2738. Completed Traceroute at 18:11, 3.02s elapsed
2739. Initiating Parallel DNS resolution of 8 hosts. at 18:11
2740. Completed Parallel DNS resolution of 8 hosts. at 18:12, 5.62s elapsed
2741. NSE: Script scanning 80.82.79.11.
2742. Initiating NSE at 18:12
2743. Completed NSE at 18:12, 32.91s elapsed
2744. Initiating NSE at 18:12
2745. Completed NSE at 18:12, 0.00s elapsed
2746. Nmap scan report for sgirls.hotdolls.info (80.82.79.11)
2747. Host is up (0.16s latency).
2748. rDNS record for 80.82.79.11: no-reverse-dns-configured.com
2749. Not shown: 84 closed ports
2750. PORT STATE SERVICE VERSION
2751. 21/tcp filtered ftp
2752. 22/tcp filtered ssh
2753. 25/tcp filtered smtp
2754. 53/tcp open domain ISC BIND 9.8.2rc1
2755. | dns-nsid:
2756. |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4
2757. 80/tcp open http nginx 1.12.1
2758. | http-methods:
2759. | Supported Methods: GET HEAD POST OPTIONS TRACE
2760. |_ Potentially risky methods: TRACE
2761. |_http-server-header: nginx/1.12.1
2762. |_http-title: SCHOOLGIRLS LIST - Preteen Models, Young Russian Teen Models, ...
2763. 81/tcp filtered hosts2-ns
2764. 110/tcp open pop3 Dovecot pop3d
2765. 135/tcp filtered msrpc
2766. 139/tcp filtered netbios-ssn
2767. 143/tcp open imap Dovecot imapd
2768. |_imap-capabilities: STARTTLS ENABLE completed IDLE OK AUTH=DIGEST-MD5 Capability LITERAL+ AUTH=CRAM-MD5A0001 AUTH=PLAIN AUTH=LOGIN IMAP4rev1 ID SASL-IR LOGIN-REFERRALS
2769. | ssl-cert: Subject: commonName=imap.example.com
2770. | Issuer: commonName=imap.example.com
2771. | Public Key type: rsa
2772. | Public Key bits: 1024
2773. | Signature Algorithm: sha1WithRSAEncryption
2774. | Not valid before: 2015-06-12T12:04:14
2775. | Not valid after: 2016-06-11T12:04:14
2776. | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
2777. |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
2778. 445/tcp filtered microsoft-ds
2779. 465/tcp filtered smtps
2780. 587/tcp filtered submission
2781. 993/tcp open ssl/imap Dovecot imapd
2782. | ssl-cert: Subject: commonName=imap.example.com
2783. | Issuer: commonName=imap.example.com
2784. | Public Key type: rsa
2785. | Public Key bits: 1024
2786. | Signature Algorithm: sha1WithRSAEncryption
2787. | Not valid before: 2015-06-12T12:04:14
2788. | Not valid after: 2016-06-11T12:04:14
2789. | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
2790. |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
2791. 995/tcp open ssl/pop3 Dovecot pop3d
2792. | ssl-cert: Subject: commonName=imap.example.com
2793. | Issuer: commonName=imap.example.com
2794. | Public Key type: rsa
2795. | Public Key bits: 1024
2796. | Signature Algorithm: sha1WithRSAEncryption
2797. | Not valid before: 2015-06-12T12:04:14
2798. | Not valid after: 2016-06-11T12:04:14
2799. | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
2800. |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
2801. |_ssl-date: 2017-09-09T20:10:57+00:00; -2h01m12s from scanner time.
2802. 3306/tcp open mysql MySQL (unauthorized)
2803. Device type: general purpose
2804. Running: Linux 2.6.X
2805. OS CPE: cpe:/o:linux:linux_kernel:2.6.39
2806. OS details: Linux 2.6.39
2807. Uptime guess: 11.633 days (since Tue Aug 29 03:01:01 2017)
2808. Network Distance: 11 hops
2809. TCP Sequence Prediction: Difficulty=263 (Good luck!)
2810. IP ID Sequence Generation: All zeros
2811. Service Info: OS: Red Hat Enterprise Linux 6; CPE: cpe:/o:redhat:enterprise_linux:6
2812.  
2813. Host script results:
2814. |_clock-skew: mean: -2h01m12s, deviation: 0s, median: -2h01m12s
2815.  
2816. TRACEROUTE (using port 23/tcp)
2817. HOP RTT ADDRESS
2818. 1 109.41 ms 10.13.0.1
2819. 2 139.74 ms 37.187.24.252
2820. 3 110.99 ms po101.gra-g2-a75.fr.eu (178.33.103.231)
2821. 4 ...
2822. 5 119.23 ms be100-1113.fra-5-a9.de.eu (91.121.131.19)
2823. 6 119.39 ms be100-2.fra-1-a9.de.eu (94.23.122.217)
2824. 7 ...
2825. 8 124.23 ms vlan3555.bb1.ams2.nl.m247.com (176.10.83.128)
2826. 9 120.71 ms 176.10.83.119
2827. 10 ...
2828. 11 120.01 ms no-reverse-dns-configured.com (80.82.79.11)
2829.  
2830. NSE: Script Post-scanning.
2831. Initiating NSE at 18:12
2832. Completed NSE at 18:12, 0.00s elapsed
2833. Initiating NSE at 18:12
2834. Completed NSE at 18:12, 0.00s elapsed
2835. Read data files from: /usr/bin/../share/nmap
2836. OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
2837. Nmap done: 1 IP address (1 host up) scanned in 57.29 seconds
2838. Raw packets sent: 240 (11.514KB) | Rcvd: 190 (8.816KB)
2839.  
2840.  
2841. _/ _/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/
2842. _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
2843. _/ _/ _/_/_/_/ _/_/_/ _/ _/_/_/ _/_/_/_/ _/ _/_/_/ _/_/_/_
2844. _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
2845. _/_/_/_/ _/ _/ _/ _/_/_/_/ _/_/_/_/ _/ _/_/_/_/ _/ _/ [v1.06]
2846.  
2847. _/ User-Agent Tester ↵
2848. _/ AKA: Purple Pimp ↵
2849. _/ ChrisJohnRiley ↵
2850. _/ blog.c22.cc ↵
2851.  
2852. [>] Performing initial request and confirming stability
2853. [>] Using User-Agent string Mozilla/5.0
2854.  
2855. [ ] URL (ENTERED): http://sgirls.hotdolls.info
2856. [ ] Response Code: 200 OK
2857. [ ] Server: nginx/1.12.1
2858. [ ] Date: Sat, 09 Sep 2017 20:11:32 GMT
2859. [ ] Content-Type: text/html; charset=UTF-8
2860. [ ] Transfer-Encoding: chunked
2861. [ ] Connection: close
2862. [ ] Accept-Ranges: bytes
2863. [ ] Data (MD5): 5a88814c10bc5fa844c7e4caf5726898
2864.  
2865. [1] Pass
2866. [2] Pass
2867. [3] Pass
2868.  
2869. [>] URL appears stable. Beginning test
2870.  
2871. [>] Using DEFAULT User-Agent Strings
2872.  
2873. [>] Using Crazy User-Agent Strings
2874. [>] Using Bot User-Agent Strings
2875.  
2876. [>] Output: [+] Added Headers, [-] Removed Headers, [!] Altered Headers, [ ] No Change
2877.  
2878.  
2879. [>] User-Agent String : msnbot-Products/1.0 (+http://search.msn.com/msnbot.htm)
2880.  
2881.  
2882. [!] Data (MD5): a9d4974aa64013e950d0ec1318cc27bf
2883.  
2884.  
2885. [>] User-Agent String : mmcrawler
2886.  
2887.  
2888. [!] Data (MD5): a9d4974aa64013e950d0ec1318cc27bf
2889.  
2890.  
2891. [>] Checks completed... try enabling VERBOSE mode for more detailed output
2892.  
2893. [>] That's all folks... Fo' Shizzle!
2894.  
2895.  
2896. ########################################################################################
2897. Hostname sweet-stars.com ISP Quasi Networks LTD. (AS29073)
2898. Continent Africa Flag
2899. SC
2900. Country Seychelles Country Code SC (SYC)
2901. Region Unknown Local time 10 Sep 2017 05:09 +04
2902. City Unknown Latitude -4.583
2903. IP Address 93.174.91.159 Longitude 55.667
2904. ########################################################################################
2905. sweet-stars.com
2906.  
2907. ###########################################################################################
2908.  
2909. whois sweet-stars.com
2910. Domain Name: SWEET-STARS.COM
2911. Registry Domain ID: 1777584062_DOMAIN_COM-VRSN
2912. Registrar WHOIS Server: whois.bizcn.com
2913. Registrar URL: http://www.bizcn.com
2914. Updated Date: 2017-04-28T09:34:39Z
2915. Creation Date: 2013-01-31T20:46:58Z
2916. Registry Expiry Date: 2018-01-31T20:46:58Z
2917. Registrar: Bizcn.com, Inc.
2918. Registrar IANA ID: 471
2919. Registrar Abuse Contact Email:
2920. Registrar Abuse Contact Phone:
2921. Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited
2922. Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
2923. Name Server: NS23.CLOUDNS.NET
2924. Name Server: PNS21.CLOUDNS.NET
2925. Name Server: PNS23.CLOUDNS.NET
2926. Name Server: PNS24.CLOUDNS.NET
2927. Name Server: PNS28.CLOUDNS.NET
2928. Name Server: PNS30.CLOUDNS.NET
2929.  
2930. Domain name: sweet-stars.com
2931. Registry Domain ID: 1777584062_DOMAIN_COM-VRSN
2932. Registrar WHOIS Server: whois.bizcn.com
2933. Registrar URL: http://www.bizcn.com
2934. Updated Date: 2016-02-06T01:30:12Z
2935. Creation Date: 2013-01-31T20:46:58Z
2936. Registrar Registration Expiration Date: 2018-01-31T20:46:58Z
2937. Registrar: Bizcn.com,Inc.
2938. Registrar IANA ID: 471
2939. Registrar Abuse Contact Email: abuse@bizcn.com
2940. Registrar Abuse Contact Phone: +86.5922577888
2941. Reseller: Cnobin Technology HK Limited
2942. Domain Status: clientDeleteProhibited (http://www.icann.org/epp#clientDeleteProhibited)
2943. Domain Status: clientTransferProhibited (http://www.icann.org/epp#clientTransferProhibited)
2944. Registry Registrant ID: Not Available From Registry
2945. Registrant Name: Wuxi Yilian LLC
2946. Registrant Organization: Wuxi Yilian LLC
2947. Registrant Street: No.1001 Anling Road
2948. Registrant City: Xiamen
2949. Registrant State/Province: Fujian
2950. Registrant Postal Code: 361008
2951. Registrant Country: cn
2952. Registrant Phone: +86.5922577888
2953. Registrant Phone Ext:
2954. Registrant Fax: +86.5922179606
2955. Registrant Fax Ext:
2956. Registrant Email: whoisprivacyprotect@whoisservices.cn
2957. Registry Admin ID: Not Available From Registry
2958. Admin Name: Wuxi Yilian LLC
2959. Admin Organization: Wuxi Yilian LLC
2960. Admin Street: No.1001 Anling Road
2961. Admin City: Xiamen
2962. Admin State/Province: Fujian
2963. Admin Postal Code: 361008
2964. Admin Country: cn
2965. Admin Phone: +86.5922577888
2966. Admin Phone Ext:
2967. Admin Fax: +86.5922179606
2968. Admin Fax Ext:
2969. Admin Email: whoisprivacyprotect@whoisservices.cn
2970. Registry Tech ID: Not Available From Registry
2971. Tech Name: Wuxi Yilian LLC
2972. Tech Organization: Wuxi Yilian LLC
2973. Tech Street: No.1001 Anling Road
2974. Tech City: Xiamen
2975. Tech State/Province: Fujian
2976. Tech Postal Code: 361008
2977. Tech Country: cn
2978. Tech Phone: +86.5922577888
2979. Tech Phone Ext:
2980. Tech Fax: +86.5922179606
2981. Tech Fax Ext:
2982. Tech Email: whoisprivacyprotect@whoisservices.cn
2983. Name Server: pns23.cloudns.net
2984. Name Server: pns24.cloudns.net
2985. Name Server: pns21.cloudns.net
2986. Name Server: pns28.cloudns.net
2987. Name Server: pns30.cloudns.net
2988.  
2989. ###########################################################################################
2990.  
2991. ;sweet-stars.com. IN ANY
2992.  
2993. ;; ANSWER SECTION:
2994. sweet-stars.com. 53 IN A 93.174.91.159
2995. sweet-stars.com. 3387 IN NS pns24.cloudns.net.
2996. sweet-stars.com. 3387 IN NS pns25.cloudns.net.
2997. sweet-stars.com. 3387 IN NS pns27.cloudns.net.
2998. sweet-stars.com. 3387 IN NS pns22.cloudns.net.
2999. sweet-stars.com. 3387 IN NS pns21.cloudns.net.
3000. sweet-stars.com. 3387 IN NS pns26.cloudns.net.
3001. sweet-stars.com. 3387 IN NS ns24.cloudns.net.
3002. sweet-stars.com. 3387 IN NS pns23.cloudns.net.
3003. sweet-stars.com. 3387 IN NS ns21.cloudns.net.
3004. sweet-stars.com. 3387 IN NS ns23.cloudns.net.
3005. sweet-stars.com. 3387 IN NS pns30.cloudns.net.
3006. sweet-stars.com. 3387 IN NS ns22.cloudns.net.
3007. sweet-stars.com. 3387 IN NS pns29.cloudns.net.
3008. sweet-stars.com. 3387 IN NS pns28.cloudns.net.
3009.  
3010.  
3011. Running:
3012. traceroute -T -O info -i eth0 sweet-stars.com
3013. traceroute to sweet-stars.com (93.174.91.159), 30 hops max, 60 byte packets
3014. 1 gateway (192.168.1.254) 0.573 ms 0.755 ms 1.036 ms
3015. 2 10.135.18.1 (10.135.18.1) 14.621 ms 19.836 ms 20.283 ms
3016. 3 75.154.223.222 (75.154.223.222) 29.868 ms 30.001 ms 30.158 ms
3017. 4 lag-113.ear3.NewYork1.Level3.net (4.15.212.245) 31.682 ms 31.773 ms 32.227 ms
3018. 5 ae-238-3614.edge6.Amsterdam1.Level3.net (4.69.162.246) 104.520 ms ae-237-3613.edge6.Amsterdam1.Level3.net (4.69.162.242) 105.100 ms ae-238-3614.edge6.Amsterdam1.Level3.net (4.69.162.246) 105.247 ms
3019. 6 * * *
3020. 7 no-reverse-dns-configured.com (93.174.91.159) <syn,ack> 103.495 ms 103.355 ms 103.406 ms
3021.  
3022. Checking for HTTP-Loadbalancing [Date]: 01:17:10, 01:17:10, 01:17:10, 01:17:11, 01:17:11, 01:17:11, 01:17:11, 01:17:12, 01:17:12, 01:17:12, 01:17:12, 01:17:13, 01:17:14, 01:17:14, 01:17:14, 01:17:15, 01:17:15, 01:17:15, 01:17:15, 01:17:16, 01:17:16, 01:17:17, 01:17:17, 01:17:17, 01:17:18, 01:17:18, 01:17:18, 01:17:18, 01:17:19, 01:17:19, 01:17:19, 01:17:19, 01:17:20, 01:17:20, 01:17:20, 01:17:20, 01:17:21, 01:17:21, 01:17:21, 01:17:22, 01:17:22, 01:17:22, 01:17:22, 01:17:26, 01:17:26, 01:17:27, 01:17:27, 01:17:27, 01:17:27, 01:17:28, NOT FOUND
3023.  
3024. Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
3025.  
3026. sweet-stars.com does NOT use Load-balancing.
3027.  
3028. ###########################################################################################
3029.  
3030. nmap -PN -n -F -T4 -sV -A -oG temp.txt sweet-stars.com
3031.  
3032. Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 21:14 EDT
3033. Nmap scan report for sweet-stars.com (93.174.91.159)
3034. Host is up (0.19s latency).
3035. Not shown: 89 closed ports
3036. PORT STATE SERVICE VERSION
3037. 21/tcp open ftp vsftpd 3.0.2
3038. 22/tcp open ssh OpenSSH 6.0p1 Debian 4+deb7u6 (protocol 2.0)
3039. | ssh-hostkey:
3040. | 1024 ab:16:56:89:21:7e:75:1c:77:f3:a2:7e:c2:f1:4c:09 (DSA)
3041. | 2048 22:f8:e3:f6:1a:1c:6a:99:09:6b:1e:7c:fd:30:e3:95 (RSA)
3042. |_ 256 a8:03:f4:96:36:d1:39:de:2e:4f:56:e9:0f:f3:63:56 (ECDSA)
3043. 25/tcp filtered smtp
3044. 53/tcp open domain
3045. 80/tcp open http nginx
3046. |_http-server-header: nginx
3047. |_http-title: underage models , girls inside
3048. 111/tcp open rpcbind 2-4 (RPC #100000)
3049. 135/tcp filtered msrpc
3050. 139/tcp filtered netbios-ssn
3051. 445/tcp filtered microsoft-ds
3052. 465/tcp filtered smtps
3053. 587/tcp filtered submission
3054. Aggressive OS guesses: Linux 2.6.39 (95%), Linux 3.2 - 3.8 (95%), Linux 3.8 (95%), WatchGuard Fireware 11.8 (95%), Linux 3.1 - 3.2 (94%), Linux 3.5 (93%), Linux 2.6.32 - 2.6.39 (93%), Linux 3.0 - 3.2 (92%), Linux 2.6.32 - 3.0 (92%), Linux 2.6.32 (91%)
3055. No exact OS matches for host (test conditions non-ideal).
3056. Network Distance: 11 hops
3057. Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
3058.  
3059. TRACEROUTE (using port 110/tcp)
3060. HOP RTT ADDRESS
3061. 1 819.91 ms 10.13.0.1
3062. 2 175.04 ms 37.187.24.252
3063. 3 180.79 ms 178.33.103.231
3064. 4 ...
3065. 5 370.26 ms 91.121.131.19
3066. 6 364.47 ms 94.23.122.217
3067. 7 ...
3068. 8 383.47 ms 176.10.83.128
3069. 9 378.72 ms 176.10.83.5
3070. 10 ...
3071. 11 376.24 ms 93.174.91.159
3072.  
3073. OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
3074. Nmap done: 1 IP address (1 host up) scanned in 99.98 seconds
3075.  
3076. ###########################################################################################
3077.  
3078. amap -i temp.txt
3079. amap v5.4 (www.thc.org/thc-amap) started at 2017-09-09 21:15:53 - APPLICATION MAPPING mode
3080.  
3081. Protocol on 93.174.91.159:21/tcp matches ftp
3082. Protocol on 93.174.91.159:22/tcp matches ssh
3083. Protocol on 93.174.91.159:22/tcp matches ssh-openssh
3084. Protocol on 93.174.91.159:80/tcp matches http
3085. Protocol on 93.174.91.159:111/tcp matches rpc
3086. Protocol on 93.174.91.159:53/tcp matches dns
3087. Protocol on 93.174.91.159:111/tcp matches rpc-rpcbind-v4
3088. ########################################################################################
3089. inetnum: 93.174.91.0 - 93.174.91.255
3090. netname: SC-QUASI52
3091. descr: QUASI
3092. country: SC
3093. org: ORG-QNL3-RIPE
3094. admin-c: QNL1-RIPE
3095. tech-c: QNL1-RIPE
3096. status: ASSIGNED PA
3097. mnt-by: QUASINETWORKS-MNT
3098. mnt-lower: QUASINETWORKS-MNT
3099. mnt-routes: QUASINETWORKS-MNT
3100. created: 2016-01-23T22:20:58Z
3101. last-modified: 2016-01-23T22:20:58Z
3102. source: RIPE
3103.  
3104. organisation: ORG-QNL3-RIPE
3105. org-name: Quasi Networks LTD.
3106. org-type: OTHER
3107. address: Suite 1, Second Floor
3108. address: Sound & Vision House, Francis Rachel Street
3109. address: Victoria, Mahe, SEYCHELLES
3110. remarks: *****************************************************************************
3111. remarks: IMPORTANT INFORMATION
3112. remarks: *****************************************************************************
3113. remarks: We are a high bandwidth network provider offering bandwidth solutions.
3114. remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
3115. remarks: Please only use abuse@quasinetworks.com for abuse reports.
3116. remarks: For all other requests, please see the details on our website.
3117. remarks: *****************************************************************************
3118. abuse-mailbox: abuse@quasinetworks.com
3119. abuse-c: AR34302-RIPE
3120. mnt-ref: QUASINETWORKS-MNT
3121. mnt-by: QUASINETWORKS-MNT
3122. created: 2015-11-08T22:25:26Z
3123. last-modified: 2015-11-27T09:37:50Z
3124. source: RIPE # Filtered
3125.  
3126. role: Quasi Networks LTD
3127. address: Suite 1, Second Floor
3128. address: Sound & Vision House, Francis Rachel Street
3129. address: Victoria, Mahe, SEYCHELLES
3130. remarks: *****************************************************************************
3131. remarks: IMPORTANT INFORMATION
3132. remarks: *****************************************************************************
3133. remarks: We are a high bandwidth network provider offering bandwidth solutions.
3134. remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
3135. remarks: Please only use abuse@quasinetworks.com for abuse reports.
3136. remarks: For all other requests, please see the details on our website.
3137. remarks: *****************************************************************************
3138. abuse-mailbox: abuse@quasinetworks.com
3139. nic-hdl: QNL1-RIPE
3140. mnt-by: QUASINETWORKS-MNT
3141. created: 2015-11-07T22:43:04Z
3142. last-modified: 2015-11-07T23:04:49Z
3143. source: RIPE # Filtered
3144.  
3145. % Information related to '93.174.88.0/21as29073'
3146.  
3147. route: 93.174.88.0/21
3148. descr: Quasi Networks LTD (IBC)
3149. origin: as29073
3150. mnt-by: QUASINETWORKS-MNT
3151. created: 2008-06-20T15:33:47Z
3152. last-modified: 2016-01-23T22:26:12Z
3153. source: RIPE
3154.  
3155. ###########################################################################################
3156. [i] Scanning Site: http://sweet-stars.com
3157.  
3158.  
3159.  
3160. B A S I C I N F O
3161. ====================
3162.  
3163.  
3164. [+] Site Title: underage models , girls inside
3165. [+] IP address: 93.174.91.159
3166. [+] Web Server: nginx
3167. [+] CMS: Could Not Detect
3168. [+] Cloudflare: Not Detected
3169. [+] Robots File: Could NOT Find robots.txt!
3170.  
3171.  
3172.  
3173.  
3174. W H O I S L O O K U P
3175. ========================
3176.  
3177. Domain Name: SWEET-STARS.COM
3178. Registry Domain ID: 1777584062_DOMAIN_COM-VRSN
3179. Registrar WHOIS Server: whois.bizcn.com
3180. Registrar URL: http://www.bizcn.com
3181. Updated Date: 2017-04-28T09:34:39Z
3182. Creation Date: 2013-01-31T20:46:58Z
3183. Registry Expiry Date: 2018-01-31T20:46:58Z
3184. Registrar: Bizcn.com, Inc.
3185. Registrar IANA ID: 471
3186. Registrar Abuse Contact Email:
3187. Registrar Abuse Contact Phone:
3188. Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited
3189. Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
3190. Name Server: NS23.CLOUDNS.NET
3191. Name Server: PNS21.CLOUDNS.NET
3192. Name Server: PNS23.CLOUDNS.NET
3193. Name Server: PNS24.CLOUDNS.NET
3194. Name Server: PNS28.CLOUDNS.NET
3195. Name Server: PNS30.CLOUDNS.NET
3196.  
3197.  
3198. G E O I P L O O K U P
3199. =========================
3200.  
3201. [i] IP Address: 93.174.91.159
3202. [i] Country: SC
3203. [i] State: N/A
3204. [i] City: N/A
3205. [i] Latitude: -4.583300
3206. [i] Longitude: 55.666698
3207.  
3208.  
3209.  
3210.  
3211. H T T P H E A D E R S
3212. =======================
3213.  
3214.  
3215. [i] HTTP/1.1 200 OK
3216. [i] Server: nginx
3217. [i] Date: Sun, 10 Sep 2017 01:17:12 GMT
3218. [i] Content-Type: text/html
3219. [i] Connection: close
3220. [i] Vary: Accept-Encoding
3221. [i] X-Powered-By: PHP/5.4.45-0+deb7u8
3222. [i] Vary: Accept-Encoding
3223.  
3224.  
3225.  
3226.  
3227. D N S L O O K U P
3228. ===================
3229.  
3230. sweet-stars.com. 56 IN A 93.174.91.159
3231. sweet-stars.com. 3600 IN NS pns30.cloudns.net.
3232. sweet-stars.com. 3600 IN NS pns22.cloudns.net.
3233. sweet-stars.com. 3600 IN NS ns22.cloudns.net.
3234. sweet-stars.com. 3600 IN NS ns24.cloudns.net.
3235. sweet-stars.com. 3600 IN NS pns25.cloudns.net.
3236. sweet-stars.com. 3600 IN NS pns29.cloudns.net.
3237. sweet-stars.com. 3600 IN NS pns23.cloudns.net.
3238. sweet-stars.com. 3600 IN NS ns23.cloudns.net.
3239. sweet-stars.com. 3600 IN NS pns26.cloudns.net.
3240. sweet-stars.com. 3600 IN NS pns24.cloudns.net.
3241. sweet-stars.com. 3600 IN NS pns28.cloudns.net.
3242. sweet-stars.com. 3600 IN NS pns27.cloudns.net.
3243. sweet-stars.com. 3600 IN NS pns21.cloudns.net.
3244. sweet-stars.com. 3600 IN NS ns21.cloudns.net.
3245. sweet-stars.com. 3600 IN SOA ns21.cloudns.net. support.cloudns.net. 2017091008 7200 1800 1209600 3600
3246.  
3247.  
3248.  
3249.  
3250. S U B N E T C A L C U L A T I O N
3251. ====================================
3252.  
3253. Address = 93.174.91.159
3254. Network = 93.174.91.159 / 32
3255. Netmask = 255.255.255.255
3256. Broadcast = not needed on Point-to-Point links
3257. Wildcard Mask = 0.0.0.0
3258. Hosts Bits = 0
3259. Max. Hosts = 1 (2^0 - 0)
3260. Host Range = { 93.174.91.159 - 93.174.91.159 }
3261.  
3262.  
3263.  
3264. N M A P P O R T S C A N
3265. ============================
3266.  
3267.  
3268. Starting Nmap 7.01 ( https://nmap.org ) at 2017-09-10 01:13 UTC
3269. Nmap scan report for sweet-stars.com (93.174.91.159)
3270. Host is up (0.082s latency).
3271. rDNS record for 93.174.91.159: no-reverse-dns-configured.com
3272. PORT STATE SERVICE VERSION
3273. 21/tcp open ftp vsftpd 3.0.2
3274. 22/tcp open ssh OpenSSH 6.0p1 Debian 4+deb7u6 (protocol 2.0)
3275. 23/tcp closed telnet
3276. 25/tcp closed smtp
3277. 80/tcp open http nginx
3278. 110/tcp closed pop3
3279. 143/tcp closed imap
3280. 443/tcp closed https
3281. 445/tcp closed microsoft-ds
3282. 3389/tcp closed ms-wbt-server
3283.  
3284.  
3285. S U B - D O M A I N F I N D E R
3286. ==================================
3287.  
3288.  
3289. [i] Total Subdomains Found : 1
3290.  
3291. [+] Subdomain: sweet-stars.com
3292. [-] IP: 93.174.91.159
3293. sweet-stars.com
3294. [*] Performing TLD Brute force Enumeration against sweet-stars.com
3295. [*] The operation could take up to: 00:01:07
3296. [*] A sweet-stars.biz.af 5.45.75.45
3297. [*] CNAME sweet-stars.biz.at free.biz.at
3298. [*] A free.biz.at 216.92.134.29
3299. [*] A sweet-stars.co.asia 91.195.240.135
3300. [*] A sweet-stars.org.aw 142.4.20.12
3301. [*] A sweet-stars.co.ba 176.9.45.78
3302. [*] A sweet-stars.com.ba 195.222.33.180
3303. [*] A sweet-stars.com.be 95.173.170.166
3304. [*] A sweet-stars.biz.by 71.18.52.2
3305. [*] A sweet-stars.biz.bz 199.59.242.150
3306. [*] A sweet-stars.com.cc 54.252.107.64
3307. [*] A sweet-stars.net.cc 54.252.89.206
3308. [*] A sweet-stars.co.cc 10.10.10.10
3309. [*] A sweet-stars.org.ch 72.52.4.122
3310. [*] A sweet-stars.co.cm 85.25.140.105
3311. [*] A sweet-stars.net.cm 85.25.140.105
3312. [*] A sweet-stars.biz.cl 185.53.178.8
3313. [*] CNAME sweet-stars.biz.cm i.cns.cm
3314. [*] A i.cns.cm 118.184.56.30
3315. [*] A sweet-stars.com.com 52.33.196.199
3316. [*] A sweet-stars.net.com 199.59.242.150
3317. [*] A sweet-stars.org.com 23.23.86.44
3318. [*] A sweet-stars.co.com 173.192.115.17
3319. [*] A sweet-stars.com 93.174.91.159
3320. [*] A sweet-stars.biz.cr 72.52.4.122
3321. [*] A sweet-stars.biz.cx 72.52.4.122
3322. [*] A sweet-stars.net.cz 80.250.24.177
3323. [*] A sweet-stars.com.cz 62.109.128.30
3324. [*] A sweet-stars.biz.cz 185.53.179.7
3325. [*] CNAME sweet-stars.co.de co.de
3326. [*] A co.de 144.76.162.245
3327. [*] A sweet-stars.com.de 50.56.68.37
3328. [*] CNAME sweet-stars.org.de www.org.de
3329. [*] A www.org.de 78.47.128.8
3330. [*] A sweet-stars.net.eu 78.46.90.98
3331. [*] A sweet-stars.org.eu 78.46.90.98
3332. [*] A sweet-stars.biz.fi 185.55.85.123
3333. [*] A sweet-stars.fm 173.230.131.38
3334. [*] A sweet-stars.biz.fm 173.230.131.38
3335. [*] A sweet-stars.org.fr 149.202.133.35
3336. [*] A sweet-stars.biz.gl 72.52.4.122
3337. [*] CNAME sweet-stars.co.gp co.gp
3338. [*] A co.gp 144.76.162.245
3339. [*] A sweet-stars.co.hn 208.100.40.203
3340. [*] CNAME sweet-stars.net.hr net.hr
3341. [*] A net.hr 192.0.78.25
3342. [*] A net.hr 192.0.78.24
3343. [*] CNAME sweet-stars.biz.hn parkmydomain.vhostgo.com
3344. [*] A parkmydomain.vhostgo.com 107.186.245.118
3345. [*] A sweet-stars.co.ht 72.52.4.122
3346. [*] A sweet-stars.co.jobs 50.17.193.222
3347. [*] A sweet-stars.com.jobs 50.19.241.165
3348. [*] A sweet-stars.net.jobs 50.19.241.165
3349. [*] A sweet-stars.biz.jobs 50.19.241.165
3350. [*] A sweet-stars.org.jobs 50.19.241.165
3351. [*] A sweet-stars.biz.ky 199.184.144.27
3352. [*] CNAME sweet-stars.biz.li 712936.parkingcrew.net
3353. [*] A 712936.parkingcrew.net 185.53.179.29
3354. [*] A sweet-stars.biz.lu 195.26.5.2
3355. [*] A sweet-stars.biz.ly 64.136.20.39
3356. [*] A sweet-stars.biz.md 72.52.4.122
3357. [*] A sweet-stars.co.mk 87.76.31.211
3358. [*] A sweet-stars.co.mobi 54.225.105.179
3359. [*] A sweet-stars.biz.my 202.190.174.44
3360. [*] A sweet-stars.co.net 188.166.216.219
3361. [*] A sweet-stars.net.net 52.50.81.210
3362. [*] A sweet-stars.org.net 23.23.86.44
3363. [*] A sweet-stars.co.nl 37.97.184.204
3364. [*] A sweet-stars.com.nl 83.98.157.102
3365. [*] A sweet-stars.net.nl 83.98.157.102
3366. [*] A sweet-stars.co.nr 208.100.40.202
3367. [*] CNAME sweet-stars.co.nu co.nu
3368. [*] A co.nu 144.76.162.245
3369. [*] CNAME sweet-stars.com.nu com.nu
3370. [*] A com.nu 144.76.162.245
3371. [*] A sweet-stars.net.nu 199.102.76.78
3372. [*] A sweet-stars.org.nu 80.92.84.139
3373. [*] A sweet-stars.com.org 23.23.86.44
3374. [*] CNAME sweet-stars.net.org pewtrusts.org
3375. [*] A pewtrusts.org 204.74.99.100
3376. [*] A sweet-stars.ph 45.79.222.138
3377. [*] A sweet-stars.co.ph 45.79.222.138
3378. [*] A sweet-stars.com.ph 45.79.222.138
3379. [*] A sweet-stars.org.ph 45.79.222.138
3380. [*] A sweet-stars.net.ph 45.79.222.138
3381. [*] A sweet-stars.co.pl 212.91.6.55
3382. [*] A sweet-stars.org.pm 208.73.211.165
3383. [*] A sweet-stars.org.pm 208.73.210.217
3384. [*] A sweet-stars.org.pm 208.73.211.177
3385. [*] A sweet-stars.org.pm 208.73.210.202
3386. [*] A sweet-stars.co.ps 66.96.132.56
3387. [*] CNAME sweet-stars.biz.ps biz.ps
3388. [*] A biz.ps 144.76.162.245
3389. [*] A sweet-stars.co.pt 194.107.127.52
3390. [*] A sweet-stars.pw 141.8.226.58
3391. [*] A sweet-stars.co.pw 141.8.226.59
3392. [*] A sweet-stars.net.pw 141.8.226.59
3393. [*] A sweet-stars.biz.pw 141.8.226.59
3394. [*] A sweet-stars.org.pw 141.8.226.59
3395. [*] CNAME sweet-stars.co.ro now.co.ro
3396. [*] A now.co.ro 185.27.255.9
3397. [*] A sweet-stars.net.ro 69.64.52.127
3398. [*] A sweet-stars.org.re 217.70.184.38
3399. [*] A sweet-stars.com.ru 178.210.89.119
3400. [*] A sweet-stars.biz.se 185.53.179.6
3401. [*] CNAME sweet-stars.net.se 773147.parkingcrew.net
3402. [*] A 773147.parkingcrew.net 185.53.179.29
3403. [*] A sweet-stars.co.sl 91.195.240.135
3404. [*] A sweet-stars.com.sr 143.95.106.249
3405. [*] A sweet-stars.biz.st 91.121.28.115
3406. [*] A sweet-stars.co.su 72.52.4.122
3407. [*] A sweet-stars.biz.tc 64.136.20.39
3408. [*] A sweet-stars.biz.tf 85.236.153.18
3409. [*] A sweet-stars.net.tf 188.40.70.27
3410. [*] A sweet-stars.net.tf 188.40.117.12
3411. [*] A sweet-stars.net.tf 188.40.70.29
3412. [*] A sweet-stars.tk 195.20.46.189
3413. [*] A sweet-stars.co.tl 208.100.40.202
3414. [*] A sweet-stars.co.to 175.118.124.44
3415. [*] A sweet-stars.co.tv 31.186.25.163
3416. [*] A sweet-stars.biz.tv 72.52.4.122
3417. [*] A sweet-stars.org.tv 72.52.4.122
3418. [*] CNAME sweet-stars.biz.uz biz.uz
3419. [*] A biz.uz 144.76.162.245
3420. [*] A sweet-stars.vg 88.198.29.97
3421. [*] A sweet-stars.co.vg 88.198.29.97
3422. [*] A sweet-stars.com.vg 88.198.29.97
3423. [*] A sweet-stars.net.vg 68.178.254.180
3424. [*] A sweet-stars.biz.vg 89.31.143.20
3425. [*] A sweet-stars.biz.ws 184.168.221.104
3426. [*] A sweet-stars.ws 64.70.19.203
3427. [*] A sweet-stars.com.ws 202.4.48.211
3428. [*] A sweet-stars.org.ws 202.4.48.211
3429. [*] A sweet-stars.net.ws 202.4.48.211
3430. Domain Name: SWEET-STARS.COM
3431. Registry Domain ID: 1777584062_DOMAIN_COM-VRSN
3432. Registrar WHOIS Server: whois.bizcn.com
3433. Registrar URL: http://www.bizcn.com
3434. Updated Date: 2017-04-28T09:34:39Z
3435. Creation Date: 2013-01-31T20:46:58Z
3436. Registry Expiry Date: 2018-01-31T20:46:58Z
3437. Registrar: Bizcn.com, Inc.
3438. Registrar IANA ID: 471
3439. Registrar Abuse Contact Email:
3440. Registrar Abuse Contact Phone:
3441. Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited
3442. Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
3443. Name Server: NS23.CLOUDNS.NET
3444. Name Server: PNS21.CLOUDNS.NET
3445. Name Server: PNS23.CLOUDNS.NET
3446. Name Server: PNS24.CLOUDNS.NET
3447. Name Server: PNS28.CLOUDNS.NET
3448. Name Server: PNS30.CLOUDNS.NET
3449.  
3450. Domain name: sweet-stars.com
3451. Registry Domain ID: 1777584062_DOMAIN_COM-VRSN
3452. Registrar WHOIS Server: whois.bizcn.com
3453. Registrar URL: http://www.bizcn.com
3454. Updated Date: 2016-02-06T01:30:12Z
3455. Creation Date: 2013-01-31T20:46:58Z
3456. Registrar Registration Expiration Date: 2018-01-31T20:46:58Z
3457. Registrar: Bizcn.com,Inc.
3458. Registrar IANA ID: 471
3459. Registrar Abuse Contact Email: abuse@bizcn.com
3460. Registrar Abuse Contact Phone: +86.5922577888
3461. Reseller: Cnobin Technology HK Limited
3462. Domain Status: clientDeleteProhibited (http://www.icann.org/epp#clientDeleteProhibited)
3463. Domain Status: clientTransferProhibited (http://www.icann.org/epp#clientTransferProhibited)
3464. Registry Registrant ID: Not Available From Registry
3465. Registrant Name: Wuxi Yilian LLC
3466. Registrant Organization: Wuxi Yilian LLC
3467. Registrant Street: No.1001 Anling Road
3468. Registrant City: Xiamen
3469. Registrant State/Province: Fujian
3470. Registrant Postal Code: 361008
3471. Registrant Country: cn
3472. Registrant Phone: +86.5922577888
3473. Registrant Phone Ext:
3474. Registrant Fax: +86.5922179606
3475. Registrant Fax Ext:
3476. Registrant Email: whoisprivacyprotect@whoisservices.cn
3477. Registry Admin ID: Not Available From Registry
3478. Admin Name: Wuxi Yilian LLC
3479. Admin Organization: Wuxi Yilian LLC
3480. Admin Street: No.1001 Anling Road
3481. Admin City: Xiamen
3482. Admin State/Province: Fujian
3483. Admin Postal Code: 361008
3484. Admin Country: cn
3485. Admin Phone: +86.5922577888
3486. Admin Phone Ext:
3487. Admin Fax: +86.5922179606
3488. Admin Fax Ext:
3489. Admin Email: whoisprivacyprotect@whoisservices.cn
3490. Registry Tech ID: Not Available From Registry
3491. Tech Name: Wuxi Yilian LLC
3492. Tech Organization: Wuxi Yilian LLC
3493. Tech Street: No.1001 Anling Road
3494. Tech City: Xiamen
3495. Tech State/Province: Fujian
3496. Tech Postal Code: 361008
3497. Tech Country: cn
3498. Tech Phone: +86.5922577888
3499. Tech Phone Ext:
3500. Tech Fax: +86.5922179606
3501. Tech Fax Ext:
3502. Tech Email: whoisprivacyprotect@whoisservices.cn
3503. Name Server: pns23.cloudns.net
3504. Name Server: pns24.cloudns.net
3505. Name Server: pns21.cloudns.net
3506. Name Server: pns28.cloudns.net
3507. Name Server: pns30.cloudns.net
3508. Name Server: ns23.cloudns.net
3509.  
3510.  
3511. ;sweet-stars.com. IN ANY
3512.  
3513. ;; ANSWER SECTION:
3514. sweet-stars.com. 3405 IN NS pns22.cloudns.net.
3515. sweet-stars.com. 3405 IN NS pns29.cloudns.net.
3516. sweet-stars.com. 3405 IN NS pns27.cloudns.net.
3517. sweet-stars.com. 3405 IN NS ns23.cloudns.net.
3518. sweet-stars.com. 3405 IN NS pns30.cloudns.net.
3519. sweet-stars.com. 3405 IN NS pns26.cloudns.net.
3520. sweet-stars.com. 3405 IN NS ns21.cloudns.net.
3521. sweet-stars.com. 3405 IN NS pns21.cloudns.net.
3522. sweet-stars.com. 3405 IN NS ns24.cloudns.net.
3523. sweet-stars.com. 3405 IN NS pns28.cloudns.net.
3524. sweet-stars.com. 3405 IN NS ns22.cloudns.net.
3525. sweet-stars.com. 3405 IN NS pns24.cloudns.net.
3526. sweet-stars.com. 3405 IN NS pns23.cloudns.net.
3527. sweet-stars.com. 3405 IN NS pns25.cloudns.net.
3528.  
3529. Running:
3530. traceroute -T -O info -i eth0 sweet-stars.com
3531. traceroute to sweet-stars.com (93.174.91.159), 30 hops max, 60 byte packets
3532. 1 gateway (192.168.1.254) 0.585 ms 0.752 ms 0.903 ms
3533. 2 10.135.18.1 (10.135.18.1) 7.369 ms 8.954 ms 11.017 ms
3534. 3 75.154.223.222 (75.154.223.222) 30.014 ms 30.119 ms 30.239 ms
3535. 4 lag-113.ear3.NewYork1.Level3.net (4.15.212.245) 30.476 ms 30.600 ms 31.257 ms
3536. 5 ae-237-3613.edge6.Amsterdam1.Level3.net (4.69.162.242) 104.650 ms ae-238-3614.edge6.Amsterdam1.Level3.net (4.69.162.246) 104.700 ms ae-237-3613.edge6.Amsterdam1.Level3.net (4.69.162.242) 104.792 ms
3537. 6 * * *
3538. 7 no-reverse-dns-configured.com (93.174.91.159) <syn,ack> 103.543 ms 103.648 ms 103.762 ms
3539.  
3540.  
3541. Smartmatch is experimental at /usr/bin/dnsenum line 698.
3542. Smartmatch is experimental at /usr/bin/dnsenum line 698.
3543. dnsenum VERSION:1.2.4
3544. Warning: can't load Net::Whois::IP module, whois queries disabled.
3545.  
3546. ----- sweet-stars.com -----
3547.  
3548.  
3549. Host's addresses:
3550. __________________
3551.  
3552. sweet-stars.com. 59 IN A 93.174.91.159
3553.  
3554.  
3555. Wildcard detection using: szjfzngswkju
3556. _______________________________________
3557.  
3558. szjfzngswkju.sweet-stars.com. 60 IN A 93.174.91.159
3559.  
3560.  
3561. !!!!!!!!!!!!!!!!!!!!!!!!!!!!
3562.  
3563. Wildcards detected, all subdomains will point to the same IP address
3564. Omitting results containing 93.174.91.159.
3565. Maybe you are using OpenDNS servers.
3566.  
3567. !!!!!!!!!!!!!!!!!!!!!!!!!!!!
3568.  
3569.  
3570. Name Servers:
3571. ______________
3572.  
3573. pns30.cloudns.net. 130380 IN A 185.136.96.96
3574. ns21.cloudns.net. 62414 IN A 109.201.133.61
3575. pns27.cloudns.net. 38643 IN A 185.136.98.96
3576. pns25.cloudns.net. 38643 IN A 185.136.96.96
3577. pns24.cloudns.net. 123043 IN A 185.136.99.96
3578. pns26.cloudns.net. 38643 IN A 185.136.97.96
3579. pns29.cloudns.net. 38643 IN A 185.136.96.96
3580. pns23.cloudns.net. 161369 IN A 185.136.98.96
3581. pns22.cloudns.net. 123043 IN A 185.136.97.96
3582. ns22.cloudns.net. 140732 IN A 108.59.2.202
3583. ns24.cloudns.net. 156473 IN A 46.165.221.164
3584. pns21.cloudns.net. 123043 IN A 185.136.96.96
3585. pns28.cloudns.net. 172800 IN A 185.136.99.96
3586. ns23.cloudns.net. 172800 IN A 79.137.84.65
3587.  
3588.  
3589. Mail (MX) Servers:
3590. ___________________
3591.  
3592.  
3593.  
3594.  
3595. sweet-stars.com class C netranges:
3596. ___________________________________
3597.  
3598. 93.174.91.0/24
3599.  
3600.  
3601. Performing reverse lookup on 256 ip addresses:
3602. _______________________________________________
3603.  
3604.  
3605. 0 results out of 256 IP addresses.
3606.  
3607.  
3608.  
3609. WhatWeb report for http://sweet-stars.com
3610. Status : 200 OK
3611. Title : underage models , girls inside
3612. IP : 93.174.91.159
3613. Country : NETHERLANDS, NL
3614.  
3615. Summary : Google-API[ajax/libs/jquery/1.10.2/jquery.min.js], X-Powered-By[PHP/5.4.45-0+deb7u8], HTTPServer[nginx], PHP[5.4.45-0+deb7u8], nginx, JQuery, Script[text/javascript]
3616.  
3617. Detected Plugins:
3618. [ Google-API ]
3619. This plugin identifies references to Google API in
3620. <script>.
3621.  
3622. String : ajax/libs/jquery/1.10.2/jquery.min.js
3623.  
3624. [ HTTPServer ]
3625. HTTP server header string. This plugin also attempts to
3626. identify the operating system from the server header.
3627.  
3628. String : nginx (from server string)
3629.  
3630. [ JQuery ]
3631. A fast, concise, JavaScript that simplifies how to traverse
3632. HTML documents, handle events, perform animations, and add
3633. AJAX.
3634.  
3635. Website : http://jquery.com/
3636.  
3637. [ PHP ]
3638. PHP is a widely-used general-purpose scripting language
3639. that is especially suited for Web development and can be
3640. embedded into HTML. This plugin identifies PHP errors,
3641. modules and versions and extracts the local file path and
3642. username if present.
3643.  
3644. Version : 5.4.45-0+deb7u8
3645. Google Dorks: (2)
3646. Website : http://www.php.net/
3647.  
3648. [ Script ]
3649. This plugin detects instances of script HTML elements and
3650. returns the script language/type.
3651.  
3652. String : text/javascript
3653.  
3654. [ X-Powered-By ]
3655. X-Powered-By HTTP header
3656.  
3657. String : PHP/5.4.45-0+deb7u8 (from x-powered-by string)
3658.  
3659. [ nginx ]
3660. Nginx (Engine-X) is a free, open-source, high-performance
3661. HTTP server and reverse proxy, as well as an IMAP/POP3
3662. proxy server.
3663.  
3664. Website : http://nginx.net/
3665.  
3666. HTTP Headers:
3667. HTTP/1.1 200 OK
3668. Server: nginx
3669. Date: Sun, 10 Sep 2017 01:22:22 GMT
3670. Content-Type: text/html
3671. Content-Length: 9266
3672. Connection: close
3673. X-Powered-By: PHP/5.4.45-0+deb7u8
3674. Vary: Accept-Encoding
3675. Content-Encoding: gzip
3676.  
3677.  
3678.  
3679. [+] Hosts found in search engines:
3680. ------------------------------------
3681. [-] Resolving hostnames IPs...
3682. 93.174.91.159:www.sweet-stars.com
3683.  
3684.  
3685.  
3686. ^ ^
3687. _ __ _ ____ _ __ _ _ ____
3688. ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
3689. | V V // o // _/ | V V // 0 // 0 // _/
3690. |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
3691. <
3692. ...'
3693.  
3694. WAFW00F - Web Application Firewall Detection Tool
3695.  
3696. By Sandro Gauci && Wendel G. Henrique
3697.  
3698. Checking http://sweet-stars.com
3699. Generic Detection results:
3700. No WAF detected by the generic detection
3701. Number of requests: 13
3702.  
3703.  
3704. DNS Servers for sweet-stars.com:
3705. pns30.cloudns.net
3706. pns23.cloudns.net
3707. ns21.cloudns.net
3708. pns21.cloudns.net
3709. pns22.cloudns.net
3710. ns23.cloudns.net
3711. pns24.cloudns.net
3712. pns28.cloudns.net
3713. ns22.cloudns.net
3714. pns26.cloudns.net
3715. pns25.cloudns.net
3716. pns29.cloudns.net
3717. pns27.cloudns.net
3718. ns24.cloudns.net
3719.  
3720. Checking for HTTP-Loadbalancing [Date]: 01:28:33, 01:28:34, 01:28:34, 01:28:34, 01:28:34, 01:28:35, 01:28:35, 01:28:35, 01:28:35, 01:28:36, 01:28:36, 01:28:36, 01:28:36, 01:28:37, 01:28:37, 01:28:37, 01:28:38, 01:28:38, 01:28:38, 01:28:38, 01:28:39, 01:28:39, 01:28:39, 01:28:39, 01:28:40, 01:28:40, 01:28:40, 01:28:40, 01:28:41, 01:28:41, 01:28:41, 01:28:42, 01:28:42, 01:28:42, 01:28:42, 01:28:43, 01:28:43, 01:28:43, 01:28:43, 01:28:44, 01:28:44, 01:28:44, 01:28:44, 01:28:45, 01:28:45, 01:28:45, 01:28:46, 01:28:46, 01:28:46, 01:28:46, NOT FOUND
3721.  
3722. Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
3723.  
3724. sweet-stars.com does NOT use Load-balancing.
3725.  
3726.  
3727.  
3728. Starting smtp-user-enum v1.2 ( http://pentestmonkey.net/tools/smtp-user-enum )
3729.  
3730. ----------------------------------------------------------
3731. | Scan Information |
3732. ----------------------------------------------------------
3733.  
3734. Mode ..................... VRFY
3735. Worker Processes ......... 5
3736. Usernames file ........... users.txt
3737. Target count ............. 1
3738. Username count ........... 494
3739. Target TCP port .......... 25
3740. Query timeout ............ 5 secs
3741. Target domain ............
3742.  
3743. ######## Scan started at Sat Sep 9 21:25:21 2017 #########
3744. ######## Scan completed at Sat Sep 9 21:33:36 2017 #########
3745. 0 results.
3746.  
3747. 494 queries in 495 seconds (1.0 queries / sec)
3748.  
3749.  
3750.  
3751. Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 21:33 EDT
3752. NSE: Loaded 146 scripts for scanning.
3753. NSE: Script Pre-scanning.
3754. Initiating NSE at 21:33
3755. Completed NSE at 21:33, 0.00s elapsed
3756. Initiating NSE at 21:33
3757. Completed NSE at 21:33, 0.00s elapsed
3758. Failed to resolve "sweet-stars.com.txt".
3759. Initiating Parallel DNS resolution of 1 host. at 21:33
3760. Completed Parallel DNS resolution of 1 host. at 21:33, 0.59s elapsed
3761. Initiating SYN Stealth Scan at 21:33
3762. Scanning sweet-stars.com (93.174.91.159) [100 ports]
3763. Discovered open port 53/tcp on 93.174.91.159
3764. Discovered open port 21/tcp on 93.174.91.159
3765. Discovered open port 80/tcp on 93.174.91.159
3766. Discovered open port 22/tcp on 93.174.91.159
3767. Discovered open port 111/tcp on 93.174.91.159
3768. Increasing send delay for 93.174.91.159 from 0 to 5 due to 63 out of 156 dropped probes since last increase.
3769. Completed SYN Stealth Scan at 21:33, 5.94s elapsed (100 total ports)
3770. Initiating Service scan at 21:33
3771. Scanning 5 services on sweet-stars.com (93.174.91.159)
3772. Completed Service scan at 21:34, 32.98s elapsed (5 services on 1 host)
3773. Initiating OS detection (try #1) against sweet-stars.com (93.174.91.159)
3774. Retrying OS detection (try #2) against sweet-stars.com (93.174.91.159)
3775. Initiating Traceroute at 21:34
3776. Completed Traceroute at 21:34, 3.00s elapsed
3777. Initiating Parallel DNS resolution of 8 hosts. at 21:34
3778. Completed Parallel DNS resolution of 8 hosts. at 21:34, 5.64s elapsed
3779. NSE: Script scanning 93.174.91.159.
3780. Initiating NSE at 21:34
3781. Completed NSE at 21:35, 56.65s elapsed
3782. Initiating NSE at 21:35
3783. Completed NSE at 21:35, 0.25s elapsed
3784. Nmap scan report for sweet-stars.com (93.174.91.159)
3785. Host is up (0.20s latency).
3786. rDNS record for 93.174.91.159: no-reverse-dns-configured.com
3787. Not shown: 89 closed ports
3788. PORT STATE SERVICE VERSION
3789. 21/tcp open ftp vsftpd 3.0.2
3790. 22/tcp open ssh OpenSSH 6.0p1 Debian 4+deb7u6 (protocol 2.0)
3791. | ssh-hostkey:
3792. | 1024 ab:16:56:89:21:7e:75:1c:77:f3:a2:7e:c2:f1:4c:09 (DSA)
3793. | 2048 22:f8:e3:f6:1a:1c:6a:99:09:6b:1e:7c:fd:30:e3:95 (RSA)
3794. |_ 256 a8:03:f4:96:36:d1:39:de:2e:4f:56:e9:0f:f3:63:56 (ECDSA)
3795. 25/tcp filtered smtp
3796. 53/tcp open domain
3797. 80/tcp open http nginx
3798. |_http-favicon: Unknown favicon MD5: 7E7A46308882211FDA59242CD1F72677
3799. | http-methods:
3800. |_ Supported Methods: OPTIONS
3801. |_http-server-header: nginx
3802. |_http-title: underage models , girls inside
3803. 111/tcp open rpcbind 2-4 (RPC #100000)
3804. | rpcinfo:
3805. | program version port/proto service
3806. | 100000 2,3,4 111/tcp rpcbind
3807. | 100000 2,3,4 111/udp rpcbind
3808. | 100024 1 43806/udp status
3809. |_ 100024 1 59220/tcp status
3810. 135/tcp filtered msrpc
3811. 139/tcp filtered netbios-ssn
3812. 445/tcp filtered microsoft-ds
3813. 465/tcp filtered smtps
3814. 587/tcp filtered submission
3815. Aggressive OS guesses: Linux 2.6.39 (96%), Linux 3.2 - 3.8 (94%), Linux 3.8 (94%), WatchGuard Fireware 11.8 (94%), Linux 3.1 - 3.2 (94%), Linux 2.6.32 - 2.6.39 (92%), Linux 3.5 (92%), Linux 3.0 - 3.2 (91%), Linux 2.6.32 (91%), Linux 3.0 (91%)
3816. No exact OS matches for host (test conditions non-ideal).
3817. Uptime guess: 6.381 days (since Sun Sep 3 12:27:22 2017)
3818. Network Distance: 11 hops
3819. TCP Sequence Prediction: Difficulty=262 (Good luck!)
3820. IP ID Sequence Generation: All zeros
3821. Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
3822.  
3823. TRACEROUTE (using port 554/tcp)
3824. HOP RTT ADDRESS
3825. 1 109.21 ms 10.13.0.1
3826. 2 109.64 ms 37.187.24.252
3827. 3 777.41 ms po101.gra-g2-a75.fr.eu (178.33.103.231)
3828. 4 ...
3829. 5 781.79 ms be100-1113.fra-5-a9.de.eu (91.121.131.19)
3830. 6 787.73 ms be100-2.fra-1-a9.de.eu (94.23.122.217)
3831. 7 ...
3832. 8 800.72 ms vlan3555.bb1.ams2.nl.m247.com (176.10.83.128)
3833. 9 796.26 ms 176.10.83.5
3834. 10 ...
3835. 11 794.06 ms no-reverse-dns-configured.com (93.174.91.159)
3836.  
3837. NSE: Script Post-scanning.
3838. Initiating NSE at 21:35
3839. Completed NSE at 21:35, 0.00s elapsed
3840. Initiating NSE at 21:35
3841. Completed NSE at 21:35, 0.00s elapsed
3842. Read data files from: /usr/bin/../share/nmap
3843. OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
3844. Nmap done: 1 IP address (1 host up) scanned in 111.53 seconds
3845. Raw packets sent: 347 (21.124KB) | Rcvd: 311 (19.797KB)
3846.  
3847.  
3848. Error: can not open nmap file: sweet-stars.com.txt
3849.  
3850.  
3851. httprint v0.301 (beta) - web server fingerprinting tool
3852. (c) 2003-2005 net-square solutions pvt. ltd. - see readme.txt
3853. http://net-square.com/httprint/
3854. httprint@net-square.com
3855.  
3856. Finger Printing on http://sweet-stars.com:80/
3857. Finger Printing Completed on http://sweet-stars.com:80/
3858. --------------------------------------------------
3859. Host: sweet-stars.com
3860. Fingerprinting Error: Host/URL not found...
3861.  
3862. --------------------------------------------------
3863.  
3864.  
3865.  
3866.  
3867. _/ _/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/
3868. _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
3869. _/ _/ _/_/_/_/ _/_/_/ _/ _/_/_/ _/_/_/_/ _/ _/_/_/ _/_/_/_
3870. _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
3871. _/_/_/_/ _/ _/ _/ _/_/_/_/ _/_/_/_/ _/ _/_/_/_/ _/ _/ [v1.06]
3872.  
3873. _/ User-Agent Tester ↵
3874. _/ AKA: Purple Pimp ↵
3875. _/ ChrisJohnRiley ↵
3876. _/ blog.c22.cc ↵
3877.  
3878. [>] Performing initial request and confirming stability
3879. [>] Using User-Agent string Mozilla/5.0
3880.  
3881. [ ] URL (ENTERED): http://sweet-stars.com
3882. [ ] Response Code: 200 OK
3883. [ ] Server: nginx
3884. [ ] Date: Sun, 10 Sep 2017 01:39:14 GMT
3885. [ ] Content-Type: text/html
3886. [ ] Transfer-Encoding: chunked
3887. [ ] Connection: close
3888. [ ] Vary: Accept-Encoding
3889. [ ] X-Powered-By: PHP/5.4.45-0+deb7u8
3890. [ ] Vary: Accept-Encoding
3891. [ ] Data (MD5): 047b7a519f332eb24d7b85463adbb1b0
3892.  
3893. [1] Pass
3894. [2] Pass
3895. [3] Pass
3896.  
3897. [>] URL appears stable. Beginning test
3898.  
3899. [>] Using DEFAULT User-Agent Strings
3900.  
3901. [>] Using Crazy User-Agent Strings
3902. [>] Using Bot User-Agent Strings
3903.  
3904. [>] Output: [+] Added Headers, [-] Removed Headers, [!] Altered Headers, [ ] No Change
3905.  
3906.  
3907. [>] User-Agent String : Windows-Media-Player/9.00.00.4503
3908.  
3909.  
3910. [!] Data (MD5): 27906c20f87b08bdd02a78d8452a371d
3911.  
3912.  
3913. [>] User-Agent String : Mozilla/5.0 (PLAYSTATION 3; 2.00)
3914.  
3915.  
3916. [!] Data (MD5): 27906c20f87b08bdd02a78d8452a371d
3917.  
3918.  
3919. [>] User-Agent String : TrackBack/1.02
3920.  
3921.  
3922. [!] Data (MD5): 27906c20f87b08bdd02a78d8452a371d
3923.  
3924.  
3925. [>] User-Agent String : wispr
3926.  
3927.  
3928. [!] Data (MD5): 27906c20f87b08bdd02a78d8452a371d
3929.  
3930.  
3931. [>] User-Agent String : EMPTY USER-AGENT STRING!
3932.  
3933.  
3934. [!] Data (MD5): 27906c20f87b08bdd02a78d8452a371d
3935.  
3936.  
3937. [>] User-Agent String : Googlebot/2.1 (+http://www.google.com/bot.html)
3938.  
3939.  
3940. [!] Data (MD5): 27906c20f87b08bdd02a78d8452a371d
3941.  
3942.  
3943. [>] User-Agent String : Googlebot-Image/1.0
3944.  
3945.  
3946. [!] Data (MD5): 27906c20f87b08bdd02a78d8452a371d
3947.  
3948.  
3949. [>] User-Agent String : Mediapartners-Google
3950.  
3951.  
3952. [!] Data (MD5): 27906c20f87b08bdd02a78d8452a371d
3953.  
3954.  
3955. [>] User-Agent String : Mozilla/2.0 (compatible; Ask Jeeves)
3956.  
3957.  
3958. [!] Data (MD5): 27906c20f87b08bdd02a78d8452a371d
3959.  
3960.  
3961. [>] User-Agent String : msnbot-Products/1.0 (+http://search.msn.com/msnbot.htm)
3962.  
3963.  
3964. [!] Data (MD5): 27906c20f87b08bdd02a78d8452a371d
3965.  
3966.  
3967. [>] User-Agent String : mmcrawler
3968.  
3969.  
3970. [!] Data (MD5): 27906c20f87b08bdd02a78d8452a371d
3971.  
3972.  
3973. [>] Checks completed... try enabling VERBOSE mode for more detailed output
3974.  
3975. [>] That's all folks... Fo' Shizzle!
3976.  
3977. #########################################################################################
3978.  
3979. Hostname top.models-list.org ISP Quasi Networks LTD. (AS29073)
3980. Continent Africa Flag
3981. SC
3982. Country Seychelles Country Code SC (SYC)
3983. Region Unknown Local time 10 Sep 2017 05:31 +04
3984. City Unknown Latitude -4.583
3985. IP Address 89.248.166.76 Longitude 55.667
3986. ########################################################################################
3987.  
3988. top.models-list.org
3989.  
3990. ;top.models-list.org. IN ANY
3991.  
3992. ;; ANSWER SECTION:
3993. top.models-list.org. 2206 IN A 89.248.166.76
3994.  
3995. ;; Query time: 8 msec
3996. ;; SERVER: 192.168.1.254#53(192.168.1.254)
3997. ;; WHEN: Sat Sep 09 21:32:45 EDT 2017
3998. ;; MSG SIZE rcvd: 64
3999.  
4000.  
4001. ###########################################################################################
4002.  
4003. tcptraceroute -i eth0 top.models-list.org
4004.  
4005. Running:
4006. traceroute -T -O info -i eth0 top.models-list.org
4007. traceroute to top.models-list.org (89.248.166.76), 30 hops max, 60 byte packets
4008. 1 gateway (192.168.1.254) 0.461 ms 0.749 ms 0.937 ms
4009. 2 10.135.18.1 (10.135.18.1) 7.968 ms 17.261 ms 25.470 ms
4010. 3 75.154.223.222 (75.154.223.222) 29.491 ms 30.040 ms 30.176 ms
4011. 4 lag-113.ear3.NewYork1.Level3.net (4.15.212.245) 30.415 ms 31.690 ms 31.760 ms
4012. 5 ae-240-3616.edge6.Amsterdam1.Level3.net (4.69.162.254) 104.478 ms 104.847 ms ae-238-3614.edge6.Amsterdam1.Level3.net (4.69.162.246) 104.684 ms
4013. 6 * * *
4014. 7 no-reverse-dns-configured.com (89.248.166.76) <syn,ack> 103.613 ms 103.658 ms 104.076 ms
4015.  
4016. ###########################################################################################
4017.  
4018. Checking for HTTP-Loadbalancing [Date]: 23:31:51, 23:31:51, 23:31:51, 23:31:51, 23:31:52, 23:31:52, 23:31:52, 23:31:53, 23:31:53, 23:31:53, 23:31:53, 23:31:54, 23:31:54, 23:31:54, 23:31:54, 23:31:55, 23:31:55, 23:31:55, 23:31:55, 23:31:56, 23:31:56, 23:31:56, 23:31:57, 23:31:57, 23:31:57, 23:31:57, 23:31:58, 23:31:58, 23:31:58, 23:31:58, 23:31:59, 23:31:59, 23:31:59, 23:31:59, 23:32:00, 23:32:00, 23:32:00, 23:32:00, 23:32:01, 23:32:01, 23:32:01, 23:32:02, 23:32:02, 23:32:02, 23:32:02, 23:32:03, 23:32:03, 23:32:03, 23:32:03, 23:32:04, NOT FOUND
4019.  
4020. Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
4021.  
4022. top.models-list.org does NOT use Load-balancing.
4023.  
4024.  
4025. ###########################################################################################
4026.  
4027. nmap -PN -n -F -T4 -sV -A -oG temp.txt top.models-list.org
4028.  
4029. Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 21:33 EDT
4030. Nmap scan report for top.models-list.org (89.248.166.76)
4031. Host is up (0.13s latency).
4032. Not shown: 84 closed ports
4033. PORT STATE SERVICE VERSION
4034. 21/tcp filtered ftp
4035. 22/tcp filtered ssh
4036. 25/tcp filtered smtp
4037. 53/tcp open domain ISC BIND 9.8.2rc1
4038. | dns-nsid:
4039. |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4
4040. 80/tcp open http nginx 1.12.1
4041. | http-methods:
4042. |_ Potentially risky methods: TRACE
4043. |_http-server-header: nginx/1.12.1
4044. |_http-title: REAL Preteen Galleries! Unbelievable OMG !! Smallest beautiful...
4045. 81/tcp filtered hosts2-ns
4046. 110/tcp open pop3 Dovecot pop3d
4047. |_pop3-capabilities: STLS TOP CAPA PIPELINING RESP-CODES SASL(PLAIN LOGIN DIGEST-MD5 CRAM-MD5) USER UIDL
4048. 135/tcp filtered msrpc
4049. 139/tcp filtered netbios-ssn
4050. 143/tcp open imap Dovecot imapd
4051. |_imap-capabilities: ID LITERAL+ IDLE OK completed AUTH=PLAIN IMAP4rev1 Capability AUTH=LOGIN AUTH=CRAM-MD5A0001 AUTH=DIGEST-MD5 ENABLE SASL-IR STARTTLS LOGIN-REFERRALS
4052. |_ssl-date: 2017-09-09T23:32:53+00:00; -2h01m10s from scanner time.
4053. 445/tcp filtered microsoft-ds
4054. 465/tcp filtered smtps
4055. 587/tcp filtered submission
4056. 993/tcp open ssl/imap Dovecot imapd
4057. | ssl-cert: Subject: commonName=imap.example.com
4058. | Not valid before: 2015-06-12T12:04:14
4059. |_Not valid after: 2016-06-11T12:04:14
4060. |_ssl-date: 2017-09-09T23:32:46+00:00; -2h01m11s from scanner time.
4061. 995/tcp open ssl/pop3 Dovecot pop3d
4062. | ssl-cert: Subject: commonName=imap.example.com
4063. | Not valid before: 2015-06-12T12:04:14
4064. |_Not valid after: 2016-06-11T12:04:14
4065. |_ssl-date: 2017-09-09T23:32:44+00:00; -2h01m11s from scanner time.
4066. 3306/tcp open mysql MySQL (unauthorized)
4067. Aggressive OS guesses: Linux 2.6.39 (99%), Linux 2.6.32 (95%), Linux 2.6.32 or 3.10 (95%), WatchGuard Fireware 11.8 (95%), Synology DiskStation Manager 5.1 (94%), Linux 3.10 (94%), Linux 3.4 (94%), Linux 3.1 - 3.2 (93%), Linux 2.6.32 - 2.6.39 (93%), Linux 3.2 - 3.8 (91%)
4068. No exact OS matches for host (test conditions non-ideal).
4069. Network Distance: 10 hops
4070. Service Info: OS: Red Hat Enterprise Linux 6; CPE: cpe:/o:redhat:enterprise_linux:6
4071.  
4072. Host script results:
4073. |_clock-skew: mean: -2h01m10s, deviation: 0s, median: -2h01m11s
4074.  
4075. TRACEROUTE (using port 1720/tcp)
4076. HOP RTT ADDRESS
4077. 1 109.65 ms 10.13.0.1
4078. 2 110.32 ms 37.187.24.252
4079. 3 110.04 ms 178.33.103.229
4080. 4 ...
4081. 5 118.84 ms 213.186.32.213
4082. 6 ...
4083. 7 142.40 ms 176.10.83.128
4084. 8 120.35 ms 176.10.83.119
4085. 9 ...
4086. 10 120.38 ms 89.248.166.76
4087.  
4088. OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
4089. Nmap done: 1 IP address (1 host up) scanned in 36.39 seconds
4090.  
4091. ###########################################################################################
4092.  
4093. amap -i temp.txt
4094. amap v5.4 (www.thc.org/thc-amap) started at 2017-09-09 21:34:03 - APPLICATION MAPPING mode
4095.  
4096. Protocol on 89.248.166.76:80/tcp matches http
4097. Protocol on 89.248.166.76:80/tcp matches http-apache-2
4098. Protocol on 89.248.166.76:3306/tcp matches mysql
4099. Protocol on 89.248.166.76:3306/tcp matches mysql-secured
4100. Protocol on 89.248.166.76:110/tcp matches pop3
4101. Protocol on 89.248.166.76:143/tcp matches imap
4102. Protocol on 89.248.166.76:993/tcp matches ssl
4103. Protocol on 89.248.166.76:995/tcp matches ssl
4104. Protocol on 89.248.166.76:53/tcp matches dns
4105.  
4106. Unidentified ports: none.
4107.  
4108. amap v5.4 finished at 2017-09-09 21:34:23
4109.  
4110. ###########################################################################################
4111. %
4112. inetnum: 89.248.166.0 - 89.248.166.127
4113. netname: SC-QUASI24
4114. descr: QUASI
4115. country: SC
4116. org: ORG-QNL3-RIPE
4117. admin-c: QNL1-RIPE
4118. tech-c: QNL1-RIPE
4119. status: ASSIGNED PA
4120. mnt-by: QUASINETWORKS-MNT
4121. mnt-lower: QUASINETWORKS-MNT
4122. mnt-routes: QUASINETWORKS-MNT
4123. created: 2008-08-25T13:43:07Z
4124. last-modified: 2016-01-23T22:02:02Z
4125. source: RIPE
4126.  
4127. organisation: ORG-QNL3-RIPE
4128. org-name: Quasi Networks LTD.
4129. org-type: OTHER
4130. address: Suite 1, Second Floor
4131. address: Sound & Vision House, Francis Rachel Street
4132. address: Victoria, Mahe, SEYCHELLES
4133. remarks: *****************************************************************************
4134. remarks: IMPORTANT INFORMATION
4135. remarks: *****************************************************************************
4136. remarks: We are a high bandwidth network provider offering bandwidth solutions.
4137. remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
4138. remarks: Please only use abuse@quasinetworks.com for abuse reports.
4139. remarks: For all other requests, please see the details on our website.
4140. remarks: *****************************************************************************
4141. abuse-mailbox: abuse@quasinetworks.com
4142. abuse-c: AR34302-RIPE
4143. mnt-ref: QUASINETWORKS-MNT
4144. mnt-by: QUASINETWORKS-MNT
4145. created: 2015-11-08T22:25:26Z
4146. last-modified: 2015-11-27T09:37:50Z
4147. source: RIPE # Filtered
4148.  
4149. role: Quasi Networks LTD
4150. address: Suite 1, Second Floor
4151. address: Sound & Vision House, Francis Rachel Street
4152. address: Victoria, Mahe, SEYCHELLES
4153. remarks: *****************************************************************************
4154. remarks: IMPORTANT INFORMATION
4155. remarks: *****************************************************************************
4156. remarks: We are a high bandwidth network provider offering bandwidth solutions.
4157. remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
4158. remarks: Please only use abuse@quasinetworks.com for abuse reports.
4159. remarks: For all other requests, please see the details on our website.
4160. remarks: *****************************************************************************
4161. abuse-mailbox: abuse@quasinetworks.com
4162. nic-hdl: QNL1-RIPE
4163. mnt-by: QUASINETWORKS-MNT
4164. created: 2015-11-07T22:43:04Z
4165. last-modified: 2015-11-07T23:04:49Z
4166. source: RIPE # Filtered
4167.  
4168. % Information related to '89.248.160.0/21AS29073'
4169.  
4170. route: 89.248.160.0/21
4171. descr: Quasi Networks LTD (IBC)
4172. origin: AS29073
4173. mnt-by: QUASINETWORKS-MNT
4174. created: 2006-07-14T16:36:01Z
4175. last-modified: 2015-11-09T12:02:24Z
4176. source: RIPE
4177.  
4178. % This query was served by the RIPE Database Query Service version 1.89.2 (BLAARKOP)
4179.  
4180.  
4181. ###########################################################################################
4182. [i] Scanning Site: http://top.models-list.org
4183.  
4184.  
4185.  
4186. B A S I C I N F O
4187. ====================
4188.  
4189.  
4190. [+] Site Title: REAL Preteen Galleries! Unbelievable OMG !! Smallest beautiful bodies!! All high quality videos of only
4191. [+] IP address: 89.248.166.76
4192. [+] Web Server: nginx/1.12.1
4193. [+] CMS: Could Not Detect
4194. [+] Cloudflare: Not Detected
4195. [+] Robots File: Could NOT Find robots.txt!
4196.  
4197.  
4198.  
4199.  
4200. G E O I P L O O K U P
4201. =========================
4202.  
4203. [i] IP Address: 89.248.166.76
4204. [i] Country: SC
4205. [i] State: N/A
4206. [i] City: N/A
4207. [i] Latitude: -4.583300
4208. [i] Longitude: 55.666698
4209.  
4210.  
4211.  
4212.  
4213. H T T P H E A D E R S
4214. =======================
4215.  
4216.  
4217. [i] HTTP/1.1 200 OK
4218. [i] Server: nginx/1.12.1
4219. [i] Date: Sat, 09 Sep 2017 23:33:16 GMT
4220. [i] Content-Type: text/html; charset=UTF-8
4221. [i] Connection: close
4222. [i] Accept-Ranges: bytes
4223.  
4224.  
4225.  
4226.  
4227. D N S L O O K U P
4228. ===================
4229.  
4230. top.models-list.org. 3596 IN A 89.248.166.76
4231.  
4232.  
4233.  
4234.  
4235. S U B N E T C A L C U L A T I O N
4236. ====================================
4237.  
4238. Address = 89.248.166.76
4239. Network = 89.248.166.76 / 32
4240. Netmask = 255.255.255.255
4241. Broadcast = not needed on Point-to-Point links
4242. Wildcard Mask = 0.0.0.0
4243. Hosts Bits = 0
4244. Max. Hosts = 1 (2^0 - 0)
4245. Host Range = { 89.248.166.76 - 89.248.166.76 }
4246.  
4247.  
4248.  
4249. N M A P P O R T S C A N
4250. ============================
4251.  
4252.  
4253. Starting Nmap 7.01 ( https://nmap.org ) at 2017-09-10 01:34 UTC
4254. Nmap scan report for top.models-list.org (89.248.166.76)
4255. Host is up (0.082s latency).
4256. rDNS record for 89.248.166.76: no-reverse-dns-configured.com
4257. PORT STATE SERVICE VERSION
4258. 21/tcp filtered ftp
4259. 22/tcp filtered ssh
4260. 23/tcp closed telnet
4261. 25/tcp open smtp Postfix smtpd
4262. 80/tcp open http nginx 1.12.1
4263. 110/tcp open pop3 Dovecot pop3d
4264. 143/tcp open imap Dovecot imapd
4265. 443/tcp closed https
4266. 445/tcp closed microsoft-ds
4267. 3389/tcp closed ms-wbt-server
4268. Service Info: Host: b06s06.com
4269.  
4270. Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
4271. Nmap done: 1 IP address (1 host up) scanned in 8.36 seconds
4272.  
4273.  
4274.  
4275. S U B - D O M A I N F I N D E R
4276. ==================================
4277.  
4278.  
4279. [i] Total Subdomains Found : 1
4280.  
4281. [+] Subdomain: top.models-list.org
4282. [-] IP: 89.248.166.76
4283.  
4284.  
4285.  
4286.  
4287.  
4288. R E V E R S E I P L O O K U P
4289. ==================================
4290.  
4291.  
4292. [i] Total Sites Found On This Server : 2
4293.  
4294.  
4295. [#] top.models-list.org
4296. [-] CMS: Could Not Detect
4297.  
4298. [#] www.mynewmodels.com,
4299. [-] CMS: Could Not Detect
4300. top.models-list.org
4301. [*] Performing TLD Brute force Enumeration against top.models-list.org
4302. [*] The operation could take up to: 00:01:07
4303. [*] A top.ac 66.96.161.132
4304. [*] A top.ae 86.96.130.64
4305. [*] A top.ae 86.96.163.42
4306. [*] A top.af 108.61.170.199
4307. [*] AAAA top.af 2001:19f0:6c01:547:5400:ff:fe7c:9f77
4308. [*] A top.biz.af 5.45.75.45
4309. [*] A top.ag 94.75.116.15
4310. [*] A top.ai 47.90.1.220
4311. [*] A top.am 50.62.112.1
4312. [*] A top.al 212.7.8.182
4313. [*] A top.com.ar 72.52.231.0
4314. [*] A top.as 72.52.4.119
4315. [*] A top.org.ar 190.183.59.134
4316. [*] A top.asia 77.221.130.34
4317. [*] A top.at 83.137.116.70
4318. [*] A top.co.asia 91.195.240.135
4319. [*] A top.co.at 213.229.60.9
4320. [*] CNAME top.biz.at free.biz.at
4321. [*] A free.biz.at 216.92.134.29
4322. [*] A top.com.au 69.172.201.153
4323. [*] A top.org.au 223.130.25.70
4324. [*] A top.org.aw 142.4.20.12
4325. [*] A top.net.au 203.87.108.74
4326. [*] A top.ax 104.27.185.202
4327. [*] A top.ax 104.27.184.202
4328. [*] AAAA top.ax 2400:cb00:2048:1::681b:b9ca
4329. [*] AAAA top.ax 2400:cb00:2048:1::681b:b8ca
4330. [*] A top.az 136.243.74.74
4331. [*] A top.co.ba 176.9.45.78
4332. [*] A top.com.ba 195.222.33.180
4333. [*] A top.ba 81.93.76.14
4334. [*] A top.be 86.39.240.67
4335. [*] A top.com.be 95.173.170.166
4336. [*] A top.bg 78.90.206.51
4337. [*] A top.bi 77.104.162.193
4338. [*] A top.biz 72.52.4.119
4339. [*] A top.com.br 177.154.148.10
4340. [*] A top.biz.by 71.18.52.2
4341. [*] A top.by 93.171.222.16
4342. [*] A top.biz.bz 199.59.242.150
4343. [*] A top.ca 199.59.242.150
4344. [*] A top.net.cc 54.252.89.206
4345. [*] A top.com.cc 54.252.107.64
4346. [*] A top.co.cc 175.126.123.219
4347. [*] A top.cc 112.74.87.111
4348. [*] A top.ch 35.156.3.16
4349. [*] A top.org.ch 72.52.4.122
4350. [*] A top.cl 216.75.37.169
4351. [*] A top.co.cm 85.25.140.105
4352. [*] A top.net.cm 85.25.140.105
4353. [*] A top.biz.cl 185.53.178.8
4354. [*] A top.cn 23.27.192.117
4355. [*] A top.co 208.73.211.70
4356. [*] A top.com.cn 118.26.164.16
4357. [*] A top.net.cn 23.27.192.117
4358. [*] A top.net.co 184.168.221.59
4359. [*] A top.com.com 52.33.196.199
4360. [*] A top.com.co 185.28.20.39
4361. [*] A top.net.com 199.59.242.150
4362. [*] A top.co.com 173.192.115.17
4363. [*] A top.com 184.168.221.59
4364. [*] A top.co.ca 66.196.36.16
4365. [*] A top.org.com 23.23.86.44
4366. [*] A top.biz.cr 72.52.4.122
4367. [*] A top.cr 198.1.104.236
4368. [*] CNAME top.biz.cm i.cns.cm
4369. [*] A i.cns.cm 118.184.56.30
4370. [*] A top.cx 153.231.198.148
4371. [*] A top.biz.cx 72.52.4.122
4372. [*] A top.net.cz 80.250.24.177
4373. [*] A top.biz.cz 185.53.179.7
4374. [*] A top.com.cz 62.109.128.30
4375. [*] A top.de 213.165.64.4
4376. [*] A top.cz 91.228.100.92
4377. [*] A top.com.de 199.59.242.150
4378. [*] CNAME top.org.de www.org.de
4379. [*] A www.org.de 78.47.128.8
4380. [*] A top.co.de 128.199.226.195
4381. [*] A top.dk 46.4.18.10
4382. [*] A top.ec 72.52.4.119
4383. [*] A top.ee 217.146.69.11
4384. [*] AAAA top.ee 2a02:29e8:770:0:3::21
4385. [*] A top.es 185.53.178.8
4386. [*] A top.com.es 72.52.4.122
4387. [*] A top.eu 86.39.240.67
4388. [*] A top.net.eu 78.46.90.98
4389. [*] A top.org.eu 78.46.90.98
4390. [*] A top.biz.fi 185.55.85.123
4391. [*] A top.fm 173.230.131.38
4392. [*] A top.biz.fm 173.230.131.38
4393. [*] A top.fo 104.27.131.13
4394. [*] A top.fo 104.27.130.13
4395. [*] AAAA top.fo 2400:cb00:2048:1::681b:820d
4396. [*] AAAA top.fo 2400:cb00:2048:1::681b:830d
4397. [*] A top.fr 37.187.182.95
4398. [*] A top.org.fr 149.202.133.35
4399. [*] A top.gd 72.52.4.119
4400. [*] A top.ge 188.93.95.26
4401. [*] A top.gg 185.26.105.244
4402. [*] A top.gf 128.65.195.88
4403. [*] A top.biz.gl 72.52.4.122
4404. [*] A top.co.gp 144.76.162.245
4405. [*] A top.gp 72.52.4.119
4406. [*] A top.gs 184.168.221.55
4407. [*] A top.gr 185.4.133.65
4408. [*] A top.gt 198.49.72.66
4409. [*] A top.hk 203.124.113.1
4410. [*] A top.co.hn 208.100.40.203
4411. [*] A top.hn 217.70.184.38
4412. [*] A top.hr 178.218.174.100
4413. [*] CNAME top.net.hr net.hr
4414. [*] A net.hr 192.0.78.24
4415. [*] A net.hr 192.0.78.25
4416. [*] CNAME top.biz.hn parkmydomain.vhostgo.com
4417. [*] A parkmydomain.vhostgo.com 107.186.245.118
4418. [*] A top.ht 174.129.233.169
4419. [*] A top.co.ht 72.52.4.122
4420. [*] A top.hu 185.80.49.249
4421. [*] A top.co.id 198.252.100.115
4422. [*] A top.ie 185.2.66.91
4423. [*] A top.org.il 194.90.156.145
4424. [*] A top.org.il 194.90.184.11
4425. [*] A top.im 89.31.143.1
4426. [*] A top.net.in 50.63.202.32
4427. [*] A top.in 72.52.4.119
4428. [*] A top.co.in 72.52.4.122
4429. [*] A top.org.in 72.52.4.122
4430. [*] A top.info 210.114.223.199
4431. [*] A top.io 138.201.54.27
4432. [*] A top.co.ir 216.158.77.118
4433. [*] A top.is 193.4.58.173
4434. [*] A top.it 185.2.4.102
4435. [*] CNAME top.je park.io
4436. [*] A park.io 54.243.148.214
4437. [*] A park.io 50.17.238.198
4438. [*] A top.co.jobs 50.17.193.222
4439. [*] A top.jobs 50.19.241.165
4440. [*] A top.com.jobs 50.19.241.165
4441. [*] A top.net.jobs 50.19.241.165
4442. [*] A top.biz.jobs 50.19.241.165
4443. [*] A top.org.jobs 50.19.241.165
4444. [*] A top.com.jo 104.238.99.152
4445. [*] A top.jp 52.198.47.173
4446. [*] A top.co.ke 72.52.4.122
4447. [*] A top.co.jp 211.13.196.139
4448. [*] A top.kg 195.38.166.72
4449. [*] A top.net.kg 178.208.83.11
4450. [*] CNAME top.kr parking3.dnstool.net
4451. [*] CNAME parking3.dnstool.net wwwp.3dupndown.co.kr
4452. [*] CNAME wwwp.3dupndown.co.kr wqkboog.x.incapdns.net
4453. [*] A wqkboog.x.incapdns.net 107.154.155.33
4454. [*] CNAME top.co.kr parking3.dnstool.net
4455. [*] CNAME parking3.dnstool.net wwwp.3dupndown.co.kr
4456. [*] CNAME wwwp.3dupndown.co.kr wqkboog.x.incapdns.net
4457. [*] A wqkboog.x.incapdns.net 107.154.155.33
4458. [*] A top.biz.ky 199.184.144.27
4459. [*] A top.kz 136.243.146.176
4460. [*] A top.la 72.52.4.119
4461. [*] A top.lc 144.76.162.245
4462. [*] A top.com.kz 82.200.247.241
4463. [*] CNAME top.biz.li 712936.parkingcrew.net
4464. [*] A 712936.parkingcrew.net 185.53.179.29
4465. [*] A top.li 72.52.4.119
4466. [*] A top.lk 208.76.243.50
4467. [*] A top.lt 79.98.25.1
4468. [*] A top.lu 194.154.192.85
4469. [*] A top.biz.lu 195.26.5.2
4470. [*] A top.lv 194.105.56.171
4471. [*] A top.biz.ly 64.136.20.39
4472. [*] A top.co.ma 5.135.5.49
4473. [*] A top.md 88.99.29.152
4474. [*] A top.biz.md 72.52.4.122
4475. [*] A top.me 198.204.239.194
4476. [*] A top.co.mk 87.76.31.211
4477. [*] A top.mk 212.7.8.186
4478. [*] A top.mn 218.100.84.130
4479. [*] A top.co.mobi 54.225.105.179
4480. [*] A top.com.mx 184.173.249.72
4481. [*] A top.com.my 209.99.40.223
4482. [*] A top.biz.my 202.190.174.44
4483. [*] A top.co.net 188.166.216.219
4484. [*] A top.net.net 52.50.81.210
4485. [*] A top.net 72.249.144.95
4486. [*] A top.org.net 23.23.86.44
4487. [*] A top.co.nf 185.176.40.54
4488. [*] A top.biz.nf 185.176.40.54
4489. [*] A top.ng 91.195.240.135
4490. [*] A top.com.ng 91.195.240.135
4491. [*] A top.nl 109.72.85.122
4492. [*] AAAA top.nl 2a00:f10:ff03:1::103
4493. [*] A top.com.nl 83.98.157.102
4494. [*] A top.net.nl 83.98.157.102
4495. [*] A top.co.nl 77.174.199.0
4496. [*] A top.co.nr 208.100.40.202
4497. [*] A top.no 195.18.148.21
4498. [*] A top.nu 217.116.211.149
4499. [*] CNAME top.co.nu co.nu
4500. [*] A co.nu 144.76.162.245
4501. [*] A top.com.nu 144.76.162.245
4502. [*] A top.net.nu 199.102.76.78
4503. [*] A top.org.nu 80.92.84.139
4504. [*] A top.org.nz 104.25.242.31
4505. [*] A top.org.nz 104.25.243.31
4506. [*] AAAA top.org.nz 2400:cb00:2048:1::6819:f21f
4507. [*] AAAA top.org.nz 2400:cb00:2048:1::6819:f31f
4508. [*] CNAME top.net.org pewtrusts.org
4509. [*] A pewtrusts.org 204.74.99.100
4510. [*] A top.com.org 23.23.86.44
4511. [*] A top.net.nz 103.250.119.215
4512. [*] A top.co.nz 35.190.14.252
4513. [*] A top.pe 103.224.182.249
4514. [*] A top.com.pe 72.52.4.122
4515. [*] A top.co.ph 45.79.222.138
4516. [*] A top.ph 192.64.147.201
4517. [*] A top.net.ph 45.79.222.138
4518. [*] A top.com.ph 72.52.4.122
4519. [*] A top.org.ph 45.79.222.138
4520. [*] A top.com.pk 174.136.29.165
4521. [*] A top.pl 178.33.53.57
4522. [*] A top.net.pl 91.200.92.2
4523. [*] A top.com.pl 176.9.137.196
4524. [*] A top.co.pl 213.239.198.135
4525. [*] A top.pm 103.224.182.241
4526. [*] A top.org.pl 77.55.152.162
4527. [*] A top.org.pm 208.73.211.177
4528. [*] A top.org.pm 208.73.211.165
4529. [*] A top.org.pm 208.73.210.202
4530. [*] A top.org.pm 208.73.210.217
4531. [*] A top.biz.pl 94.23.89.40
4532. [*] A top.pro 192.252.144.48
4533. [*] A top.co.ps 66.96.132.56
4534. [*] CNAME top.biz.ps biz.ps
4535. [*] A biz.ps 144.76.162.245
4536. [*] A top.co.pt 194.107.127.52
4537. [*] A top.pt 72.52.4.119
4538. [*] A top.co.pw 141.8.226.59
4539. [*] A top.net.pw 141.8.226.59
4540. [*] A top.pw 141.8.226.59
4541. [*] A top.biz.pw 141.8.226.59
4542. [*] A top.org.pw 141.8.226.59
4543. [*] A top.com.qa 82.148.100.102
4544. [*] A top.re 69.172.201.153
4545. [*] A top.org.re 217.70.184.38
4546. [*] A top.qa 208.91.197.91
4547. [*] A top.net.ro 69.64.52.127
4548. [*] A top.ro 193.25.113.232
4549. [*] A top.rs 217.26.210.185
4550. [*] A top.org.ro 188.241.152.102
4551. [*] A top.org.rs 178.218.166.204
4552. [*] A top.ru 185.77.233.40
4553. [*] A top.net.ru 138.201.187.251
4554. [*] A top.org.ru 37.140.192.250
4555. [*] A top.com.ru 193.232.159.145
4556. [*] A top.com.ru 193.232.158.144
4557. [*] A top.com.ru 193.232.159.144
4558. [*] A top.com.ru 193.232.158.145
4559. [*] A top.sa 208.91.197.91
4560. [*] A top.co.rs 217.26.213.91
4561. [*] A top.net.sa 77.240.80.85
4562. [*] A top.sc 78.109.25.58
4563. [*] A top.com.se 52.32.224.120
4564. [*] A top.biz.se 185.53.179.6
4565. [*] CNAME top.net.se 773147.parkingcrew.net
4566. [*] A 773147.parkingcrew.net 185.53.179.29
4567. [*] A top.sg 91.136.8.131
4568. [*] A top.sh 107.150.98.48
4569. [*] A top.com.sg 119.31.233.166
4570. [*] A top.si 91.223.115.153
4571. [*] A top.sk 37.9.175.5
4572. [*] A top.co.sl 91.195.240.135
4573. [*] A top.com.sr 143.95.106.249
4574. [*] A top.st 13.69.186.222
4575. [*] A top.biz.st 91.121.28.115
4576. [*] A top.co.su 72.52.4.122
4577. [*] A top.su 82.146.61.146
4578. [*] A top.biz.tc 64.136.20.39
4579. [*] A top.tc 144.76.162.245
4580. [*] A top.biz.tf 85.236.153.18
4581. [*] A top.tf 77.174.199.0
4582. [*] A top.net.tf 188.40.117.12
4583. [*] A top.net.tf 188.40.70.29
4584. [*] A top.net.tf 188.40.70.27
4585. [*] A top.tk 195.20.47.239
4586. [*] A top.co.tl 208.100.40.202
4587. [*] A top.tel 52.50.143.27
4588. [*] A top.to 222.122.205.134
4589. [*] A top.co.to 175.118.124.44
4590. [*] A top.travel 72.52.4.119
4591. [*] A top.com.tr 77.245.149.29
4592. [*] A top.co.th 203.146.170.57
4593. [*] A top.co.tv 31.186.25.163
4594. [*] A top.biz.tv 72.52.4.122
4595. [*] A top.org.tv 72.52.4.122
4596. [*] A top.com.tw 106.186.25.125
4597. [*] A top.tw 61.220.152.244
4598. [*] A top.co.tz 216.194.168.113
4599. [*] A top.org.tw 61.63.62.68
4600. [*] A top.ua 82.144.222.56
4601. [*] A top.net.ua 80.91.160.7
4602. [*] A top.co.ua 138.201.57.91
4603. [*] A top.com.ua 77.120.122.115
4604. [*] A top.biz.ua 95.213.135.229
4605. [*] AAAA top.biz.ua 2a00:ab00:4300:1df::2
4606. [*] A top.net.tw 60.249.15.213
4607. [*] A top.co.uk 212.36.97.12
4608. [*] A top.uk 212.36.97.12
4609. [*] A top.uz 83.69.139.158
4610. [*] A top.biz.uz 144.76.162.245
4611. [*] A top.vc 199.59.242.150
4612. [*] A top.net.ve 67.220.187.66
4613. [*] A top.vg 88.198.29.97
4614. [*] A top.com.ve 185.53.178.6
4615. [*] A top.co.vg 88.198.29.97
4616. [*] A top.com.vg 88.198.29.97
4617. [*] A top.net.vg 68.178.254.180
4618. [*] A top.biz.vg 89.31.143.20
4619. [*] A top.net.vn 112.213.89.3
4620. [*] A top.ws 184.168.221.104
4621. [*] A top.com.ws 202.4.48.211
4622. [*] A top.net.ws 202.4.48.211
4623. [*] A top.biz.ws 184.168.221.104
4624. [*] A top.org.ws 202.4.48.211
4625. [*] A top.yt 103.224.182.241
4626. [*] CNAME top.wf dnspod-free.mydnspod.net
4627. [*] A dnspod-free.mydnspod.net 49.51.10.19
4628.  
4629. ; <<>> DiG 9.10.3-P4-Debian <<>> top.models-list.org any
4630. ;; global options: +cmd
4631. ;; Got answer:
4632. ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 28240
4633. ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
4634.  
4635. ;; OPT PSEUDOSECTION:
4636. ; EDNS: version: 0, flags:; udp: 4096
4637. ;; QUESTION SECTION:
4638. ;top.models-list.org. IN ANY
4639.  
4640. ;; ANSWER SECTION:
4641. top.models-list.org. 2627 IN A 89.248.166.76
4642.  
4643. ;; Query time: 8 msec
4644. ;; SERVER: 192.168.1.254#53(192.168.1.254)
4645. ;; WHEN: Sat Sep 09 21:34:16 EDT 2017
4646. ;; MSG SIZE rcvd: 64
4647.  
4648.  
4649. Running:
4650. traceroute -T -O info -i eth0 top.models-list.org
4651. traceroute to top.models-list.org (89.248.166.76), 30 hops max, 60 byte packets
4652. 1 gateway (192.168.1.254) 0.371 ms 0.555 ms 0.722 ms
4653. 2 10.135.18.1 (10.135.18.1) 7.119 ms 7.204 ms 7.301 ms
4654. 3 75.154.223.222 (75.154.223.222) 29.378 ms 29.998 ms 30.171 ms
4655. 4 lag-113.ear3.NewYork1.Level3.net (4.15.212.245) 30.371 ms 30.505 ms 30.627 ms
4656. 5 ae-237-3613.edge6.Amsterdam1.Level3.net (4.69.162.242) 104.623 ms ae-240-3616.edge6.Amsterdam1.Level3.net (4.69.162.254) 104.657 ms 104.720 ms
4657. 6 * * *
4658. 7 no-reverse-dns-configured.com (89.248.166.76) <syn,ack> 103.635 ms 103.680 ms 104.098 ms
4659.  
4660.  
4661.  
4662. ----- top.models-list.org -----
4663.  
4664.  
4665. Host's addresses:
4666. __________________
4667.  
4668. top.models-list.org. 2618 IN A 89.248.166.76
4669.  
4670.  
4671.  
4672.  
4673. Tracing to top.models-list.org[a] via 192.168.1.254, maximum of 3 retries
4674. 192.168.1.254 (192.168.1.254) Got answer
4675.  
4676.  
4677. WhatWeb report for http://top.models-list.org
4678. Status : 200 OK
4679. Title : REAL Preteen Galleries! Unbelievable OMG !! Smallest beautiful bodies!! All high quality videos of only
4680. IP : 89.248.166.76
4681. Country : NETHERLANDS, NL
4682.  
4683. Summary : HTTPServer[nginx/1.12.1], nginx[1.12.1]
4684.  
4685. Detected Plugins:
4686. [ HTTPServer ]
4687. HTTP server header string. This plugin also attempts to
4688. identify the operating system from the server header.
4689.  
4690. String : nginx/1.12.1 (from server string)
4691.  
4692. [ nginx ]
4693. Nginx (Engine-X) is a free, open-source, high-performance
4694. HTTP server and reverse proxy, as well as an IMAP/POP3
4695. proxy server.
4696.  
4697. Version : 1.12.1
4698. Website : http://nginx.net/
4699.  
4700. HTTP Headers:
4701. HTTP/1.1 200 OK
4702. Server: nginx/1.12.1
4703. Date: Sat, 09 Sep 2017 23:35:51 GMT
4704. Content-Type: text/html; charset=UTF-8
4705. Transfer-Encoding: chunked
4706. Connection: close
4707. Accept-Ranges: bytes
4708.  
4709.  
4710. ^ ^
4711. _ __ _ ____ _ __ _ _ ____
4712. ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
4713. | V V // o // _/ | V V // 0 // 0 // _/
4714. |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
4715. <
4716. ...'
4717.  
4718. WAFW00F - Web Application Firewall Detection Tool
4719.  
4720. By Sandro Gauci && Wendel G. Henrique
4721.  
4722. Checking http://top.models-list.org
4723. Generic Detection results:
4724. No WAF detected by the generic detection
4725. Number of requests: 13
4726.  
4727.  
4728.  
4729. Trying zone transfer first...
4730.  
4731. Unsuccessful in zone transfer (it was worth a shot)
4732. Okay, trying the good old fashioned way... brute force
4733.  
4734. Checking for wildcard DNS...
4735. Nope. Good.
4736. Now performing 2280 test(s)...
4737.  
4738. Subnets found (may want to probe here using nmap or unicornscan):
4739.  
4740. Done with Fierce scan: http://ha.ckers.org/fierce/
4741. Found 0 entries.
4742.  
4743. Have a nice day.
4744.  
4745.  
4746.  
4747. lbd - load balancing detector 0.2 - Checks if a given domain uses load-balancing.
4748. Written by Stefan Behte (http://ge.mine.nu)
4749. Proof-of-concept! Might give false positives.
4750.  
4751. Checking for DNS-Loadbalancing: NOT FOUND
4752. Checking for HTTP-Loadbalancing [Server]:
4753. nginx/1.12.1
4754. NOT FOUND
4755.  
4756. Checking for HTTP-Loadbalancing [Date]: 23:37:36, 23:37:36, 23:37:37, 23:37:37, 23:37:38, 23:37:39, 23:37:39, 23:37:39, 23:37:40, 23:37:40, 23:37:40, 23:37:40, 23:37:41, 23:37:45, 23:37:45, 23:37:45, 23:37:45, 23:37:46, 23:37:46, 23:37:46, 23:37:47, 23:37:47, 23:37:48, 23:37:48, 23:37:48, 23:37:48, 23:37:49, 23:37:49, 23:37:49, 23:37:50, 23:37:50, 23:37:51, 23:37:51, 23:37:51, 23:37:52, 23:37:52, 23:37:52, 23:37:52, 23:37:53, 23:37:53, 23:37:53, 23:37:53, 23:37:54, 23:37:55, 23:38:00, 23:38:01, 23:38:02, 23:38:02, 23:38:02, 23:38:02, NOT FOUND
4757.  
4758. Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
4759.  
4760. top.models-list.org does NOT use Load-balancing.
4761.  
4762.  
4763.  
4764. Starting smtp-user-enum v1.2 ( http://pentestmonkey.net/tools/smtp-user-enum )
4765.  
4766. ----------------------------------------------------------
4767. | Scan Information |
4768. ----------------------------------------------------------
4769.  
4770. Mode ..................... VRFY
4771. Worker Processes ......... 5
4772. Usernames file ........... users.txt
4773. Target count ............. 1
4774. Username count ........... 494
4775. Target TCP port .......... 25
4776. Query timeout ............ 5 secs
4777. Target domain ............
4778.  
4779. ######## Scan started at Sat Sep 9 21:40:03 2017 #########
4780. ######## Scan completed at Sat Sep 9 21:48:18 2017 #########
4781. 0 results.
4782.  
4783. 494 queries in 495 seconds (1.0 queries / sec)
4784.  
4785.  
4786.  
4787. Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 21:48 EDT
4788. NSE: Loaded 146 scripts for scanning.
4789. NSE: Script Pre-scanning.
4790. Initiating NSE at 21:48
4791. Completed NSE at 21:48, 0.00s elapsed
4792. Initiating NSE at 21:48
4793. Completed NSE at 21:48, 0.00s elapsed
4794. Failed to resolve "top.models-list.org.txt".
4795. Initiating Parallel DNS resolution of 1 host. at 21:48
4796. Completed Parallel DNS resolution of 1 host. at 21:48, 0.50s elapsed
4797. Initiating SYN Stealth Scan at 21:48
4798. Scanning top.models-list.org (89.248.166.76) [100 ports]
4799. Discovered open port 3306/tcp on 89.248.166.76
4800. Discovered open port 143/tcp on 89.248.166.76
4801. Discovered open port 110/tcp on 89.248.166.76
4802. Discovered open port 80/tcp on 89.248.166.76
4803. Discovered open port 53/tcp on 89.248.166.76
4804. Discovered open port 993/tcp on 89.248.166.76
4805. Discovered open port 995/tcp on 89.248.166.76
4806. Increasing send delay for 89.248.166.76 from 0 to 5 due to 61 out of 152 dropped probes since last increase.
4807. Completed SYN Stealth Scan at 21:48, 3.61s elapsed (100 total ports)
4808. Initiating Service scan at 21:48
4809. Scanning 7 services on top.models-list.org (89.248.166.76)
4810. Completed Service scan at 21:48, 6.79s elapsed (7 services on 1 host)
4811. Initiating OS detection (try #1) against top.models-list.org (89.248.166.76)
4812. adjust_timeouts2: packet supposedly had rtt of -90296 microseconds. Ignoring time.
4813. adjust_timeouts2: packet supposedly had rtt of -90296 microseconds. Ignoring time.
4814. Retrying OS detection (try #2) against top.models-list.org (89.248.166.76)
4815. Initiating Traceroute at 21:48
4816. Completed Traceroute at 21:48, 3.02s elapsed
4817. Initiating Parallel DNS resolution of 7 hosts. at 21:48
4818. Completed Parallel DNS resolution of 7 hosts. at 21:48, 5.51s elapsed
4819. NSE: Script scanning 89.248.166.76.
4820. Initiating NSE at 21:48
4821. Completed NSE at 21:48, 14.72s elapsed
4822. Initiating NSE at 21:48
4823. Completed NSE at 21:48, 0.01s elapsed
4824. Nmap scan report for top.models-list.org (89.248.166.76)
4825. Host is up (0.13s latency).
4826. rDNS record for 89.248.166.76: no-reverse-dns-configured.com
4827. Not shown: 84 closed ports
4828. PORT STATE SERVICE VERSION
4829. 21/tcp filtered ftp
4830. 22/tcp filtered ssh
4831. 25/tcp filtered smtp
4832. 53/tcp open domain ISC BIND 9.8.2rc1
4833. | dns-nsid:
4834. |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4
4835. 80/tcp open http nginx 1.12.1
4836. | http-methods:
4837. | Supported Methods: GET HEAD POST OPTIONS TRACE
4838. |_ Potentially risky methods: TRACE
4839. |_http-server-header: nginx/1.12.1
4840. |_http-title: REAL Preteen Galleries! Unbelievable OMG !! Smallest beautiful...
4841. 81/tcp filtered hosts2-ns
4842. 110/tcp open pop3 Dovecot pop3d
4843. |_pop3-capabilities: PIPELINING SASL(PLAIN LOGIN DIGEST-MD5 CRAM-MD5) CAPA USER RESP-CODES TOP UIDL STLS
4844. | ssl-cert: Subject: commonName=imap.example.com
4845. | Issuer: commonName=imap.example.com
4846. | Public Key type: rsa
4847. | Public Key bits: 1024
4848. | Signature Algorithm: sha1WithRSAEncryption
4849. | Not valid before: 2015-06-12T12:04:14
4850. | Not valid after: 2016-06-11T12:04:14
4851. | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
4852. |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
4853. |_ssl-date: 2017-09-09T23:47:46+00:00; -2h01m10s from scanner time.
4854. 135/tcp filtered msrpc
4855. 139/tcp filtered netbios-ssn
4856. 143/tcp open imap Dovecot imapd
4857. |_ssl-date: 2017-09-09T23:47:46+00:00; -2h01m10s from scanner time.
4858. 445/tcp filtered microsoft-ds
4859. 465/tcp filtered smtps
4860. 587/tcp filtered submission
4861. 993/tcp open ssl/imap Dovecot imapd
4862. | ssl-cert: Subject: commonName=imap.example.com
4863. | Issuer: commonName=imap.example.com
4864. | Public Key type: rsa
4865. | Public Key bits: 1024
4866. | Signature Algorithm: sha1WithRSAEncryption
4867. | Not valid before: 2015-06-12T12:04:14
4868. | Not valid after: 2016-06-11T12:04:14
4869. | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
4870. |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
4871. 995/tcp open ssl/pop3 Dovecot pop3d
4872. | ssl-cert: Subject: commonName=imap.example.com
4873. | Issuer: commonName=imap.example.com
4874. | Public Key type: rsa
4875. | Public Key bits: 1024
4876. | Signature Algorithm: sha1WithRSAEncryption
4877. | Not valid before: 2015-06-12T12:04:14
4878. | Not valid after: 2016-06-11T12:04:14
4879. | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
4880. |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
4881. |_ssl-date: 2017-09-09T23:47:42+00:00; -2h01m10s from scanner time.
4882. 3306/tcp open mysql MySQL (unauthorized)
4883. Aggressive OS guesses: Linux 2.6.39 (99%), Linux 2.6.32 (95%), Synology DiskStation Manager 5.1 (94%), Linux 2.6.32 or 3.10 (94%), Linux 3.4 (94%), WatchGuard Fireware 11.8 (94%), Linux 3.10 (93%), Linux 3.1 - 3.2 (93%), Linux 2.6.32 - 2.6.39 (93%), Linux 3.2 - 3.8 (91%)
4884. No exact OS matches for host (test conditions non-ideal).
4885. Uptime guess: 11.783 days (since Tue Aug 29 03:01:01 2017)
4886. Network Distance: 10 hops
4887. TCP Sequence Prediction: Difficulty=262 (Good luck!)
4888. IP ID Sequence Generation: All zeros
4889. Service Info: OS: Red Hat Enterprise Linux 6; CPE: cpe:/o:redhat:enterprise_linux:6
4890.  
4891. Host script results:
4892. |_clock-skew: mean: -2h01m10s, deviation: 0s, median: -2h01m10s
4893.  
4894. TRACEROUTE (using port 554/tcp)
4895. HOP RTT ADDRESS
4896. 1 110.41 ms 10.13.0.1
4897. 2 109.94 ms 37.187.24.252
4898. 3 110.45 ms po101.gra-g1-a75.fr.eu (178.33.103.229)
4899. 4 ...
4900. 5 119.38 ms be100-1109.fra-1-a9.de.eu (213.186.32.213)
4901. 6 ...
4902. 7 124.39 ms vlan3555.bb1.ams2.nl.m247.com (176.10.83.128)
4903. 8 120.64 ms 176.10.83.119
4904. 9 ...
4905. 10 120.23 ms no-reverse-dns-configured.com (89.248.166.76)
4906.  
4907.  
4908.  
4909.  
4910. _/ _/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/
4911. _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
4912. _/ _/ _/_/_/_/ _/_/_/ _/ _/_/_/ _/_/_/_/ _/ _/_/_/ _/_/_/_
4913. _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
4914. _/_/_/_/ _/ _/ _/ _/_/_/_/ _/_/_/_/ _/ _/_/_/_/ _/ _/ [v1.06]
4915.  
4916. _/ User-Agent Tester ↵
4917. _/ AKA: Purple Pimp ↵
4918. _/ ChrisJohnRiley ↵
4919. _/ blog.c22.cc ↵
4920.  
4921. [>] Performing initial request and confirming stability
4922. [>] Using User-Agent string Mozilla/5.0
4923.  
4924. [ ] URL (ENTERED): http://top.models-list.org
4925. [ ] Response Code: 200 OK
4926. [ ] Server: nginx/1.12.1
4927. [ ] Date: Sat, 09 Sep 2017 23:47:55 GMT
4928. [ ] Content-Type: text/html; charset=UTF-8
4929. [ ] Transfer-Encoding: chunked
4930. [ ] Connection: close
4931. [ ] Accept-Ranges: bytes
4932. [ ] Data (MD5): bea36b44354ccfea526ff572b761fe98
4933.  
4934. [1] Pass
4935. [2] Pass
4936. [3] Pass
4937.  
4938. [>] URL appears stable. Beginning test
4939.  
4940. [>] Using DEFAULT User-Agent Strings
4941.  
4942. [>] Using Crazy User-Agent Strings
4943. [>] Using Bot User-Agent Strings
4944.  
4945. [>] Output: [+] Added Headers, [-] Removed Headers, [!] Altered Headers, [ ] No Change
4946.  
4947.  
4948. [>] Checks completed... try enabling VERBOSE mode for more detailed output
4949.  
4950. [>] That's all folks... Fo' Shizzle!
4951.  
4952. #########################################################################################
4953. Hostname smallmodels.net ISP Quasi Networks LTD. (AS29073)
4954. Continent Africa Flag
4955. SC
4956. Country Seychelles Country Code SC (SYC)
4957. Region Unknown Local time 10 Sep 2017 05:58 +04
4958. City Unknown Latitude -4.583
4959. IP Address 93.174.91.159 Longitude 55.667
4960. #########################################################################################
4961. smallmodels.net
4962.  
4963. ###########################################################################################
4964.  
4965. whois smallmodels.net
4966. Domain Name: SMALLMODELS.NET
4967. Registry Domain ID: 1778057866_DOMAIN_NET-VRSN
4968. Registrar WHOIS Server: whois.bizcn.com
4969. Registrar URL: http://www.bizcn.com
4970. Updated Date: 2017-04-28T08:20:45Z
4971. Creation Date: 2013-02-03T08:00:40Z
4972. Registry Expiry Date: 2018-02-03T08:00:40Z
4973. Registrar: Bizcn.com, Inc.
4974. Registrar IANA ID: 471
4975. Registrar Abuse Contact Email:
4976. Registrar Abuse Contact Phone:
4977. Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited
4978. Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
4979. Name Server: NS23.CLOUDNS.NET
4980. Name Server: PNS21.CLOUDNS.NET
4981. Name Server: PNS23.CLOUDNS.NET
4982. Name Server: PNS24.CLOUDNS.NET
4983. Name Server: PNS28.CLOUDNS.NET
4984. Name Server: PNS30.CLOUDNS.NET
4985.  
4986. Domain name: smallmodels.net
4987. Registry Domain ID: 1778057866_DOMAIN_NET-VRSN
4988. Registrar WHOIS Server: whois.bizcn.com
4989. Registrar URL: http://www.bizcn.com
4990. Updated Date: 2017-02-02T23:01:18Z
4991. Creation Date: 2013-02-03T08:00:40Z
4992. Registrar Registration Expiration Date: 2018-02-03T08:00:40Z
4993. Registrar: Bizcn.com,Inc.
4994. Registrar IANA ID: 471
4995. Registrar Abuse Contact Email: abuse@bizcn.com
4996. Registrar Abuse Contact Phone: +86.5922577888
4997. Reseller: Cnobin Technology HK Limited
4998. Domain Status: clientDeleteProhibited (http://www.icann.org/epp#clientDeleteProhibited)
4999. Domain Status: clientTransferProhibited (http://www.icann.org/epp#clientTransferProhibited)
5000. Registry Registrant ID: Not Available From Registry
5001. Registrant Name: Wuxi Yilian LLC
5002. Registrant Organization: Wuxi Yilian LLC
5003. Registrant Street: No.1001 Anling Road
5004. Registrant City: Xiamen
5005. Registrant State/Province: Fujian
5006. Registrant Postal Code: 361008
5007. Registrant Country: cn
5008. Registrant Phone: +86.5922577888
5009. Registrant Phone Ext:
5010. Registrant Fax: +86.5922179606
5011. Registrant Fax Ext:
5012. Registrant Email: whoisprivacyprotect@whoisservices.cn
5013. Registry Admin ID: Not Available From Registry
5014. Admin Name: Wuxi Yilian LLC
5015. Admin Organization: Wuxi Yilian LLC
5016. Admin Street: No.1001 Anling Road
5017. Admin City: Xiamen
5018. Admin State/Province: Fujian
5019. Admin Postal Code: 361008
5020. Admin Country: cn
5021. Admin Phone: +86.5922577888
5022. Admin Phone Ext:
5023. Admin Fax: +86.5922179606
5024. Admin Fax Ext:
5025. Admin Email: whoisprivacyprotect@whoisservices.cn
5026. Registry Tech ID: Not Available From Registry
5027. Tech Name: Wuxi Yilian LLC
5028. Tech Organization: Wuxi Yilian LLC
5029. Tech Street: No.1001 Anling Road
5030. Tech City: Xiamen
5031. Tech State/Province: Fujian
5032. Tech Postal Code: 361008
5033. Tech Country: cn
5034. Tech Phone: +86.5922577888
5035. Tech Phone Ext:
5036. Tech Fax: +86.5922179606
5037. Tech Fax Ext:
5038. Tech Email: whoisprivacyprotect@whoisservices.cn
5039. Name Server: pns23.cloudns.net
5040. Name Server: pns24.cloudns.net
5041. Name Server: pns21.cloudns.net
5042. Name Server: pns28.cloudns.net
5043. Name Server: pns30.cloudns.net
5044. Name Server: ns23.cloudns.net
5045.  
5046. ###########################################################################################
5047.  
5048. ;smallmodels.net. IN ANY
5049.  
5050. ;; ANSWER SECTION:
5051. smallmodels.net. 2232 IN NS pns30.cloudns.net.
5052. smallmodels.net. 2232 IN NS pns23.cloudns.net.
5053. smallmodels.net. 2232 IN NS ns22.cloudns.net.
5054. smallmodels.net. 2232 IN NS ns24.cloudns.net.
5055. smallmodels.net. 2232 IN NS pns28.cloudns.net.
5056. smallmodels.net. 2232 IN NS pns25.cloudns.net.
5057. smallmodels.net. 2232 IN NS pns24.cloudns.net.
5058. smallmodels.net. 2232 IN NS pns22.cloudns.net.
5059. smallmodels.net. 2232 IN NS ns21.cloudns.net.
5060. smallmodels.net. 2232 IN NS pns21.cloudns.net.
5061. smallmodels.net. 2232 IN NS ns23.cloudns.net.
5062. smallmodels.net. 2232 IN NS pns29.cloudns.net.
5063. smallmodels.net. 2232 IN NS pns26.cloudns.net.
5064. smallmodels.net. 2232 IN NS pns27.cloudns.net.
5065.  
5066. ###########################################################################################
5067.  
5068. tcptraceroute -i eth0 smallmodels.net
5069.  
5070. Running:
5071. traceroute -T -O info -i eth0 smallmodels.net
5072. traceroute to smallmodels.net (93.174.91.159), 30 hops max, 60 byte packets
5073. 1 gateway (192.168.1.254) 0.447 ms 0.618 ms 0.775 ms
5074. 2 10.135.18.1 (10.135.18.1) 16.137 ms 16.802 ms 17.100 ms
5075. 3 75.154.223.222 (75.154.223.222) 29.580 ms 29.634 ms 30.142 ms
5076. 4 lag-113.ear3.NewYork1.Level3.net (4.15.212.245) 30.787 ms 30.949 ms 31.161 ms
5077. 5 ae-237-3613.edge6.Amsterdam1.Level3.net (4.69.162.242) 129.013 ms 129.042 ms 129.098 ms
5078. 6 * * *
5079. 7 no-reverse-dns-configured.com (93.174.91.159) <syn,ack> 103.504 ms 103.727 ms 103.788 ms
5080.  
5081. ###########################################################################################
5082.  
5083.  
5084. Checking for HTTP-Loadbalancing [Date]: 02:06:46, 02:06:47, 02:06:47, 02:06:47, 02:06:47, 02:06:48, 02:06:48, 02:06:48, 02:06:49, 02:06:49, 02:06:49, 02:06:49, 02:06:50, 02:06:50, 02:06:50, 02:06:50, 02:06:51, 02:06:51, 02:06:51, 02:06:51, 02:06:52, 02:06:52, 02:06:52, 02:06:53, 02:06:53, 02:06:53, 02:06:53, 02:06:54, 02:06:54, 02:06:54, 02:06:54, 02:06:55, 02:06:55, 02:06:55, 02:06:55, 02:06:56, 02:06:56, 02:06:56, 02:06:57, 02:06:57, 02:06:57, 02:06:57, 02:06:58, 02:06:58, 02:06:58, 02:06:58, 02:06:59, 02:06:59, 02:06:59, 02:07:00, NOT FOUND
5085.  
5086. Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
5087.  
5088. smallmodels.net does NOT use Load-balancing.
5089.  
5090. ###########################################################################################
5091.  
5092. nmap -PN -n -F -T4 -sV -A -oG temp.txt smallmodels.net
5093.  
5094. Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 22:03 EDT
5095. Nmap scan report for smallmodels.net (93.174.91.159)
5096. Host is up (0.19s latency).
5097. Not shown: 89 closed ports
5098. PORT STATE SERVICE VERSION
5099. 21/tcp open ftp vsftpd 3.0.2
5100. 22/tcp open ssh OpenSSH 6.0p1 Debian 4+deb7u6 (protocol 2.0)
5101. | ssh-hostkey:
5102. | 1024 ab:16:56:89:21:7e:75:1c:77:f3:a2:7e:c2:f1:4c:09 (DSA)
5103. | 2048 22:f8:e3:f6:1a:1c:6a:99:09:6b:1e:7c:fd:30:e3:95 (RSA)
5104. |_ 256 a8:03:f4:96:36:d1:39:de:2e:4f:56:e9:0f:f3:63:56 (ECDSA)
5105. 25/tcp filtered smtp
5106. 53/tcp open domain
5107. | dns-nsid:
5108. |_ bind.version: 9.8.4-rpz2+rl005.12-P1
5109. 80/tcp open http nginx
5110. |_http-server-header: nginx
5111. |_http-title: virginity was, pictures teen, sweet teen
5112. 111/tcp open rpcbind 2-4 (RPC #100000)
5113. 135/tcp filtered msrpc
5114. 139/tcp filtered netbios-ssn
5115. 445/tcp filtered microsoft-ds
5116. 465/tcp filtered smtps
5117. 587/tcp filtered submission
5118. Aggressive OS guesses: Linux 2.6.39 (96%), Linux 3.2 - 3.8 (94%), Linux 3.8 (94%), WatchGuard Fireware 11.8 (94%), Linux 3.1 - 3.2 (94%), Linux 3.5 (93%), Linux 2.6.32 - 2.6.39 (92%), Linux 2.6.32 - 3.0 (91%), Linux 2.6.32 (91%), Linux 2.6.32 or 3.10 (91%)
5119. No exact OS matches for host (test conditions non-ideal).
5120. Network Distance: 11 hops
5121. Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
5122.  
5123. TRACEROUTE (using port 143/tcp)
5124. HOP RTT ADDRESS
5125. 1 419.99 ms 10.13.0.1
5126. 2 677.91 ms 37.187.24.252
5127. 3 673.15 ms 178.33.103.231
5128. 4 710.56 ms 10.95.33.10
5129. 5 681.31 ms 91.121.131.19
5130. 6 687.29 ms 94.23.122.217
5131. 7 ...
5132. 8 700.05 ms 176.10.83.128
5133. 9 695.75 ms 176.10.83.5
5134. 10 ...
5135. 11 693.29 ms 93.174.91.159
5136.  
5137. Protocol on 93.174.91.159:21/tcp matches ftp
5138. Protocol on 93.174.91.159:22/tcp matches ssh
5139. Protocol on 93.174.91.159:22/tcp matches ssh-openssh
5140. Protocol on 93.174.91.159:80/tcp matches http
5141. Protocol on 93.174.91.159:111/tcp matches rpc
5142. Protocol on 93.174.91.159:53/tcp matches dns
5143. this connect
5144. Protocol on 93.174.91.159:111/tcp matches rpc-rpcbind-v4
5145.  
5146. Unidentified ports: none.
5147.  
5148. amap v5.4 finished at 2017-09-09 22:06:03
5149.  
5150. ###########################################################################################
5151.  
5152. inetnum: 93.174.91.0 - 93.174.91.255
5153. netname: SC-QUASI52
5154. descr: QUASI
5155. country: SC
5156. org: ORG-QNL3-RIPE
5157. admin-c: QNL1-RIPE
5158. tech-c: QNL1-RIPE
5159. status: ASSIGNED PA
5160. mnt-by: QUASINETWORKS-MNT
5161. mnt-lower: QUASINETWORKS-MNT
5162. mnt-routes: QUASINETWORKS-MNT
5163. created: 2016-01-23T22:20:58Z
5164. last-modified: 2016-01-23T22:20:58Z
5165. source: RIPE
5166.  
5167. organisation: ORG-QNL3-RIPE
5168. org-name: Quasi Networks LTD.
5169. org-type: OTHER
5170. address: Suite 1, Second Floor
5171. address: Sound & Vision House, Francis Rachel Street
5172. address: Victoria, Mahe, SEYCHELLES
5173. remarks: *****************************************************************************
5174. remarks: IMPORTANT INFORMATION
5175. remarks: *****************************************************************************
5176. remarks: We are a high bandwidth network provider offering bandwidth solutions.
5177. remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
5178. remarks: Please only use abuse@quasinetworks.com for abuse reports.
5179. remarks: For all other requests, please see the details on our website.
5180. remarks: *****************************************************************************
5181. abuse-mailbox: abuse@quasinetworks.com
5182. abuse-c: AR34302-RIPE
5183. mnt-ref: QUASINETWORKS-MNT
5184. mnt-by: QUASINETWORKS-MNT
5185. created: 2015-11-08T22:25:26Z
5186. last-modified: 2015-11-27T09:37:50Z
5187. source: RIPE # Filtered
5188.  
5189. role: Quasi Networks LTD
5190. address: Suite 1, Second Floor
5191. address: Sound & Vision House, Francis Rachel Street
5192. address: Victoria, Mahe, SEYCHELLES
5193. remarks: *****************************************************************************
5194. remarks: IMPORTANT INFORMATION
5195. remarks: *****************************************************************************
5196. remarks: We are a high bandwidth network provider offering bandwidth solutions.
5197. remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
5198. remarks: Please only use abuse@quasinetworks.com for abuse reports.
5199. remarks: For all other requests, please see the details on our website.
5200. remarks: *****************************************************************************
5201. abuse-mailbox: abuse@quasinetworks.com
5202. nic-hdl: QNL1-RIPE
5203. mnt-by: QUASINETWORKS-MNT
5204. created: 2015-11-07T22:43:04Z
5205. last-modified: 2015-11-07T23:04:49Z
5206. source: RIPE # Filtered
5207.  
5208. % Information related to '93.174.88.0/21as29073'
5209.  
5210. route: 93.174.88.0/21
5211. descr: Quasi Networks LTD (IBC)
5212. origin: as29073
5213. mnt-by: QUASINETWORKS-MNT
5214. created: 2008-06-20T15:33:47Z
5215. last-modified: 2016-01-23T22:26:12Z
5216. source: RIPE
5217.  
5218. % This query was served by the RIPE Database Query Service version 1.89.2 (WAGYU)
5219.  
5220.  
5221.  
5222. ###########################################################################################
5223. [i] Scanning Site: http://smallmodels.net
5224.  
5225.  
5226.  
5227. B A S I C I N F O
5228. ====================
5229.  
5230.  
5231. [+] Site Title: virginity was, pictures teen, sweet teen
5232. [+] IP address: 93.174.91.159
5233. [+] Web Server: nginx
5234. [+] CMS: Could Not Detect
5235. [+] Cloudflare: Not Detected
5236. [+] Robots File: Could NOT Find robots.txt!
5237.  
5238.  
5239.  
5240.  
5241. W H O I S L O O K U P
5242. ========================
5243.  
5244. Domain Name: SMALLMODELS.NET
5245. Registry Domain ID: 1778057866_DOMAIN_NET-VRSN
5246. Registrar WHOIS Server: whois.bizcn.com
5247. Registrar URL: http://www.bizcn.com
5248. Updated Date: 2017-04-28T08:20:45Z
5249. Creation Date: 2013-02-03T08:00:40Z
5250. Registry Expiry Date: 2018-02-03T08:00:40Z
5251. Registrar: Bizcn.com, Inc.
5252. Registrar IANA ID: 471
5253. Registrar Abuse Contact Email:
5254. Registrar Abuse Contact Phone:
5255. Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited
5256. Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
5257. Name Server: NS23.CLOUDNS.NET
5258. Name Server: PNS21.CLOUDNS.NET
5259. Name Server: PNS23.CLOUDNS.NET
5260. Name Server: PNS24.CLOUDNS.NET
5261. Name Server: PNS28.CLOUDNS.NET
5262. Name Server: PNS30.CLOUDNS.NET
5263.  
5264.  
5265.  
5266. G E O I P L O O K U P
5267. =========================
5268.  
5269. [i] IP Address: 93.174.91.159
5270. [i] Country: SC
5271. [i] State: N/A
5272. [i] City: N/A
5273. [i] Latitude: -4.583300
5274. [i] Longitude: 55.666698
5275.  
5276.  
5277.  
5278.  
5279. H T T P H E A D E R S
5280. =======================
5281.  
5282.  
5283. [i] HTTP/1.1 200 OK
5284. [i] Server: nginx
5285. [i] Date: Sun, 10 Sep 2017 02:06:41 GMT
5286. [i] Content-Type: text/html
5287. [i] Connection: close
5288. [i] Vary: Accept-Encoding
5289. [i] X-Powered-By: PHP/5.4.45-0+deb7u8
5290. [i] Vary: Accept-Encoding
5291.  
5292.  
5293.  
5294.  
5295. D N S L O O K U P
5296. ===================
5297.  
5298. smallmodels.net. 56 IN A 93.174.91.159
5299. smallmodels.net. 3600 IN NS pns26.cloudns.net.
5300. smallmodels.net. 3600 IN NS pns23.cloudns.net.
5301. smallmodels.net. 3600 IN NS pns28.cloudns.net.
5302. smallmodels.net. 3600 IN NS pns25.cloudns.net.
5303. smallmodels.net. 3600 IN NS ns24.cloudns.net.
5304. smallmodels.net. 3600 IN NS ns21.cloudns.net.
5305. smallmodels.net. 3600 IN NS pns30.cloudns.net.
5306. smallmodels.net. 3600 IN NS pns27.cloudns.net.
5307. smallmodels.net. 3600 IN NS pns24.cloudns.net.
5308. smallmodels.net. 3600 IN NS pns29.cloudns.net.
5309. smallmodels.net. 3600 IN NS ns23.cloudns.net.
5310. smallmodels.net. 3600 IN NS ns22.cloudns.net.
5311. smallmodels.net. 3600 IN NS pns21.cloudns.net.
5312. smallmodels.net. 3600 IN NS pns22.cloudns.net.
5313. smallmodels.net. 3600 IN SOA ns21.cloudns.net. support.cloudns.net. 2017091010 7200 1800 1209600 3600
5314.  
5315.  
5316.  
5317.  
5318. S U B N E T C A L C U L A T I O N
5319. ====================================
5320.  
5321. Address = 93.174.91.159
5322. Network = 93.174.91.159 / 32
5323. Netmask = 255.255.255.255
5324. Broadcast = not needed on Point-to-Point links
5325. Wildcard Mask = 0.0.0.0
5326. Hosts Bits = 0
5327. Max. Hosts = 1 (2^0 - 0)
5328. Host Range = { 93.174.91.159 - 93.174.91.159 }
5329.  
5330.  
5331.  
5332. N M A P P O R T S C A N
5333. ============================
5334.  
5335.  
5336. Starting Nmap 7.01 ( https://nmap.org ) at 2017-09-10 02:03 UTC
5337. Nmap scan report for smallmodels.net (93.174.91.159)
5338. Host is up (0.083s latency).
5339. rDNS record for 93.174.91.159: no-reverse-dns-configured.com
5340. PORT STATE SERVICE VERSION
5341. 21/tcp open ftp vsftpd 3.0.2
5342. 22/tcp open ssh OpenSSH 6.0p1 Debian 4+deb7u6 (protocol 2.0)
5343. 23/tcp closed telnet
5344. 25/tcp closed smtp
5345. 80/tcp open http nginx
5346. 110/tcp closed pop3
5347. 143/tcp closed imap
5348. 443/tcp closed https
5349. 445/tcp closed microsoft-ds
5350. 3389/tcp closed ms-wbt-server
5351. Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
5352.  
5353. Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
5354. Nmap done: 1 IP address (1 host up) scanned in 8.39 seconds
5355.  
5356.  
5357.  
5358. S U B - D O M A I N F I N D E R
5359. ==================================
5360.  
5361.  
5362. [i] Total Subdomains Found : 1
5363.  
5364. [+] Subdomain: smallmodels.net
5365. [-] IP: 89.248.166.21
5366. [*] Performing TLD Brute force Enumeration against smallmodels.net
5367. [*] The operation could take up to: 00:01:07
5368. [*] A smallmodels.biz.af 5.45.75.45
5369. [*] A smallmodels.co.asia 91.195.240.135
5370. [*] CNAME smallmodels.biz.at free.biz.at
5371. [*] A free.biz.at 216.92.134.29
5372. [*] A smallmodels.org.aw 142.4.20.12
5373. [*] A smallmodels.co.ba 176.9.45.78
5374. [*] A smallmodels.com.ba 195.222.33.180
5375. [*] A smallmodels.com.be 95.173.170.166
5376. [*] A smallmodels.biz.by 71.18.52.2
5377. [*] A smallmodels.biz.bz 199.59.242.150
5378. [*] A smallmodels.com.cc 54.252.107.64
5379. [*] A smallmodels.net.cc 54.252.89.206
5380. [*] A smallmodels.co.cc 175.126.123.219
5381. [*] A smallmodels.org.ch 72.52.4.122
5382. [*] A smallmodels.co.cm 85.25.140.105
5383. [*] A smallmodels.net.cm 85.25.140.105
5384. [*] A smallmodels.biz.cl 185.53.178.8
5385. [*] A smallmodels.com.com 52.33.196.199
5386. [*] A smallmodels.net.com 199.59.242.150
5387. [*] A smallmodels.co.com 173.192.115.17
5388. [*] A smallmodels.org.com 23.23.86.44
5389. [*] CNAME smallmodels.com HDRedirect-LB3-890977680.us-east-1.elb.amazonaws.com
5390. [*] A HDRedirect-LB3-890977680.us-east-1.elb.amazonaws.com 54.172.131.220
5391. [*] A HDRedirect-LB3-890977680.us-east-1.elb.amazonaws.com 52.71.185.125
5392. [*] CNAME smallmodels.biz.cm i.cns.cm
5393. [*] A i.cns.cm 118.184.56.30
5394. [*] A smallmodels.biz.cr 72.52.4.122
5395. [*] A smallmodels.biz.cx 72.52.4.122
5396. [*] A smallmodels.net.cz 80.250.24.177
5397. [*] A smallmodels.biz.cz 185.53.179.7
5398. [*] A smallmodels.com.cz 62.109.128.30
5399. [*] A smallmodels.cz 193.85.185.32
5400. [*] CNAME smallmodels.co.de co.de
5401. [*] A co.de 144.76.162.245
5402. [*] A smallmodels.com.de 50.56.68.37
5403. [*] CNAME smallmodels.org.de www.org.de
5404. [*] A www.org.de 78.47.128.8
5405. [*] A smallmodels.net.eu 78.46.90.98
5406. [*] A smallmodels.org.eu 78.46.90.98
5407. [*] A smallmodels.biz.fi 185.55.85.123
5408. [*] A smallmodels.fm 173.230.131.38
5409. [*] A smallmodels.biz.fm 173.230.131.38
5410. [*] A smallmodels.org.fr 149.202.133.35
5411. [*] A smallmodels.biz.gl 72.52.4.122
5412. [*] CNAME smallmodels.co.gp co.gp
5413. [*] A co.gp 144.76.162.245
5414. [*] A smallmodels.co.hn 208.100.40.203
5415. [*] CNAME smallmodels.net.hr net.hr
5416. [*] A net.hr 192.0.78.25
5417. [*] A net.hr 192.0.78.24
5418. [*] CNAME smallmodels.biz.hn parkmydomain.vhostgo.com
5419. [*] A parkmydomain.vhostgo.com 107.186.245.118
5420. [*] A smallmodels.co.ht 72.52.4.122
5421. [*] A smallmodels.co.jobs 50.17.193.222
5422. [*] A smallmodels.com.jobs 50.19.241.165
5423. [*] A smallmodels.net.jobs 50.19.241.165
5424. [*] A smallmodels.biz.jobs 50.19.241.165
5425. [*] A smallmodels.org.jobs 50.19.241.165
5426. [*] A smallmodels.biz.ky 199.184.144.27
5427. [*] CNAME smallmodels.biz.li 712936.parkingcrew.net
5428. [*] A 712936.parkingcrew.net 185.53.179.29
5429. [*] A smallmodels.biz.lu 195.26.5.2
5430. [*] A smallmodels.biz.ly 64.136.20.39
5431. [*] A smallmodels.biz.md 72.52.4.122
5432. [*] A smallmodels.co.mk 87.76.31.211
5433. [*] A smallmodels.co.mobi 54.225.105.179
5434. [*] A smallmodels.biz.my 202.190.174.44
5435. [*] A smallmodels.co.net 188.166.216.219
5436. [*] A smallmodels.net.net 52.50.81.210
5437. [*] A smallmodels.org.net 23.23.86.44
5438. [*] A smallmodels.net 94.102.48.103
5439. [*] A smallmodels.co.nl 37.97.184.204
5440. [*] A smallmodels.com.nl 83.98.157.102
5441. [*] A smallmodels.net.nl 83.98.157.102
5442. [*] A smallmodels.co.nr 208.100.40.202
5443. [*] CNAME smallmodels.co.nu co.nu
5444. [*] A co.nu 144.76.162.245
5445. [*] A smallmodels.net.nu 199.102.76.78
5446. [*] CNAME smallmodels.com.nu com.nu
5447. [*] A com.nu 144.76.162.245
5448. [*] A smallmodels.org.nu 80.92.84.139
5449. [*] A smallmodels.com.org 23.23.86.44
5450. [*] CNAME smallmodels.net.org pewtrusts.org
5451. [*] A pewtrusts.org 204.74.99.100
5452. [*] A smallmodels.org 157.7.184.14
5453. [*] A smallmodels.ph 45.79.222.138
5454. [*] A smallmodels.co.ph 45.79.222.138
5455. [*] A smallmodels.com.ph 45.79.222.138
5456. [*] A smallmodels.net.ph 45.79.222.138
5457. [*] A smallmodels.org.ph 45.79.222.138
5458. [*] A smallmodels.co.pl 212.91.6.55
5459. [*] A smallmodels.org.pm 208.73.211.165
5460. [*] A smallmodels.org.pm 208.73.210.202
5461. [*] A smallmodels.org.pm 208.73.210.217
5462. [*] A smallmodels.org.pm 208.73.211.177
5463. [*] A smallmodels.co.ps 66.96.132.56
5464. [*] CNAME smallmodels.biz.ps biz.ps
5465. [*] A biz.ps 144.76.162.245
5466. [*] A smallmodels.co.pt 194.107.127.52
5467. [*] A smallmodels.co.pw 141.8.226.59
5468. [*] A smallmodels.net.pw 141.8.226.59
5469. [*] A smallmodels.pw 141.8.226.58
5470. [*] A smallmodels.org.pw 141.8.226.59
5471. [*] A smallmodels.biz.pw 141.8.226.59
5472. [*] CNAME smallmodels.co.ro now.co.ro
5473. [*] A now.co.ro 185.27.255.9
5474. [*] A smallmodels.net.ro 69.64.52.127
5475. [*] A smallmodels.org.re 217.70.184.38
5476. [*] A smallmodels.com.ru 178.210.89.119
5477. [*] A smallmodels.biz.se 185.53.179.6
5478. [*] CNAME smallmodels.net.se 773147.parkingcrew.net
5479. [*] A 773147.parkingcrew.net 185.53.179.29
5480. [*] A smallmodels.co.sl 91.195.240.135
5481. [*] A smallmodels.com.sr 143.95.106.249
5482. [*] A smallmodels.biz.st 91.121.28.115
5483. [*] A smallmodels.co.su 72.52.4.122
5484. [*] A smallmodels.biz.tc 64.136.20.39
5485. [*] A smallmodels.biz.tf 85.236.153.18
5486. [*] A smallmodels.net.tf 188.40.70.29
5487. [*] A smallmodels.net.tf 188.40.70.27
5488. [*] A smallmodels.net.tf 188.40.117.12
5489. [*] A smallmodels.co.tl 208.100.40.202
5490. [*] A smallmodels.co.to 175.118.124.44
5491. [*] A smallmodels.co.tv 31.186.25.163
5492. [*] A smallmodels.biz.tv 72.52.4.122
5493. [*] A smallmodels.org.tv 72.52.4.122
5494. [*] CNAME smallmodels.biz.uz biz.uz
5495. [*] A biz.uz 144.76.162.245
5496. [*] A smallmodels.vg 88.198.29.97
5497. [*] A smallmodels.co.vg 88.198.29.97
5498. [*] A smallmodels.com.vg 88.198.29.97
5499. [*] A smallmodels.net.vg 68.178.254.180
5500. [*] A smallmodels.biz.vg 89.31.143.20
5501. [*] A smallmodels.ws 64.70.19.203
5502. [*] A smallmodels.biz.ws 184.168.221.104
5503. [*] A smallmodels.com.ws 202.4.48.211
5504. [*] A smallmodels.net.ws 202.4.48.211
5505. [*] A smallmodels.org.ws 202.4.48.211
5506. Domain Name: SMALLMODELS.NET
5507. Registry Domain ID: 1778057866_DOMAIN_NET-VRSN
5508. Registrar WHOIS Server: whois.bizcn.com
5509. Registrar URL: http://www.bizcn.com
5510. Updated Date: 2017-04-28T08:20:45Z
5511. Creation Date: 2013-02-03T08:00:40Z
5512. Registry Expiry Date: 2018-02-03T08:00:40Z
5513. Registrar: Bizcn.com, Inc.
5514. Registrar IANA ID: 471
5515. Registrar Abuse Contact Email:
5516. Registrar Abuse Contact Phone:
5517. Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited
5518. Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
5519. Name Server: NS23.CLOUDNS.NET
5520. Name Server: PNS21.CLOUDNS.NET
5521. Name Server: PNS23.CLOUDNS.NET
5522. Name Server: PNS24.CLOUDNS.NET
5523. Name Server: PNS28.CLOUDNS.NET
5524. Name Server: PNS30.CLOUDNS.NET
5525.  
5526. Domain name: smallmodels.net
5527. Registry Domain ID: 1778057866_DOMAIN_NET-VRSN
5528. Registrar WHOIS Server: whois.bizcn.com
5529. Registrar URL: http://www.bizcn.com
5530. Updated Date: 2017-02-02T23:01:18Z
5531. Creation Date: 2013-02-03T08:00:40Z
5532. Registrar Registration Expiration Date: 2018-02-03T08:00:40Z
5533. Registrar: Bizcn.com,Inc.
5534. Registrar IANA ID: 471
5535. Registrar Abuse Contact Email: abuse@bizcn.com
5536. Registrar Abuse Contact Phone: +86.5922577888
5537. Reseller: Cnobin Technology HK Limited
5538. Domain Status: clientDeleteProhibited (http://www.icann.org/epp#clientDeleteProhibited)
5539. Domain Status: clientTransferProhibited (http://www.icann.org/epp#clientTransferProhibited)
5540. Registry Registrant ID: Not Available From Registry
5541. Registrant Name: Wuxi Yilian LLC
5542. Registrant Organization: Wuxi Yilian LLC
5543. Registrant Street: No.1001 Anling Road
5544. Registrant City: Xiamen
5545. Registrant State/Province: Fujian
5546. Registrant Postal Code: 361008
5547. Registrant Country: cn
5548. Registrant Phone: +86.5922577888
5549. Registrant Phone Ext:
5550. Registrant Fax: +86.5922179606
5551. Registrant Fax Ext:
5552. Registrant Email: whoisprivacyprotect@whoisservices.cn
5553. Registry Admin ID: Not Available From Registry
5554. Admin Name: Wuxi Yilian LLC
5555. Admin Organization: Wuxi Yilian LLC
5556. Admin Street: No.1001 Anling Road
5557. Admin City: Xiamen
5558. Admin State/Province: Fujian
5559. Admin Postal Code: 361008
5560. Admin Country: cn
5561. Admin Phone: +86.5922577888
5562. Admin Phone Ext:
5563. Admin Fax: +86.5922179606
5564. Admin Fax Ext:
5565. Admin Email: whoisprivacyprotect@whoisservices.cn
5566. Registry Tech ID: Not Available From Registry
5567. Tech Name: Wuxi Yilian LLC
5568. Tech Organization: Wuxi Yilian LLC
5569. Tech Street: No.1001 Anling Road
5570. Tech City: Xiamen
5571. Tech State/Province: Fujian
5572. Tech Postal Code: 361008
5573. Tech Country: cn
5574. Tech Phone: +86.5922577888
5575. Tech Phone Ext:
5576. Tech Fax: +86.5922179606
5577. Tech Fax Ext:
5578. Tech Email: whoisprivacyprotect@whoisservices.cn
5579. Name Server: pns23.cloudns.net
5580. Name Server: pns24.cloudns.net
5581. Name Server: pns21.cloudns.net
5582. Name Server: pns28.cloudns.net
5583. Name Server: pns30.cloudns.net
5584. Name Server: ns23.cloudns.net
5585.  
5586. ;smallmodels.net. IN ANY
5587.  
5588. ;; ANSWER SECTION:
5589. smallmodels.net. 2232 IN NS pns28.cloudns.net.
5590. smallmodels.net. 2232 IN NS pns23.cloudns.net.
5591. smallmodels.net. 2232 IN NS pns27.cloudns.net.
5592. smallmodels.net. 2232 IN NS pns30.cloudns.net.
5593. smallmodels.net. 2232 IN NS pns24.cloudns.net.
5594. smallmodels.net. 2232 IN NS pns29.cloudns.net.
5595. smallmodels.net. 2232 IN NS pns26.cloudns.net.
5596. smallmodels.net. 2232 IN NS ns22.cloudns.net.
5597. smallmodels.net. 2232 IN NS pns22.cloudns.net.
5598. smallmodels.net. 2232 IN NS ns23.cloudns.net.
5599. smallmodels.net. 2232 IN NS pns25.cloudns.net.
5600. smallmodels.net. 2232 IN NS ns24.cloudns.net.
5601. smallmodels.net. 2232 IN NS pns21.cloudns.net.
5602. smallmodels.net. 2232 IN NS ns21.cloudns.net.
5603.  
5604.  
5605. ----- smallmodels.net -----
5606.  
5607.  
5608. Host's addresses:
5609. __________________
5610.  
5611. smallmodels.net. 40 IN A 93.174.91.159
5612.  
5613.  
5614. Wildcard detection using: bkpnbylfekfc
5615. _______________________________________
5616.  
5617. bkpnbylfekfc.smallmodels.net. 60 IN A 93.174.91.159
5618.  
5619.  
5620. !!!!!!!!!!!!!!!!!!!!!!!!!!!!
5621.  
5622. Wildcards detected, all subdomains will point to the same IP address
5623. Omitting results containing 93.174.91.159.
5624. Maybe you are using OpenDNS servers.
5625.  
5626. !!!!!!!!!!!!!!!!!!!!!!!!!!!!
5627.  
5628.  
5629. Name Servers:
5630. ______________
5631.  
5632. pns29.cloudns.net. 143963 IN A 185.136.96.96
5633. pns30.cloudns.net. 130954 IN A 185.136.96.96
5634. pns26.cloudns.net. 143963 IN A 185.136.97.96
5635. pns24.cloudns.net. 120830 IN A 185.136.99.96
5636. ns23.cloudns.net. 119968 IN A 79.137.84.65
5637. pns23.cloudns.net. 120830 IN A 185.136.98.96
5638. ns24.cloudns.net. 155931 IN A 46.165.221.164
5639. pns25.cloudns.net. 143963 IN A 185.136.96.96
5640. pns28.cloudns.net. 88589 IN A 185.136.99.96
5641. ns22.cloudns.net. 119967 IN A 108.59.2.202
5642. pns21.cloudns.net. 120428 IN A 185.136.96.96
5643. pns22.cloudns.net. 120797 IN A 185.136.97.96
5644. pns27.cloudns.net. 143963 IN A 185.136.98.96
5645. ns21.cloudns.net. 119967 IN A 109.201.133.61
5646.  
5647. smallmodels.net class C netranges:
5648. ___________________________________
5649.  
5650. 93.174.91.0/24
5651.  
5652.  
5653. Performing reverse lookup on 256 ip addresses:
5654. _______________________________________________
5655.  
5656.  
5657. 0 results out of 256 IP addresses.
5658.  
5659.  
5660. smallmodels.net ip blocks:
5661. ___________________________
5662.  
5663.  
5664.  
5665.  
5666. WhatWeb report for http://smallmodels.net
5667. Status : 200 OK
5668. Title : virginity was, pictures teen, sweet teen
5669. IP : 93.174.91.159
5670. Country : NETHERLANDS, NL
5671.  
5672. Summary : X-Powered-By[PHP/5.4.45-0+deb7u8], HTTPServer[nginx], PHP[5.4.45-0+deb7u8], Frame, nginx, Script[text/javascript]
5673.  
5674. Detected Plugins:
5675. [ Frame ]
5676. This plugin detects instances of frame and iframe HTML
5677. elements.
5678.  
5679.  
5680. [ HTTPServer ]
5681. HTTP server header string. This plugin also attempts to
5682. identify the operating system from the server header.
5683.  
5684. String : nginx (from server string)
5685.  
5686. [ PHP ]
5687. PHP is a widely-used general-purpose scripting language
5688. that is especially suited for Web development and can be
5689. embedded into HTML. This plugin identifies PHP errors,
5690. modules and versions and extracts the local file path and
5691. username if present.
5692.  
5693. Version : 5.4.45-0+deb7u8
5694. Google Dorks: (2)
5695. Website : http://www.php.net/
5696.  
5697. [ Script ]
5698. This plugin detects instances of script HTML elements and
5699. returns the script language/type.
5700.  
5701. String : text/javascript
5702.  
5703. [ X-Powered-By ]
5704. X-Powered-By HTTP header
5705.  
5706. String : PHP/5.4.45-0+deb7u8 (from x-powered-by string)
5707.  
5708. [ nginx ]
5709. Nginx (Engine-X) is a free, open-source, high-performance
5710. HTTP server and reverse proxy, as well as an IMAP/POP3
5711. proxy server.
5712.  
5713. Website : http://nginx.net/
5714.  
5715. HTTP Headers:
5716. HTTP/1.1 200 OK
5717. Server: nginx
5718. Date: Sun, 10 Sep 2017 02:12:26 GMT
5719. Content-Type: text/html
5720. Content-Length: 15487
5721. Connection: close
5722. X-Powered-By: PHP/5.4.45-0+deb7u8
5723. Vary: Accept-Encoding
5724. Content-Encoding: gzip
5725.  
5726.  
5727.  
5728. ------------------------------------
5729. [-] Resolving hostnames IPs...
5730. 93.174.91.159:www.smallmodels.net
5731.  
5732.  
5733.  
5734. ^ ^
5735. _ __ _ ____ _ __ _ _ ____
5736. ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
5737. | V V // o // _/ | V V // 0 // 0 // _/
5738. |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
5739. <
5740. ...'
5741.  
5742. WAFW00F - Web Application Firewall Detection Tool
5743.  
5744. By Sandro Gauci && Wendel G. Henrique
5745.  
5746. Checking http://smallmodels.net
5747. Generic Detection results:
5748. No WAF detected by the generic detection
5749. Number of requests: 13
5750.  
5751.  
5752. DNS Servers for smallmodels.net:
5753. pns26.cloudns.net
5754. pns22.cloudns.net
5755. pns21.cloudns.net
5756. pns28.cloudns.net
5757. pns24.cloudns.net
5758. ns23.cloudns.net
5759. pns23.cloudns.net
5760. pns25.cloudns.net
5761. ns21.cloudns.net
5762. pns29.cloudns.net
5763. pns30.cloudns.net
5764. ns24.cloudns.net
5765. ns22.cloudns.net
5766.  
5767. lbd - load balancing detector 0.2 - Checks if a given domain uses load-balancing.
5768. Written by Stefan Behte (http://ge.mine.nu)
5769. Proof-of-concept! Might give false positives.
5770.  
5771. Checking for DNS-Loadbalancing: NOT FOUND
5772. Checking for HTTP-Loadbalancing [Server]:
5773. nginx
5774. NOT FOUND
5775.  
5776. Checking for HTTP-Loadbalancing [Date]: 02:21:50, 02:21:50, 02:21:50, 02:21:51, 02:21:51, 02:21:51, 02:21:51, 02:21:52, 02:21:55, 02:21:56, 02:21:57, 02:21:57, 02:21:57, 02:21:57, 02:21:58, 02:21:58, 02:21:58, 02:21:58, 02:21:59, 02:21:59, 02:21:59, 02:21:59, 02:22:00, 02:22:00, 02:22:00, 02:22:00, 02:22:01, 02:22:01, 02:22:01, 02:22:02, 02:22:02, 02:22:02, 02:22:02, 02:22:03, 02:22:03, 02:22:03, 02:22:03, 02:22:04, 02:22:04, 02:22:04, 02:22:05, 02:22:05, 02:22:05, 02:22:06, 02:22:06, 02:22:06, 02:22:07, 02:22:07, 02:22:07, 02:22:07, NOT FOUND
5777.  
5778. Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
5779.  
5780. smallmodels.net does NOT use Load-balancing.
5781.  
5782.  
5783.  
5784. Starting smtp-user-enum v1.2 ( http://pentestmonkey.net/tools/smtp-user-enum )
5785.  
5786. ----------------------------------------------------------
5787. | Scan Information |
5788. ----------------------------------------------------------
5789.  
5790. Mode ..................... VRFY
5791. Worker Processes ......... 5
5792. Usernames file ........... users.txt
5793. Target count ............. 1
5794. Username count ........... 494
5795. Target TCP port .......... 25
5796. Query timeout ............ 5 secs
5797. Target domain ............
5798.  
5799. ######## Scan started at Sat Sep 9 22:18:42 2017 #########
5800. ######## Scan completed at Sat Sep 9 22:26:57 2017 #########
5801. 0 results.
5802.  
5803. 494 queries in 495 seconds (1.0 queries / sec)
5804.  
5805.  
5806.  
5807. Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 22:26 EDT
5808. NSE: Loaded 146 scripts for scanning.
5809. NSE: Script Pre-scanning.
5810. Initiating NSE at 22:26
5811. Completed NSE at 22:26, 0.00s elapsed
5812. Initiating NSE at 22:26
5813. Completed NSE at 22:26, 0.00s elapsed
5814. Failed to resolve "smallmodels.net.txt".
5815. Initiating Parallel DNS resolution of 1 host. at 22:26
5816. Completed Parallel DNS resolution of 1 host. at 22:26, 0.06s elapsed
5817. Initiating SYN Stealth Scan at 22:26
5818. Scanning smallmodels.net (93.174.91.159) [100 ports]
5819. Discovered open port 22/tcp on 93.174.91.159
5820. Discovered open port 21/tcp on 93.174.91.159
5821. Discovered open port 80/tcp on 93.174.91.159
5822. Discovered open port 53/tcp on 93.174.91.159
5823. Discovered open port 111/tcp on 93.174.91.159
5824. Increasing send delay for 93.174.91.159 from 0 to 5 due to 63 out of 157 dropped probes since last increase.
5825. Completed SYN Stealth Scan at 22:27, 3.48s elapsed (100 total ports)
5826. Initiating Service scan at 22:27
5827. Scanning 5 services on smallmodels.net (93.174.91.159)
5828. Completed Service scan at 22:27, 11.38s elapsed (5 services on 1 host)
5829. Initiating OS detection (try #1) against smallmodels.net (93.174.91.159)
5830. Retrying OS detection (try #2) against smallmodels.net (93.174.91.159)
5831. adjust_timeouts2: packet supposedly had rtt of -53295 microseconds. Ignoring time.
5832. adjust_timeouts2: packet supposedly had rtt of -53295 microseconds. Ignoring time.
5833. Initiating Traceroute at 22:27
5834. Completed Traceroute at 22:27, 3.01s elapsed
5835. Initiating Parallel DNS resolution of 8 hosts. at 22:27
5836. Completed Parallel DNS resolution of 8 hosts. at 22:27, 5.51s elapsed
5837. NSE: Script scanning 93.174.91.159.
5838. Initiating NSE at 22:27
5839. Completed NSE at 22:28, 63.10s elapsed
5840. Initiating NSE at 22:28
5841. Completed NSE at 22:28, 0.34s elapsed
5842. Nmap scan report for smallmodels.net (93.174.91.159)
5843. Host is up (0.13s latency).
5844. rDNS record for 93.174.91.159: no-reverse-dns-configured.com
5845. Not shown: 89 closed ports
5846. PORT STATE SERVICE VERSION
5847. 21/tcp open ftp vsftpd 3.0.2
5848. 22/tcp open ssh OpenSSH 6.0p1 Debian 4+deb7u6 (protocol 2.0)
5849. | ssh-hostkey:
5850. | 1024 ab:16:56:89:21:7e:75:1c:77:f3:a2:7e:c2:f1:4c:09 (DSA)
5851. | 2048 22:f8:e3:f6:1a:1c:6a:99:09:6b:1e:7c:fd:30:e3:95 (RSA)
5852. |_ 256 a8:03:f4:96:36:d1:39:de:2e:4f:56:e9:0f:f3:63:56 (ECDSA)
5853. 25/tcp filtered smtp
5854. 53/tcp open domain
5855. | dns-nsid:
5856. |_ bind.version: 9.8.4-rpz2+rl005.12-P1
5857. 80/tcp open http nginx
5858. |_http-favicon: Unknown favicon MD5: C34DD2A3D94F9DDA8F0C943EAC5816ED
5859. | http-methods:
5860. |_ Supported Methods: POST OPTIONS
5861. |_http-server-header: nginx
5862. |_http-title: virginity was, pictures teen, sweet teen
5863. 111/tcp open rpcbind 2-4 (RPC #100000)
5864. 135/tcp filtered msrpc
5865. 139/tcp filtered netbios-ssn
5866. 445/tcp filtered microsoft-ds
5867. 465/tcp filtered smtps
5868. 587/tcp filtered submission
5869. Aggressive OS guesses: Linux 2.6.39 (96%), Linux 3.2 - 3.8 (95%), Linux 3.8 (95%), WatchGuard Fireware 11.8 (95%), Linux 3.1 - 3.2 (94%), Linux 2.6.32 - 2.6.39 (93%), Linux 3.5 (92%), Linux 3.0 - 3.2 (92%), Linux 2.6.32 (91%), Linux 3.0 (91%)
5870. No exact OS matches for host (test conditions non-ideal).
5871. Uptime guess: 6.417 days (since Sun Sep 3 12:27:47 2017)
5872. Network Distance: 11 hops
5873. TCP Sequence Prediction: Difficulty=261 (Good luck!)
5874. IP ID Sequence Generation: All zeros
5875. Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
5876.  
5877. TRACEROUTE (using port 110/tcp)
5878. HOP RTT ADDRESS
5879. 1 109.55 ms 10.13.0.1
5880. 2 110.72 ms 37.187.24.252
5881. 3 110.70 ms po101.gra-g2-a75.fr.eu (178.33.103.231)
5882. 4 ...
5883. 5 119.00 ms be100-1113.fra-5-a9.de.eu (91.121.131.19)
5884. 6 118.98 ms be100-2.fra-1-a9.de.eu (94.23.122.217)
5885. 7 ...
5886. 8 124.45 ms vlan3555.bb1.ams2.nl.m247.com (176.10.83.128)
5887. 9 120.49 ms 176.10.83.5
5888. 10 ...
5889. 11 120.50 ms no-reverse-dns-configured.com (93.174.91.159)
5890.  
5891. NSE: Script Post-scanning.
5892. Initiating NSE at 22:28
5893. Completed NSE at 22:28, 0.00s elapsed
5894. Initiating NSE at 22:28
5895. Completed NSE at 22:28, 0.00s elapsed
5896. Read data files from: /usr/bin/../share/nmap
5897. OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
5898. Nmap done: 1 IP address (1 host up) scanned in 92.78 seconds
5899. Raw packets sent: 258 (13.276KB) | Rcvd: 216 (12.476KB)
5900.  
5901.  
5902. _/ _/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/
5903. _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
5904. _/ _/ _/_/_/_/ _/_/_/ _/ _/_/_/ _/_/_/_/ _/ _/_/_/ _/_/_/_
5905. _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
5906. _/_/_/_/ _/ _/ _/ _/_/_/_/ _/_/_/_/ _/ _/_/_/_/ _/ _/ [v1.06]
5907.  
5908. _/ User-Agent Tester ↵
5909. _/ AKA: Purple Pimp ↵
5910. _/ ChrisJohnRiley ↵
5911. _/ blog.c22.cc ↵
5912.  
5913. [>] Performing initial request and confirming stability
5914. [>] Using User-Agent string Mozilla/5.0
5915.  
5916. [ ] URL (ENTERED): http://smallmodels.net
5917. [ ] Response Code: 200 OK
5918. [ ] Server: nginx
5919. [ ] Date: Sun, 10 Sep 2017 02:32:14 GMT
5920. [ ] Content-Type: text/html
5921. [ ] Transfer-Encoding: chunked
5922. [ ] Connection: close
5923. [ ] Vary: Accept-Encoding
5924. [ ] X-Powered-By: PHP/5.4.45-0+deb7u8
5925. [ ] Vary: Accept-Encoding
5926. [ ] Data (MD5): 4698c44f52dbf23b268a2a232f5c5d4d
5927.  
5928. [1] Pass
5929. [2] Pass
5930. [3] Pass
5931.  
5932. [>] URL appears stable. Beginning test
5933.  
5934. [>] Using DEFAULT User-Agent Strings
5935.  
5936. [>] Using Crazy User-Agent Strings
5937. [>] Using Bot User-Agent Strings
5938.  
5939. [>] Output: [+] Added Headers, [-] Removed Headers, [!] Altered Headers, [ ] No Change
5940.  
5941.  
5942. [>] Checks completed... try enabling VERBOSE mode for more detailed output
5943.  
5944. [>] That's all folks... Fo' Shizzle!
5945. #########################################################################################
5946. Hostname littleshoolgirls.com ISP Quasi Networks LTD. (AS29073)
5947. Continent Africa Flag
5948. SC
5949. Country Seychelles Country Code SC (SYC)
5950. Region Unknown Local time 10 Sep 2017 06:18 +04
5951. City Unknown Latitude -4.583
5952. IP Address 94.102.48.103 Longitude 55.667
5953. ##########################################################################################
5954.  
5955. whois littleshoolgirls.com
5956. Domain Name: LITTLESHOOLGIRLS.COM
5957. Registry Domain ID: 1777538070_DOMAIN_COM-VRSN
5958. Registrar WHOIS Server: whois.pairnic.com
5959. Registrar URL: http://www.pairnic.com
5960. Updated Date: 2017-04-19T11:39:58Z
5961. Creation Date: 2013-01-31T17:56:46Z
5962. Registry Expiry Date: 2018-01-31T17:56:46Z
5963. Registrar: Pair Networks Inc.d/b/a pairNIC
5964. Registrar IANA ID: 99
5965. Registrar Abuse Contact Email:
5966. Registrar Abuse Contact Phone:
5967. Domain Status: ok https://icann.org/epp#ok
5968. Name Server: PNS21.CLOUDNS.NET
5969. Name Server: PNS22.CLOUDNS.NET
5970. Name Server: PNS23.CLOUDNS.NET
5971. Name Server: PNS24.CLOUDNS.NET
5972. DNSSEC: unsigned
5973.  
5974. Domain Name: littleshoolgirls.com
5975. Registry Domain ID: 1777538070_DOMAIN_COM-VRSN
5976. Registrar WHOIS Server: whois.pairDomains.com
5977. Registrar URL: https://www.pairDomains.com
5978. Updated Date: 2017-04-19T11:39:58+0000Z
5979. Creation Date: 2013-01-31T17:56:46+0000Z
5980. Registrar Registration Expiration Date: 2018-01-31T17:56:46+0000Z
5981. Registrar: pair Domains INC
5982. Registrar IANA ID: 99
5983. Registrar Abuse Contact Email: abuse@pairdomains.com
5984. Registrar Abuse Contact Phone: +1.8887247642
5985. Registry Registrant ID:
5986. Registrant Name: denis duchene
5987. Registrant Organization:
5988. Registrant Street: c/o pairDomains.com Whois Privacy PO Box 42319
5989. Registrant City: Pittsburgh
5990. Registrant State/Province: PA
5991. Registrant Postal Code: 15203
5992. Registrant Country: US
5993. Registrant Phone: +1.4123257437
5994. Registrant Phone Ext:
5995. Registrant Fax:
5996. Registrant Fax Ext:
5997. Registrant Email: 915q6w4i8499@nojunkemailaddress.com
5998. Registry Admin ID:
5999. Admin Name: denis duchene
6000. Admin Organization:
6001. Admin Street: c/o pairDomains.com Whois Privacy PO Box 42319
6002. Admin City: Pittsburgh
6003. Admin State/Province: PA
6004. Admin Postal Code: 15203
6005. Admin Country: US
6006. Admin Phone: +1.4123257437
6007. Admin Phone Ext:
6008. Admin Fax:
6009. Admin Fax Ext:
6010. Admin Email: 915q6w4i8499@nojunkemailaddress.com
6011. Registry Tech ID:
6012. Tech Name: denis duchene
6013. Tech Organization:
6014. Tech Street: c/o pairDomains.com Whois Privacy PO Box 42319
6015. Tech City: Pittsburgh
6016. Tech State/Province: PA
6017. Tech Postal Code: 15203
6018. Tech Country: US
6019. Tech Phone: +1.4123257437
6020. Tech Phone Ext:
6021. Tech Fax:
6022. Tech Fax Ext:
6023. Tech Email: 915q6w4i8499@nojunkemailaddress.com
6024. Name Server: PNS22.CLOUDNS.NET
6025. Name Server: PNS24.CLOUDNS.NET
6026. Name Server: PNS23.CLOUDNS.NET
6027. Name Server: PNS21.CLOUDNS.NET
6028.  
6029.  
6030. ###########################################################################################
6031.  
6032. ;littleshoolgirls.com. IN ANY
6033.  
6034. ;; ANSWER SECTION:
6035. littleshoolgirls.com. 35 IN A 94.102.48.103
6036. littleshoolgirls.com. 987 IN NS pns21.cloudns.net.
6037. littleshoolgirls.com. 987 IN NS ns22.cloudns.net.
6038. littleshoolgirls.com. 987 IN NS ns23.cloudns.net.
6039. littleshoolgirls.com. 987 IN NS pns24.cloudns.net.
6040. littleshoolgirls.com. 987 IN NS pns22.cloudns.net.
6041. littleshoolgirls.com. 987 IN NS ns21.cloudns.net.
6042. littleshoolgirls.com. 987 IN NS pns23.cloudns.net.
6043. littleshoolgirls.com. 987 IN NS ns24.cloudns.net.
6044.  
6045. ;; Query time: 9 msec
6046. ;; SERVER: 192.168.1.254#53(192.168.1.254)
6047. ;; WHEN: Sat Sep 09 22:21:52 EDT 2017
6048. ;; MSG SIZE rcvd: 232
6049.  
6050. ###########################################################################################
6051.  
6052.  
6053. Checking for HTTP-Loadbalancing [Date]: 02:26:00, 02:26:00, 02:26:00, 02:26:00, 02:26:01, 02:26:01, 02:26:01, 02:26:01, 02:26:02, 02:26:02, 02:26:02, 02:26:03, 02:26:03, 02:26:03, 02:26:03, 02:26:04, 02:26:04, 02:26:04, 02:26:04, 02:26:05, 02:26:05, 02:26:05, 02:26:05, 02:26:06, 02:26:06, 02:26:06, 02:26:07, 02:26:07, 02:26:07, 02:26:08, 02:26:08, 02:26:08, 02:26:08, 02:26:09, 02:26:09, 02:26:09, 02:26:09, 02:26:10, 02:26:10, 02:26:10, 02:26:10, 02:26:11, 02:26:11, 02:26:11, 02:26:12, 02:26:12, 02:26:12, 02:26:12, 02:26:13, 02:26:13, NOT FOUND
6054.  
6055. ###########################################################################################
6056.  
6057. nmap -PN -n -F -T4 -sV -A -oG temp.txt littleshoolgirls.com
6058.  
6059. Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 22:22 EDT
6060. Nmap scan report for littleshoolgirls.com (94.102.48.103)
6061. Host is up (0.12s latency).
6062. Not shown: 89 closed ports
6063. PORT STATE SERVICE VERSION
6064. 21/tcp open ftp vsftpd 3.0.2
6065. 22/tcp open ssh OpenSSH 6.0p1 Debian 4+deb7u6 (protocol 2.0)
6066. | ssh-hostkey:
6067. | 1024 ab:16:56:89:21:7e:75:1c:77:f3:a2:7e:c2:f1:4c:09 (DSA)
6068. | 2048 22:f8:e3:f6:1a:1c:6a:99:09:6b:1e:7c:fd:30:e3:95 (RSA)
6069. |_ 256 a8:03:f4:96:36:d1:39:de:2e:4f:56:e9:0f:f3:63:56 (ECDSA)
6070. 25/tcp filtered smtp
6071. 53/tcp open domain
6072. | dns-nsid:
6073. |_ bind.version: 9.8.4-rpz2+rl005.12-P1
6074. 80/tcp open http nginx
6075. |_http-server-header: nginx
6076. |_http-title: teenstight teens pictures, teens your videos, drunk amateur...
6077. 111/tcp open rpcbind 2-4 (RPC #100000)
6078. 135/tcp filtered msrpc
6079. 139/tcp filtered netbios-ssn
6080. 445/tcp filtered microsoft-ds
6081. 465/tcp filtered smtps
6082. 587/tcp filtered submission
6083. Aggressive OS guesses: Linux 2.6.39 (96%), Linux 3.2 - 3.8 (94%), Linux 3.8 (94%), WatchGuard Fireware 11.8 (94%), Linux 3.1 - 3.2 (94%), Linux 2.6.32 - 2.6.39 (92%), Linux 3.5 (92%), Linux 3.0 - 3.2 (91%), Linux 2.6.32 (91%), Linux 3.0 (91%)
6084. No exact OS matches for host (test conditions non-ideal).
6085. Network Distance: 11 hops
6086. Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
6087.  
6088. TRACEROUTE (using port 995/tcp)
6089. HOP RTT ADDRESS
6090. 1 109.18 ms 10.13.0.1
6091. 2 ...
6092. 3 110.47 ms 178.33.103.231
6093. 4 112.02 ms 10.95.33.10
6094. 5 119.03 ms 91.121.131.19
6095. 6 119.51 ms 94.23.122.217
6096. 7 ...
6097. 8 124.27 ms 176.10.83.128
6098. 9 120.36 ms 176.10.83.119
6099. 10 ...
6100. 11 120.38 ms 94.102.48.103
6101.  
6102. OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
6103. Nmap done: 1 IP address (1 host up) scanned in 49.52 seconds
6104.  
6105. ###########################################################################################
6106.  
6107. amap -i temp.txt
6108. amap v5.4 (www.thc.org/thc-amap) started at 2017-09-09 22:23:37 - APPLICATION MAPPING mode
6109.  
6110. Protocol on 94.102.48.103:80/tcp matches http
6111. Protocol on 94.102.48.103:22/tcp matches ssh
6112. Protocol on 94.102.48.103:22/tcp matches ssh-openssh
6113. Protocol on 94.102.48.103:21/tcp matches ftp
6114. Protocol on 94.102.48.103:111/tcp matches rpc
6115. Protocol on 94.102.48.103:53/tcp matches dns
6116. Protocol on 94.102.48.103:111/tcp matches rpc-rpcbind-v4
6117.  
6118. inetnum: 94.102.48.0 - 94.102.48.150
6119. netname: SC-QUASI58
6120. descr: QUASI
6121. country: SC
6122. org: ORG-QNL3-RIPE
6123. admin-c: QNL1-RIPE
6124. tech-c: QNL1-RIPE
6125. status: ASSIGNED PA
6126. mnt-by: QUASINETWORKS-MNT
6127. mnt-lower: QUASINETWORKS-MNT
6128. mnt-routes: QUASINETWORKS-MNT
6129. created: 2011-05-07T22:25:22Z
6130. last-modified: 2016-01-23T22:29:27Z
6131. source: RIPE
6132.  
6133. organisation: ORG-QNL3-RIPE
6134. org-name: Quasi Networks LTD.
6135. org-type: OTHER
6136. address: Suite 1, Second Floor
6137. address: Sound & Vision House, Francis Rachel Street
6138. address: Victoria, Mahe, SEYCHELLES
6139. remarks: *****************************************************************************
6140. remarks: IMPORTANT INFORMATION
6141. remarks: *****************************************************************************
6142. remarks: We are a high bandwidth network provider offering bandwidth solutions.
6143. remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
6144. remarks: Please only use abuse@quasinetworks.com for abuse reports.
6145. remarks: For all other requests, please see the details on our website.
6146. remarks: *****************************************************************************
6147. abuse-mailbox: abuse@quasinetworks.com
6148. abuse-c: AR34302-RIPE
6149. mnt-ref: QUASINETWORKS-MNT
6150. mnt-by: QUASINETWORKS-MNT
6151. created: 2015-11-08T22:25:26Z
6152. last-modified: 2015-11-27T09:37:50Z
6153. source: RIPE # Filtered
6154.  
6155. role: Quasi Networks LTD
6156. address: Suite 1, Second Floor
6157. address: Sound & Vision House, Francis Rachel Street
6158. address: Victoria, Mahe, SEYCHELLES
6159. remarks: *****************************************************************************
6160. remarks: IMPORTANT INFORMATION
6161. remarks: *****************************************************************************
6162. remarks: We are a high bandwidth network provider offering bandwidth solutions.
6163. remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
6164. remarks: Please only use abuse@quasinetworks.com for abuse reports.
6165. remarks: For all other requests, please see the details on our website.
6166. remarks: *****************************************************************************
6167. abuse-mailbox: abuse@quasinetworks.com
6168. nic-hdl: QNL1-RIPE
6169. mnt-by: QUASINETWORKS-MNT
6170. created: 2015-11-07T22:43:04Z
6171. last-modified: 2015-11-07T23:04:49Z
6172. source: RIPE # Filtered
6173.  
6174. % Information related to '94.102.48.0/20AS29073'
6175.  
6176. route: 94.102.48.0/20
6177. descr: Quasi Networks LTD (IBC)
6178. origin: AS29073
6179. mnt-by: QUASINETWORKS-MNT
6180. created: 2008-09-02T11:55:23Z
6181. last-modified: 2016-01-23T22:40:05Z
6182. source: RIPE
6183.  
6184. % This query was served by the RIPE Database Query Service version 1.89.2 (ANGUS)
6185.  
6186. ###########################################################################################
6187. [i] Scanning Site: http://littleshoolgirls.com
6188.  
6189.  
6190.  
6191. B A S I C I N F O
6192. ====================
6193.  
6194.  
6195. [+] Site Title: teenstight teens pictures, teens your videos, drunk amateur teens
6196. [+] IP address: 94.102.48.103
6197. [+] Web Server: nginx
6198. [+] CMS: Could Not Detect
6199. [+] Cloudflare: Not Detected
6200. [+] Robots File: Could NOT Find robots.txt!
6201.  
6202.  
6203.  
6204.  
6205. W H O I S L O O K U P
6206. ========================
6207.  
6208. Domain Name: LITTLESHOOLGIRLS.COM
6209. Registry Domain ID: 1777538070_DOMAIN_COM-VRSN
6210. Registrar WHOIS Server: whois.pairnic.com
6211. Registrar URL: http://www.pairnic.com
6212. Updated Date: 2017-04-19T11:39:58Z
6213. Creation Date: 2013-01-31T17:56:46Z
6214. Registry Expiry Date: 2018-01-31T17:56:46Z
6215. Registrar: Pair Networks Inc.d/b/a pairNIC
6216. Registrar IANA ID: 99
6217. Registrar Abuse Contact Email:
6218. Registrar Abuse Contact Phone:
6219. Domain Status: ok https://icann.org/epp#ok
6220. Name Server: PNS21.CLOUDNS.NET
6221. Name Server: PNS22.CLOUDNS.NET
6222. Name Server: PNS23.CLOUDNS.NET
6223. Name Server: PNS24.CLOUDNS.NET
6224.  
6225.  
6226.  
6227.  
6228.  
6229. G E O I P L O O K U P
6230. =========================
6231.  
6232. [i] IP Address: 94.102.48.103
6233. [i] Country: SC
6234. [i] State: N/A
6235. [i] City: N/A
6236. [i] Latitude: -4.583300
6237. [i] Longitude: 55.666698
6238.  
6239.  
6240.  
6241.  
6242. H T T P H E A D E R S
6243. =======================
6244.  
6245.  
6246. [i] HTTP/1.1 200 OK
6247. [i] Server: nginx
6248. [i] Date: Sun, 10 Sep 2017 02:25:15 GMT
6249. [i] Content-Type: text/html
6250. [i] Connection: close
6251. [i] Vary: Accept-Encoding
6252. [i] X-Powered-By: PHP/5.4.45-0+deb7u8
6253. [i] Set-Cookie: nnmod=1; expires=Sun, 10-Sep-2017 14:25:15 GMT
6254. [i] Vary: Accept-Encoding
6255.  
6256.  
6257.  
6258.  
6259. D N S L O O K U P
6260. ===================
6261.  
6262. littleshoolgirls.com. 56 IN A 94.102.48.103
6263. littleshoolgirls.com. 3600 IN NS ns22.cloudns.net.
6264. littleshoolgirls.com. 3600 IN NS ns23.cloudns.net.
6265. littleshoolgirls.com. 3600 IN NS pns21.cloudns.net.
6266. littleshoolgirls.com. 3600 IN NS pns22.cloudns.net.
6267. littleshoolgirls.com. 3600 IN NS ns21.cloudns.net.
6268. littleshoolgirls.com. 3600 IN NS pns24.cloudns.net.
6269. littleshoolgirls.com. 3600 IN NS ns24.cloudns.net.
6270. littleshoolgirls.com. 3600 IN NS pns23.cloudns.net.
6271. littleshoolgirls.com. 3600 IN SOA ns21.cloudns.net. support.cloudns.net. 2017091015 7200 1800 1209600 3600
6272.  
6273.  
6274.  
6275.  
6276. S U B N E T C A L C U L A T I O N
6277. ====================================
6278.  
6279. Address = 94.102.48.103
6280. Network = 94.102.48.103 / 32
6281. Netmask = 255.255.255.255
6282. Broadcast = not needed on Point-to-Point links
6283. Wildcard Mask = 0.0.0.0
6284. Hosts Bits = 0
6285. Max. Hosts = 1 (2^0 - 0)
6286. Host Range = { 94.102.48.103 - 94.102.48.103 }
6287.  
6288.  
6289.  
6290. N M A P P O R T S C A N
6291. ============================
6292.  
6293.  
6294. Starting Nmap 7.01 ( https://nmap.org ) at 2017-09-10 02:21 UTC
6295. Nmap scan report for littleshoolgirls.com (94.102.48.103)
6296. Host is up (0.083s latency).
6297. PORT STATE SERVICE VERSION
6298. 21/tcp open ftp vsftpd 3.0.2
6299. 22/tcp open ssh OpenSSH 6.0p1 Debian 4+deb7u6 (protocol 2.0)
6300. 23/tcp closed telnet
6301. 25/tcp closed smtp
6302. 80/tcp open http nginx
6303. 110/tcp closed pop3
6304. 143/tcp closed imap
6305. 443/tcp closed https
6306. 445/tcp closed microsoft-ds
6307. 3389/tcp closed ms-wbt-server
6308. Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
6309.  
6310. Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
6311. Nmap done: 1 IP address (1 host up) scanned in 7.21 seconds
6312.  
6313.  
6314.  
6315. S U B - D O M A I N F I N D E R
6316. ==================================
6317.  
6318.  
6319. [i] Total Subdomains Found : 1
6320.  
6321. [+] Subdomain: littleshoolgirls.com
6322. [-] IP: 94.102.48.103
6323. *] Performing TLD Brute force Enumeration against littleshoolgirls.com
6324. [*] The operation could take up to: 00:01:07
6325. [*] A littleshoolgirls.biz.af 5.45.75.45
6326. [*] CNAME littleshoolgirls.biz.at free.biz.at
6327. [*] A free.biz.at 216.92.134.29
6328. [*] A littleshoolgirls.co.asia 91.195.240.135
6329. [*] A littleshoolgirls.org.aw 142.4.20.12
6330. [*] A littleshoolgirls.co.ba 176.9.45.78
6331. [*] A littleshoolgirls.com.ba 195.222.33.180
6332. [*] A littleshoolgirls.com.be 95.173.170.166
6333. [*] A littleshoolgirls.biz.by 71.18.52.2
6334. [*] A littleshoolgirls.biz.bz 199.59.242.150
6335. [*] A littleshoolgirls.com.cc 54.252.107.64
6336. [*] A littleshoolgirls.net.cc 54.252.89.206
6337. [*] A littleshoolgirls.co.cc 175.126.123.219
6338. [*] A littleshoolgirls.org.ch 72.52.4.122
6339. [*] A littleshoolgirls.co.cm 85.25.140.105
6340. [*] A littleshoolgirls.net.cm 85.25.140.105
6341. [*] A littleshoolgirls.biz.cl 185.53.178.8
6342. [*] A littleshoolgirls.com.com 52.33.196.199
6343. [*] CNAME littleshoolgirls.biz.cm i.cns.cm
6344. [*] A i.cns.cm 118.184.56.30
6345. [*] A littleshoolgirls.net.com 199.59.242.150
6346. [*] A littleshoolgirls.org.com 23.23.86.44
6347. [*] A littleshoolgirls.com 80.82.79.116
6348. [*] A littleshoolgirls.co.com 173.192.115.17
6349. [*] A littleshoolgirls.biz.cr 72.52.4.122
6350. [*] A littleshoolgirls.biz.cx 72.52.4.122
6351. [*] A littleshoolgirls.com.cz 62.109.128.30
6352. [*] A littleshoolgirls.net.cz 80.250.24.177
6353. [*] A littleshoolgirls.biz.cz 185.53.179.7
6354. [*] CNAME littleshoolgirls.co.de co.de
6355. [*] A co.de 144.76.162.245
6356. [*] CNAME littleshoolgirls.org.de www.org.de
6357. [*] A www.org.de 78.47.128.8
6358. [*] A littleshoolgirls.com.de 50.56.68.37
6359. [*] A littleshoolgirls.net.eu 78.46.90.98
6360. [*] A littleshoolgirls.org.eu 78.46.90.98
6361. [*] A littleshoolgirls.biz.fi 185.55.85.123
6362. [*] A littleshoolgirls.fm 173.230.131.38
6363. [*] A littleshoolgirls.biz.fm 173.230.131.38
6364. [*] A littleshoolgirls.org.fr 149.202.133.35
6365. [*] A littleshoolgirls.biz.gl 72.52.4.122
6366. [*] CNAME littleshoolgirls.co.gp co.gp
6367. [*] A co.gp 144.76.162.245
6368. [*] A littleshoolgirls.co.hn 208.100.40.203
6369. [*] CNAME littleshoolgirls.net.hr net.hr
6370. [*] A net.hr 192.0.78.25
6371. [*] A net.hr 192.0.78.24
6372. [*] CNAME littleshoolgirls.biz.hn parkmydomain.vhostgo.com
6373. [*] A parkmydomain.vhostgo.com 107.186.245.118
6374. [*] A littleshoolgirls.co.ht 72.52.4.122
6375. [*] A littleshoolgirls.co.jobs 50.17.193.222
6376. [*] A littleshoolgirls.com.jobs 50.19.241.165
6377. [*] A littleshoolgirls.net.jobs 50.19.241.165
6378. [*] A littleshoolgirls.biz.jobs 50.19.241.165
6379. [*] A littleshoolgirls.org.jobs 50.19.241.165
6380. [*] A littleshoolgirls.biz.ky 199.184.144.27
6381. [*] CNAME littleshoolgirls.biz.li 712936.parkingcrew.net
6382. [*] A 712936.parkingcrew.net 185.53.179.29
6383. [*] A littleshoolgirls.biz.lu 195.26.5.2
6384. [*] A littleshoolgirls.biz.ly 64.136.20.39
6385. [*] A littleshoolgirls.biz.md 72.52.4.122
6386. [*] A littleshoolgirls.co.mk 87.76.31.211
6387. [*] A littleshoolgirls.co.mobi 54.225.105.179
6388. [*] A littleshoolgirls.biz.my 202.190.174.44
6389. [*] A littleshoolgirls.co.net 188.166.216.219
6390. [*] A littleshoolgirls.net.net 52.50.81.210
6391. [*] A littleshoolgirls.org.net 23.23.86.44
6392. [*] A littleshoolgirls.co.nl 37.97.184.204
6393. [*] A littleshoolgirls.com.nl 83.98.157.102
6394. [*] A littleshoolgirls.net.nl 83.98.157.102
6395. [*] A littleshoolgirls.co.nr 208.100.40.202
6396. [*] CNAME littleshoolgirls.co.nu co.nu
6397. [*] A co.nu 144.76.162.245
6398. [*] A littleshoolgirls.net.nu 199.102.76.78
6399. [*] CNAME littleshoolgirls.com.nu com.nu
6400. [*] A com.nu 144.76.162.245
6401. [*] A littleshoolgirls.org.nu 80.92.84.139
6402. [*] CNAME littleshoolgirls.net.org pewtrusts.org
6403. [*] A pewtrusts.org 204.74.99.100
6404. [*] A littleshoolgirls.com.org 23.23.86.44
6405. [*] A littleshoolgirls.ph 45.79.222.138
6406. [*] A littleshoolgirls.co.ph 45.79.222.138
6407. [*] A littleshoolgirls.com.ph 45.79.222.138
6408. [*] A littleshoolgirls.net.ph 45.79.222.138
6409. [*] A littleshoolgirls.org.ph 45.79.222.138
6410. [*] A littleshoolgirls.co.pl 212.91.6.55
6411. [*] A littleshoolgirls.org.pm 208.73.211.165
6412. [*] A littleshoolgirls.org.pm 208.73.211.177
6413. [*] A littleshoolgirls.org.pm 208.73.210.217
6414. [*] A littleshoolgirls.org.pm 208.73.210.202
6415. [*] A littleshoolgirls.co.ps 66.96.132.56
6416. [*] CNAME littleshoolgirls.biz.ps biz.ps
6417. [*] A biz.ps 144.76.162.245
6418. [*] A littleshoolgirls.pw 141.8.226.58
6419. [*] A littleshoolgirls.co.pt 194.107.127.52
6420. [*] A littleshoolgirls.co.pw 141.8.226.59
6421. [*] A littleshoolgirls.net.pw 141.8.226.59
6422. [*] A littleshoolgirls.biz.pw 141.8.226.59
6423. [*] A littleshoolgirls.org.pw 141.8.226.59
6424. [*] CNAME littleshoolgirls.co.ro now.co.ro
6425. [*] A now.co.ro 185.27.255.9
6426. [*] A littleshoolgirls.net.ro 69.64.52.127
6427. [*] A littleshoolgirls.org.re 217.70.184.38
6428. [*] A littleshoolgirls.com.ru 178.210.89.119
6429. [*] A littleshoolgirls.biz.se 185.53.179.6
6430. [*] CNAME littleshoolgirls.net.se 773147.parkingcrew.net
6431. [*] A 773147.parkingcrew.net 185.53.179.29
6432. [*] A littleshoolgirls.co.sl 91.195.240.135
6433. [*] A littleshoolgirls.com.sr 143.95.106.249
6434. [*] A littleshoolgirls.co.su 72.52.4.122
6435. [*] A littleshoolgirls.biz.st 91.121.28.115
6436. [*] A littleshoolgirls.biz.tc 64.136.20.39
6437. [*] A littleshoolgirls.biz.tf 85.236.153.18
6438. [*] A littleshoolgirls.co.tl 208.100.40.202
6439. [*] A littleshoolgirls.net.tf 188.40.117.12
6440. [*] A littleshoolgirls.net.tf 188.40.70.27
6441. [*] A littleshoolgirls.net.tf 188.40.70.29
6442. [*] A littleshoolgirls.co.to 175.118.124.44
6443. [*] A littleshoolgirls.co.tv 31.186.25.163
6444. [*] A littleshoolgirls.biz.tv 72.52.4.122
6445. [*] A littleshoolgirls.org.tv 72.52.4.122
6446. [*] CNAME littleshoolgirls.biz.uz biz.uz
6447. [*] A biz.uz 144.76.162.245
6448. [*] A littleshoolgirls.vg 88.198.29.97
6449. [*] A littleshoolgirls.co.vg 88.198.29.97
6450. [*] A littleshoolgirls.com.vg 88.198.29.97
6451. [*] A littleshoolgirls.net.vg 68.178.254.180
6452. [*] A littleshoolgirls.biz.vg 89.31.143.20
6453. [*] A littleshoolgirls.ws 64.70.19.203
6454. [*] A littleshoolgirls.biz.ws 184.168.221.104
6455. [*] A littleshoolgirls.net.ws 202.4.48.211
6456. [*] A littleshoolgirls.com.ws 202.4.48.211
6457. [*] A littleshoolgirls.org.ws 202.4.48.211
6458.  
6459. R E V E R S E I P L O O K U P
6460. ==================================
6461. littleshoolgirls.com
6462.  
6463.  
6464. Domain Name: LITTLESHOOLGIRLS.COM
6465. Registry Domain ID: 1777538070_DOMAIN_COM-VRSN
6466. Registrar WHOIS Server: whois.pairnic.com
6467. Registrar URL: http://www.pairnic.com
6468. Updated Date: 2017-04-19T11:39:58Z
6469. Creation Date: 2013-01-31T17:56:46Z
6470. Registry Expiry Date: 2018-01-31T17:56:46Z
6471. Registrar: Pair Networks Inc.d/b/a pairNIC
6472. Registrar IANA ID: 99
6473. Registrar Abuse Contact Email:
6474. Registrar Abuse Contact Phone:
6475. Domain Status: ok https://icann.org/epp#ok
6476. Name Server: PNS21.CLOUDNS.NET
6477. Name Server: PNS22.CLOUDNS.NET
6478. Name Server: PNS23.CLOUDNS.NET
6479. Name Server: PNS24.CLOUDNS.NET
6480.  
6481. Domain Name: littleshoolgirls.com
6482. Registry Domain ID: 1777538070_DOMAIN_COM-VRSN
6483. Registrar WHOIS Server: whois.pairDomains.com
6484. Registrar URL: https://www.pairDomains.com
6485. Updated Date: 2017-04-19T11:39:58+0000Z
6486. Creation Date: 2013-01-31T17:56:46+0000Z
6487. Registrar Registration Expiration Date: 2018-01-31T17:56:46+0000Z
6488. Registrar: pair Domains INC
6489. Registrar IANA ID: 99
6490. Registrar Abuse Contact Email: abuse@pairdomains.com
6491. Registrar Abuse Contact Phone: +1.8887247642
6492. Registry Registrant ID:
6493. Registrant Name: denis duchene
6494. Registrant Organization:
6495. Registrant Street: c/o pairDomains.com Whois Privacy PO Box 42319
6496. Registrant City: Pittsburgh
6497. Registrant State/Province: PA
6498. Registrant Postal Code: 15203
6499. Registrant Country: US
6500. Registrant Phone: +1.4123257437
6501. Registrant Phone Ext:
6502. Registrant Fax:
6503. Registrant Fax Ext:
6504. Registrant Email: 915q6w4i8499@nojunkemailaddress.com
6505. Registry Admin ID:
6506. Admin Name: denis duchene
6507. Admin Organization:
6508. Admin Street: c/o pairDomains.com Whois Privacy PO Box 42319
6509. Admin City: Pittsburgh
6510. Admin State/Province: PA
6511. Admin Postal Code: 15203
6512. Admin Country: US
6513. Admin Phone: +1.4123257437
6514. Admin Phone Ext:
6515. Admin Fax:
6516. Admin Fax Ext:
6517. Admin Email: 915q6w4i8499@nojunkemailaddress.com
6518. Registry Tech ID:
6519. Tech Name: denis duchene
6520. Tech Organization:
6521. Tech Street: c/o pairDomains.com Whois Privacy PO Box 42319
6522. Tech City: Pittsburgh
6523. Tech State/Province: PA
6524. Tech Postal Code: 15203
6525. Tech Country: US
6526. Tech Phone: +1.4123257437
6527. Tech Phone Ext:
6528. Tech Fax:
6529. Tech Fax Ext:
6530. Tech Email: 915q6w4i8499@nojunkemailaddress.com
6531. Name Server: PNS22.CLOUDNS.NET
6532. Name Server: PNS24.CLOUDNS.NET
6533. Name Server: PNS23.CLOUDNS.NET
6534. Name Server: PNS21.CLOUDNS.NET
6535.  
6536. ;littleshoolgirls.com. IN ANY
6537.  
6538. ;; ANSWER SECTION:
6539. littleshoolgirls.com. 1014 IN NS pns21.cloudns.net.
6540. littleshoolgirls.com. 1014 IN NS pns24.cloudns.net.
6541. littleshoolgirls.com. 1014 IN NS ns24.cloudns.net.
6542. littleshoolgirls.com. 1014 IN NS pns22.cloudns.net.
6543. littleshoolgirls.com. 1014 IN NS ns23.cloudns.net.
6544. littleshoolgirls.com. 1014 IN NS pns23.cloudns.net.
6545. littleshoolgirls.com. 1014 IN NS ns21.cloudns.net.
6546. littleshoolgirls.com. 1014 IN NS ns22.cloudns.net.
6547.  
6548.  
6549. Host's addresses:
6550. __________________
6551.  
6552. littleshoolgirls.com. 53 IN A 94.102.48.103
6553.  
6554.  
6555. Wildcard detection using: xqrbkuymekkh
6556. _______________________________________
6557.  
6558. xqrbkuymekkh.littleshoolgirls.com. 60 IN A 94.102.48.103
6559.  
6560.  
6561. !!!!!!!!!!!!!!!!!!!!!!!!!!!!
6562.  
6563. Wildcards detected, all subdomains will point to the same IP address
6564. Omitting results containing 94.102.48.103.
6565. Maybe you are using OpenDNS servers.
6566.  
6567. !!!!!!!!!!!!!!!!!!!!!!!!!!!!
6568.  
6569.  
6570. Name Servers:
6571. ______________
6572.  
6573. pns23.cloudns.net. 119707 IN A 185.136.98.96
6574. ns22.cloudns.net. 118844 IN A 108.59.2.202
6575. ns23.cloudns.net. 118845 IN A 79.137.84.65
6576. ns21.cloudns.net. 118844 IN A 109.201.133.61
6577. pns21.cloudns.net. 119305 IN A 185.136.96.96
6578. pns24.cloudns.net. 119707 IN A 185.136.99.96
6579. ns24.cloudns.net. 154808 IN A 46.165.221.164
6580. pns22.cloudns.net. 119674 IN A 185.136.97.96
6581.  
6582.  
6583. Mail (MX) Servers:
6584. ___________________
6585.  
6586.  
6587. Can't perform recursion no subdomains.
6588.  
6589.  
6590. littleshoolgirls.com class C netranges:
6591. ________________________________________
6592.  
6593. 94.102.48.0/24
6594.  
6595. |\___ ns24.cloudns.net [littleshoolgirls.com] (2a00:0c98:2030:a006:0002:0000:0000:0001) Got authoritative answer
6596. |\___ ns24.cloudns.net [littleshoolgirls.com] (46.165.221.164) Got authoritative answer
6597. |\___ ns21.cloudns.net [littleshoolgirls.com] (2a00:1768:1001:0009:0000:0000:0000:0021) Got authoritative answer
6598. |\___ ns21.cloudns.net [littleshoolgirls.com] (109.201.133.61) Got authoritative answer
6599. |\___ pns23.cloudns.net [littleshoolgirls.com] (185.136.98.96) Got authoritative answer
6600. |\___ pns23.cloudns.net [littleshoolgirls.com] (2a06:fb00:0001:0000:0000:0000:0003:0096) Got authoritative answer
6601. |\___ ns23.cloudns.net [littleshoolgirls.com] (2001:41d0:0401:3100:0000:0000:0000:5784) Got authoritative answer
6602. |\___ ns23.cloudns.net [littleshoolgirls.com] (79.137.84.65) Got authoritative answer
6603. |\___ pns24.cloudns.net [littleshoolgirls.com] (2a06:fb00:0001:0000:0000:0000:0004:0096) Got authoritative answer
6604. |\___ pns24.cloudns.net [littleshoolgirls.com] (185.136.99.96) Got authoritative answer
6605. |\___ pns22.cloudns.net [littleshoolgirls.com] (185.136.97.96) Got authoritative answer
6606. |\___ ns22.cloudns.net [littleshoolgirls.com] (2604:9a00:2100:a006:0004:0000:0000:0001) Got authoritative answer
6607. |\___ ns22.cloudns.net [littleshoolgirls.com] (108.59.2.202) Got authoritative answer
6608. |\___ pns21.cloudns.net [littleshoolgirls.com] (2a06:fb00:0001:0000:0000:0000:0001:0096) Got authoritative answer
6609. \___ pns21.cloudns.net [littleshoolgirls.com] (185.136.96.96) Got authoritative answer
6610.  
6611.  
6612. WhatWeb report for http://littleshoolgirls.com
6613. Status : 200 OK
6614. Title : teenstight teens pictures, teens your videos, drunk amateur teens
6615. IP : 94.102.48.103
6616. Country : NETHERLANDS, NL
6617.  
6618. Summary : X-Powered-By[PHP/5.4.45-0+deb7u8], HTTPServer[nginx], Cookies[nnmod], PHP[5.4.45-0+deb7u8], nginx, Script[text/javascript]
6619.  
6620. Detected Plugins:
6621. [ Cookies ]
6622. Display the names of cookies in the HTTP headers. The
6623. values are not returned to save on space.
6624.  
6625. String : nnmod
6626.  
6627. [ HTTPServer ]
6628. HTTP server header string. This plugin also attempts to
6629. identify the operating system from the server header.
6630.  
6631. String : nginx (from server string)
6632.  
6633. [ PHP ]
6634. PHP is a widely-used general-purpose scripting language
6635. that is especially suited for Web development and can be
6636. embedded into HTML. This plugin identifies PHP errors,
6637. modules and versions and extracts the local file path and
6638. username if present.
6639.  
6640. Version : 5.4.45-0+deb7u8
6641. Google Dorks: (2)
6642. Website : http://www.php.net/
6643.  
6644. [ Script ]
6645. This plugin detects instances of script HTML elements and
6646. returns the script language/type.
6647.  
6648. String : text/javascript
6649.  
6650. [ X-Powered-By ]
6651. X-Powered-By HTTP header
6652.  
6653. String : PHP/5.4.45-0+deb7u8 (from x-powered-by string)
6654.  
6655. [ nginx ]
6656. Nginx (Engine-X) is a free, open-source, high-performance
6657. HTTP server and reverse proxy, as well as an IMAP/POP3
6658. proxy server.
6659.  
6660. Website : http://nginx.net/
6661.  
6662. HTTP Headers:
6663. HTTP/1.1 200 OK
6664. Server: nginx
6665. Date: Sun, 10 Sep 2017 02:29:37 GMT
6666. Content-Type: text/html
6667. Content-Length: 2918
6668. Connection: close
6669. X-Powered-By: PHP/5.4.45-0+deb7u8
6670. Set-Cookie: nnmod=1; expires=Sun, 10-Sep-2017 14:29:37 GMT
6671. Vary: Accept-Encoding
6672. Content-Encoding: gzip
6673.  
6674.  
6675.  
6676. [+] Hosts found in search engines:
6677. ------------------------------------
6678. [-] Resolving hostnames IPs...
6679. 94.102.48.103:253Dwww.littleshoolgirls.com
6680. 94.102.48.103:Www.littleshoolgirls.com
6681. 94.102.48.103:www.littleshoolgirls.com
6682.  
6683.  
6684.  
6685. ^ ^
6686. _ __ _ ____ _ __ _ _ ____
6687. ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
6688. | V V // o // _/ | V V // 0 // 0 // _/
6689. |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
6690. <
6691. ...'
6692.  
6693. WAFW00F - Web Application Firewall Detection Tool
6694.  
6695. By Sandro Gauci && Wendel G. Henrique
6696.  
6697. Checking http://littleshoolgirls.com
6698. Generic Detection results:
6699. No WAF detected by the generic detection
6700. Number of requests: 13
6701.  
6702.  
6703. DNS Servers for littleshoolgirls.com:
6704. pns21.cloudns.net
6705. ns23.cloudns.net
6706. ns24.cloudns.net
6707. pns24.cloudns.net
6708. ns22.cloudns.net
6709. ns21.cloudns.net
6710. pns23.cloudns.net
6711. pns22.cloudns.net
6712.  
6713. Trying zone transfer first...
6714. Testing pns21.cloudns.net
6715. Request timed out or transfer not allowed.
6716. Testing ns23.cloudns.net
6717. Request timed out or transfer not allowed.
6718. Testing ns24.cloudns.net
6719. Request timed out or transfer not allowed.
6720. Testing pns24.cloudns.net
6721. Request timed out or transfer not allowed.
6722. Testing ns22.cloudns.net
6723. Request timed out or transfer not allowed.
6724. Testing ns21.cloudns.net
6725. Request timed out or transfer not allowed.
6726. Testing pns23.cloudns.net
6727. Request timed out or transfer not allowed.
6728. Testing pns22.cloudns.net
6729. Request timed out or transfer not allowed.
6730.  
6731.  
6732. Starting smtp-user-enum v1.2 ( http://pentestmonkey.net/tools/smtp-user-enum )
6733.  
6734. ----------------------------------------------------------
6735. | Scan Information |
6736. ----------------------------------------------------------
6737.  
6738. Mode ..................... VRFY
6739. Worker Processes ......... 5
6740. Usernames file ........... users.txt
6741. Target count ............. 1
6742. Username count ........... 494
6743. Target TCP port .......... 25
6744. Query timeout ............ 5 secs
6745. Target domain ............
6746.  
6747. ######## Scan started at Sat Sep 9 22:34:25 2017 #########
6748. ######## Scan completed at Sat Sep 9 22:42:40 2017 #########
6749. 0 results.
6750.  
6751. 494 queries in 495 seconds (1.0 queries / sec)
6752.  
6753.  
6754.  
6755. Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 22:42 EDT
6756. NSE: Loaded 146 scripts for scanning.
6757. NSE: Script Pre-scanning.
6758. Initiating NSE at 22:42
6759. Completed NSE at 22:42, 0.00s elapsed
6760. Initiating NSE at 22:42
6761. Completed NSE at 22:42, 0.00s elapsed
6762. Failed to resolve "littleshoolgirls.com.txt".
6763. Initiating Parallel DNS resolution of 1 host. at 22:42
6764. Completed Parallel DNS resolution of 1 host. at 22:42, 0.53s elapsed
6765. Initiating SYN Stealth Scan at 22:42
6766. Scanning littleshoolgirls.com (94.102.48.103) [100 ports]
6767. Discovered open port 21/tcp on 94.102.48.103
6768. Discovered open port 80/tcp on 94.102.48.103
6769. Discovered open port 22/tcp on 94.102.48.103
6770. Discovered open port 53/tcp on 94.102.48.103
6771. Discovered open port 111/tcp on 94.102.48.103
6772. Completed SYN Stealth Scan at 22:42, 3.28s elapsed (100 total ports)
6773. Initiating Service scan at 22:42
6774. Scanning 5 services on littleshoolgirls.com (94.102.48.103)
6775. Completed Service scan at 22:42, 11.37s elapsed (5 services on 1 host)
6776. Initiating OS detection (try #1) against littleshoolgirls.com (94.102.48.103)
6777. Retrying OS detection (try #2) against littleshoolgirls.com (94.102.48.103)
6778. adjust_timeouts2: packet supposedly had rtt of -130890 microseconds. Ignoring time.
6779. adjust_timeouts2: packet supposedly had rtt of -130890 microseconds. Ignoring time.
6780. Initiating Traceroute at 22:43
6781. Completed Traceroute at 22:43, 3.03s elapsed
6782. Initiating Parallel DNS resolution of 7 hosts. at 22:43
6783. Completed Parallel DNS resolution of 7 hosts. at 22:43, 5.51s elapsed
6784. NSE: Script scanning 94.102.48.103.
6785. Initiating NSE at 22:43
6786. Completed NSE at 22:43, 30.66s elapsed
6787. Initiating NSE at 22:43
6788. Completed NSE at 22:43, 0.59s elapsed
6789. Nmap scan report for littleshoolgirls.com (94.102.48.103)
6790. Host is up (0.13s latency).
6791. Not shown: 89 closed ports
6792. PORT STATE SERVICE VERSION
6793. 21/tcp open ftp vsftpd 3.0.2
6794. 22/tcp open ssh OpenSSH 6.0p1 Debian 4+deb7u6 (protocol 2.0)
6795. | ssh-hostkey:
6796. | 1024 ab:16:56:89:21:7e:75:1c:77:f3:a2:7e:c2:f1:4c:09 (DSA)
6797. | 2048 22:f8:e3:f6:1a:1c:6a:99:09:6b:1e:7c:fd:30:e3:95 (RSA)
6798. |_ 256 a8:03:f4:96:36:d1:39:de:2e:4f:56:e9:0f:f3:63:56 (ECDSA)
6799. 25/tcp filtered smtp
6800. 53/tcp open domain
6801. | dns-nsid:
6802. |_ bind.version: 9.8.4-rpz2+rl005.12-P1
6803. 80/tcp open http nginx
6804. |_http-favicon: Unknown favicon MD5: 9148DEBEB820D5EA5B01E73F08989CB1
6805. | http-methods:
6806. |_ Supported Methods: GET HEAD POST OPTIONS
6807. |_http-server-header: nginx
6808. |_http-title: teenstight teens pictures, teens your videos, drunk amateur...
6809. 111/tcp open rpcbind 2-4 (RPC #100000)
6810. 135/tcp filtered msrpc
6811. 139/tcp filtered netbios-ssn
6812. 445/tcp filtered microsoft-ds
6813. 465/tcp filtered smtps
6814. 587/tcp filtered submission
6815. Aggressive OS guesses: Linux 2.6.39 (95%), Linux 3.2 - 3.8 (95%), Linux 3.8 (95%), Linux 3.1 - 3.2 (94%), WatchGuard Fireware 11.8 (94%), Linux 2.6.32 - 2.6.39 (93%), Linux 3.5 (92%), Linux 3.0 - 3.2 (92%), Linux 2.6.32 (91%), Linux 3.0 (91%)
6816. No exact OS matches for host (test conditions non-ideal).
6817. Uptime guess: 6.479 days (since Sun Sep 3 11:13:51 2017)
6818. Network Distance: 11 hops
6819. TCP Sequence Prediction: Difficulty=263 (Good luck!)
6820. IP ID Sequence Generation: All zeros
6821. Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
6822.  
6823. TRACEROUTE (using port 143/tcp)
6824. HOP RTT ADDRESS
6825. 1 109.48 ms 10.13.0.1
6826. 2 ...
6827. 3 110.19 ms po101.gra-g2-a75.fr.eu (178.33.103.231)
6828. 4 ...
6829. 5 119.42 ms be100-1113.fra-5-a9.de.eu (91.121.131.19)
6830. 6 119.45 ms be100-2.fra-1-a9.de.eu (94.23.122.217)
6831. 7 ...
6832. 8 158.26 ms vlan3555.bb1.ams2.nl.m247.com (176.10.83.128)
6833. 9 120.47 ms 176.10.83.119
6834. 10 ...
6835. 11 120.50 ms 94.102.48.103
6836.  
6837.  
6838.  
6839. _/ _/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/
6840. _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
6841. _/ _/ _/_/_/_/ _/_/_/ _/ _/_/_/ _/_/_/_/ _/ _/_/_/ _/_/_/_
6842. _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
6843. _/_/_/_/ _/ _/ _/ _/_/_/_/ _/_/_/_/ _/ _/_/_/_/ _/ _/ [v1.06]
6844.  
6845. _/ User-Agent Tester ↵
6846. _/ AKA: Purple Pimp ↵
6847. _/ ChrisJohnRiley ↵
6848. _/ blog.c22.cc ↵
6849.  
6850. [>] Performing initial request and confirming stability
6851. [>] Using User-Agent string Mozilla/5.0
6852.  
6853. [ ] URL (ENTERED): http://littleshoolgirls.com
6854. [ ] Response Code: 200 OK
6855. [ ] Server: nginx
6856. [ ] Date: Sun, 10 Sep 2017 02:47:26 GMT
6857. [ ] Content-Type: text/html
6858. [ ] Transfer-Encoding: chunked
6859. [ ] Connection: close
6860. [ ] Vary: Accept-Encoding
6861. [ ] X-Powered-By: PHP/5.4.45-0+deb7u8
6862. [ ] Set-Cookie: nnmod=1; expires=Sun, 10-Sep-2017 14:47:26 GMT
6863. [ ] Vary: Accept-Encoding
6864. [ ] Data (MD5): a9378b535c8f67af8d2e6283db8391df
6865.  
6866. [1] Pass
6867. [2] Pass
6868. [3] Pass
6869.  
6870. [>] URL appears stable. Beginning test
6871.  
6872. [>] Using DEFAULT User-Agent Strings
6873.  
6874. [>] Using Crazy User-Agent Strings
6875. [>] Using Bot User-Agent Strings
6876.  
6877. [>] Output: [+] Added Headers, [-] Removed Headers, [!] Altered Headers, [ ] No Change
6878.  
6879.  
6880. [>] User-Agent String : Windows-Media-Player/9.00.00.4503
6881.  
6882.  
6883. [!] Data (MD5): 781d7dbcf62974b1cafe1884691ed55d
6884.  
6885.  
6886. [>] User-Agent String : Mozilla/5.0 (PLAYSTATION 3; 2.00)
6887.  
6888.  
6889. [!] Data (MD5): 6a0f0850a908e3e063736385ce7e39dc
6890.  
6891.  
6892. [>] User-Agent String : TrackBack/1.02
6893.  
6894.  
6895. [!] Data (MD5): 528b6388938ade008ab348ea5cefb490
6896.  
6897.  
6898. [>] User-Agent String : wispr
6899.  
6900.  
6901. [!] Data (MD5): fae121f1194e12b65a15eb7fd2e509a1
6902.  
6903.  
6904. [>] User-Agent String : EMPTY USER-AGENT STRING!
6905.  
6906.  
6907. [!] Data (MD5): d567bcee8be31fc74401cf28e268e0eb
6908.  
6909.  
6910. [>] User-Agent String : Googlebot/2.1 (+http://www.google.com/bot.html)
6911.  
6912.  
6913. [!] Data (MD5): 84a43f2b7538ee1482409353ea2323dc
6914.  
6915.  
6916. [>] User-Agent String : Googlebot-Image/1.0
6917.  
6918.  
6919. [!] Data (MD5): 10bdf4a11b332b641b44ca2617bebdd2
6920.  
6921.  
6922. [>] User-Agent String : Mediapartners-Google
6923.  
6924.  
6925. [!] Data (MD5): af381428a10d5266ba7b9a357977a6d2
6926.  
6927.  
6928. [>] User-Agent String : Mozilla/2.0 (compatible; Ask Jeeves)
6929.  
6930.  
6931. [!] Data (MD5): d7b1213384a6e7c1413a0068c1e7ff34
6932.  
6933.  
6934. [>] User-Agent String : msnbot-Products/1.0 (+http://search.msn.com/msnbot.htm)
6935.  
6936.  
6937. [!] Data (MD5): d3c86f2962e5c14006d5706f73788978
6938.  
6939.  
6940. [>] User-Agent String : mmcrawler
6941.  
6942.  
6943. [!] Data (MD5): b5586335e511fa0340da2c1c2dda6885
6944.  
6945.  
6946. [>] Checks completed... try enabling VERBOSE mode for more detailed output
6947.  
6948. [>] That's all folks... Fo' Shizzle!
6949.  
6950. ########################################################################################
6951. Hostname top.top-dolls.net ISP Quasi Networks LTD. (AS29073)
6952. Continent Africa Flag
6953. SC
6954. Country Seychelles Country Code SC (SYC)
6955. Region Unknown Local time 10 Sep 2017 06:40 +04
6956. City Unknown Latitude -4.583
6957. IP Address 94.102.48.34 Longitude 55.667
6958. ##########################################################################################
6959.  
6960. ###########################################################################################
6961.  
6962. dig top.top-dolls.net any
6963.  
6964. ; <<>> DiG 9.10.3-P4-Debian <<>> top.top-dolls.net any
6965. ;; global options: +cmd
6966. ;; Got answer:
6967. ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 47348
6968. ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
6969.  
6970. ;; OPT PSEUDOSECTION:
6971. ; EDNS: version: 0, flags:; udp: 4096
6972. ;; QUESTION SECTION:
6973. ;top.top-dolls.net. IN ANY
6974.  
6975. ;; ANSWER SECTION:
6976. top.top-dolls.net. 1278 IN A 94.102.48.34
6977.  
6978. ;; Query time: 8 msec
6979. ;; SERVER: 192.168.1.254#53(192.168.1.254)
6980. ;; WHEN: Sat Sep 09 22:44:37 EDT 2017
6981. ;; MSG SIZE rcvd: 62
6982.  
6983. Checking for HTTP-Loadbalancing [Date]: 00:43:51, 00:43:52, 00:43:52, 00:43:52, 00:43:52, 00:43:53, 00:43:53, 00:43:53, 00:43:53, 00:43:54, 00:43:54, 00:43:54, 00:43:54, 00:43:55, 00:43:55, 00:43:55, 00:43:56, 00:43:56, 00:43:56, 00:43:56, 00:43:57, 00:43:57, 00:43:57, 00:43:57, 00:43:58, 00:43:58, 00:43:58, 00:43:58, 00:43:59, 00:43:59, 00:43:59, 00:44:00, 00:44:00, 00:44:00, 00:44:00, 00:44:01, 00:44:01, 00:44:01, 00:44:01, 00:44:02, 00:44:02, 00:44:02, 00:44:02, 00:44:03, 00:44:03, 00:44:03, 00:44:04, 00:44:04, 00:44:04, 00:44:04, NOT FOUND
6984.  
6985. ###########################################################################################
6986.  
6987. nmap -PN -n -F -T4 -sV -A -oG temp.txt top.top-dolls.net
6988.  
6989. Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 22:45 EDT
6990. Nmap scan report for top.top-dolls.net (94.102.48.34)
6991. Host is up (0.13s latency).
6992. Not shown: 84 closed ports
6993. PORT STATE SERVICE VERSION
6994. 21/tcp filtered ftp
6995. 22/tcp filtered ssh
6996. 25/tcp filtered smtp
6997. 53/tcp open domain ISC BIND 9.8.2rc1
6998. | dns-nsid:
6999. |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4
7000. 80/tcp open http nginx 1.12.1
7001. | http-methods:
7002. |_ Potentially risky methods: TRACE
7003. |_http-server-header: nginx/1.12.1
7004. |_http-title: Apache HTTP Server Test Page powered by CentOS
7005. 81/tcp filtered hosts2-ns
7006. 110/tcp open pop3 Dovecot pop3d
7007. |_pop3-capabilities: USER UIDL SASL(PLAIN LOGIN DIGEST-MD5 CRAM-MD5) TOP PIPELINING RESP-CODES CAPA STLS
7008. | ssl-cert: Subject: commonName=imap.example.com
7009. | Not valid before: 2015-06-12T12:04:14
7010. |_Not valid after: 2016-06-11T12:04:14
7011. |_ssl-date: 2017-09-10T00:44:40+00:00; -2h01m10s from scanner time.
7012. 135/tcp filtered msrpc
7013. 139/tcp filtered netbios-ssn
7014. 143/tcp open imap Dovecot imapd
7015. |_imap-capabilities: completed ENABLE ID Capability SASL-IR AUTH=CRAM-MD5A0001 AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=PLAIN OK STARTTLS LOGIN-REFERRALS IDLE IMAP4rev1 LITERAL+
7016. | ssl-cert: Subject: commonName=imap.example.com
7017. | Not valid before: 2015-06-12T12:04:14
7018. |_Not valid after: 2016-06-11T12:04:14
7019. |_ssl-date: 2017-09-10T00:44:39+00:00; -2h01m10s from scanner time.
7020. 445/tcp filtered microsoft-ds
7021. 465/tcp filtered smtps
7022. 587/tcp filtered submission
7023. 993/tcp open ssl/imap Dovecot imapd
7024. | ssl-cert: Subject: commonName=imap.example.com
7025. | Not valid before: 2015-06-12T12:04:14
7026. |_Not valid after: 2016-06-11T12:04:14
7027. |_ssl-date: 2017-09-10T00:44:35+00:00; -2h01m11s from scanner time.
7028. 995/tcp open ssl/pop3 Dovecot pop3d
7029. | ssl-cert: Subject: commonName=imap.example.com
7030. | Not valid before: 2015-06-12T12:04:14
7031. |_Not valid after: 2016-06-11T12:04:14
7032. |_ssl-date: 2017-09-10T00:44:35+00:00; -2h01m11s from scanner time.
7033. 3306/tcp open mysql MySQL (unauthorized)
7034. Device type: general purpose
7035. Running: Linux 2.6.X
7036. OS CPE: cpe:/o:linux:linux_kernel:2.6.39
7037. OS details: Linux 2.6.39
7038. Network Distance: 10 hops
7039. Service Info: OS: Red Hat Enterprise Linux 6; CPE: cpe:/o:redhat:enterprise_linux:6
7040.  
7041. Host script results:
7042. |_clock-skew: mean: -2h01m10s, deviation: 0s, median: -2h01m11s
7043.  
7044. TRACEROUTE (using port 8888/tcp)
7045. HOP RTT ADDRESS
7046. 1 110.60 ms 10.13.0.1
7047. 2 ...
7048. 3 110.64 ms 178.33.103.229
7049. 4 ...
7050. 5 119.39 ms 213.186.32.213
7051. 6 ...
7052. 7 124.40 ms 176.10.83.128
7053. 8 120.39 ms 176.10.83.119
7054. 9 ...
7055. 10 120.22 ms 94.102.48.34
7056.  
7057. OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
7058. Nmap done: 1 IP address (1 host up) scanned in 29.43 seconds
7059.  
7060. ###########################################################################################
7061.  
7062. amap -i temp.txt
7063. amap v5.4 (www.thc.org/thc-amap) started at 2017-09-09 22:45:57 - APPLICATION MAPPING mode
7064.  
7065. Protocol on 94.102.48.34:80/tcp matches http
7066. Protocol on 94.102.48.34:80/tcp matches http-apache-2
7067. Protocol on 94.102.48.34:110/tcp matches pop3
7068. Protocol on 94.102.48.34:3306/tcp matches mysql
7069. Protocol on 94.102.48.34:3306/tcp matches mysql-secured
7070. Protocol on 94.102.48.34:143/tcp matches imap
7071. Protocol on 94.102.48.34:993/tcp matches ssl
7072. Protocol on 94.102.48.34:995/tcp matches ssl
7073. Protocol on 94.102.48.34:53/tcp matches dns
7074.  
7075. inetnum: 94.102.48.0 - 94.102.48.150
7076. netname: SC-QUASI58
7077. descr: QUASI
7078. country: SC
7079. org: ORG-QNL3-RIPE
7080. admin-c: QNL1-RIPE
7081. tech-c: QNL1-RIPE
7082. status: ASSIGNED PA
7083. mnt-by: QUASINETWORKS-MNT
7084. mnt-lower: QUASINETWORKS-MNT
7085. mnt-routes: QUASINETWORKS-MNT
7086. created: 2011-05-07T22:25:22Z
7087. last-modified: 2016-01-23T22:29:27Z
7088. source: RIPE
7089.  
7090. organisation: ORG-QNL3-RIPE
7091. org-name: Quasi Networks LTD.
7092. org-type: OTHER
7093. address: Suite 1, Second Floor
7094. address: Sound & Vision House, Francis Rachel Street
7095. address: Victoria, Mahe, SEYCHELLES
7096. remarks: *****************************************************************************
7097. remarks: IMPORTANT INFORMATION
7098. remarks: *****************************************************************************
7099. remarks: We are a high bandwidth network provider offering bandwidth solutions.
7100. remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
7101. remarks: Please only use abuse@quasinetworks.com for abuse reports.
7102. remarks: For all other requests, please see the details on our website.
7103. remarks: *****************************************************************************
7104. abuse-mailbox: abuse@quasinetworks.com
7105. abuse-c: AR34302-RIPE
7106. mnt-ref: QUASINETWORKS-MNT
7107. mnt-by: QUASINETWORKS-MNT
7108. created: 2015-11-08T22:25:26Z
7109. last-modified: 2015-11-27T09:37:50Z
7110. source: RIPE # Filtered
7111.  
7112. role: Quasi Networks LTD
7113. address: Suite 1, Second Floor
7114. address: Sound & Vision House, Francis Rachel Street
7115. address: Victoria, Mahe, SEYCHELLES
7116. remarks: *****************************************************************************
7117. remarks: IMPORTANT INFORMATION
7118. remarks: *****************************************************************************
7119. remarks: We are a high bandwidth network provider offering bandwidth solutions.
7120. remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
7121. remarks: Please only use abuse@quasinetworks.com for abuse reports.
7122. remarks: For all other requests, please see the details on our website.
7123. remarks: *****************************************************************************
7124. abuse-mailbox: abuse@quasinetworks.com
7125. nic-hdl: QNL1-RIPE
7126. mnt-by: QUASINETWORKS-MNT
7127. created: 2015-11-07T22:43:04Z
7128. last-modified: 2015-11-07T23:04:49Z
7129. source: RIPE # Filtered
7130.  
7131. % Information related to '94.102.48.0/20AS29073'
7132.  
7133. route: 94.102.48.0/20
7134. descr: Quasi Networks LTD (IBC)
7135. origin: AS29073
7136. mnt-by: QUASINETWORKS-MNT
7137. created: 2008-09-02T11:55:23Z
7138. last-modified: 2016-01-23T22:40:05Z
7139. source: RIPE
7140.  
7141. % This query was served by the RIPE Database Query Service version 1.89.2 (WAGYU)
7142.  
7143.  
7144. ###########################################################################################
7145. [i] Scanning Site: http://top.top-dolls.net
7146.  
7147.  
7148.  
7149. B A S I C I N F O
7150. ====================
7151.  
7152.  
7153. [+] Site Title:
7154. [+] IP address: 94.102.48.34
7155. [+] Web Server: nginx/1.12.1
7156. [+] CMS: Could Not Detect
7157. [+] Cloudflare: Not Detected
7158. [+] Robots File: Could NOT Find robots.txt!
7159.  
7160.  
7161.  
7162.  
7163.  
7164. G E O I P L O O K U P
7165. =========================
7166.  
7167. [i] IP Address: 94.102.48.34
7168. [i] Country: SC
7169. [i] State: N/A
7170. [i] City: N/A
7171. [i] Latitude: -4.583300
7172. [i] Longitude: 55.666698
7173.  
7174.  
7175.  
7176.  
7177. H T T P H E A D E R S
7178. =======================
7179.  
7180.  
7181. [i] HTTP/1.1 403 Forbidden
7182. [i] Server: nginx/1.12.1
7183. [i] Date: Sun, 10 Sep 2017 00:43:18 GMT
7184. [i] Content-Type: text/html; charset=UTF-8
7185. [i] Content-Length: 4961
7186. [i] Connection: close
7187. [i] Accept-Ranges: bytes
7188.  
7189.  
7190.  
7191.  
7192. D N S L O O K U P
7193. ===================
7194.  
7195. top.top-dolls.net. 3596 IN A 94.102.48.34
7196.  
7197.  
7198.  
7199.  
7200. S U B N E T C A L C U L A T I O N
7201. ====================================
7202.  
7203. Address = 94.102.48.34
7204. Network = 94.102.48.34 / 32
7205. Netmask = 255.255.255.255
7206. Broadcast = not needed on Point-to-Point links
7207. Wildcard Mask = 0.0.0.0
7208. Hosts Bits = 0
7209. Max. Hosts = 1 (2^0 - 0)
7210. Host Range = { 94.102.48.34 - 94.102.48.34 }
7211.  
7212.  
7213.  
7214. N M A P P O R T S C A N
7215. ============================
7216.  
7217.  
7218. Starting Nmap 7.01 ( https://nmap.org ) at 2017-09-10 02:44 UTC
7219. Nmap scan report for top.top-dolls.net (94.102.48.34)
7220. Host is up (0.083s latency).
7221. rDNS record for 94.102.48.34: no-reverse-dns-configured.com
7222. PORT STATE SERVICE VERSION
7223. 21/tcp filtered ftp
7224. 22/tcp filtered ssh
7225. 23/tcp closed telnet
7226. 25/tcp open smtp Postfix smtpd
7227. 80/tcp open http nginx 1.12.1
7228. 110/tcp open pop3 Dovecot pop3d
7229. 143/tcp open imap Dovecot imapd
7230. 443/tcp closed https
7231. 445/tcp closed microsoft-ds
7232. 3389/tcp closed ms-wbt-server
7233.  
7234.  
7235. S U B - D O M A I N F I N D E R
7236. ==================================
7237.  
7238.  
7239. [i] Total Subdomains Found : 1
7240.  
7241. [+] Subdomain: top.top-dolls.net
7242. [-] IP: 94.102.48.34
7243. [*] Performing TLD Brute force Enumeration against top.top-dolls.net
7244. [*] The operation could take up to: 00:01:07
7245. [*] A top.ac 66.96.161.132
7246. [*] A top.ae 86.96.163.42
7247. [*] A top.ae 86.96.130.64
7248. [*] A top.biz.af 5.45.75.45
7249. [*] A top.ag 94.75.116.15
7250. [*] A top.af 108.61.170.199
7251. [*] AAAA top.af 2001:19f0:6c01:547:5400:ff:fe7c:9f77
7252. [*] A top.ai 47.90.1.220
7253. [*] A top.al 212.7.8.182
7254. [*] A top.am 50.62.112.1
7255. [*] A top.com.ar 72.52.231.0
7256. [*] A top.org.ar 190.183.59.134
7257. [*] A top.as 72.52.4.119
7258. [*] A top.co.at 213.229.60.9
7259. [*] CNAME top.biz.at free.biz.at
7260. [*] A free.biz.at 216.92.134.29
7261. [*] A top.net.au 203.87.108.74
7262. [*] A top.at 83.137.116.70
7263. [*] A top.com.au 69.172.201.153
7264. [*] A top.asia 77.221.130.34
7265. [*] A top.org.aw 142.4.20.12
7266. [*] A top.org.au 223.130.25.70
7267. [*] A top.ax 104.27.184.202
7268. [*] A top.ax 104.27.185.202
7269. [*] AAAA top.ax 2400:cb00:2048:1::681b:b9ca
7270. [*] AAAA top.ax 2400:cb00:2048:1::681b:b8ca
7271. [*] A top.az 136.243.74.74
7272. [*] A top.ba 81.93.76.14
7273. [*] A top.co.ba 176.9.45.78
7274. [*] A top.com.ba 195.222.33.180
7275. [*] A top.be 86.39.240.67
7276. [*] A top.co.asia 91.195.240.135
7277. [*] A top.com.be 95.173.170.166
7278. [*] A top.bg 78.90.206.51
7279. [*] A top.bi 77.104.162.193
7280. [*] A top.biz 72.52.4.119
7281. [*] A top.com.br 177.154.148.10
7282. [*] A top.by 93.171.222.16
7283. [*] A top.biz.by 71.18.52.2
7284. [*] A top.biz.bz 199.59.242.150
7285. [*] A top.ca 199.59.242.150
7286. [*] A top.com.cc 54.252.107.64
7287. [*] A top.net.cc 54.252.89.206
7288. [*] A top.co.cc 175.126.123.219
7289. [*] A top.ch 35.156.3.16
7290. [*] A top.cc 112.74.87.111
7291. [*] A top.org.ch 72.52.4.122
7292. [*] A top.cl 216.75.37.169
7293. [*] A top.co.cm 85.25.140.105
7294. [*] A top.net.cm 85.25.140.105
7295. [*] A top.biz.cl 185.53.178.8
7296. [*] A top.cn 23.27.192.117
7297. [*] A top.net.cn 23.27.192.117
7298. [*] A top.co 208.73.211.70
7299. [*] A top.com.co 185.28.20.39
7300. [*] A top.net.co 184.168.221.59
7301. [*] A top.com 184.168.221.59
7302. [*] A top.com.com 52.33.196.199
7303. [*] A top.net.com 199.59.242.150
7304. [*] A top.co.com 173.192.115.17
7305. [*] A top.org.com 23.23.86.44
7306. [*] A top.cr 198.1.104.236
7307. [*] A top.com.cn 118.26.164.16
7308. [*] A top.biz.cr 72.52.4.122
7309. [*] CNAME top.biz.cm i.cns.cm
7310. [*] A i.cns.cm 118.184.56.30
7311. [*] A top.cx 153.231.198.148
7312. [*] A top.cz 91.228.100.92
7313. [*] A top.net.cz 80.250.24.177
7314. [*] A top.biz.cx 72.52.4.122
7315. [*] A top.co.de 128.199.226.195
7316. [*] A top.com.de 199.59.242.150
7317. [*] A top.de 213.165.64.4
7318. [*] A top.com.cz 62.109.128.30
7319. [*] CNAME top.org.de www.org.de
7320. [*] A www.org.de 78.47.128.8
7321. [*] A top.co.ca 66.196.36.16
7322. [*] A top.biz.cz 185.53.179.7
7323. [*] A top.dk 46.4.18.10
7324. [*] A top.ec 72.52.4.119
7325. [*] A top.ee 217.146.69.11
7326. [*] AAAA top.ee 2a02:29e8:770:0:3::21
7327. [*] A top.com.es 72.52.4.122
7328. [*] A top.es 185.53.178.8
7329. [*] A top.eu 86.39.240.67
7330. [*] A top.net.eu 78.46.90.98
7331. [*] A top.org.eu 78.46.90.98
7332. [*] A top.biz.fi 185.55.85.123
7333. [*] A top.fm 173.230.131.38
7334. [*] A top.biz.fm 173.230.131.38
7335. [*] A top.fo 104.27.131.13
7336. [*] A top.fo 104.27.130.13
7337. [*] AAAA top.fo 2400:cb00:2048:1::681b:820d
7338. [*] AAAA top.fo 2400:cb00:2048:1::681b:830d
7339. [*] A top.fr 37.187.182.95
7340. [*] A top.org.fr 149.202.133.35
7341. [*] A top.ge 188.93.95.26
7342. [*] A top.gd 72.52.4.119
7343. [*] A top.gf 128.65.195.88
7344. [*] A top.gg 185.26.105.244
7345. [*] A top.biz.gl 72.52.4.122
7346. [*] A top.gp 72.52.4.119
7347. [*] A top.co.gp 144.76.162.245
7348. [*] A top.gr 185.4.133.65
7349. [*] A top.gs 184.168.221.55
7350. [*] A top.gt 198.49.72.66
7351. [*] A top.hk 203.124.113.1
7352. [*] A top.hn 217.70.184.38
7353. [*] A top.co.hn 208.100.40.203
7354. [*] A top.hr 178.218.174.100
7355. [*] CNAME top.net.hr net.hr
7356. [*] A net.hr 192.0.78.24
7357. [*] A net.hr 192.0.78.25
7358. [*] A top.ht 174.129.233.169
7359. [*] A top.co.ht 72.52.4.122
7360. [*] A top.hu 185.80.49.249
7361. [*] CNAME top.biz.hn parkmydomain.vhostgo.com
7362. [*] A parkmydomain.vhostgo.com 107.186.245.118
7363. [*] A top.co.id 198.252.100.115
7364. [*] A top.ie 185.2.66.91
7365. [*] A top.im 89.31.143.1
7366. [*] A top.org.il 194.90.184.11
7367. [*] A top.org.il 194.90.156.145
7368. [*] A top.in 72.52.4.119
7369. [*] A top.co.in 72.52.4.122
7370. [*] A top.info 210.114.223.199
7371. [*] A top.net.in 50.63.202.32
7372. [*] A top.org.in 72.52.4.122
7373. [*] A top.io 138.201.54.27
7374. [*] A top.co.ir 216.158.77.118
7375. [*] A top.is 193.4.58.173
7376. [*] CNAME top.je park.io
7377. [*] A park.io 50.17.238.198
7378. [*] A park.io 54.243.148.214
7379. [*] A top.it 185.2.4.102
7380. [*] A top.com.jo 104.238.99.152
7381. [*] A top.co.jobs 50.17.193.222
7382. [*] A top.jobs 50.19.241.165
7383. [*] A top.net.jobs 50.19.241.165
7384. [*] A top.com.jobs 50.19.241.165
7385. [*] A top.biz.jobs 50.19.241.165
7386. [*] A top.org.jobs 50.19.241.165
7387. [*] A top.jp 52.198.47.173
7388. [*] A top.co.jp 211.13.196.139
7389. [*] A top.kg 195.38.166.72
7390. [*] A top.co.ke 72.52.4.122
7391. [*] A top.net.kg 178.208.83.11
7392. [*] CNAME top.co.kr parking3.dnstool.net
7393. [*] CNAME parking3.dnstool.net wwwp.3dupndown.co.kr
7394. [*] CNAME wwwp.3dupndown.co.kr wqkboog.x.incapdns.net
7395. [*] A wqkboog.x.incapdns.net 107.154.155.33
7396. [*] CNAME top.kr parking3.dnstool.net
7397. [*] CNAME parking3.dnstool.net wwwp.3dupndown.co.kr
7398. [*] CNAME wwwp.3dupndown.co.kr wqkboog.x.incapdns.net
7399. [*] A wqkboog.x.incapdns.net 107.154.155.33
7400. [*] A top.com.kz 82.200.247.241
7401. [*] A top.kz 136.243.146.176
7402. [*] A top.biz.ky 199.184.144.27
7403. [*] A top.la 72.52.4.119
7404. [*] A top.lc 144.76.162.245
7405. [*] A top.li 72.52.4.119
7406. [*] CNAME top.biz.li 712936.parkingcrew.net
7407. [*] A 712936.parkingcrew.net 185.53.179.29
7408. [*] A top.lk 208.76.243.50
7409. [*] A top.lt 79.98.25.1
7410. [*] A top.lu 194.154.192.85
7411. [*] A top.biz.lu 195.26.5.2
7412. [*] A top.lv 194.105.56.171
7413. [*] A top.biz.ly 64.136.20.39
7414. [*] A top.co.ma 5.135.5.49
7415. [*] A top.md 88.99.29.152
7416. [*] A top.biz.md 72.52.4.122
7417. [*] A top.me 198.204.239.194
7418. [*] A top.mk 212.7.8.186
7419. [*] A top.co.mk 87.76.31.211
7420. [*] A top.mn 218.100.84.130
7421. [*] A top.co.mobi 54.225.105.179
7422. [*] A top.com.mx 184.173.249.72
7423. [*] A top.com.my 209.99.40.223
7424. [*] A top.biz.my 202.190.174.44
7425. [*] A top.net 72.249.144.95
7426. [*] A top.co.net 188.166.216.219
7427. [*] A top.net.net 52.50.81.210
7428. [*] A top.co.nf 185.176.40.54
7429. [*] A top.biz.nf 185.176.40.54
7430. [*] A top.org.net 23.23.86.44
7431. [*] A top.nl 109.72.85.122
7432. [*] AAAA top.nl 2a00:f10:ff03:1::103
7433. [*] A top.co.nl 77.174.199.0
7434. [*] A top.com.nl 83.98.157.102
7435. [*] A top.net.nl 83.98.157.102
7436. [*] A top.ng 91.195.240.135
7437. [*] A top.no 195.18.148.21
7438. [*] A top.com.ng 91.195.240.135
7439. [*] A top.co.nr 208.100.40.202
7440. [*] A top.nu 217.116.211.149
7441. [*] A top.net.nu 199.102.76.78
7442. [*] A top.org.nu 80.92.84.139
7443. [*] CNAME top.co.nu co.nu
7444. [*] A co.nu 144.76.162.245
7445. [*] A top.com.nu 144.76.162.245
7446. [*] A top.net.nz 103.250.119.215
7447. [*] A top.org.nz 104.25.242.31
7448. [*] A top.org.nz 104.25.243.31
7449. [*] AAAA top.org.nz 2400:cb00:2048:1::6819:f21f
7450. [*] AAAA top.org.nz 2400:cb00:2048:1::6819:f31f
7451. [*] CNAME top.co.nz park.worldcloudshops.com
7452. [*] A park.worldcloudshops.com 35.190.14.252
7453. [*] A top.com.org 23.23.86.44
7454. [*] CNAME top.net.org pewtrusts.org
7455. [*] A pewtrusts.org 204.74.99.100
7456. [*] A top.pe 103.224.182.249
7457. [*] A top.com.pe 72.52.4.122
7458. [*] A top.ph 192.64.147.201
7459. [*] A top.com.ph 72.52.4.122
7460. [*] A top.co.ph 45.79.222.138
7461. [*] A top.net.ph 45.79.222.138
7462. [*] A top.org.ph 45.79.222.138
7463. [*] A top.com.pk 174.136.29.165
7464. [*] A top.pl 178.33.53.57
7465. [*] A top.co.pl 213.239.198.135
7466. [*] A top.com.pl 176.9.137.196
7467. [*] A top.net.pl 91.200.92.2
7468. [*] A top.biz.pl 94.23.89.40
7469. [*] A top.org.pl 77.55.152.162
7470. [*] A top.pm 103.224.182.241
7471. [*] A top.org.pm 208.73.210.202
7472. [*] A top.org.pm 208.73.211.165
7473. [*] A top.org.pm 208.73.211.177
7474. [*] A top.org.pm 208.73.210.217
7475. [*] A top.pro 192.252.144.48
7476. [*] A top.co.ps 66.96.132.56
7477. [*] CNAME top.biz.ps biz.ps
7478. [*] A biz.ps 144.76.162.245
7479. [*] A top.co.pt 194.107.127.52
7480. [*] A top.pt 72.52.4.119
7481. [*] A top.pw 141.8.226.59
7482. [*] A top.co.pw 141.8.226.59
7483. [*] A top.net.pw 141.8.226.59
7484. [*] A top.biz.pw 141.8.226.59
7485. [*] A top.org.pw 141.8.226.59
7486. [*] A top.com.qa 82.148.100.102
7487. [*] A top.re 69.172.201.153
7488. [*] A top.org.re 217.70.184.38
7489. [*] A top.ro 193.25.113.232
7490. [*] A top.qa 208.91.197.91
7491. [*] A top.net.ro 69.64.52.127
7492. [*] A top.org.ro 188.241.152.102
7493. [*] A top.rs 217.26.210.185
7494. [*] A top.co.rs 217.26.213.91
7495. [*] A top.org.rs 178.218.166.204
7496. [*] A top.ru 185.77.233.40
7497. [*] A top.net.ru 138.201.187.251
7498. [*] A top.org.ru 37.140.192.250
7499. [*] A top.com.ru 193.232.158.144
7500. [*] A top.com.ru 193.232.159.144
7501. [*] A top.com.ru 193.232.158.145
7502. [*] A top.com.ru 193.232.159.145
7503. [*] A top.net.sa 77.240.80.85
7504. [*] A top.sa 208.91.197.91
7505. [*] A top.sc 78.109.25.58
7506. [*] A top.com.se 52.32.224.120
7507. [*] A top.sg 91.136.8.131
7508. [*] A top.biz.se 185.53.179.6
7509. [*] A top.com.sg 119.31.233.166
7510. [*] CNAME top.net.se 773147.parkingcrew.net
7511. [*] A 773147.parkingcrew.net 185.53.179.29
7512. [*] A top.sh 107.150.98.48
7513. [*] A top.si 91.223.115.153
7514. [*] A top.sk 37.9.175.5
7515. [*] A top.com.sr 143.95.106.249
7516. [*] A top.co.sl 91.195.240.135
7517. [*] A top.st 13.69.186.222
7518. [*] A top.biz.st 91.121.28.115
7519. [*] A top.su 82.146.61.146
7520. [*] A top.co.su 72.52.4.122
7521. [*] A top.tc 144.76.162.245
7522. [*] A top.biz.tc 64.136.20.39
7523. [*] A top.tel 52.50.143.27
7524. [*] A top.tf 77.174.199.0
7525. [*] A top.net.tf 188.40.70.29
7526. [*] A top.net.tf 188.40.70.27
7527. [*] A top.net.tf 188.40.117.12
7528. [*] A top.biz.tf 85.236.153.18
7529. [*] A top.tk 195.20.47.239
7530. [*] A top.co.tl 208.100.40.202
7531. [*] A top.com.tr 77.245.149.29
7532. [*] A top.travel 72.52.4.119
7533. [*] A top.co.to 175.118.124.44
7534. [*] A top.co.th 203.146.170.57
7535. [*] A top.co.tv 31.186.25.163
7536. [*] A top.tw 61.220.152.244
7537. [*] A top.to 222.122.205.134
7538. [*] A top.com.tw 106.186.25.125
7539. [*] A top.net.tw 60.249.15.213
7540. [*] A top.biz.tv 72.52.4.122
7541. [*] A top.org.tv 72.52.4.122
7542. [*] A top.org.tw 61.63.62.68
7543. [*] A top.ua 82.144.222.56
7544. [*] A top.co.ua 138.201.57.91
7545. [*] A top.com.ua 77.120.122.115
7546. [*] A top.net.ua 80.91.160.7
7547. [*] A top.co.tz 216.194.168.113
7548. [*] A top.uk 212.36.97.12
7549. [*] A top.co.uk 212.36.97.12
7550. [*] A top.biz.ua 95.213.135.229
7551. [*] AAAA top.biz.ua 2a00:ab00:4300:1df::2
7552. [*] A top.biz.uz 144.76.162.245
7553. [*] A top.vc 199.59.242.150
7554. [*] A top.net.ve 67.220.187.66
7555. [*] A top.vg 88.198.29.97
7556. [*] A top.co.vg 88.198.29.97
7557. [*] A top.com.vg 88.198.29.97
7558. [*] A top.net.vg 68.178.254.180
7559. [*] A top.biz.vg 89.31.143.20
7560. [*] A top.com.ve 185.53.178.6
7561. [*] A top.uz 83.69.139.158
7562. [*] A top.ws 184.168.221.104
7563. [*] A top.net.vn 112.213.89.3
7564. [*] A top.com.ws 202.4.48.211
7565. [*] A top.net.ws 202.4.48.211
7566. [*] A top.biz.ws 184.168.221.104
7567. [*] A top.org.ws 202.4.48.211
7568. [*] CNAME top.wf dnspod-free.mydnspod.net
7569. [*] A dnspod-free.mydnspod.net 49.51.10.192
7570. [*] A top.yt 103.224.182.241
7571. ----- top.top-dolls.net -----
7572.  
7573.  
7574. Host's addresses:
7575. __________________
7576.  
7577. top.top-dolls.net. 1189 IN A 94.102.48.34
7578.  
7579.  
7580. Name Servers:
7581. ______________
7582.  
7583. top.top-dolls.net NS record query failed: NOERROR
7584.  
7585.  
7586. dnsmap 0.30 - DNS Network Mapper by pagvac (gnucitizen.org)
7587.  
7588. [+] searching (sub)domains for top.top-dolls.net using built-in wordlist
7589. [+] using maximum random delay of 10 millisecond(s) between requests
7590.  
7591. [+] 0 (sub)domains and 0 IP address(es) found
7592. [+] completion time: 153 second(s)
7593.  
7594.  
7595. Tracing to top.top-dolls.net[a] via 192.168.1.254, maximum of 3 retries
7596. 192.168.1.254 (192.168.1.254) Got answer
7597.  
7598.  
7599. WhatWeb report for http://top.top-dolls.net
7600. Status : 403 Forbidden
7601. Title : Apache HTTP Server Test Page powered by CentOS
7602. IP : 94.102.48.34
7603. Country : NETHERLANDS, NL
7604.  
7605. Summary : PoweredBy[Apache,CentOS], Email[webmaster@example.com], HTTPServer[nginx/1.12.1], nginx[1.12.1]
7606.  
7607. Detected Plugins:
7608. [ Email ]
7609. Extract email addresses. Find valid email address and
7610. syntactically invalid email addresses from mailto: link
7611. tags. We match syntactically invalid links containing
7612. mailto: to catch anti-spam email addresses, eg. bob at
7613. gmail.com. This uses the simplified email regular
7614. expression from
7615. http://www.regular-expressions.info/email.html for valid
7616. email address matching.
7617.  
7618. String : webmaster@example.com
7619.  
7620. [ HTTPServer ]
7621. HTTP server header string. This plugin also attempts to
7622. identify the operating system from the server header.
7623.  
7624. String : nginx/1.12.1 (from server string)
7625.  
7626. [ PoweredBy ]
7627. This plugin identifies instances of 'Powered by x' text and
7628. attempts to extract the value for x.
7629.  
7630. String : Apache,CentOS
7631.  
7632. [ nginx ]
7633. Nginx (Engine-X) is a free, open-source, high-performance
7634. HTTP server and reverse proxy, as well as an IMAP/POP3
7635. proxy server.
7636.  
7637. Version : 1.12.1
7638. Website : http://nginx.net/
7639.  
7640. HTTP Headers:
7641. HTTP/1.1 403 Forbidden
7642. Server: nginx/1.12.1
7643. Date: Sun, 10 Sep 2017 00:47:30 GMT
7644. Content-Type: text/html; charset=UTF-8
7645. Content-Length: 4961
7646. Connection: close
7647. Accept-Ranges: bytes
7648.  
7649.  
7650.  
7651. ^ ^
7652. _ __ _ ____ _ __ _ _ ____
7653. ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
7654. | V V // o // _/ | V V // 0 // 0 // _/
7655. |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
7656. <
7657. ...'
7658.  
7659. WAFW00F - Web Application Firewall Detection Tool
7660.  
7661. By Sandro Gauci && Wendel G. Henrique
7662.  
7663. Checking http://top.top-dolls.net
7664. Generic Detection results:
7665. No WAF detected by the generic detection
7666. Number of requests: 12
7667.  
7668.  
7669.  
7670. Trying zone transfer first...
7671.  
7672. Unsuccessful in zone transfer (it was worth a shot)
7673. Okay, trying the good old fashioned way... brute force
7674.  
7675. Checking for wildcard DNS...
7676. Nope. Good.
7677. Now performing 2280 test(s)...
7678.  
7679. Subnets found (may want to probe here using nmap or unicornscan):
7680.  
7681. Done with Fierce scan: http://ha.ckers.org/fierce/
7682. Found 0 entries.
7683.  
7684. Have a nice day.
7685.  
7686.  
7687.  
7688. lbd - load balancing detector 0.2 - Checks if a given domain uses load-balancing.
7689. Written by Stefan Behte (http://ge.mine.nu)
7690. Proof-of-concept! Might give false positives.
7691.  
7692. Checking for DNS-Loadbalancing: NOT FOUND
7693. Checking for HTTP-Loadbalancing [Server]:
7694. nginx/1.12.1
7695. NOT FOUND
7696.  
7697. Checking for HTTP-Loadbalancing [Date]: 00:47:59, 00:47:59, 00:48:00, 00:48:00, 00:48:00, 00:48:00, 00:48:01, 00:48:01, 00:48:01, 00:48:01, 00:48:02, 00:48:02, 00:48:02, 00:48:03, 00:48:03, 00:48:03, 00:48:03, 00:48:04, 00:48:04, 00:48:04, 00:48:04, 00:48:05, 00:48:05, 00:48:05, 00:48:05, 00:48:06, 00:48:06, 00:48:06, 00:48:07, 00:48:07, 00:48:07, 00:48:07, 00:48:08, 00:48:08, 00:48:08, 00:48:08, 00:48:09, 00:48:09, 00:48:09, 00:48:09, 00:48:10, 00:48:10, 00:48:10, 00:48:11, 00:48:11, 00:48:11, 00:48:11, 00:48:12, 00:48:12, 00:48:12, NOT FOUND
7698.  
7699. Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
7700.  
7701. top.top-dolls.net does NOT use Load-balancing.
7702.  
7703.  
7704.  
7705. Starting smtp-user-enum v1.2 ( http://pentestmonkey.net/tools/smtp-user-enum )
7706.  
7707. ----------------------------------------------------------
7708. | Scan Information |
7709. ----------------------------------------------------------
7710.  
7711. Mode ..................... VRFY
7712. Worker Processes ......... 5
7713. Usernames file ........... users.txt
7714. Target count ............. 1
7715. Username count ........... 494
7716. Target TCP port .......... 25
7717. Query timeout ............ 5 secs
7718. Target domain ............
7719.  
7720. ######## Scan started at Sat Sep 9 22:49:35 2017 #########
7721. ######## Scan completed at Sat Sep 9 22:57:50 2017 #########
7722. 0 results.
7723.  
7724. 494 queries in 495 seconds (1.0 queries / sec)
7725.  
7726.  
7727.  
7728. Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 22:57 EDT
7729. NSE: Loaded 146 scripts for scanning.
7730. NSE: Script Pre-scanning.
7731. Initiating NSE at 22:57
7732. Completed NSE at 22:57, 0.00s elapsed
7733. Initiating NSE at 22:57
7734. Completed NSE at 22:57, 0.00s elapsed
7735. Failed to resolve "top.top-dolls.net.txt".
7736. Initiating Parallel DNS resolution of 1 host. at 22:57
7737. Completed Parallel DNS resolution of 1 host. at 22:57, 0.56s elapsed
7738. Initiating SYN Stealth Scan at 22:57
7739. Scanning top.top-dolls.net (94.102.48.34) [100 ports]
7740. Discovered open port 993/tcp on 94.102.48.34
7741. Discovered open port 110/tcp on 94.102.48.34
7742. Discovered open port 3306/tcp on 94.102.48.34
7743. Discovered open port 143/tcp on 94.102.48.34
7744. Discovered open port 995/tcp on 94.102.48.34
7745. Discovered open port 80/tcp on 94.102.48.34
7746. Discovered open port 53/tcp on 94.102.48.34
7747. Increasing send delay for 94.102.48.34 from 0 to 5 due to 59 out of 146 dropped probes since last increase.
7748. Completed SYN Stealth Scan at 22:57, 3.29s elapsed (100 total ports)
7749. Initiating Service scan at 22:57
7750. Scanning 7 services on top.top-dolls.net (94.102.48.34)
7751. Completed Service scan at 22:58, 6.78s elapsed (7 services on 1 host)
7752. Initiating OS detection (try #1) against top.top-dolls.net (94.102.48.34)
7753. adjust_timeouts2: packet supposedly had rtt of -78958 microseconds. Ignoring time.
7754. adjust_timeouts2: packet supposedly had rtt of -78958 microseconds. Ignoring time.
7755. adjust_timeouts2: packet supposedly had rtt of -80403 microseconds. Ignoring time.
7756. adjust_timeouts2: packet supposedly had rtt of -80403 microseconds. Ignoring time.
7757. Retrying OS detection (try #2) against top.top-dolls.net (94.102.48.34)
7758. Initiating Traceroute at 22:58
7759. Completed Traceroute at 22:58, 3.01s elapsed
7760. Initiating Parallel DNS resolution of 7 hosts. at 22:58
7761. Completed Parallel DNS resolution of 7 hosts. at 22:58, 5.51s elapsed
7762. NSE: Script scanning 94.102.48.34.
7763. Initiating NSE at 22:58
7764. Completed NSE at 22:58, 13.97s elapsed
7765. Initiating NSE at 22:58
7766. Completed NSE at 22:58, 0.01s elapsed
7767. Nmap scan report for top.top-dolls.net (94.102.48.34)
7768. Host is up (0.13s latency).
7769. rDNS record for 94.102.48.34: no-reverse-dns-configured.com
7770. Not shown: 84 closed ports
7771. PORT STATE SERVICE VERSION
7772. 21/tcp filtered ftp
7773. 22/tcp filtered ssh
7774. 25/tcp filtered smtp
7775. 53/tcp open domain ISC BIND 9.8.2rc1
7776. | dns-nsid:
7777. |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4
7778. 80/tcp open http nginx 1.12.1
7779. |_http-favicon: Unknown favicon MD5: D41D8CD98F00B204E9800998ECF8427E
7780. | http-methods:
7781. | Supported Methods: GET HEAD POST OPTIONS TRACE
7782. |_ Potentially risky methods: TRACE
7783. |_http-server-header: nginx/1.12.1
7784. |_http-title: Apache HTTP Server Test Page powered by CentOS
7785. 81/tcp filtered hosts2-ns
7786. 110/tcp open pop3 Dovecot pop3d
7787. |_pop3-capabilities: TOP CAPA PIPELINING UIDL STLS RESP-CODES USER SASL(PLAIN LOGIN DIGEST-MD5 CRAM-MD5)
7788. | ssl-cert: Subject: commonName=imap.example.com
7789. | Issuer: commonName=imap.example.com
7790. | Public Key type: rsa
7791. | Public Key bits: 1024
7792. | Signature Algorithm: sha1WithRSAEncryption
7793. | Not valid before: 2015-06-12T12:04:14
7794. | Not valid after: 2016-06-11T12:04:14
7795. | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
7796. |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
7797. |_ssl-date: 2017-09-10T00:57:10+00:00; -2h01m10s from scanner time.
7798. 135/tcp filtered msrpc
7799. 139/tcp filtered netbios-ssn
7800. 143/tcp open imap Dovecot imapd
7801. |_imap-capabilities: IMAP4rev1 LOGIN-REFERRALS AUTH=DIGEST-MD5 ID AUTH=LOGIN completed STARTTLS Capability OK AUTH=CRAM-MD5A0001 AUTH=PLAIN IDLE LITERAL+ ENABLE SASL-IR
7802. | ssl-cert: Subject: commonName=imap.example.com
7803. | Issuer: commonName=imap.example.com
7804. | Public Key type: rsa
7805. | Public Key bits: 1024
7806. | Signature Algorithm: sha1WithRSAEncryption
7807. | Not valid before: 2015-06-12T12:04:14
7808. | Not valid after: 2016-06-11T12:04:14
7809. | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
7810. |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
7811. |_ssl-date: 2017-09-10T00:57:10+00:00; -2h01m10s from scanner time.
7812. 445/tcp filtered microsoft-ds
7813. 465/tcp filtered smtps
7814. 587/tcp filtered submission
7815. 993/tcp open ssl/imap Dovecot imapd
7816. | ssl-cert: Subject: commonName=imap.example.com
7817. | Issuer: commonName=imap.example.com
7818. | Public Key type: rsa
7819. | Public Key bits: 1024
7820. | Signature Algorithm: sha1WithRSAEncryption
7821. | Not valid before: 2015-06-12T12:04:14
7822. | Not valid after: 2016-06-11T12:04:14
7823. | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
7824. |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
7825. |_ssl-date: 2017-09-10T00:57:09+00:00; -2h01m10s from scanner time.
7826. 995/tcp open ssl/pop3 Dovecot pop3d
7827. | ssl-cert: Subject: commonName=imap.example.com
7828. | Issuer: commonName=imap.example.com
7829. | Public Key type: rsa
7830. | Public Key bits: 1024
7831. | Signature Algorithm: sha1WithRSAEncryption
7832. | Not valid before: 2015-06-12T12:04:14
7833. | Not valid after: 2016-06-11T12:04:14
7834. | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
7835. |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
7836. |_ssl-date: 2017-09-10T00:57:07+00:00; -2h01m11s from scanner time.
7837. 3306/tcp open mysql MySQL (unauthorized)
7838. Aggressive OS guesses: Linux 2.6.39 (99%), Linux 2.6.32 (95%), Linux 2.6.32 or 3.10 (95%), WatchGuard Fireware 11.8 (95%), Synology DiskStation Manager 5.1 (94%), Linux 3.1 - 3.2 (94%), Linux 3.4 (94%), Linux 3.10 (93%), Linux 2.6.32 - 2.6.39 (93%), Linux 2.6.32 - 3.0 (92%)
7839. No exact OS matches for host (test conditions non-ideal).
7840. Uptime guess: 11.832 days (since Tue Aug 29 03:01:01 2017)
7841. Network Distance: 10 hops
7842. TCP Sequence Prediction: Difficulty=257 (Good luck!)
7843. IP ID Sequence Generation: All zeros
7844. Service Info: OS: Red Hat Enterprise Linux 6; CPE: cpe:/o:redhat:enterprise_linux:6
7845.  
7846. Host script results:
7847. |_clock-skew: mean: -2h01m10s, deviation: 0s, median: -2h01m10s
7848.  
7849. TRACEROUTE (using port 5900/tcp)
7850. HOP RTT ADDRESS
7851. 1 110.21 ms 10.13.0.1
7852. 2 ...
7853. 3 110.25 ms po101.gra-g1-a75.fr.eu (178.33.103.229)
7854. 4 112.29 ms 10.95.33.8
7855. 5 119.09 ms be100-1109.fra-1-a9.de.eu (213.186.32.213)
7856. 6 ...
7857. 7 124.33 ms vlan3555.bb1.ams2.nl.m247.com (176.10.83.128)
7858. 8 120.62 ms 176.10.83.119
7859. 9 ...
7860. 10 120.67 ms no-reverse-dns-configured.com (94.102.48.34)
7861.  
7862. NSE: Script Post-scanning.
7863. Initiating NSE at 22:58
7864. Completed NSE at 22:58, 0.00s elapsed
7865. Initiating NSE at 22:58
7866. Completed NSE at 22:58, 0.00s elapsed
7867. Read data files from: /usr/bin/../share/nmap
7868. OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
7869. Nmap done: 1 IP address (1 host up) scanned in 39.77 seconds
7870. Raw packets sent: 292 (15.702KB) | Rcvd: 222 (11.728KB)
7871.  
7872.  
7873.  
7874.  
7875. _/ _/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/
7876. _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
7877. _/ _/ _/_/_/_/ _/_/_/ _/ _/_/_/ _/_/_/_/ _/ _/_/_/ _/_/_/_
7878. _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
7879. _/_/_/_/ _/ _/ _/ _/_/_/_/ _/_/_/_/ _/ _/_/_/_/ _/ _/ [v1.06]
7880.  
7881. _/ User-Agent Tester ↵
7882. _/ AKA: Purple Pimp ↵
7883. _/ ChrisJohnRiley ↵
7884. _/ blog.c22.cc ↵
7885.  
7886. [>] Performing initial request and confirming stability
7887. [>] Using User-Agent string Mozilla/5.0
7888.  
7889. [*] HTTPError: HTTP Error 403: Forbidden
7890.  
7891. ########################################################################################
7892.  
7893. Hostname www.youngs-list.com ISP Quasi Networks LTD. (AS29073)
7894. Continent Africa Flag
7895. SC
7896. Country Seychelles Country Code SC (SYC)
7897. Region Unknown Local time 10 Sep 2017 07:06 +04
7898. City Unknown Latitude -4.583
7899. IP Address 80.82.79.11 Longitude 55.667
7900. ########################################################################################
7901. youngs-list.com
7902.  
7903. ###########################################################################################
7904.  
7905. whois youngs-list.com
7906. Domain Name: YOUNGS-LIST.COM
7907. Registry Domain ID: 1465281303_DOMAIN_COM-VRSN
7908. Registrar WHOIS Server: whois.nic.ru
7909. Registrar URL: http://nic.ru
7910. Updated Date: 2017-04-27T12:19:35Z
7911. Creation Date: 2008-05-05T09:26:42Z
7912. Registry Expiry Date: 2018-05-05T09:26:42Z
7913. Registrar: Regional Network Information Center, JSC dba RU-CENTER
7914. Registrar IANA ID: 463
7915. Registrar Abuse Contact Email: tld-abuse@nic.ru
7916. Registrar Abuse Contact Phone: +7 (495) 994-46-01
7917. Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
7918. Name Server: NS1.YOUNGS-LIST.COM
7919. Name Server: NS2.YOUNGS-LIST.COM
7920.  
7921. Domain Name: YOUNGS-LIST.COM
7922. Registry Domain ID: 1465281303_DOMAIN_COM-VRSN
7923. Registrar WHOIS Server: whois.nic.ru
7924. Registrar URL: http://www.nic.ru
7925. Updated Date: 2017-04-27T08:19:27Z
7926. Creation Date: 2008-05-05T09:26:42Z
7927. Registrar Registration Expiration Date: 2018-05-04T21:00:00Z
7928. Registrar: Regional Network Information Center, JSC dba RU-CENTER
7929. Registrar IANA ID: 463
7930. Registrar Abuse Contact Email: tld-abuse@nic.ru
7931. Registrar Abuse Contact Phone: +7.4959944601
7932. Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
7933. Registry Registrant ID:
7934. Registrant Name: Maksim A Boyko
7935. Registrant Organization: Maksim A Boyko
7936. Registrant Street: Pavlovskaya 98
7937. Registrant City: Odessa
7938. Registrant Postal Code: 184681
7939. Registrant Country: UA
7940. Registrant Phone: +380.2890115
7941. Registrant Phone Ext:
7942. Registrant Email: pandabox@bk.ru
7943. Registry Admin ID:
7944. Admin Name: Maksim A Boyko
7945. Admin Organization: Maksim A Boyko
7946. Admin Street: Pavlovskaya 98
7947. Admin City: Odessa
7948. Admin Postal Code: 184681
7949. Admin Country: UA
7950. Admin Phone: +380.2890115
7951. Admin Phone Ext:
7952. Admin Email: pandabox@bk.ru
7953. Registry Tech ID:
7954. Tech Name: Maksim A Boyko
7955. Tech Organization: Maksim A Boyko
7956. Tech Street: Pavlovskaya 98
7957. Tech City: Odessa
7958. Tech Postal Code: 184681
7959. Tech Country: UA
7960. Tech Phone: +380.2890115
7961. Tech Phone Ext:
7962. Tech Email: pandabox@bk.ru
7963. Name Server: ns1.youngs-list.com 93.174.93.111
7964. Name Server: ns2.youngs-list.com 192.133.136.162
7965. DNSSEC: unsigned
7966. URL of the ICANN WHOIS Data Problem Reporting System: http://wdprs.internic.net/
7967. For more information on Whois status codes, please visit: https://icann.org/epp
7968. >>> Last update of WHOIS database: 2017.09.10T03:08:14Z <<<
7969. ###########################################################################################
7970.  
7971. dig youngs-list.com any
7972.  
7973. ; <<>> DiG 9.10.3-P4-Debian <<>> youngs-list.com any
7974. ;; global options: +cmd
7975. ;; Got answer:
7976. ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 62102
7977. ;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 1
7978.  
7979. ;; OPT PSEUDOSECTION:
7980. ; EDNS: version: 0, flags:; udp: 4096
7981. ;; QUESTION SECTION:
7982. ;youngs-list.com. IN ANY
7983.  
7984. ;; ANSWER SECTION:
7985. youngs-list.com. 3065 IN A 80.82.79.11
7986. youngs-list.com. 3064 IN NS ns1.dxgirlz.com.
7987. youngs-list.com. 3064 IN NS ns2.dxgirlz.com.
7988.  
7989.  
7990. ###########################################################################################
7991.  
7992. Checking for HTTP-Loadbalancing [Date]: 01:07:20, 01:07:20, 01:07:20, 01:07:21, 01:07:21, 01:07:21, 01:07:21, 01:07:22, 01:07:22, 01:07:22, 01:07:22, 01:07:23, 01:07:23, 01:07:23, 01:07:24, 01:07:24, 01:07:24, 01:07:24, 01:07:25, 01:07:25, 01:07:25, 01:07:25, 01:07:26, 01:07:26, 01:07:26, 01:07:26, 01:07:27, 01:07:27, 01:07:27, 01:07:28, 01:07:28, 01:07:28, 01:07:28, 01:07:29, 01:07:29, 01:07:29, 01:07:29, 01:07:30, 01:07:30, 01:07:30, 01:07:30, 01:07:31, 01:07:31, 01:07:31, 01:07:31, 01:07:32, 01:07:32, 01:07:32, 01:07:33, 01:07:33,
7993. ###########################################################################################
7994.  
7995. nmap -PN -n -F -T4 -sV -A -oG temp.txt youngs-list.com
7996.  
7997. Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 23:09 EDT
7998. Nmap scan report for youngs-list.com (80.82.79.11)
7999. Host is up (0.42s latency).
8000. Not shown: 84 closed ports
8001. PORT STATE SERVICE VERSION
8002. 21/tcp filtered ftp
8003. 22/tcp filtered ssh
8004. 25/tcp filtered smtp
8005. 53/tcp open tcpwrapped
8006. | dns-nsid:
8007. |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4
8008. 80/tcp open tcpwrapped
8009. |_http-server-header: nginx/1.12.1
8010. |_http-title: Did not follow redirect to http://www.youngs-list.com/new.html
8011. 81/tcp filtered hosts2-ns
8012. 110/tcp open tcpwrapped
8013. |_pop3-capabilities: PIPELINING SASL(PLAIN LOGIN DIGEST-MD5 CRAM-MD5) USER RESP-CODES UIDL CAPA STLS TOP
8014. | ssl-cert: Subject: commonName=imap.example.com
8015. | Not valid before: 2015-06-12T12:04:14
8016. |_Not valid after: 2016-06-11T12:04:14
8017. |_ssl-date: 2017-09-10T01:09:13+00:00; -2h01m10s from scanner time.
8018. 135/tcp filtered msrpc
8019. 139/tcp filtered netbios-ssn
8020. 143/tcp open tcpwrapped
8021. |_imap-capabilities: completed IMAP4rev1 OK ID STARTTLS SASL-IR ENABLE AUTH=CRAM-MD5A0001 LITERAL+ AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=PLAIN LOGIN-REFERRALS IDLE Capability
8022. | ssl-cert: Subject: commonName=imap.example.com
8023. | Not valid before: 2015-06-12T12:04:14
8024. |_Not valid after: 2016-06-11T12:04:14
8025. |_ssl-date: 2017-09-10T01:09:13+00:00; -2h01m10s from scanner time.
8026. 445/tcp filtered microsoft-ds
8027. 465/tcp filtered smtps
8028. 587/tcp filtered submission
8029. 993/tcp open tcpwrapped
8030. |_imap-capabilities: IMAP4rev1 OK ID completed SASL-IR ENABLE AUTH=PLAIN LITERAL+ AUTH=LOGIN AUTH=CRAM-MD5A0001 AUTH=DIGEST-MD5 LOGIN-REFERRALS IDLE Capability
8031. | ssl-cert: Subject: commonName=imap.example.com
8032. | Not valid before: 2015-06-12T12:04:14
8033. |_Not valid after: 2016-06-11T12:04:14
8034. |_ssl-date: 2017-09-10T01:09:11+00:00; -2h01m10s from scanner time.
8035. 995/tcp open tcpwrapped
8036. |_pop3-capabilities: PIPELINING USER RESP-CODES UIDL CAPA SASL(PLAIN LOGIN DIGEST-MD5 CRAM-MD5) TOP
8037. | ssl-cert: Subject: commonName=imap.example.com
8038. | Not valid before: 2015-06-12T12:04:14
8039. |_Not valid after: 2016-06-11T12:04:14
8040. |_ssl-date: 2017-09-10T01:09:10+00:00; -2h01m11s from scanner time.
8041. 3306/tcp open tcpwrapped
8042. Aggressive OS guesses: Linux 2.6.39 (99%), Linux 2.6.32 (95%), Linux 2.6.32 or 3.10 (95%), WatchGuard Fireware 11.8 (95%), Synology DiskStation Manager 5.1 (94%), Linux 3.1 - 3.2 (94%), Linux 3.4 (94%), Linux 3.10 (93%), Linux 2.6.32 - 2.6.39 (93%), Linux 2.6.32 - 3.0 (92%)
8043. No exact OS matches for host (test conditions non-ideal).
8044. Network Distance: 11 hops
8045.  
8046. Host script results:
8047. |_clock-skew: mean: -2h01m10s, deviation: 0s, median: -2h01m10s
8048.  
8049. TRACEROUTE (using port 5060/tcp)
8050. HOP RTT ADDRESS
8051. 1 109.53 ms 10.13.0.1
8052. 2 145.98 ms 37.187.24.252
8053. 3 110.43 ms 178.33.103.231
8054. 4 ...
8055. 5 119.11 ms 91.121.131.19
8056. 6 118.96 ms 94.23.122.217
8057. 7 ...
8058. 8 124.69 ms 176.10.83.128
8059. 9 120.16 ms 176.10.83.119
8060. 10 ...
8061. 11 120.22 ms 80.82.79.11
8062.  
8063. OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
8064. Nmap done: 1 IP address (1 host up) scanned in 69.13 seconds
8065.  
8066. ###########################################################################################
8067.  
8068. amap -i temp.txt
8069. amap v5.4 (www.thc.org/thc-amap) started at 2017-09-09 23:10:34 - APPLICATION MAPPING mode
8070.  
8071. Protocol on 80.82.79.11:80/tcp matches http
8072. Protocol on 80.82.79.11:80/tcp matches http-apache-2
8073. Protocol on 80.82.79.11:143/tcp matches imap
8074. Protocol on 80.82.79.11:110/tcp matches pop3
8075. Protocol on 80.82.79.11:993/tcp matches ssl
8076. Protocol on 80.82.79.11:3306/tcp matches mysql
8077. Protocol on 80.82.79.11:3306/tcp matches mysql-secured
8078. Protocol on 80.82.79.11:995/tcp matches ssl
8079. Protocol on 80.82.79.11:53/tcp matches dns
8080.  
8081. Unidentified ports: none.
8082.  
8083. amap v5.4 finished at 2017-09-09 23:10:52
8084.  
8085. ###########################################################################################
8086.  
8087.  
8088. inetnum: 80.82.79.0 - 80.82.79.255
8089. netname: SC-QUASI80
8090. descr: QUASI
8091. country: SC
8092. org: ORG-QNL3-RIPE
8093. admin-c: QNL1-RIPE
8094. tech-c: QNL1-RIPE
8095. status: ASSIGNED PA
8096. mnt-by: QUASINETWORKS-MNT
8097. mnt-lower: QUASINETWORKS-MNT
8098. mnt-routes: QUASINETWORKS-MNT
8099. created: 2010-08-25T21:29:49Z
8100. last-modified: 2016-01-23T23:04:27Z
8101. source: RIPE
8102.  
8103. organisation: ORG-QNL3-RIPE
8104. org-name: Quasi Networks LTD.
8105. org-type: OTHER
8106. address: Suite 1, Second Floor
8107. address: Sound & Vision House, Francis Rachel Street
8108. address: Victoria, Mahe, SEYCHELLES
8109. remarks: *****************************************************************************
8110. remarks: IMPORTANT INFORMATION
8111. remarks: *****************************************************************************
8112. remarks: We are a high bandwidth network provider offering bandwidth solutions.
8113. remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
8114. remarks: Please only use abuse@quasinetworks.com for abuse reports.
8115. remarks: For all other requests, please see the details on our website.
8116. remarks: *****************************************************************************
8117. abuse-mailbox: abuse@quasinetworks.com
8118. abuse-c: AR34302-RIPE
8119. mnt-ref: QUASINETWORKS-MNT
8120. mnt-by: QUASINETWORKS-MNT
8121. created: 2015-11-08T22:25:26Z
8122. last-modified: 2015-11-27T09:37:50Z
8123. source: RIPE # Filtered
8124.  
8125. role: Quasi Networks LTD
8126. address: Suite 1, Second Floor
8127. address: Sound & Vision House, Francis Rachel Street
8128. address: Victoria, Mahe, SEYCHELLES
8129. remarks: *****************************************************************************
8130. remarks: IMPORTANT INFORMATION
8131. remarks: *****************************************************************************
8132. remarks: We are a high bandwidth network provider offering bandwidth solutions.
8133. remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
8134. remarks: Please only use abuse@quasinetworks.com for abuse reports.
8135. remarks: For all other requests, please see the details on our website.
8136. remarks: *****************************************************************************
8137. abuse-mailbox: abuse@quasinetworks.com
8138. nic-hdl: QNL1-RIPE
8139. mnt-by: QUASINETWORKS-MNT
8140. created: 2015-11-07T22:43:04Z
8141. last-modified: 2015-11-07T23:04:49Z
8142. source: RIPE # Filtered
8143.  
8144. % Information related to '80.82.79.0/24AS29073'
8145.  
8146. route: 80.82.79.0/24
8147. descr: Quasi Networks LTD (IBC)
8148. origin: AS29073
8149. mnt-by: QUASINETWORKS-MNT
8150. created: 2010-08-25T21:31:02Z
8151. last-modified: 2016-01-23T23:04:45Z
8152. source: RIPE
8153.  
8154. % This query was served by the RIPE Database Query Service version 1.89.2 (HEREFORD)
8155.  
8156. ###########################################################################################
8157. [i] Scanning Site: http://youngs-list.com
8158.  
8159.  
8160.  
8161. B A S I C I N F O
8162. ====================
8163.  
8164.  
8165. [+] Site Title:
8166. [+] IP address: 80.82.79.11
8167. [+] Web Server: nginx/1.12.1
8168. [+] CMS: Could Not Detect
8169. [+] Cloudflare: Not Detected
8170. [+] Robots File: Could NOT Find robots.txt!
8171.  
8172.  
8173.  
8174.  
8175. W H O I S L O O K U P
8176. ========================
8177.  
8178. Domain Name: YOUNGS-LIST.COM
8179. Registry Domain ID: 1465281303_DOMAIN_COM-VRSN
8180. Registrar WHOIS Server: whois.nic.ru
8181. Registrar URL: http://nic.ru
8182. Updated Date: 2017-04-27T12:19:35Z
8183. Creation Date: 2008-05-05T09:26:42Z
8184. Registry Expiry Date: 2018-05-05T09:26:42Z
8185. Registrar: Regional Network Information Center, JSC dba RU-CENTER
8186. Registrar IANA ID: 463
8187. Registrar Abuse Contact Email: tld-abuse@nic.ru
8188. Registrar Abuse Contact Phone: +7 (495) 994-46-01
8189. Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
8190. Name Server: NS1.YOUNGS-LIST.COM
8191. Name Server: NS2.YOUNGS-LIST.COM
8192.  
8193.  
8194.  
8195.  
8196.  
8197. G E O I P L O O K U P
8198. =========================
8199.  
8200. [i] IP Address: 80.82.79.11
8201. [i] Country: SC
8202. [i] State: N/A
8203. [i] City: N/A
8204. [i] Latitude: -4.583300
8205. [i] Longitude: 55.666698
8206.  
8207.  
8208.  
8209.  
8210. H T T P H E A D E R S
8211. =======================
8212.  
8213.  
8214. [i] HTTP/1.1 301 Moved Permanently
8215. [i] Server: nginx/1.12.1
8216. [i] Date: Sun, 10 Sep 2017 01:07:23 GMT
8217. [i] Content-Type: text/html; charset=iso-8859-1
8218. [i] Content-Length: 324
8219. [i] Connection: close
8220. [i] Location: http://www.youngs-list.com/new.html
8221. [i] HTTP/1.1 404 Not Found
8222. [i] Server: nginx/1.12.1
8223. [i] Date: Sun, 10 Sep 2017 01:07:23 GMT
8224. [i] Content-Type: text/html; charset=iso-8859-1
8225. [i] Content-Length: 291
8226. [i] Connection: close
8227.  
8228.  
8229.  
8230.  
8231. D N S L O O K U P
8232. ===================
8233.  
8234. youngs-list.com. 3597 IN A 80.82.79.11
8235. youngs-list.com. 3600 IN NS ns2.dxgirlz.com.
8236. youngs-list.com. 3600 IN NS ns1.dxgirlz.com.
8237. youngs-list.com. 3600 IN SOA b06s06.com. root.dxgirlz.com. 2015061501 10800 3600 604800 86400
8238. youngs-list.com. 3600 IN TXT "v=spf1 ip4:93.174.93.111 a mx ~all"
8239.  
8240.  
8241.  
8242.  
8243. S U B N E T C A L C U L A T I O N
8244. ====================================
8245.  
8246. Address = 80.82.79.11
8247. Network = 80.82.79.11 / 32
8248. Netmask = 255.255.255.255
8249. Broadcast = not needed on Point-to-Point links
8250. Wildcard Mask = 0.0.0.0
8251. Hosts Bits = 0
8252. Max. Hosts = 1 (2^0 - 0)
8253. Host Range = { 80.82.79.11 - 80.82.79.11 }
8254.  
8255.  
8256.  
8257. N M A P P O R T S C A N
8258. ============================
8259.  
8260.  
8261. Starting Nmap 7.01 ( https://nmap.org ) at 2017-09-10 03:08 UTC
8262. Nmap scan report for youngs-list.com (80.82.79.11)
8263. Host is up (0.082s latency).
8264. rDNS record for 80.82.79.11: no-reverse-dns-configured.com
8265. PORT STATE SERVICE VERSION
8266. 21/tcp filtered ftp
8267. 22/tcp filtered ssh
8268. 23/tcp closed telnet
8269. 25/tcp open smtp Postfix smtpd
8270. 80/tcp open http nginx 1.12.1
8271. 110/tcp open pop3 Dovecot pop3d
8272. 143/tcp open imap Dovecot imapd
8273. 443/tcp closed https
8274. 445/tcp closed microsoft-ds
8275. 3389/tcp closed ms-wbt-server
8276.  
8277.  
8278. S U B - D O M A I N F I N D E R
8279. ==================================
8280.  
8281.  
8282. [i] Total Subdomains Found : 1
8283.  
8284. [+] Subdomain: youngs-list.com
8285. [-] IP: 80.82.79.11
8286. [*] Performing TLD Brute force Enumeration against youngs-list.com
8287. [*] The operation could take up to: 00:01:07
8288. [*] A youngs-list.biz.af 5.45.75.45
8289. [*] A youngs-list.co.asia 91.195.240.135
8290. [*] CNAME youngs-list.biz.at free.biz.at
8291. [*] A free.biz.at 216.92.134.29
8292. [*] A youngs-list.org.aw 142.4.20.12
8293. [*] A youngs-list.co.ba 176.9.45.78
8294. [*] A youngs-list.com.ba 195.222.33.180
8295. [*] A youngs-list.com.be 95.173.170.166
8296. [*] A youngs-list.biz.by 71.18.52.2
8297. [*] A youngs-list.biz.bz 199.59.242.150
8298. [*] A youngs-list.com.cc 54.252.107.64
8299. [*] A youngs-list.net.cc 54.252.89.206
8300. [*] A youngs-list.co.cc 175.126.123.219
8301. [*] A youngs-list.org.ch 72.52.4.122
8302. [*] A youngs-list.co.cm 85.25.140.105
8303. [*] A youngs-list.net.cm 85.25.140.105
8304. [*] A youngs-list.biz.cl 185.53.178.8
8305. [*] A youngs-list.com.com 52.33.196.199
8306. [*] A youngs-list.net.com 199.59.242.150
8307. [*] CNAME youngs-list.biz.cm i.cns.cm
8308. [*] A i.cns.cm 118.184.56.30
8309. [*] A youngs-list.org.com 23.23.86.44
8310. [*] A youngs-list.com 80.82.79.11
8311. [*] A youngs-list.co.com 173.192.115.17
8312. [*] A youngs-list.biz.cr 72.52.4.122
8313. [*] A youngs-list.biz.cx 72.52.4.122
8314. [*] A youngs-list.com.cz 62.109.128.30
8315. [*] A youngs-list.net.cz 80.250.24.177
8316. [*] A youngs-list.biz.cz 54.72.9.51
8317. [*] CNAME youngs-list.co.de co.de
8318. [*] A co.de 144.76.162.245
8319. [*] CNAME youngs-list.org.de www.org.de
8320. [*] A www.org.de 78.47.128.8
8321. [*] A youngs-list.com.de 50.56.68.37
8322. [*] A youngs-list.net.eu 78.46.90.98
8323. [*] A youngs-list.org.eu 78.46.90.98
8324. [*] A youngs-list.biz.fi 185.55.85.123
8325. [*] A youngs-list.fm 173.230.131.38
8326. [*] A youngs-list.biz.fm 173.230.131.38
8327. [*] A youngs-list.org.fr 149.202.133.35
8328. [*] A youngs-list.biz.gl 72.52.4.122
8329. [*] CNAME youngs-list.co.gp co.gp
8330. [*] A co.gp 144.76.162.245
8331. [*] A youngs-list.co.hn 208.100.40.203
8332. [*] CNAME youngs-list.net.hr net.hr
8333. [*] A net.hr 192.0.78.24
8334. [*] A net.hr 192.0.78.25
8335. [*] CNAME youngs-list.biz.hn parkmydomain.vhostgo.com
8336. [*] A parkmydomain.vhostgo.com 107.186.245.118
8337. [*] A youngs-list.co.ht 72.52.4.122
8338. [*] A youngs-list.co.jobs 50.17.193.222
8339. [*] A youngs-list.com.jobs 50.19.241.165
8340. [*] A youngs-list.net.jobs 50.19.241.165
8341. [*] A youngs-list.org.jobs 50.19.241.165
8342. [*] A youngs-list.biz.jobs 50.19.241.165
8343. [*] A youngs-list.biz.ky 199.184.144.27
8344. [*] CNAME youngs-list.biz.li 712936.parkingcrew.net
8345. [*] A 712936.parkingcrew.net 185.53.179.29
8346. [*] A youngs-list.biz.lu 195.26.5.2
8347. [*] A youngs-list.biz.ly 64.136.20.39
8348. [*] A youngs-list.biz.md 72.52.4.122
8349. [*] A youngs-list.co.mk 87.76.31.211
8350. [*] A youngs-list.co.mobi 54.225.105.179
8351. [*] A youngs-list.biz.my 202.190.174.44
8352. [*] A youngs-list.co.net 188.166.216.219
8353. [*] A youngs-list.net.net 52.50.81.210
8354. [*] A youngs-list.org.net 23.23.86.44
8355. [*] A youngs-list.co.nl 37.97.184.204
8356. [*] A youngs-list.com.nl 83.98.157.102
8357. [*] A youngs-list.net.nl 83.98.157.102
8358. [*] A youngs-list.co.nr 208.100.40.202
8359. [*] CNAME youngs-list.co.nu co.nu
8360. [*] A co.nu 144.76.162.245
8361. [*] CNAME youngs-list.com.nu com.nu
8362. [*] A com.nu 144.76.162.245
8363. [*] A youngs-list.net.nu 199.102.76.78
8364. [*] A youngs-list.org.nu 80.92.84.139
8365. [*] A youngs-list.com.org 23.23.86.44
8366. [*] CNAME youngs-list.net.org pewtrusts.org
8367. [*] A pewtrusts.org 204.74.99.100
8368. [*] A youngs-list.ph 45.79.222.138
8369. [*] A youngs-list.co.ph 45.79.222.138
8370. [*] A youngs-list.com.ph 45.79.222.138
8371. [*] A youngs-list.net.ph 45.79.222.138
8372. [*] A youngs-list.org.ph 45.79.222.138
8373. [*] A youngs-list.co.pl 212.91.6.55
8374. [*] A youngs-list.org.pm 208.73.210.202
8375. [*] A youngs-list.org.pm 208.73.210.217
8376. [*] A youngs-list.org.pm 208.73.211.165
8377. [*] A youngs-list.org.pm 208.73.211.177
8378. [*] A youngs-list.co.ps 66.96.132.56
8379. [*] CNAME youngs-list.biz.ps biz.ps
8380. [*] A biz.ps 144.76.162.245
8381. [*] A youngs-list.co.pt 194.107.127.52
8382. [*] A youngs-list.co.pw 141.8.226.59
8383. [*] A youngs-list.net.pw 141.8.226.59
8384. [*] A youngs-list.pw 141.8.226.58
8385. [*] A youngs-list.biz.pw 141.8.226.59
8386. [*] A youngs-list.org.pw 141.8.226.59
8387. [*] CNAME youngs-list.co.ro now.co.ro
8388. [*] A now.co.ro 185.27.255.9
8389. [*] A youngs-list.net.ro 69.64.52.127
8390. [*] A youngs-list.org.re 217.70.184.38
8391. [*] A youngs-list.com.ru 178.210.89.119
8392. [*] A youngs-list.biz.se 185.53.179.6
8393. [*] CNAME youngs-list.net.se 773147.parkingcrew.net
8394. [*] A 773147.parkingcrew.net 185.53.179.29
8395. [*] A youngs-list.co.sl 91.195.240.135
8396. [*] A youngs-list.com.sr 143.95.106.249
8397. [*] A youngs-list.biz.st 91.121.28.115
8398. [*] A youngs-list.co.su 72.52.4.122
8399. [*] A youngs-list.biz.tc 64.136.20.39
8400. [*] A youngs-list.biz.tf 85.236.153.18
8401. [*] A youngs-list.net.tf 188.40.70.29
8402. [*] A youngs-list.net.tf 188.40.70.27
8403. [*] A youngs-list.net.tf 188.40.117.12
8404. [*] A youngs-list.co.tl 208.100.40.202
8405. [*] A youngs-list.co.to 175.118.124.44
8406. [*] A youngs-list.co.tv 31.186.25.163
8407. [*] A youngs-list.biz.tv 72.52.4.122
8408. [*] A youngs-list.org.tv 72.52.4.122
8409. [*] CNAME youngs-list.biz.uz biz.uz
8410. [*] A biz.uz 144.76.162.245
8411. [*] A youngs-list.vg 88.198.29.97
8412. [*] A youngs-list.co.vg 88.198.29.97
8413. [*] A youngs-list.com.vg 88.198.29.97
8414. [*] A youngs-list.net.vg 68.178.254.180
8415. [*] A youngs-list.biz.vg 89.31.143.20
8416. [*] A youngs-list.ws 64.70.19.203
8417. [*] A youngs-list.com.ws 202.4.48.211
8418. [*] A youngs-list.net.ws 202.4.48.211
8419. [*] A youngs-list.biz.ws 184.168.221.104
8420. [*] A youngs-list.org.ws 202.4.48.211
8421.  
8422. R E V E R S E I P L O O K U P
8423. ==================================
8424.  
8425.  
8426. [i] Total Sites Found On This Server : 8
8427.  
8428.  
8429. [#] crazy-models.photo-angels.name
8430. [-] CMS: Could Not Detect
8431.  
8432. [#] nn-girls.biz
8433. [-] CMS: Could Not Detect
8434.  
8435. [#] sgirls.hotdolls.info
8436. [-] CMS: Could Not Detect
8437.  
8438. [#] teeny-video.photo-angels.name
8439. [-] CMS: Could Not Detect
8440.  
8441. [#] www.atlasphones.com
8442. [-] CMS: Could Not Detect
8443.  
8444. [#] www.charming-dolls.info
8445. [-] CMS: Could Not Detect
8446.  
8447. [#] www.youngs-list.com
8448. [-] CMS: Could Not Detect
8449.  
8450. [#] youngs-list.com,
8451. [-] CMS: Could Not Detect
8452. youngs-list.com
8453.  
8454.  
8455. Domain Name: YOUNGS-LIST.COM
8456. Registry Domain ID: 1465281303_DOMAIN_COM-VRSN
8457. Registrar WHOIS Server: whois.nic.ru
8458. Registrar URL: http://nic.ru
8459. Updated Date: 2017-04-27T12:19:35Z
8460. Creation Date: 2008-05-05T09:26:42Z
8461. Registry Expiry Date: 2018-05-05T09:26:42Z
8462. Registrar: Regional Network Information Center, JSC dba RU-CENTER
8463. Registrar IANA ID: 463
8464. Registrar Abuse Contact Email: tld-abuse@nic.ru
8465. Registrar Abuse Contact Phone: +7 (495) 994-46-01
8466. Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
8467. Name Server: NS1.YOUNGS-LIST.COM
8468. Name Server: NS2.YOUNGS-LIST.COM
8469. DNSSEC: unsigned
8470.  
8471. Domain Name: YOUNGS-LIST.COM
8472. Registry Domain ID: 1465281303_DOMAIN_COM-VRSN
8473. Registrar WHOIS Server: whois.nic.ru
8474. Registrar URL: http://www.nic.ru
8475. Updated Date: 2017-04-27T08:19:27Z
8476. Creation Date: 2008-05-05T09:26:42Z
8477. Registrar Registration Expiration Date: 2018-05-04T21:00:00Z
8478. Registrar: Regional Network Information Center, JSC dba RU-CENTER
8479. Registrar IANA ID: 463
8480. Registrar Abuse Contact Email: tld-abuse@nic.ru
8481. Registrar Abuse Contact Phone: +7.4959944601
8482. Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
8483. Registry Registrant ID:
8484. Registrant Name: Maksim A Boyko
8485. Registrant Organization: Maksim A Boyko
8486. Registrant Street: Pavlovskaya 98
8487. Registrant City: Odessa
8488. Registrant Postal Code: 184681
8489. Registrant Country: UA
8490. Registrant Phone: +380.2890115
8491. Registrant Phone Ext:
8492. Registrant Email: pandabox@bk.ru
8493. Registry Admin ID:
8494. Admin Name: Maksim A Boyko
8495. Admin Organization: Maksim A Boyko
8496. Admin Street: Pavlovskaya 98
8497. Admin City: Odessa
8498. Admin Postal Code: 184681
8499. Admin Country: UA
8500. Admin Phone: +380.2890115
8501. Admin Phone Ext:
8502. Admin Email: pandabox@bk.ru
8503. Registry Tech ID:
8504. Tech Name: Maksim A Boyko
8505. Tech Organization: Maksim A Boyko
8506. Tech Street: Pavlovskaya 98
8507. Tech City: Odessa
8508. Tech Postal Code: 184681
8509. Tech Country: UA
8510. Tech Phone: +380.2890115
8511. Tech Phone Ext:
8512. Tech Email: pandabox@bk.ru
8513. Name Server: ns1.youngs-list.com 93.174.93.111
8514. Name Server: ns2.youngs-list.com 192.133.136.162
8515.  
8516. ;youngs-list.com. IN ANY
8517.  
8518. ;; ANSWER SECTION:
8519. youngs-list.com. 3067 IN A 80.82.79.11
8520. youngs-list.com. 3066 IN NS ns2.dxgirlz.com.
8521. youngs-list.com. 3066 IN NS ns1.dxgirlz.com.
8522.  
8523. ----- youngs-list.com -----
8524.  
8525.  
8526. Host's addresses:
8527. __________________
8528.  
8529. youngs-list.com. 3044 IN A 80.82.79.11
8530.  
8531.  
8532. Name Servers:
8533. ______________
8534.  
8535. ns1.dxgirlz.com. 2856 IN A 93.174.93.111
8536. ns2.dxgirlz.com. 2856 IN A 192.133.136.162
8537.  
8538.  
8539. Mail (MX) Servers:
8540. ___________________
8541.  
8542.  
8543.  
8544. Trying Zone Transfers and getting Bind Versions:
8545. _________________________________________________
8546.  
8547.  
8548. Trying Zone Transfer for youngs-list.com on ns1.dxgirlz.com ...
8549. youngs-list.com. 3600 IN SOA (
8550. youngs-list.com. 3600 IN NS ns1.dxgirlz.com.
8551. youngs-list.com. 3600 IN NS ns2.dxgirlz.com.
8552. youngs-list.com. 3600 IN A 80.82.79.11
8553. youngs-list.com. 3600 IN TXT "v=spf1
8554. www.youngs-list.com. 3600 IN A 80.82.79.11
8555.  
8556. Trying Zone Transfer for youngs-list.com on ns2.dxgirlz.com ...
8557. youngs-list.com. 3600 IN SOA (
8558. youngs-list.com. 3600 IN NS ns1.dxgirlz.com.
8559. youngs-list.com. 3600 IN NS ns2.dxgirlz.com.
8560. youngs-list.com. 3600 IN A 80.82.79.11
8561. youngs-list.com. 3600 IN TXT "v=spf1
8562. www.youngs-list.com. 3600 IN A 80.82.79.11
8563.  
8564.  
8565. youngs-list.com class C netranges:
8566. ___________________________________
8567.  
8568. 80.82.79.0/24
8569.  
8570.  
8571. Performing reverse lookup on 256 ip addresses:
8572. _______________________________________________
8573.  
8574.  
8575. 0 results out of 256 IP addresses.
8576.  
8577.  
8578. youngs-list.com ip blocks:
8579. ___________________________
8580.  
8581.  
8582. done.
8583.  
8584.  
8585. dnsmap 0.30 - DNS Network Mapper by pagvac (gnucitizen.org)
8586.  
8587. [+] searching (sub)domains for youngs-list.com using built-in wordlist
8588. [+] using maximum random delay of 10 millisecond(s) between requests
8589.  
8590. www.youngs-list.com
8591. IP address #1: 80.82.79.11
8592.  
8593. [+] 1 (sub)domains and 1 IP address(es) found
8594. [+] completion time: 142 second(s)
8595.  
8596.  
8597. WhatWeb report for http://youngs-list.com
8598. Status : 301 Moved Permanently
8599. Title : 301 Moved Permanently
8600. IP : 80.82.79.11
8601. Country : NETHERLANDS, NL
8602.  
8603. Summary : HTTPServer[nginx/1.12.1], RedirectLocation[http://www.youngs-list.com/new.html], nginx[1.12.1]
8604.  
8605. Detected Plugins:
8606. [ HTTPServer ]
8607. HTTP server header string. This plugin also attempts to
8608. identify the operating system from the server header.
8609.  
8610. String : nginx/1.12.1 (from server string)
8611.  
8612. [ RedirectLocation ]
8613. HTTP Server string location. used with http-status 301 and
8614. 302
8615.  
8616. String : http://www.youngs-list.com/new.html (from location)
8617.  
8618. [ nginx ]
8619. Nginx (Engine-X) is a free, open-source, high-performance
8620. HTTP server and reverse proxy, as well as an IMAP/POP3
8621. proxy server.
8622.  
8623. Version : 1.12.1
8624. Website : http://nginx.net/
8625.  
8626. HTTP Headers:
8627. HTTP/1.1 301 Moved Permanently
8628. Server: nginx/1.12.1
8629. Date: Sun, 10 Sep 2017 01:11:20 GMT
8630. Content-Type: text/html; charset=iso-8859-1
8631. Content-Length: 324
8632. Connection: close
8633. Location: http://www.youngs-list.com/new.html
8634.  
8635. WhatWeb report for http://www.youngs-list.com/new.html
8636. Status : 404 Not Found
8637. Title : 404 Not Found
8638. IP : 80.82.79.11
8639. Country : NETHERLANDS, NL
8640.  
8641. Summary : HTTPServer[nginx/1.12.1], nginx[1.12.1]
8642.  
8643. Detected Plugins:
8644. [ HTTPServer ]
8645. HTTP server header string. This plugin also attempts to
8646. identify the operating system from the server header.
8647.  
8648. String : nginx/1.12.1 (from server string)
8649.  
8650. [ nginx ]
8651. Nginx (Engine-X) is a free, open-source, high-performance
8652. HTTP server and reverse proxy, as well as an IMAP/POP3
8653. proxy server.
8654.  
8655. Version : 1.12.1
8656. Website : http://nginx.net/
8657.  
8658. HTTP Headers:
8659. HTTP/1.1 404 Not Found
8660. Server: nginx/1.12.1
8661. Date: Sun, 10 Sep 2017 01:11:20 GMT
8662. Content-Type: text/html; charset=iso-8859-1
8663. Content-Length: 291
8664. Connection: close
8665.  
8666.  
8667. [+] Hosts found in search engines:
8668. ------------------------------------
8669. [-] Resolving hostnames IPs...
8670. 80.82.79.11:www.youngs-list.com
8671.  
8672.  
8673.  
8674. ^ ^
8675. _ __ _ ____ _ __ _ _ ____
8676. ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
8677. | V V // o // _/ | V V // 0 // 0 // _/
8678. |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
8679. <
8680. ...'
8681.  
8682. WAFW00F - Web Application Firewall Detection Tool
8683.  
8684. By Sandro Gauci && Wendel G. Henrique
8685.  
8686. Checking http://youngs-list.com
8687. Generic Detection results:
8688. No WAF detected by the generic detection
8689. Number of requests: 13
8690.  
8691.  
8692. DNS Servers for youngs-list.com:
8693. ns2.dxgirlz.com
8694. ns1.dxgirlz.com
8695.  
8696. Trying zone transfer first...
8697. Testing ns2.dxgirlz.com
8698.  
8699. Whoah, it worked - misconfigured DNS server found:
8700. youngs-list.com. 3600 IN SOA ( b06s06.com. root.dxgirlz.com.
8701. 2015061501 ;serial
8702. 10800 ;refresh
8703. 3600 ;retry
8704. 604800 ;expire
8705. 86400 ;minimum
8706. )
8707. youngs-list.com. 3600 IN NS ns1.dxgirlz.com.
8708. youngs-list.com. 3600 IN NS ns2.dxgirlz.com.
8709. youngs-list.com. 3600 IN A 80.82.79.11
8710. youngs-list.com. 3600 IN TXT "v=spf1 ip4:93.174.93.111 a mx ~all"
8711. www.youngs-list.com. 3600 IN A 80.82.79.11
8712.  
8713. There isn't much point continuing, you have everything.
8714. Have a nice day.
8715. Exiting...
8716.  
8717.  
8718.  
8719. lbd - load balancing detector 0.2 - Checks if a given domain uses load-balancing.
8720. Written by Stefan Behte (http://ge.mine.nu)
8721. Proof-of-concept! Might give false positives.
8722.  
8723. Checking for DNS-Loadbalancing: NOT FOUND
8724. Checking for HTTP-Loadbalancing [Server]:
8725. nginx/1.12.1
8726. NOT FOUND
8727.  
8728. Checking for HTTP-Loadbalancing [Date]: 01:11:50, 01:11:50, 01:11:51, 01:11:51, 01:11:51, 01:11:51, 01:11:52, 01:11:52, 01:11:52, 01:11:52, 01:11:53, 01:11:53, 01:11:53, 01:11:54, 01:11:54, 01:11:54, 01:11:54, 01:11:55, 01:11:55, 01:11:55, 01:11:55, 01:11:56, 01:11:56, 01:11:56, 01:11:56, 01:11:57, 01:11:57, 01:11:57, 01:11:58, 01:11:58, 01:11:58, 01:11:58, 01:11:59, 01:11:59, 01:11:59, 01:11:59, 01:12:00, 01:12:00, 01:12:00, 01:12:00, 01:12:01, 01:12:01, 01:12:01, 01:12:02, 01:12:02, 01:12:02, 01:12:02, 01:12:03, 01:12:03, 01:12:03, NOT FOUND
8729.  
8730. Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
8731.  
8732. youngs-list.com does NOT use Load-balancing.
8733.  
8734.  
8735.  
8736. Starting smtp-user-enum v1.2 ( http://pentestmonkey.net/tools/smtp-user-enum )
8737.  
8738. ----------------------------------------------------------
8739. | Scan Information |
8740. ----------------------------------------------------------
8741.  
8742. Mode ..................... VRFY
8743. Worker Processes ......... 5
8744. Usernames file ........... users.txt
8745. Target count ............. 1
8746. Username count ........... 494
8747. Target TCP port .......... 25
8748. Query timeout ............ 5 secs
8749. Target domain ............
8750.  
8751. ######## Scan started at Sat Sep 9 23:13:26 2017 #########
8752. ######## Scan completed at Sat Sep 9 23:21:41 2017 #########
8753. 0 results.
8754.  
8755. 494 queries in 495 seconds (1.0 queries / sec)
8756.  
8757.  
8758.  
8759. Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 23:21 EDT
8760. NSE: Loaded 146 scripts for scanning.
8761. NSE: Script Pre-scanning.
8762. Initiating NSE at 23:21
8763. Completed NSE at 23:21, 0.00s elapsed
8764. Initiating NSE at 23:21
8765. Completed NSE at 23:21, 0.00s elapsed
8766. Failed to resolve "youngs-list.com.txt".
8767. Initiating Parallel DNS resolution of 1 host. at 23:21
8768. Completed Parallel DNS resolution of 1 host. at 23:21, 0.69s elapsed
8769. Initiating SYN Stealth Scan at 23:21
8770. Scanning youngs-list.com (80.82.79.11) [100 ports]
8771. Discovered open port 143/tcp on 80.82.79.11
8772. Discovered open port 3306/tcp on 80.82.79.11
8773. Discovered open port 80/tcp on 80.82.79.11
8774. Discovered open port 110/tcp on 80.82.79.11
8775. Discovered open port 995/tcp on 80.82.79.11
8776. Discovered open port 993/tcp on 80.82.79.11
8777. Discovered open port 53/tcp on 80.82.79.11
8778. Completed SYN Stealth Scan at 23:21, 3.29s elapsed (100 total ports)
8779. Initiating Service scan at 23:21
8780. Scanning 7 services on youngs-list.com (80.82.79.11)
8781. Completed Service scan at 23:21, 6.95s elapsed (7 services on 1 host)
8782. Initiating OS detection (try #1) against youngs-list.com (80.82.79.11)
8783. Initiating Traceroute at 23:21
8784. Completed Traceroute at 23:21, 3.00s elapsed
8785. Initiating Parallel DNS resolution of 8 hosts. at 23:21
8786. Completed Parallel DNS resolution of 8 hosts. at 23:22, 5.61s elapsed
8787. NSE: Script scanning 80.82.79.11.
8788. Initiating NSE at 23:22
8789. Completed NSE at 23:22, 13.54s elapsed
8790. Initiating NSE at 23:22
8791. Completed NSE at 23:22, 0.01s elapsed
8792. Nmap scan report for youngs-list.com (80.82.79.11)
8793. Host is up (0.14s latency).
8794. rDNS record for 80.82.79.11: no-reverse-dns-configured.com
8795. Not shown: 84 closed ports
8796. PORT STATE SERVICE VERSION
8797. 21/tcp filtered ftp
8798. 22/tcp filtered ssh
8799. 25/tcp filtered smtp
8800. 53/tcp open domain ISC BIND 9.8.2rc1
8801. | dns-nsid:
8802. |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4
8803. 80/tcp open http nginx 1.12.1
8804. | http-methods:
8805. |_ Supported Methods: GET HEAD POST OPTIONS
8806. |_http-server-header: nginx/1.12.1
8807. |_http-title: Did not follow redirect to http://www.youngs-list.com/new.html
8808. 81/tcp filtered hosts2-ns
8809. 110/tcp open pop3 Dovecot pop3d
8810. |_pop3-capabilities: SASL(PLAIN LOGIN DIGEST-MD5 CRAM-MD5) PIPELINING USER UIDL STLS TOP RESP-CODES CAPA
8811. | ssl-cert: Subject: commonName=imap.example.com
8812. | Issuer: commonName=imap.example.com
8813. | Public Key type: rsa
8814. | Public Key bits: 1024
8815. | Signature Algorithm: sha1WithRSAEncryption
8816. | Not valid before: 2015-06-12T12:04:14
8817. | Not valid after: 2016-06-11T12:04:14
8818. | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
8819. |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
8820. |_ssl-date: 2017-09-10T01:21:00+00:00; -2h01m10s from scanner time.
8821. 135/tcp filtered msrpc
8822. 139/tcp filtered netbios-ssn
8823. 143/tcp open imap Dovecot imapd
8824. |_imap-capabilities: LITERAL+ LOGIN-REFERRALS STARTTLS IDLE AUTH=LOGIN completed ID OK AUTH=PLAIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5A0001 Capability ENABLE IMAP4rev1 SASL-IR
8825. | ssl-cert: Subject: commonName=imap.example.com
8826. | Issuer: commonName=imap.example.com
8827. | Public Key type: rsa
8828. | Public Key bits: 1024
8829. | Signature Algorithm: sha1WithRSAEncryption
8830. | Not valid before: 2015-06-12T12:04:14
8831. | Not valid after: 2016-06-11T12:04:14
8832. | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
8833. |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
8834. |_ssl-date: 2017-09-10T01:20:59+00:00; -2h01m10s from scanner time.
8835. 445/tcp filtered microsoft-ds
8836. 465/tcp filtered smtps
8837. 587/tcp filtered submission
8838. 993/tcp open ssl/imap Dovecot imapd
8839. | ssl-cert: Subject: commonName=imap.example.com
8840. | Issuer: commonName=imap.example.com
8841. | Public Key type: rsa
8842. | Public Key bits: 1024
8843. | Signature Algorithm: sha1WithRSAEncryption
8844. | Not valid before: 2015-06-12T12:04:14
8845. | Not valid after: 2016-06-11T12:04:14
8846. | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
8847. |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
8848. |_ssl-date: 2017-09-10T01:20:56+00:00; -2h01m10s from scanner time.
8849. 995/tcp open ssl/pop3 Dovecot pop3d
8850. | ssl-cert: Subject: commonName=imap.example.com
8851. | Issuer: commonName=imap.example.com
8852. | Public Key type: rsa
8853. | Public Key bits: 1024
8854. | Signature Algorithm: sha1WithRSAEncryption
8855. | Not valid before: 2015-06-12T12:04:14
8856. | Not valid after: 2016-06-11T12:04:14
8857. | MD5: be0a 7a18 cb4b 2bc6 02ad 060e c3ad 0a1c
8858. |_SHA-1: 5f78 efb9 5a11 b211 2176 1d7f fa7f cb51 0d75 4c98
8859. |_ssl-date: 2017-09-10T01:20:55+00:00; -2h01m11s from scanner time.
8860. 3306/tcp open mysql MySQL (unauthorized)
8861. Device type: general purpose
8862. Running: Linux 2.6.X
8863. OS CPE: cpe:/o:linux:linux_kernel:2.6.39
8864. OS details: Linux 2.6.39
8865. Uptime guess: 11.848 days (since Tue Aug 29 03:01:01 2017)
8866. Network Distance: 11 hops
8867. TCP Sequence Prediction: Difficulty=258 (Good luck!)
8868. IP ID Sequence Generation: All zeros
8869. Service Info: OS: Red Hat Enterprise Linux 6; CPE: cpe:/o:redhat:enterprise_linux:6
8870.  
8871. Host script results:
8872. |_clock-skew: mean: -2h01m10s, deviation: 0s, median: -2h01m10s
8873.  
8874. TRACEROUTE (using port 3389/tcp)
8875. HOP RTT ADDRESS
8876. 1 109.57 ms 10.13.0.1
8877. 2 110.02 ms 37.187.24.252
8878. 3 112.75 ms po101.gra-g2-a75.fr.eu (178.33.103.231)
8879. 4 ...
8880. 5 121.76 ms be100-1113.fra-5-a9.de.eu (91.121.131.19)
8881. 6 121.49 ms be100-2.fra-1-a9.de.eu (94.23.122.217)
8882. 7 ...
8883. 8 132.26 ms vlan3555.bb1.ams2.nl.m247.com (176.10.83.128)
8884. 9 122.78 ms 176.10.83.119
8885. 10 ...
8886. 11 122.85 ms no-reverse-dns-configured.com (80.82.79.11)
8887.  
8888. --------------------------------------------------
8889.  
8890.  
8891.  
8892.  
8893. _/ _/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/
8894. _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
8895. _/ _/ _/_/_/_/ _/_/_/ _/ _/_/_/ _/_/_/_/ _/ _/_/_/ _/_/_/_
8896. _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
8897. _/_/_/_/ _/ _/ _/ _/_/_/_/ _/_/_/_/ _/ _/_/_/_/ _/ _/ [v1.06]
8898.  
8899. _/ User-Agent Tester ↵
8900. _/ AKA: Purple Pimp ↵
8901. _/ ChrisJohnRiley ↵
8902. _/ blog.c22.cc ↵
8903.  
8904. [>] Performing initial request and confirming stability
8905. [>] Using User-Agent string Mozilla/5.0
8906.  
8907. [*] HTTPError: HTTP Error 404: Not Found
8908. ##########################################################################################
8909. Hostname preteen-art.info ISP Quasi Networks LTD. (AS29073)
8910. Continent Africa Flag
8911. SC
8912. Country Seychelles Country Code SC (SYC)
8913. Region Unknown Local time 10 Sep 2017 07:09 +04
8914. City Unknown Latitude -4.583
8915. IP Address 80.82.79.116 Longitude 55.667
8916. ###########################################################################################
8917. preteen-art.info
8918.  
8919. ###########################################################################################
8920.  
8921. whois preteen-art.info
8922. Domain Name: PRETEEN-ART.INFO
8923. Registry Domain ID: D503300000038978206-LRMS
8924. Registrar WHOIS Server:
8925. Registrar URL: http://www.ukraine.com.ua
8926. Updated Date: 2017-06-25T20:31:58Z
8927. Creation Date: 2017-04-26T17:20:10Z
8928. Registry Expiry Date: 2018-04-26T17:20:10Z
8929. Registrar Registration Expiration Date:
8930. Registrar: Hosting Ukraine LLC
8931. Registrar IANA ID: 2374
8932. Registrar Abuse Contact Email:
8933. Registrar Abuse Contact Phone:
8934. Reseller:
8935. Domain Status: ok https://icann.org/epp#ok
8936. Registry Registrant ID: C201778539-LRMS
8937. Registrant Name: Privacy Protection
8938. Registrant Organization:
8939. Registrant Street: PO Box 65
8940. Registrant City: Kiev
8941. Registrant State/Province:
8942. Registrant Postal Code: 04112
8943. Registrant Country: UA
8944. Registrant Phone: +380.443927433
8945. Registrant Phone Ext:
8946. Registrant Fax:
8947. Registrant Fax Ext:
8948. Registrant Email: abuse@ukraine.com.ua
8949. Registry Admin ID: C201778539-LRMS
8950. Admin Name: Privacy Protection
8951. Admin Organization:
8952. Admin Street: PO Box 65
8953. Admin City: Kiev
8954. Admin State/Province:
8955. Admin Postal Code: 04112
8956. Admin Country: UA
8957. Admin Phone: +380.443927433
8958. Admin Phone Ext:
8959. Admin Fax:
8960. Admin Fax Ext:
8961. Admin Email: abuse@ukraine.com.ua
8962. Registry Tech ID: C201778539-LRMS
8963. Tech Name: Privacy Protection
8964. Tech Organization:
8965. Tech Street: PO Box 65
8966. Tech City: Kiev
8967. Tech State/Province:
8968. Tech Postal Code: 04112
8969. Tech Country: UA
8970. Tech Phone: +380.443927433
8971. Tech Phone Ext:
8972. Tech Fax:
8973. Tech Fax Ext:
8974. Tech Email: abuse@ukraine.com.ua
8975. Registry Billing ID: C201778539-LRMS
8976. Billing Name: Privacy Protection
8977. Billing Organization:
8978. Billing Street: PO Box 65
8979. Billing City: Kiev
8980. Billing State/Province:
8981. Billing Postal Code: 04112
8982. Billing Country: UA
8983. Billing Phone: +380.443927433
8984. Billing Phone Ext:
8985. Billing Fax:
8986. Billing Fax Ext:
8987. Billing Email: abuse@ukraine.com.ua
8988. Name Server: PNS21.CLOUDNS.NET
8989. Name Server: PNS22.CLOUDNS.NET
8990. Name Server: PNS24.CLOUDNS.NET
8991. Name Server: PNS23.CLOUDNS.NET
8992.  
8993. ;preteen-art.info. IN ANY
8994.  
8995. ;; ANSWER SECTION:
8996. preteen-art.info. 54 IN A 80.82.79.116
8997. preteen-art.info. 1480 IN NS pns21.cloudns.net.
8998. preteen-art.info. 1480 IN NS pns24.cloudns.net.
8999. preteen-art.info. 1480 IN NS ns23.cloudns.net.
9000. preteen-art.info. 1480 IN NS ns24.cloudns.net.
9001. preteen-art.info. 1480 IN NS ns22.cloudns.net.
9002. preteen-art.info. 1480 IN NS ns21.cloudns.net.
9003. preteen-art.info. 1480 IN NS pns23.cloudns.net.
9004. preteen-art.info. 1480 IN NS pns22.cloudns.net.
9005.  
9006. ###########################################################################################
9007.  
9008. Checking for HTTP-Loadbalancing [Date]: 03:33:33, 03:33:33, 03:33:34, 03:33:34, 03:33:35, 03:33:36, 03:33:36, 03:33:36, 03:33:37, 03:33:38, 03:33:38, 03:33:38, 03:33:38, 03:33:39, 03:33:39, 03:33:39, 03:33:40, 03:33:40, 03:33:40, 03:33:40, 03:33:41, 03:33:41, 03:33:41, 03:33:41, 03:33:42, 03:33:42, 03:33:43, 03:33:43, 03:33:44, 03:33:44, 03:33:45, 03:33:45, 03:33:45, 03:33:45, 03:33:46, 03:33:46, 03:33:46, 03:33:47, 03:33:47, 03:33:47, 03:33:47, 03:33:48, 03:33:48, 03:33:48, 03:33:48, 03:33:49, 03:33:49, 03:33:51, 03:33:54, 03:33:54,
9009. ###########################################################################################
9010.  
9011. nmap -PN -n -F -T4 -sV -A -oG temp.txt preteen-art.info
9012.  
9013. Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 23:30 EDT
9014. Nmap scan report for preteen-art.info (80.82.79.116)
9015. Host is up (0.13s latency).
9016. Not shown: 89 closed ports
9017. PORT STATE SERVICE VERSION
9018. 21/tcp open ftp vsftpd 3.0.2
9019. 22/tcp open ssh OpenSSH 6.0p1 Debian 4+deb7u6 (protocol 2.0)
9020. | ssh-hostkey:
9021. | 1024 ab:16:56:89:21:7e:75:1c:77:f3:a2:7e:c2:f1:4c:09 (DSA)
9022. | 2048 22:f8:e3:f6:1a:1c:6a:99:09:6b:1e:7c:fd:30:e3:95 (RSA)
9023. |_ 256 a8:03:f4:96:36:d1:39:de:2e:4f:56:e9:0f:f3:63:56 (ECDSA)
9024. 25/tcp filtered smtp
9025. 53/tcp open domain
9026. | dns-nsid:
9027. |_ bind.version: 9.8.4-rpz2+rl005.12-P1
9028. 80/tcp open http nginx
9029. |_http-server-header: nginx
9030. |_http-title: for virgin teen, girls small teen
9031. 111/tcp open rpcbind 2-4 (RPC #100000)
9032. 135/tcp filtered msrpc
9033. 139/tcp filtered netbios-ssn
9034. 445/tcp filtered microsoft-ds
9035. 465/tcp filtered smtps
9036. 587/tcp filtered submission
9037. Aggressive OS guesses: Linux 2.6.39 (95%), Linux 3.2 - 3.8 (94%), Linux 3.8 (94%), WatchGuard Fireware 11.8 (94%), Linux 3.1 - 3.2 (94%), Linux 3.5 (93%), Linux 2.6.32 - 2.6.39 (92%), Linux 3.0 - 3.2 (91%), Linux 2.6.32 - 3.0 (91%), Linux 2.6.32 (91%)
9038. No exact OS matches for host (test conditions non-ideal).
9039. Network Distance: 10 hops
9040. Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
9041.  
9042. TRACEROUTE (using port 3389/tcp)
9043. HOP RTT ADDRESS
9044. 1 156.95 ms 10.13.0.1
9045. 2 ...
9046. 3 156.99 ms 178.33.103.229
9047. 4 ...
9048. 5 157.02 ms 213.186.32.213
9049. 6 ...
9050. 7 157.09 ms 176.10.83.128
9051. 8 157.05 ms 176.10.83.5
9052. 9 ...
9053. 10 157.11 ms 80.82.79.116
9054.  
9055. OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
9056. Nmap done: 1 IP address (1 host up) scanned in 54.23 seconds
9057.  
9058. ###########################################################################################
9059.  
9060. amap -i temp.txt
9061. amap v5.4 (www.thc.org/thc-amap) started at 2017-09-09 23:31:23 - APPLICATION MAPPING mode
9062.  
9063. Protocol on 80.82.79.116:80/tcp matches http
9064. Protocol on 80.82.79.116:21/tcp matches ftp
9065. Protocol on 80.82.79.116:22/tcp matches ssh
9066. Protocol on 80.82.79.116:22/tcp matches ssh-openssh
9067. Protocol on 80.82.79.116:111/tcp matches rpc
9068. Protocol on 80.82.79.116:53/tcp matches dns
9069. Protocol on 80.82.79.116:111/tcp matches rpc-rpcbind-v4
9070.  
9071. Unidentified ports: none.
9072.  
9073. amap v5.4 finished at 2017-09-09 23:31:36
9074.  
9075. ###########################################################################################
9076. %
9077. inetnum: 80.82.79.0 - 80.82.79.255
9078. netname: SC-QUASI80
9079. descr: QUASI
9080. country: SC
9081. org: ORG-QNL3-RIPE
9082. admin-c: QNL1-RIPE
9083. tech-c: QNL1-RIPE
9084. status: ASSIGNED PA
9085. mnt-by: QUASINETWORKS-MNT
9086. mnt-lower: QUASINETWORKS-MNT
9087. mnt-routes: QUASINETWORKS-MNT
9088. created: 2010-08-25T21:29:49Z
9089. last-modified: 2016-01-23T23:04:27Z
9090. source: RIPE
9091.  
9092. organisation: ORG-QNL3-RIPE
9093. org-name: Quasi Networks LTD.
9094. org-type: OTHER
9095. address: Suite 1, Second Floor
9096. address: Sound & Vision House, Francis Rachel Street
9097. address: Victoria, Mahe, SEYCHELLES
9098. remarks: *****************************************************************************
9099. remarks: IMPORTANT INFORMATION
9100. remarks: *****************************************************************************
9101. remarks: We are a high bandwidth network provider offering bandwidth solutions.
9102. remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
9103. remarks: Please only use abuse@quasinetworks.com for abuse reports.
9104. remarks: For all other requests, please see the details on our website.
9105. remarks: *****************************************************************************
9106. abuse-mailbox: abuse@quasinetworks.com
9107. abuse-c: AR34302-RIPE
9108. mnt-ref: QUASINETWORKS-MNT
9109. mnt-by: QUASINETWORKS-MNT
9110. created: 2015-11-08T22:25:26Z
9111. last-modified: 2015-11-27T09:37:50Z
9112. source: RIPE # Filtered
9113.  
9114. role: Quasi Networks LTD
9115. address: Suite 1, Second Floor
9116. address: Sound & Vision House, Francis Rachel Street
9117. address: Victoria, Mahe, SEYCHELLES
9118. remarks: *****************************************************************************
9119. remarks: IMPORTANT INFORMATION
9120. remarks: *****************************************************************************
9121. remarks: We are a high bandwidth network provider offering bandwidth solutions.
9122. remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
9123. remarks: Please only use abuse@quasinetworks.com for abuse reports.
9124. remarks: For all other requests, please see the details on our website.
9125. remarks: *****************************************************************************
9126. abuse-mailbox: abuse@quasinetworks.com
9127. nic-hdl: QNL1-RIPE
9128. mnt-by: QUASINETWORKS-MNT
9129. created: 2015-11-07T22:43:04Z
9130. last-modified: 2015-11-07T23:04:49Z
9131. source: RIPE # Filtered
9132.  
9133. % Information related to '80.82.79.0/24AS29073'
9134.  
9135. route: 80.82.79.0/24
9136. descr: Quasi Networks LTD (IBC)
9137. origin: AS29073
9138. mnt-by: QUASINETWORKS-MNT
9139. created: 2010-08-25T21:31:02Z
9140. last-modified: 2016-01-23T23:04:45Z
9141. source: RIPE
9142.  
9143. % This query was served by the RIPE Database Query Service version 1.89.2 (HEREFORD)
9144.  
9145. ###########################################################################################
9146.  
9147. [i] Scanning Site: http://preteen-art.info
9148.  
9149.  
9150.  
9151. B A S I C I N F O
9152. ====================
9153.  
9154.  
9155. [+] Site Title: for virgin teen, girls small teen
9156. [+] IP address: 80.82.79.116
9157. [+] Web Server: nginx
9158. [+] CMS: Could Not Detect
9159. [+] Cloudflare: Not Detected
9160. [+] Robots File: Could NOT Find robots.txt!
9161.  
9162.  
9163.  
9164.  
9165. W H O I S L O O K U P
9166. ========================
9167.  
9168. Domain Name: PRETEEN-ART.INFO
9169. Registry Domain ID: D503300000038978206-LRMS
9170. Registrar WHOIS Server:
9171. Registrar URL: http://www.ukraine.com.ua
9172. Updated Date: 2017-06-25T20:31:58Z
9173. Creation Date: 2017-04-26T17:20:10Z
9174. Registry Expiry Date: 2018-04-26T17:20:10Z
9175. Registrar Registration Expiration Date:
9176. Registrar: Hosting Ukraine LLC
9177. Registrar IANA ID: 2374
9178. Registrar Abuse Contact Email:
9179. Registrar Abuse Contact Phone:
9180. Reseller:
9181. Domain Status: ok https://icann.org/epp#ok
9182. Registry Registrant ID: C201778539-LRMS
9183. Registrant Name: Privacy Protection
9184. Registrant Organization:
9185. Registrant Street: PO Box 65
9186. Registrant City: Kiev
9187. Registrant State/Province:
9188. Registrant Postal Code: 04112
9189. Registrant Country: UA
9190. Registrant Phone: +380.443927433
9191. Registrant Phone Ext:
9192. Registrant Fax:
9193. Registrant Fax Ext:
9194. Registrant Email: abuse@ukraine.com.ua
9195. Registry Admin ID: C201778539-LRMS
9196. Admin Name: Privacy Protection
9197. Admin Organization:
9198. Admin Street: PO Box 65
9199. Admin City: Kiev
9200. Admin State/Province:
9201. Admin Postal Code: 04112
9202. Admin Country: UA
9203. Admin Phone: +380.443927433
9204. Admin Phone Ext:
9205. Admin Fax:
9206. Admin Fax Ext:
9207. Admin Email: abuse@ukraine.com.ua
9208. Registry Tech ID: C201778539-LRMS
9209. Tech Name: Privacy Protection
9210. Tech Organization:
9211. Tech Street: PO Box 65
9212. Tech City: Kiev
9213. Tech State/Province:
9214. Tech Postal Code: 04112
9215. Tech Country: UA
9216. Tech Phone: +380.443927433
9217. Tech Phone Ext:
9218. Tech Fax:
9219. Tech Fax Ext:
9220. Tech Email: abuse@ukraine.com.ua
9221. Registry Billing ID: C201778539-LRMS
9222. Billing Name: Privacy Protection
9223. Billing Organization:
9224. Billing Street: PO Box 65
9225. Billing City: Kiev
9226. Billing State/Province:
9227. Billing Postal Code: 04112
9228. Billing Country: UA
9229. Billing Phone: +380.443927433
9230. Billing Phone Ext:
9231. Billing Fax:
9232. Billing Fax Ext:
9233. Billing Email: abuse@ukraine.com.ua
9234. Name Server: PNS21.CLOUDNS.NET
9235. Name Server: PNS22.CLOUDNS.NET
9236. Name Server: PNS24.CLOUDNS.NET
9237. Name Server: PNS23.CLOUDNS.NET
9238.  
9239.  
9240. G E O I P L O O K U P
9241. =========================
9242.  
9243. [i] IP Address: 80.82.79.116
9244. [i] Country: SC
9245. [i] State: N/A
9246. [i] City: N/A
9247. [i] Latitude: -4.583300
9248. [i] Longitude: 55.666698
9249.  
9250.  
9251.  
9252.  
9253. H T T P H E A D E R S
9254. =======================
9255.  
9256.  
9257. [i] HTTP/1.1 200 OK
9258. [i] Server: nginx
9259. [i] Date: Sun, 10 Sep 2017 03:33:20 GMT
9260. [i] Content-Type: text/html
9261. [i] Connection: close
9262. [i] Vary: Accept-Encoding
9263. [i] X-Powered-By: PHP/5.4.45-0+deb7u8
9264. [i] Set-Cookie: site_id=1; expires=Sun, 10-Sep-2017 15:33:20 GMT
9265. [i] Vary: Accept-Encoding
9266.  
9267.  
9268.  
9269.  
9270. D N S L O O K U P
9271. ===================
9272.  
9273. preteen-art.info. 56 IN A 80.82.79.116
9274. preteen-art.info. 3600 IN NS ns23.cloudns.net.
9275. preteen-art.info. 3600 IN NS ns22.cloudns.net.
9276. preteen-art.info. 3600 IN NS ns21.cloudns.net.
9277. preteen-art.info. 3600 IN NS pns23.cloudns.net.
9278. preteen-art.info. 3600 IN NS ns24.cloudns.net.
9279. preteen-art.info. 3600 IN NS pns22.cloudns.net.
9280. preteen-art.info. 3600 IN NS pns21.cloudns.net.
9281. preteen-art.info. 3600 IN NS pns24.cloudns.net.
9282. preteen-art.info. 3600 IN SOA ns21.cloudns.net. support.cloudns.net. 2017091018 7200 1800 1209600 3600
9283.  
9284.  
9285.  
9286.  
9287. S U B N E T C A L C U L A T I O N
9288. ====================================
9289.  
9290. Address = 80.82.79.116
9291. Network = 80.82.79.116 / 32
9292. Netmask = 255.255.255.255
9293. Broadcast = not needed on Point-to-Point links
9294. Wildcard Mask = 0.0.0.0
9295. Hosts Bits = 0
9296. Max. Hosts = 1 (2^0 - 0)
9297. Host Range = { 80.82.79.116 - 80.82.79.116 }
9298.  
9299.  
9300.  
9301. N M A P P O R T S C A N
9302. ============================
9303.  
9304.  
9305. Starting Nmap 7.01 ( https://nmap.org ) at 2017-09-10 03:29 UTC
9306. Nmap scan report for preteen-art.info (80.82.79.116)
9307. Host is up (0.083s latency).
9308. rDNS record for 80.82.79.116: no-reverse-dns-configured.com
9309. PORT STATE SERVICE VERSION
9310. 21/tcp open ftp vsftpd 3.0.2
9311. 22/tcp open ssh OpenSSH 6.0p1 Debian 4+deb7u6 (protocol 2.0)
9312. 23/tcp closed telnet
9313. 25/tcp closed smtp
9314. 80/tcp open http nginx
9315. 110/tcp closed pop3
9316. 143/tcp closed imap
9317. 443/tcp closed https
9318. 445/tcp closed microsoft-ds
9319. 3389/tcp closed ms-wbt-server
9320. Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
9321.  
9322. Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
9323. Nmap done: 1 IP address (1 host up) scanned in 7.27 seconds
9324.  
9325.  
9326.  
9327. S U B - D O M A I N F I N D E R
9328. ==================================
9329.  
9330.  
9331. [i] Total Subdomains Found : 1
9332.  
9333. [+] Subdomain: preteen-art.info
9334. [-] IP: 80.82.79.116
9335. [*] Performing TLD Brute force Enumeration against preteen-art.info
9336. [*] The operation could take up to: 00:01:07
9337. [*] A preteen-art.biz.af 5.45.75.45
9338. [*] CNAME preteen-art.biz.at free.biz.at
9339. [*] A free.biz.at 216.92.134.29
9340. [*] A preteen-art.org.aw 142.4.20.12
9341. [*] A preteen-art.co.ba 176.9.45.78
9342. [*] A preteen-art.com.ba 195.222.33.180
9343. [*] A preteen-art.com.be 95.173.170.166
9344. [*] A preteen-art.co.asia 91.195.240.135
9345. [*] A preteen-art.biz.by 71.18.52.2
9346. [*] A preteen-art.biz.bz 199.59.242.150
9347. [*] A preteen-art.com.cc 54.252.107.64
9348. [*] A preteen-art.net.cc 54.252.89.206
9349. [*] A preteen-art.co.cc 175.126.123.219
9350. [*] A preteen-art.org.ch 72.52.4.122
9351. [*] A preteen-art.co.cm 85.25.140.105
9352. [*] A preteen-art.net.cm 85.25.140.105
9353. [*] A preteen-art.biz.cl 185.53.178.8
9354. [*] A preteen-art.com.com 52.33.196.199
9355. [*] A preteen-art.com 167.114.156.214
9356. [*] A preteen-art.net.com 199.59.242.150
9357. [*] A preteen-art.co.com 173.192.115.17
9358. [*] A preteen-art.org.com 23.23.86.44
9359. [*] A preteen-art.biz.cr 72.52.4.122
9360. [*] CNAME preteen-art.biz.cm i.cns.cm
9361. [*] A i.cns.cm 118.184.56.30
9362. [*] A preteen-art.biz.cx 72.52.4.122
9363. [*] A preteen-art.net.cz 80.250.24.177
9364. [*] A preteen-art.de 212.227.111.250
9365. [*] A preteen-art.biz.cz 185.53.179.7
9366. [*] A preteen-art.com.cz 62.109.128.30
9367. [*] A preteen-art.com.de 50.56.68.37
9368. [*] CNAME preteen-art.co.de co.de
9369. [*] A co.de 144.76.162.245
9370. [*] CNAME preteen-art.org.de www.org.de
9371. [*] A www.org.de 78.47.128.8
9372. [*] A preteen-art.net.eu 78.46.90.98
9373. [*] A preteen-art.org.eu 78.46.90.98
9374. [*] A preteen-art.biz.fi 185.55.85.123
9375. [*] A preteen-art.fm 173.230.131.38
9376. [*] A preteen-art.biz.fm 173.230.131.38
9377. [*] A preteen-art.org.fr 149.202.133.35
9378. [*] A preteen-art.biz.gl 72.52.4.122
9379. [*] CNAME preteen-art.co.gp co.gp
9380. [*] A co.gp 144.76.162.245
9381. [*] A preteen-art.co.hn 208.100.40.203
9382. [*] CNAME preteen-art.net.hr net.hr
9383. [*] A net.hr 192.0.78.24
9384. [*] A net.hr 192.0.78.25
9385. [*] CNAME preteen-art.biz.hn parkmydomain.vhostgo.com
9386. [*] A parkmydomain.vhostgo.com 107.186.245.118
9387. [*] A preteen-art.co.ht 72.52.4.122
9388. [*] A preteen-art.info 89.248.166.21
9389. [*] A preteen-art.co.jobs 50.17.193.222
9390. [*] A preteen-art.com.jobs 50.19.241.165
9391. [*] A preteen-art.biz.jobs 50.19.241.165
9392. [*] A preteen-art.net.jobs 50.19.241.165
9393. [*] A preteen-art.org.jobs 50.19.241.165
9394. [*] A preteen-art.biz.ky 199.184.144.27
9395. [*] CNAME preteen-art.biz.li 712936.parkingcrew.net
9396. [*] A 712936.parkingcrew.net 185.53.179.29
9397. [*] A preteen-art.biz.lu 195.26.5.2
9398. [*] A preteen-art.biz.ly 64.136.20.39
9399. [*] A preteen-art.biz.md 72.52.4.122
9400. [*] A preteen-art.co.mk 87.76.31.211
9401. [*] A preteen-art.co.mobi 54.225.105.179
9402. [*] A preteen-art.biz.my 202.190.174.44
9403. [*] A preteen-art.co.net 188.166.216.219
9404. [*] A preteen-art.net.net 52.50.81.210
9405. [*] A preteen-art.net 45.33.9.234
9406. [*] A preteen-art.org.net 23.23.86.44
9407. [*] A preteen-art.co.nl 37.97.184.204
9408. [*] A preteen-art.com.nl 83.98.157.102
9409. [*] A preteen-art.net.nl 83.98.157.102
9410. [*] A preteen-art.co.nr 208.100.40.202
9411. [*] CNAME preteen-art.co.nu co.nu
9412. [*] A co.nu 144.76.162.245
9413. [*] CNAME preteen-art.com.nu com.nu
9414. [*] A com.nu 144.76.162.245
9415. [*] A preteen-art.net.nu 199.102.76.78
9416. [*] A preteen-art.org.nu 80.92.84.139
9417. [*] CNAME preteen-art.net.org pewtrusts.org
9418. [*] A pewtrusts.org 204.74.99.100
9419. [*] A preteen-art.com.org 23.23.86.44
9420. [*] A preteen-art.ph 45.79.222.138
9421. [*] A preteen-art.co.ph 45.79.222.138
9422. [*] A preteen-art.com.ph 45.79.222.138
9423. [*] A preteen-art.net.ph 45.79.222.138
9424. [*] A preteen-art.org.ph 45.79.222.138
9425. [*] A preteen-art.co.pl 212.91.6.55
9426. [*] A preteen-art.org.pm 208.73.211.177
9427. [*] A preteen-art.org.pm 208.73.210.202
9428. [*] A preteen-art.org.pm 208.73.211.165
9429. [*] A preteen-art.org.pm 208.73.210.217
9430. [*] A preteen-art.co.ps 66.96.132.56
9431. [*] CNAME preteen-art.biz.ps biz.ps
9432. [*] A biz.ps 144.76.162.245
9433. [*] A preteen-art.co.pt 194.107.127.52
9434. [*] A preteen-art.co.pw 141.8.226.59
9435. [*] A preteen-art.pw 141.8.226.58
9436. [*] A preteen-art.net.pw 141.8.226.59
9437. [*] A preteen-art.biz.pw 141.8.226.59
9438. [*] A preteen-art.org.pw 141.8.226.59
9439. [*] CNAME preteen-art.co.ro now.co.ro
9440. [*] A now.co.ro 185.27.255.9
9441. [*] A preteen-art.net.ro 69.64.52.127
9442. [*] A preteen-art.org.re 217.70.184.38
9443. [*] A preteen-art.com.ru 178.210.89.119
9444. [*] A preteen-art.biz.se 185.53.179.6
9445. [*] CNAME preteen-art.net.se 773147.parkingcrew.net
9446. [*] A 773147.parkingcrew.net 185.53.179.29
9447. [*] A preteen-art.co.sl 91.195.240.135
9448. [*] A preteen-art.com.sr 143.95.106.249
9449. [*] A preteen-art.biz.st 91.121.28.115
9450. [*] A preteen-art.co.su 72.52.4.122
9451. [*] A preteen-art.biz.tc 64.136.20.39
9452. [*] A preteen-art.biz.tf 85.236.153.18
9453. [*] A preteen-art.net.tf 188.40.70.27
9454. [*] A preteen-art.net.tf 188.40.117.12
9455. [*] A preteen-art.net.tf 188.40.70.29
9456. [*] A preteen-art.co.tl 208.100.40.202
9457. [*] A preteen-art.co.to 175.118.124.44
9458. [*] A preteen-art.co.tv 31.186.25.163
9459. [*] A preteen-art.biz.tv 72.52.4.122
9460. [*] A preteen-art.org.tv 72.52.4.122
9461. [*] CNAME preteen-art.biz.uz biz.uz
9462. [*] A biz.uz 144.76.162.245
9463. [*] A preteen-art.vg 88.198.29.97
9464. [*] A preteen-art.co.vg 88.198.29.97
9465. [*] A preteen-art.com.vg 88.198.29.97
9466. [*] A preteen-art.net.vg 68.178.254.180
9467. [*] A preteen-art.biz.vg 89.31.143.20
9468. [*] A preteen-art.ws 64.70.19.203
9469. [*] A preteen-art.com.ws 202.4.48.211
9470. [*] A preteen-art.net.ws 202.4.48.211
9471. [*] A preteen-art.org.ws 202.4.48.211
9472. [*] A preteen-art.biz.ws 184.168.221.104
9473. R E V E R S E I P L O O K U P
9474. ==================================
9475.  
9476.  
9477. [i] Total Sites Found On This Server : 2
9478.  
9479.  
9480. [#] preteen-art.info
9481. [-] CMS: Could Not Detect
9482.  
9483. [#] teendolls.online,
9484. [-] CMS: Could Not Detect
9485. preteen-art.info
9486.  
9487.  
9488. Domain Name: PRETEEN-ART.INFO
9489. Registry Domain ID: D503300000038978206-LRMS
9490. Registrar WHOIS Server:
9491. Registrar URL: http://www.ukraine.com.ua
9492. Updated Date: 2017-06-25T20:31:58Z
9493. Creation Date: 2017-04-26T17:20:10Z
9494. Registry Expiry Date: 2018-04-26T17:20:10Z
9495. Registrar Registration Expiration Date:
9496. Registrar: Hosting Ukraine LLC
9497. Registrar IANA ID: 2374
9498. Registrar Abuse Contact Email:
9499. Registrar Abuse Contact Phone:
9500. Reseller:
9501. Domain Status: ok https://icann.org/epp#ok
9502. Registry Registrant ID: C201778539-LRMS
9503. Registrant Name: Privacy Protection
9504. Registrant Organization:
9505. Registrant Street: PO Box 65
9506. Registrant City: Kiev
9507. Registrant State/Province:
9508. Registrant Postal Code: 04112
9509. Registrant Country: UA
9510. Registrant Phone: +380.443927433
9511. Registrant Phone Ext:
9512. Registrant Fax:
9513. Registrant Fax Ext:
9514. Registrant Email: abuse@ukraine.com.ua
9515. Registry Admin ID: C201778539-LRMS
9516. Admin Name: Privacy Protection
9517. Admin Organization:
9518. Admin Street: PO Box 65
9519. Admin City: Kiev
9520. Admin State/Province:
9521. Admin Postal Code: 04112
9522. Admin Country: UA
9523. Admin Phone: +380.443927433
9524. Admin Phone Ext:
9525. Admin Fax:
9526. Admin Fax Ext:
9527. Admin Email: abuse@ukraine.com.ua
9528. Registry Tech ID: C201778539-LRMS
9529. Tech Name: Privacy Protection
9530. Tech Organization:
9531. Tech Street: PO Box 65
9532. Tech City: Kiev
9533. Tech State/Province:
9534. Tech Postal Code: 04112
9535. Tech Country: UA
9536. Tech Phone: +380.443927433
9537. Tech Phone Ext:
9538. Tech Fax:
9539. Tech Fax Ext:
9540. Tech Email: abuse@ukraine.com.ua
9541. Registry Billing ID: C201778539-LRMS
9542. Billing Name: Privacy Protection
9543. Billing Organization:
9544. Billing Street: PO Box 65
9545. Billing City: Kiev
9546. Billing State/Province:
9547. Billing Postal Code: 04112
9548. Billing Country: UA
9549. Billing Phone: +380.443927433
9550. Billing Phone Ext:
9551. Billing Fax:
9552. Billing Fax Ext:
9553. Billing Email: abuse@ukraine.com.ua
9554. Name Server: PNS21.CLOUDNS.NET
9555. Name Server: PNS22.CLOUDNS.NET
9556. Name Server: PNS24.CLOUDNS.NET
9557. Name Server: PNS23.CLOUDNS.NET
9558.  
9559. ;preteen-art.info. IN ANY
9560.  
9561. ;; ANSWER SECTION:
9562. preteen-art.info. 56 IN A 80.82.79.116
9563. preteen-art.info. 1482 IN NS pns21.cloudns.net.
9564. preteen-art.info. 1482 IN NS ns21.cloudns.net.
9565. preteen-art.info. 1482 IN NS ns22.cloudns.net.
9566. preteen-art.info. 1482 IN NS pns24.cloudns.net.
9567. preteen-art.info. 1482 IN NS pns22.cloudns.net.
9568. preteen-art.info. 1482 IN NS ns23.cloudns.net.
9569. preteen-art.info. 1482 IN NS ns24.cloudns.net.
9570. preteen-art.info. 1482 IN NS pns23.cloudns.net.
9571.  
9572. Host's addresses:
9573. __________________
9574.  
9575. preteen-art.info. 45 IN A 80.82.79.116
9576.  
9577.  
9578. Wildcard detection using: dfzsoiabzgya
9579. _______________________________________
9580.  
9581. dfzsoiabzgya.preteen-art.info. 60 IN A 80.82.79.116
9582.  
9583.  
9584. !!!!!!!!!!!!!!!!!!!!!!!!!!!!
9585.  
9586. Wildcards detected, all subdomains will point to the same IP address
9587. Omitting results containing 80.82.79.116.
9588. Maybe you are using OpenDNS servers.
9589.  
9590. !!!!!!!!!!!!!!!!!!!!!!!!!!!!
9591.  
9592.  
9593. Name Servers:
9594. ______________
9595.  
9596. pns24.cloudns.net. 114834 IN A 185.136.99.96
9597. pns23.cloudns.net. 153160 IN A 185.136.98.96
9598. pns21.cloudns.net. 114834 IN A 185.136.96.96
9599. ns22.cloudns.net. 132523 IN A 108.59.2.202
9600. ns21.cloudns.net. 54205 IN A 109.201.133.61
9601. ns24.cloudns.net. 148264 IN A 46.165.221.164
9602. ns23.cloudns.net. 164590 IN A 79.137.84.65
9603. pns22.cloudns.net. 114833 IN A 185.136.97.96
9604.  
9605.  
9606. Mail (MX) Servers:
9607. ___________________
9608.  
9609.  
9610. preteen-art.info class C netranges:
9611. ____________________________________
9612.  
9613. 80.82.79.0/24
9614.  
9615.  
9616. Performing reverse lookup on 256 ip addresses:
9617. _______________________________________________
9618.  
9619.  
9620. 0 results out of 256 IP addresses.
9621.  
9622.  
9623. preteen-art.info ip blocks:
9624. ____________________________
9625.  
9626.  
9627. |\___ ns22.cloudns.net [preteen-art.info] (2604:9a00:2100:a006:0004:0000:0000:0001) Got authoritative answer
9628. |\___ ns22.cloudns.net [preteen-art.info] (108.59.2.202) Got authoritative answer
9629. |\___ ns23.cloudns.net [preteen-art.info] (2001:41d0:0401:3100:0000:0000:0000:5784) * * *
9630. |\___ ns23.cloudns.net [preteen-art.info] (79.137.84.65) Got authoritative answer
9631. |\___ pns24.cloudns.net [preteen-art.info] (2a06:fb00:0001:0000:0000:0000:0004:0096) Got authoritative answer
9632. |\___ pns24.cloudns.net [preteen-art.info] (185.136.99.96) Got authoritative answer
9633. |\___ pns22.cloudns.net [preteen-art.info] (2a06:fb00:0001:0000:0000:0000:0002:0096) Got authoritative answer
9634. |\___ pns22.cloudns.net [preteen-art.info] (185.136.97.96) Got authoritative answer
9635. |\___ pns21.cloudns.net [preteen-art.info] (2a06:fb00:0001:0000:0000:0000:0001:0096) Got authoritative answer
9636. |\___ pns21.cloudns.net [preteen-art.info] (185.136.96.96) Got authoritative answer
9637. |\___ ns21.cloudns.net [preteen-art.info] (109.201.133.61) Got authoritative answer
9638. |\___ ns21.cloudns.net [preteen-art.info] (2a00:1768:1001:0009:0000:0000:0000:0021) Got authoritative answer
9639. |\___ ns24.cloudns.net [preteen-art.info] (2a00:0c98:2030:a006:0002:0000:0000:0001) Got authoritative answer
9640. |\___ ns24.cloudns.net [preteen-art.info] (46.165.221.164) Got authoritative answer
9641. |\___ pns23.cloudns.net [preteen-art.info] (2a06:fb00:0001:0000:0000:0000:0003:0096) Got authoritative answer
9642. \___ pns23.cloudns.net [preteen-art.info] (185.136.98.96) Got authoritative answer
9643.  
9644.  
9645. WhatWeb report for http://preteen-art.info
9646. Status : 200 OK
9647. Title : for virgin teen, girls small teen
9648. IP : 80.82.79.116
9649. Country : NETHERLANDS, NL
9650.  
9651. Summary : X-Powered-By[PHP/5.4.45-0+deb7u8], HTTPServer[nginx], Cookies[site_id], PHP[5.4.45-0+deb7u8], nginx, Script[text/javascript]
9652.  
9653. Detected Plugins:
9654. [ Cookies ]
9655. Display the names of cookies in the HTTP headers. The
9656. values are not returned to save on space.
9657.  
9658. String : site_id
9659.  
9660. [ HTTPServer ]
9661. HTTP server header string. This plugin also attempts to
9662. identify the operating system from the server header.
9663.  
9664. String : nginx (from server string)
9665.  
9666. [ PHP ]
9667. PHP is a widely-used general-purpose scripting language
9668. that is especially suited for Web development and can be
9669. embedded into HTML. This plugin identifies PHP errors,
9670. modules and versions and extracts the local file path and
9671. username if present.
9672.  
9673. Version : 5.4.45-0+deb7u8
9674. Google Dorks: (2)
9675. Website : http://www.php.net/
9676.  
9677. [ Script ]
9678. This plugin detects instances of script HTML elements and
9679. returns the script language/type.
9680.  
9681. String : text/javascript
9682.  
9683. [ X-Powered-By ]
9684. X-Powered-By HTTP header
9685.  
9686. String : PHP/5.4.45-0+deb7u8 (from x-powered-by string)
9687.  
9688. [ nginx ]
9689. Nginx (Engine-X) is a free, open-source, high-performance
9690. HTTP server and reverse proxy, as well as an IMAP/POP3
9691. proxy server.
9692.  
9693. Website : http://nginx.net/
9694.  
9695. HTTP Headers:
9696. HTTP/1.1 200 OK
9697. Server: nginx
9698. Date: Sun, 10 Sep 2017 03:38:56 GMT
9699. Content-Type: text/html
9700. Content-Length: 2909
9701. Connection: close
9702. X-Powered-By: PHP/5.4.45-0+deb7u8
9703. Set-Cookie: site_id=1; expires=Sun, 10-Sep-2017 15:38:56 GMT
9704. Vary: Accept-Encoding
9705. Content-Encoding: gzip
9706.  
9707.  
9708.  
9709.  
9710. ^ ^
9711. _ __ _ ____ _ __ _ _ ____
9712. ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
9713. | V V // o // _/ | V V // 0 // 0 // _/
9714. |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
9715. <
9716. ...'
9717.  
9718. WAFW00F - Web Application Firewall Detection Tool
9719.  
9720. By Sandro Gauci && Wendel G. Henrique
9721.  
9722. Checking http://preteen-art.info
9723. Generic Detection results:
9724. No WAF detected by the generic detection
9725. Number of requests: 13
9726.  
9727.  
9728. DNS Servers for preteen-art.info:
9729. pns21.cloudns.net
9730. pns22.cloudns.net
9731. ns22.cloudns.net
9732. pns23.cloudns.net
9733. ns21.cloudns.net
9734. pns24.cloudns.net
9735. ns23.cloudns.net
9736. ns24.cloudns.net
9737.  
9738.  
9739.  
9740. Starting smtp-user-enum v1.2 ( http://pentestmonkey.net/tools/smtp-user-enum )
9741.  
9742. ----------------------------------------------------------
9743. | Scan Information |
9744. ----------------------------------------------------------
9745.  
9746. Mode ..................... VRFY
9747. Worker Processes ......... 5
9748. Usernames file ........... users.txt
9749. Target count ............. 1
9750. Username count ........... 494
9751. Target TCP port .......... 25
9752. Query timeout ............ 5 secs
9753. Target domain ............
9754.  
9755. ######## Scan started at Sat Sep 9 23:42:55 2017 #########
9756. ######## Scan completed at Sat Sep 9 23:51:10 2017 #########
9757. 0 results.
9758.  
9759. 494 queries in 495 seconds (1.0 queries / sec)
9760.  
9761.  
9762.  
9763. Starting Nmap 7.60 ( https://nmap.org ) at 2017-09-09 23:51 EDT
9764. NSE: Loaded 146 scripts for scanning.
9765. NSE: Script Pre-scanning.
9766. Initiating NSE at 23:51
9767. Completed NSE at 23:51, 0.00s elapsed
9768. Initiating NSE at 23:51
9769. Completed NSE at 23:51, 0.00s elapsed
9770. Failed to resolve "preteen-art.info.txt".
9771. Initiating Parallel DNS resolution of 1 host. at 23:51
9772. Completed Parallel DNS resolution of 1 host. at 23:51, 0.59s elapsed
9773. Initiating SYN Stealth Scan at 23:51
9774. Scanning preteen-art.info (80.82.79.116) [100 ports]
9775. Discovered open port 53/tcp on 80.82.79.116
9776. Discovered open port 80/tcp on 80.82.79.116
9777. Discovered open port 21/tcp on 80.82.79.116
9778. Discovered open port 22/tcp on 80.82.79.116
9779. Discovered open port 111/tcp on 80.82.79.116
9780. Completed SYN Stealth Scan at 23:51, 3.63s elapsed (100 total ports)
9781. Initiating Service scan at 23:51
9782. Scanning 5 services on preteen-art.info (80.82.79.116)
9783. Completed Service scan at 23:51, 11.37s elapsed (5 services on 1 host)
9784. Initiating OS detection (try #1) against preteen-art.info (80.82.79.116)
9785. Retrying OS detection (try #2) against preteen-art.info (80.82.79.116)
9786. Initiating Traceroute at 23:51
9787. Completed Traceroute at 23:51, 3.01s elapsed
9788. Initiating Parallel DNS resolution of 7 hosts. at 23:51
9789. Completed Parallel DNS resolution of 7 hosts. at 23:51, 5.62s elapsed
9790. NSE: Script scanning 80.82.79.116.
9791. Initiating NSE at 23:51
9792. Completed NSE at 23:52, 32.19s elapsed
9793. Initiating NSE at 23:52
9794. Completed NSE at 23:52, 0.34s elapsed
9795. Nmap scan report for preteen-art.info (80.82.79.116)
9796. Host is up (0.18s latency).
9797. rDNS record for 80.82.79.116: no-reverse-dns-configured.com
9798. Not shown: 89 closed ports
9799. PORT STATE SERVICE VERSION
9800. 21/tcp open ftp vsftpd 3.0.2
9801. 22/tcp open ssh OpenSSH 6.0p1 Debian 4+deb7u6 (protocol 2.0)
9802. | ssh-hostkey:
9803. | 1024 ab:16:56:89:21:7e:75:1c:77:f3:a2:7e:c2:f1:4c:09 (DSA)
9804. | 2048 22:f8:e3:f6:1a:1c:6a:99:09:6b:1e:7c:fd:30:e3:95 (RSA)
9805. |_ 256 a8:03:f4:96:36:d1:39:de:2e:4f:56:e9:0f:f3:63:56 (ECDSA)
9806. 25/tcp filtered smtp
9807. 53/tcp open domain
9808. | dns-nsid:
9809. |_ bind.version: 9.8.4-rpz2+rl005.12-P1
9810. 80/tcp open http nginx
9811. |_http-favicon: Unknown favicon MD5: E10A0146806273296BECCD951556D611
9812. | http-methods:
9813. |_ Supported Methods: GET HEAD POST
9814. |_http-server-header: nginx
9815. |_http-title: for virgin teen, girls small teen
9816. 111/tcp open rpcbind 2-4 (RPC #100000)
9817. 135/tcp filtered msrpc
9818. 139/tcp filtered netbios-ssn
9819. 445/tcp filtered microsoft-ds
9820. 465/tcp filtered smtps
9821. 587/tcp filtered submission
9822. Aggressive OS guesses: Linux 2.6.39 (96%), Linux 3.2 - 3.8 (95%), Linux 3.8 (95%), WatchGuard Fireware 11.8 (95%), Linux 3.1 - 3.2 (94%), Linux 3.5 (93%), Linux 2.6.32 - 2.6.39 (93%), Linux 3.0 - 3.2 (92%), Linux 2.6.32 - 3.0 (92%), Linux 2.6.32 (91%)
9823. No exact OS matches for host (test conditions non-ideal).
9824. Uptime guess: 6.527 days (since Sun Sep 3 11:13:52 2017)
9825. Network Distance: 10 hops
9826. TCP Sequence Prediction: Difficulty=259 (Good luck!)
9827. IP ID Sequence Generation: All zeros
9828. Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
9829.  
9830. TRACEROUTE (using port 8080/tcp)
9831. HOP RTT ADDRESS
9832. 1 408.56 ms 10.13.0.1
9833. 2 ...
9834. 3 413.27 ms po101.gra-g1-a75.fr.eu (178.33.103.229)
9835. 4 424.32 ms 10.95.33.8
9836. 5 424.36 ms be100-1109.fra-1-a9.de.eu (213.186.32.213)
9837. 6 ...
9838. 7 467.97 ms vlan3555.bb1.ams2.nl.m247.com (176.10.83.128)
9839. 8 467.84 ms 176.10.83.5
9840. 9 ...
9841. 10 467.90 ms no-reverse-dns-configured.com (80.82.79.116)
9842.  
9843.  
9844.  
9845.  
9846. _/ _/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/ _/_/_/_/
9847. _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
9848. _/ _/ _/_/_/_/ _/_/_/ _/ _/_/_/ _/_/_/_/ _/ _/_/_/ _/_/_/_
9849. _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/
9850. _/_/_/_/ _/ _/ _/ _/_/_/_/ _/_/_/_/ _/ _/_/_/_/ _/ _/ [v1.06]
9851.  
9852. _/ User-Agent Tester ↵
9853. _/ AKA: Purple Pimp ↵
9854. _/ ChrisJohnRiley ↵
9855. _/ blog.c22.cc ↵
9856.  
9857. [>] Performing initial request and confirming stability
9858. [>] Using User-Agent string Mozilla/5.0
9859.  
9860. [ ] URL (ENTERED): http://preteen-art.info
9861. [ ] Response Code: 200 OK
9862. [ ] Server: nginx
9863. [ ] Date: Sun, 10 Sep 2017 03:55:58 GMT
9864. [ ] Content-Type: text/html
9865. [ ] Transfer-Encoding: chunked
9866. [ ] Connection: close
9867. [ ] Vary: Accept-Encoding
9868. [ ] X-Powered-By: PHP/5.4.45-0+deb7u8
9869. [ ] Set-Cookie: site_id=1; expires=Sun, 10-Sep-2017 15:55:58 GMT
9870. [ ] Vary: Accept-Encoding
9871. [ ] Data (MD5): 96f209843590bb6aba7d59904bdc78f3
9872.  
9873. [1] Pass
9874. [2] Pass
9875. [3] Pass
9876.  
9877. [>] URL appears stable. Beginning test
9878.  
9879. [>] Using DEFAULT User-Agent Strings
9880.  
9881. [>] Using Crazy User-Agent Strings
9882. [>] Using Bot User-Agent Strings
9883.  
9884. [>] Output: [+] Added Headers, [-] Removed Headers, [!] Altered Headers, [ ] No Change
9885.  
9886.  
9887. [>] User-Agent String : Windows-Media-Player/9.00.00.4503
9888.  
9889.  
9890. [!] Data (MD5): b1d179b8237ca36aceb474efec763bf3
9891.  
9892.  
9893. [>] User-Agent String : Mozilla/5.0 (PLAYSTATION 3; 2.00)
9894.  
9895.  
9896. [!] Data (MD5): 427377b3885c947fc95dfb6d2cfe7305
9897.  
9898.  
9899. [>] User-Agent String : TrackBack/1.02
9900.  
9901.  
9902. [!] Data (MD5): 088be84a7a168744c6a94445b5c2e50e
9903.  
9904.  
9905. [>] User-Agent String : wispr
9906.  
9907.  
9908. [!] Data (MD5): 70b62f4d7d5c0eb9b892494d1537c534
9909.  
9910.  
9911. [>] User-Agent String : EMPTY USER-AGENT STRING!
9912.  
9913.  
9914. [!] Data (MD5): 89069f1591f0c6e749fcca836c2fcb14
9915.  
9916.  
9917. [>] User-Agent String : Googlebot/2.1 (+http://www.google.com/bot.html)
9918.  
9919.  
9920. [!] Data (MD5): 16eb4f40d5e17e4b12c79fc8c9d43ba6
9921.  
9922.  
9923. [>] User-Agent String : Googlebot-Image/1.0
9924.  
9925.  
9926. [!] Data (MD5): 0965bc18cb2ac8d18d5d99764016903c
9927.  
9928.  
9929. [>] User-Agent String : Mediapartners-Google
9930.  
9931.  
9932. [!] Data (MD5): 7e34014131d2105ec31d3810dd6c7bfb
9933.  
9934.  
9935. [>] User-Agent String : Mozilla/2.0 (compatible; Ask Jeeves)
9936.  
9937.  
9938. [!] Data (MD5): 41f61ece1c6010755324db743e6d16f3
9939.  
9940.  
9941. [>] User-Agent String : msnbot-Products/1.0 (+http://search.msn.com/msnbot.htm)
9942.  
9943.  
9944. [!] Data (MD5): 9da6e4cf49ae8eaf0d9e1a70d10635f5
9945.  
9946.  
9947. [>] User-Agent String : mmcrawler
9948.  
9949.  
9950. [!] Data (MD5): 966ce151ffd750c0390362d536387b23
9951.  
9952.  
9953. [>] Checks completed... try enabling VERBOSE mode for more detailed output
9954.  
9955. [>] That's all folks... Fo' Shizzle!