Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Compiled Info on 5elafabook.com (some info redacted for my privacy)
- TCP Connect scan (Aggressive)
- Starting Nmap 6.47 ( http://nmap.org ) at 2015-07-09 14:37 MST
- NSE: Loaded 118 scripts for scanning.
- NSE: Script Pre-scanning.
- Initiating Parallel DNS resolution of 1 host. at 14:37
- Completed Parallel DNS resolution of 1 host. at 14:37, 0.08s elapsed
- Initiating Connect Scan at 14:37
- Scanning ip-50-63-202-89.ip.secureserver.net (50.63.202.89) [65535 ports]
- Discovered open port 42865/tcp on 50.63.202.89
- Discovered open port 39141/tcp on 50.63.202.89
- Increasing send delay for 50.63.202.89 from 0 to 5 due to 11 out of 11 dropped probes since last
- increase.
- Increasing send delay for 50.63.202.89 from 5 to 10 due to 11 out of 11 dropped probes since last
- increase.
- Discovered open port 23789/tcp on 50.63.202.89
- Discovered open port 8126/tcp on 50.63.202.89
- Discovered open port 65222/tcp on 50.63.202.89
- Discovered open port 4118/tcp on 50.63.202.89
- Discovered open port 38692/tcp on 50.63.202.89
- Discovered open port 8083/tcp on 50.63.202.89
- Discovered open port 1248/tcp on 50.63.202.89
- Completed Connect Scan at 15:03, 1528.88s elapsed (65535 total ports)
- Initiating Service scan at 15:03
- Scanning 9 services on ip-50-63-202-89.ip.secureserver.net (50.63.202.89)
- Completed Service scan at 15:05, 132.36s elapsed (9 services on 1 host)
- Initiating OS detection (try #1) against ip-50-63-202-89.ip.secureserver.net (50.63.202.89)
- Retrying OS detection (try #2) against ip-50-63-202-89.ip.secureserver.net (50.63.202.89)
- Initiating Traceroute at 15:05
- Completed Traceroute at 15:05, 6.10s elapsed
- Initiating Parallel DNS resolution of 9 hosts. at 15:05
- Completed Parallel DNS resolution of 9 hosts. at 15:05, 0.04s elapsed
- NSE: Script scanning 50.63.202.89.
- Initiating NSE at 15:05
- Completed NSE at 15:08, 180.12s elapsed
- Nmap scan report for ip-50-63-202-89.ip.secureserver.net (50.63.202.89)
- Host is up (0.035s latency).
- Not shown: 64962 closed ports, 564 filtered ports
- PORT STATE SERVICE VERSION
- 1248/tcp open hermes?
- 4118/tcp open ssl/netscript?
- 8083/tcp open us-srv?
- 8126/tcp open msdtc Microsoft Distributed Transaction Coordinator (error)
- 23789/tcp open unknown
- 38692/tcp open unknown
- 39141/tcp open unknown
- 42865/tcp open unknown
- 65222/tcp open ssh OpenSSH 5.3 (protocol 2.0)
- |_ssh-hostkey:
- 1 service unrecognized despite returning data. If you know the service/version, please submit the
- following fingerprint at http://www.insecure.org/cgi-bin/servicefp-submit.cgi :
- SF-Port8083-TCP:V=6.47%I=7%D=7/9%Time=559EEFB5%P=x86_64-unknown-linux-gnu%
- SF:r(GetRequest,146,"HTTP/1\.0\x20404\x20Not\x20Found\r\nServer:\x20Traffi
- SF:c\x20Manager\x203\.2\.4\r\nDate:\x20Thu,\x2009\x20Jul\x202015\x2022:03:
- SF:07\x20GMT\r\nCache-Control:\x20no-store\r\nPragma:\x20no-cache\r\nConte
- SF:nt-type:\x20application/x-ns-proxy-autoconfig\r\nContent-length:\x20119
- SF:\r\n\r\n<HTML>\n<Head>\n<TITLE>404\x20Not\x20Found\r\n</TITLE>\n</HEAD>
- SF:\n<BODY\x20bgcolor=\"#FFFFFF\"><h1>\n404\x20Not\x20Found\r\n</h1>\n</BO
- SF:DY>\n</HTML>\n")%r(FourOhFourRequest,12E,"HTTP/1\.0\x20404\x20Not\x20Fo
- SF:und\r\nServer:\x20Traffic\x20Manager\x203\.2\.4\r\nDate:\x20Thu,\x2009\
- SF:x20Jul\x202015\x2022:03:07\x20GMT\r\nCache-Control:\x20no-store\r\nPrag
- SF:ma:\x20no-cache\r\nContent-type:\x20text/html\r\nContent-length:\x20119
- SF:\r\n\r\n<HTML>\n<Head>\n<TITLE>404\x20Not\x20Found\r\n</TITLE>\n</HEAD>
- SF:\n<BODY\x20bgcolor=\"#FFFFFF\"><h1>\n404\x20Not\x20Found\r\n</h1>\n</BO
- SF:DY>\n</HTML>\n")%r(GenericLines,134,"HTTP/1\.0\x20400\x20Bad\x20Request
- SF:\r\nServer:\x20Traffic\x20Manager\x203\.2\.4\r\nDate:\x20Thu,\x2009\x20
- SF:Jul\x202015\x2022:03:07\x20GMT\r\nCache-Control:\x20no-store\r\nPragma:
- SF:\x20no-cache\r\nContent-type:\x20text/html\r\nContent-length:\x20123\r\
- SF:n\r\n<HTML>\n<Head>\n<TITLE>400\x20Bad\x20Request\r\n</TITLE>\n</HEAD>\
- SF:n<BODY\x20bgcolor=\"#FFFFFF\"><h1>\n400\x20Bad\x20Request\r\n</h1>\n</B
- SF:ODY>\n</HTML>\n")%r(HTTPOptions,140,"HTTP/1\.0\x20501\x20Not\x20Impleme
- SF:nted\r\nServer:\x20Traffic\x20Manager\x203\.2\.4\r\nDate:\x20Thu,\x2009
- SF:\x20Jul\x202015\x2022:03:07\x20GMT\r\nCache-Control:\x20no-store\r\nPra
- SF:gma:\x20no-cache\r\nContent-type:\x20text/html\r\nContent-length:\x2013
- SF:1\r\n\r\n<HTML>\n<Head>\n<TITLE>501\x20Not\x20Implemented\r\n</TITLE>\n
- SF:</HEAD>\n<BODY\x20bgcolor=\"#FFFFFF\"><h1>\n501\x20Not\x20Implemented\r
- SF:\n</h1>\n</BODY>\n</HTML>\n")%r(RTSPRequest,140,"HTTP/1\.0\x20501\x20No
- SF:t\x20Implemented\r\nServer:\x20Traffic\x20Manager\x203\.2\.4\r\nDate:\x
- SF:20Thu,\x2009\x20Jul\x202015\x2022:03:08\x20GMT\r\nCache-Control:\x20no-
- SF:store\r\nPragma:\x20no-cache\r\nContent-type:\x20text/html\r\nContent-l
- SF:ength:\x20131\r\n\r\n<HTML>\n<Head>\n<TITLE>501\x20Not\x20Implemented\r
- SF:\n</TITLE>\n</HEAD>\n<BODY\x20bgcolor=\"#FFFFFF\"><h1>\n501\x20Not\x20I
- SF:mplemented\r\n</h1>\n</BODY>\n</HTML>\n");
- Device type: WAP
- Running (JUST GUESSING): Linux 2.4.X (88%)
- OS CPE: cpe:/o:linux:linux_kernel:2.4
- Aggressive OS guesses: DD-WRT v24-sp2 (Linux 2.4.36) (88%)
- No exact OS matches for host (test conditions non-ideal).
- Service Info: OS: Windows; CPE: cpe:/o:microsoft:windows
- TRACEROUTE (using proto 1/icmp)
- HOP RTT ADDRESS
- 1 xxxxxxxxxxxxxxxxxxxxxxx
- 2 xxxxxxxxxxxxxxxxxxxxxxx
- 3 xxxxxxxxxxxxxxxxxxxxxxx
- 4 xxxxxxxxxxxxxxxxxxxxxxx
- 5 xxxxxxxxxxxxxxxxxxxxxxx
- 6 xxxxxxxxxxxxxxxxxxxxxxx
- 7 59.28 ms ae-4-90.edge1.LosAngeles6.Level3.net (4.69.144.208)
- 8 58.83 ms ae-4-90.edge1.LosAngeles6.Level3.net (4.69.144.208)
- 9 25.36 ms be3036.ccr21.lax04.atlas.cogentco.com (154.54.14.129)
- 10 27.43 ms be2017.ccr22.lax01.atlas.cogentco.com (154.54.0.238)
- 11 25.02 ms be2179.ccr23.lax05.atlas.cogentco.com (154.54.41.82)
- 12 25.58 ms 38.104.84.94
- 13 ... 30
- NSE: Script Post-scanning.
- Read data files from: /usr/bin/../share/nmap
- OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/
- .
- Nmap done: 1 IP address (1 host up) scanned in 1854.28 seconds
- Raw packets sent: 202 (12.348KB) | Rcvd: 17 (1.612KB)
- Aggressive UDP Scan
- Starting Nmap 6.47 ( http://nmap.org ) at 2015-07-09 13:30 MST
- NSE: Loaded 118 scripts for scanning.
- NSE: Script Pre-scanning.
- Initiating Parallel DNS resolution of 1 host. at 13:30
- Completed Parallel DNS resolution of 1 host. at 13:30, 0.08s elapsed
- Initiating UDP Scan at 13:30
- Scanning ip-50-63-202-89.ip.secureserver.net (50.63.202.89) [1000 ports]
- UDP Scan Timing: About 29.55% done; ETC: 13:32 (0:01:14 remaining)
- UDP Scan Timing: About 59.55% done; ETC: 13:32 (0:00:41 remaining)
- Completed UDP Scan at 13:32, 101.17s elapsed (1000 total ports)
- Initiating Service scan at 13:32
- Scanning 1000 services on ip-50-63-202-89.ip.secureserver.net (50.63.202.89)
- Completed Service scan at 14:18, 2810.24s elapsed (1000 services on 1 host)
- Initiating OS detection (try #1) against ip-50-63-202-89.ip.secureserver.net (50.63.202.89)
- Retrying OS detection (try #2) against ip-50-63-202-89.ip.secureserver.net (50.63.202.89)
- Initiating Traceroute at 14:18
- Completed Traceroute at 14:19, 6.08s elapsed
- Initiating Parallel DNS resolution of 9 hosts. at 14:19
- Completed Parallel DNS resolution of 9 hosts. at 14:19, 0.05s elapsed
- NSE: Script scanning 50.63.202.89.
- Initiating NSE at 14:19
- Completed NSE at 14:43, 1479.38s elapsed
- Nmap scan report for ip-50-63-202-89.ip.secureserver.net (50.63.202.89)
- Host is up.
- All 1000 scanned ports on ip-50-63-202-89.ip.secureserver.net (50.63.202.89) are open|filtered
- Too many fingerprints match this host to give specific OS details
- TRACEROUTE (using proto 1/icmp)
- HOP RTT ADDRESS
- 1 xxxxxxxxxxxxxxxxxxxxxxx
- 2 xxxxxxxxxxxxxxxxxxxxxxx
- 3 xxxxxxxxxxxxxxxxxxxxxxx
- 4 xxxxxxxxxxxxxxxxxxxxxxx
- 5 xxxxxxxxxxxxxxxxxxxxxxx
- 6 xxxxxxxxxxxxxxxxxxxxxxx
- 7 28.16 ms ae-4-90.edge1.LosAngeles6.Level3.net (4.69.144.208)
- 8 30.71 ms ae-4-90.edge1.LosAngeles6.Level3.net (4.69.144.208)
- 9 24.36 ms be3036.ccr21.lax04.atlas.cogentco.com (154.54.14.129)
- 10 27.07 ms be2017.ccr22.lax01.atlas.cogentco.com (154.54.0.238)
- 11 23.88 ms be2179.ccr23.lax05.atlas.cogentco.com (154.54.41.82)
- 12 28.66 ms 38.104.84.94
- 13 ... 30
- NSE: Script Post-scanning.
- Read data files from: /usr/bin/../share/nmap
- OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/
- .
- Nmap done: 1 IP address (1 host up) scanned in 4414.19 seconds
- Raw packets sent: 2117 (66.138KB) | Rcvd: 11 (856B)
- WHOIS Results...
- Domain Name: 5ELAFABOOK.COM
- Registry Domain ID: 1906966818_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.godaddy.com
- Registrar URL: http://www.godaddy.com
- Update Date: 2015-03-03T22:18:47Z
- Creation Date: 2015-03-03T22:18:47Z
- Registrar Registration Expiration Date: 2016-03-03T22:18:47Z
- Registrar: GoDaddy.com, LLC
- Registrar IANA ID: 146
- Registrar Abuse Contact Email: abuse@godaddy.com
- Registrar Abuse Contact Phone: +1.4806242505
- Domain Status: clientTransferProhibited http://www.icann.org/epp#clientTransferProhibited
- Domain Status: clientUpdateProhibited http://www.icann.org/epp#clientUpdateProhibited
- Domain Status: clientRenewProhibited http://www.icann.org/epp#clientRenewProhibited
- Domain Status: clientDeleteProhibited http://www.icann.org/epp#clientDeleteProhibited
- Registry Registrant ID:
- Registrant Name: Abu Musab
- Registrant Organization:
- Registrant Street: Islamic State Mosul
- Registrant City: Mosul
- Registrant State/Province: Islamic State
- Registrant Postal Code: 27222
- Registrant Country: Egypt
- Registrant Phone: +20.01111111111
- Registrant Phone Ext:
- Registrant Fax:
- Registrant Fax Ext:
- Registrant Email: info@5elafabook.com
- Registry Admin ID:
- Admin Name: Abu Musab
- Admin Organization:
- Admin Street: Islamic State Mosul
- Admin City: Mosul
- Admin State/Province: Islamic State
- Admin Postal Code: 27222
- Admin Country: Egypt
- Admin Phone: +20.01111111111
- Admin Phone Ext:
- Admin Fax:
- Admin Fax Ext:
- Admin Email: info@5elafabook.com
- Registry Tech ID:
- Tech Name: Abu Musab
- Tech Organization:
- Tech Street: Islamic State Mosul
- Tech City: Mosul
- Tech State/Province: Islamic State
- Tech Postal Code: 27222
- Tech Country: Egypt
- Tech Phone: +20.01111111111
- Tech Phone Ext:
- Tech Fax:
- Tech Fax Ext:
- Tech Email: info@5elafabook.com
- Name Server: NS39.DOMAINCONTROL.COM
- Name Server: NS40.DOMAINCONTROL.COM
- DNSSEC: unsigned
- URL of the ICANN WHOIS Data Problem Reporting System: http://wdprs.internic.net/
- >>> Last update of WHOIS database: 2015-07-09T20:00:00Z <<<
- For more information on Whois status codes, please visit
- https://www.icann.org/resources/pages/epp-status-codes-2014-06-16-en
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement