API tools faq
paste
Advertisement
Guest User

Anonymous JTSEC #OpDeathEathers full Recon #16

a guest
Sep 23rd, 2018
3,173
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 32.26 KB | None | 0 0
raw download clone embed print report
  1. #######################################################################################################################################
  2. Nom de l'hôte 18sexyteens.club FAI NovoServe B.V.
  3. Continent Europe Drapeau
  4. NL
  5. Pays Pays-Bas Code du pays NL
  6. Région Hollande-Méridionale Heure locale 23 Sep 2018 19:20 CEST
  7. Ville Rotterdam Code Postal 3071
  8. Adresse IP 89.105.197.75 Latitude 51.909
  9. Longitude 4.503
  10. #######################################################################################################################################
  11. % This is the RIPE Database query service.
  12. % The objects are in RPSL format.
  13. %
  14. % The RIPE Database is subject to Terms and Conditions.
  15. % See http://www.ripe.net/db/support/db-terms-conditions.pdf
  16.  
  17. % Note: this output has been filtered.
  18. % To receive output for a database update, use the "-B" flag.
  19.  
  20. % Information related to '89.105.197.64 - 89.105.197.127'
  21.  
  22. % Abuse contact for '89.105.197.64 - 89.105.197.127' is 'abusedesk@novoserve.com'
  23.  
  24. inetnum: 89.105.197.64 - 89.105.197.127
  25. netname: NLISPTHEWEBMEN12
  26. descr: The Webmen Hosting B.V.
  27. country: NL
  28. admin-c: NRA29-RIPE
  29. tech-c: NRA29-RIPE
  30. status: ASSIGNED PA
  31. mnt-by: nl-novoserve-1-mnt
  32. created: 2008-01-21T13:45:03Z
  33. last-modified: 2017-02-21T07:37:47Z
  34. source: RIPE
  35.  
  36. role: Novoserve Role Account
  37. address: Gilderbroederslaan 1
  38. nic-hdl: NRA29-RIPE
  39. mnt-by: nl-novoserve-1-mnt
  40. created: 2016-05-11T12:25:10Z
  41. last-modified: 2018-05-18T09:37:28Z
  42. source: RIPE # Filtered
  43.  
  44. % Information related to '89.105.192.0/19AS24875'
  45.  
  46. route: 89.105.192.0/19
  47. descr: NovoServe B.V.
  48. origin: AS24875
  49. mnt-by: nl-novoserve-1-mnt
  50. created: 2006-03-18T15:43:45Z
  51. last-modified: 2016-09-05T14:09:05Z
  52. source: RIPE
  53. #######################################################################################################################################
  54. [i] Scanning Site: http://18sexyteens.club
  55.  
  56.  
  57.  
  58. B A S I C I N F O
  59. =======================================================================================================================================
  60.  
  61.  
  62. [+] Site Title: Darknet Pornhub - Teen NN models, Young Nudist, Small Kitties!!!
  63. [+] IP address: 89.105.197.75
  64. [+] Web Server: nginx
  65. [+] CMS: Could Not Detect
  66. [+] Cloudflare: Not Detected
  67. [+] Robots File: Found
  68.  
  69. -------------[ contents ]----------------
  70. # vestacp autogenerated robots.txt
  71. User-agent: *
  72. Crawl-delay: 10
  73.  
  74. -----------[end of contents]-------------
  75.  
  76.  
  77.  
  78. G E O I P L O O K U P
  79. =======================================================================================================================================
  80.  
  81. [i] IP Address: 89.105.197.75
  82. [i] Country: NL
  83. [i] State: N/A
  84. [i] City: N/A
  85. [i] Latitude: 52.382401
  86. [i] Longitude: 4.899500
  87.  
  88.  
  89.  
  90.  
  91. H T T P H E A D E R S
  92. =======================================================================================================================================
  93.  
  94.  
  95. [i] HTTP/1.1 200 OK
  96. [i] Server: nginx
  97. [i] Date: Sun, 23 Sep 2018 17:30:11 GMT
  98. [i] Content-Type: text/html; charset=UTF-8
  99. [i] Connection: close
  100.  
  101.  
  102.  
  103.  
  104. D N S L O O K U P
  105. =======================================================================================================================================
  106.  
  107. ;; Truncated, retrying in TCP mode.
  108. 18sexyteens.club. 14400 IN SOA ns1.domain.tld. root.18sexyteens.club. 2018010603 7200 3600 1209600 180
  109. 18sexyteens.club. 14400 IN MX 10 mail.18sexyteens.club.
  110. 18sexyteens.club. 14400 IN NS ns1.domain.tld.
  111. 18sexyteens.club. 14400 IN NS ns2.domain.tld.
  112. 18sexyteens.club. 14400 IN A 89.105.197.75
  113. 18sexyteens.club. 14400 IN TXT "v=spf1 a mx ip4:89.105.197.75 ~all"
  114.  
  115.  
  116.  
  117.  
  118. S U B N E T C A L C U L A T I O N
  119. =======================================================================================================================================
  120.  
  121. Address = 89.105.197.75
  122. Network = 89.105.197.75 / 32
  123. Netmask = 255.255.255.255
  124. Broadcast = not needed on Point-to-Point links
  125. Wildcard Mask = 0.0.0.0
  126. Hosts Bits = 0
  127. Max. Hosts = 1 (2^0 - 0)
  128. Host Range = { 89.105.197.75 - 89.105.197.75 }
  129.  
  130.  
  131.  
  132. N M A P P O R T S C A N
  133. =======================================================================================================================================
  134.  
  135.  
  136. Starting Nmap 7.40 ( https://nmap.org ) at 2018-09-23 17:30 UTC
  137. Nmap scan report for 18sexyteens.club (89.105.197.75)
  138. Host is up (0.080s latency).
  139. PORT STATE SERVICE
  140. 21/tcp open ftp
  141. 22/tcp open ssh
  142. 23/tcp filtered telnet
  143. 80/tcp open http
  144. 110/tcp open pop3
  145. 143/tcp open imap
  146. 443/tcp closed https
  147. 3389/tcp filtered ms-wbt-server
  148.  
  149. Nmap done: 1 IP address (1 host up) scanned in 1.46 seconds
  150.  
  151. #######################################################################################################################################
  152. [?] Enter the target: 89.105.197.75
  153. [!] IP Address : 89.105.197.75
  154. [!] 89.105.197.75 doesn't seem to use a CMS
  155. [+] Honeypot Probabilty: 30%
  156. ---------------------------------------------------------------------------------------------------------------------------------------
  157. [~] Trying to gather whois information for 89.105.197.75
  158. [+] Whois information found
  159. [-] Unable to build response, visit https://who.is/whois/89.105.197.75
  160. ---------------------------------------------------------------------------------------------------------------------------------------
  161. [+] Robots.txt retrieved
  162. # vestacp autogenerated robots.txt
  163. User-agent: *
  164. Crawl-delay: 10
  165.  
  166. ---------------------------------------------------------------------------------------------------------------------------------------
  167. PORT STATE SERVICE
  168. 21/tcp open ftp
  169. 22/tcp open ssh
  170. 23/tcp filtered telnet
  171. 80/tcp open http
  172. 110/tcp open pop3
  173. 143/tcp open imap
  174. 443/tcp closed https
  175. 3389/tcp filtered ms-wbt-server
  176. Nmap done: 1 IP address (1 host up) scanned in 1.38 seconds
  177. --------------------------------------------------------------------------------------------------------------------------------------
  178. #######################################################################################################################################
  179. [+] Hosting Info for Website: 18sexyteens.club
  180. [+] Visitors per day: 3,770
  181. [+] IP Address: ...
  182. [+] IP Reverse DNS (Host): 89.105.197.75
  183. [+] Hosting IP Range: 89.105.192.0 - 89.105.223.255 (8,192 ip)
  184. [+] Hosting Address: Gildenbroederslaan 1, 7005Bm, Doetichem, Netherlands
  185. [+] Hosting Country: NLD
  186. [+] Hosting Phone: +31 857730188
  187. [+] Hosting Website: da001.cust.novoserve.com
  188. [+] Hosting CIDR: 89.105.192.0/19
  189.  
  190. [+] NS: ns1.domain.tld
  191. [+] NS: ns2.domain.tld
  192. #######################################################################################################################################
  193. [*] URL: 18sexyteens.club
  194. [*] IP Location: NLD
  195. [*] IP Range: 89.105.192.0 - 89.105.223.255
  196. [*] IP Reverse DNS: 89.105.197.75
  197. [*] IPv6: 2a01:4f8:130:2342::1
  198. [*] Hosting Country: NLD
  199. [*] Hosting Phone: +31 857730188
  200. [*] Hosting Website: da001.cust.novoserve.com
  201. [*] NS: ns1.domain.tld.
  202. [*] NS: ns2.domain.tld.
  203. [*] MX: 10\tmail.18sexyteens.club.
  204. #######################################################################################################################################
  205. Start: 2018-09-23T17:52:36+0000
  206. HOST: web01 Loss% Snt Last Avg Best Wrst StDev
  207. 1.|-- 45.79.12.201 0.0% 3 1.0 0.9 0.8 1.0 0.1
  208. 2.|-- 45.79.12.4 0.0% 3 0.8 0.9 0.8 1.0 0.1
  209. 3.|-- 45.79.12.8 0.0% 3 0.9 0.8 0.6 0.9 0.2
  210. 4.|-- ae-37.a01.dllstx04.us.bb.gin.ntt.net 0.0% 3 1.5 1.4 1.2 1.6 0.2
  211. 5.|-- ae-9.r10.dllstx09.us.bb.gin.ntt.net 0.0% 3 1.4 2.2 1.4 3.5 1.1
  212. 6.|-- ??? 100.0 3 0.0 0.0 0.0 0.0 0.0
  213. 7.|-- ae-1-3101.edge3.Dusseldorf1.Level3.net 0.0% 3 127.8 127.8 127.6 128.0 0.2
  214. 8.|-- 212.162.30.138 0.0% 3 137.6 132.9 130.5 137.6 4.1
  215. 9.|-- lag2.ar2-dct.infra.novoserve.net 0.0% 3 129.0 130.2 129.0 132.3 1.8
  216. 10.|-- vlanif194.ar1-eqe.infra.novoserve.net 0.0% 3 129.6 130.8 129.6 133.0 1.9
  217. 11.|-- lag2.ar1-dcd.infra.novoserve.net 0.0% 3 123.7 126.1 123.3 131.4 4.6
  218. 12.|-- 89.105.197.75 0.0% 3 122.2 122.0 121.9 122.2 0.2
  219.  
  220. #######################################################################################################################################
  221. [*] Performing General Enumeration of Domain: 18sexyteens.club
  222. [-] DNSSEC is not configured for 18sexyteens.club
  223. [-] Error while resolving SOA record.
  224. [*] MX mail.18sexyteens.club 89.105.197.75
  225. [*] A 18sexyteens.club 89.105.197.75
  226. [*] TXT 18sexyteens.club v=spf1 a mx ip4:89.105.197.75 ~all
  227. [*] TXT _domainkey.18sexyteens.club t=y; o=~;
  228. [*] Enumerating SRV Records
  229. [-] No SRV Records Found for 18sexyteens.club
  230. [+] 0 Records Found
  231. #######################################################################################################################################
  232. [*] Processing domain 18sexyteens.club
  233. [+] Getting nameservers
  234. [-] Getting nameservers failed
  235. [-] Zone transfer failed
  236.  
  237. [+] TXT records found
  238. "v=spf1 a mx ip4:89.105.197.75 ~all"
  239.  
  240. [+] MX records found, added to target list
  241. 10 mail.18sexyteens.club.
  242.  
  243. [*] Scanning 18sexyteens.club for A records
  244. 89.105.197.75 - 18sexyteens.club
  245. 89.105.197.75 - ftp.18sexyteens.club
  246. 89.105.197.75 - imap.18sexyteens.club
  247. 89.105.197.75 - mail.18sexyteens.club
  248. 89.105.197.75 - pop.18sexyteens.club
  249. 89.105.197.75 - smtp.18sexyteens.club
  250. 89.105.197.75 - www.18sexyteens.club
  251. #######################################################################################################################################
  252. ftp.18sexyteens.club
  253. IP address #1: 89.105.197.75
  254.  
  255. imap.18sexyteens.club
  256. IP address #1: 89.105.197.75
  257.  
  258. mail.18sexyteens.club
  259. IP address #1: 89.105.197.75
  260.  
  261. pop.18sexyteens.club
  262. IP address #1: 89.105.197.75
  263.  
  264. smtp.18sexyteens.club
  265. IP address #1: 89.105.197.75
  266.  
  267. www.18sexyteens.club
  268. IP address #1: 89.105.197.75
  269. #######################################################################################################################################
  270. dnsenum VERSION:1.2.4
  271.  
  272. ----- 18sexyteens.club -----
  273.  
  274.  
  275. Host's addresses:
  276. __________________
  277.  
  278. 18sexyteens.club. 566 IN A 89.105.197.75
  279.  
  280.  
  281. Name Servers:
  282. ______________
  283.  
  284.  
  285.  
  286. Mail (MX) Servers:
  287. ___________________
  288.  
  289. mail.18sexyteens.club. 1087 IN A 89.105.197.75
  290.  
  291.  
  292. Trying Zone Transfers and getting Bind Versions:
  293. _________________________________________________
  294.  
  295.  
  296. Trying Zone Transfer for 18sexyteens.club on ns2.domain.tld ...
  297.  
  298. Trying Zone Transfer for 18sexyteens.club on ns1.domain.tld ...
  299.  
  300. brute force file not specified, bay.
  301. #######################################################################################################################################
  302. Starting Nmap 7.70 ( https://nmap.org ) at 2018-09-23 17:48 EDT
  303. Nmap scan report for 18sexyteens.club (89.105.197.75)
  304. Host is up (0.68s latency).
  305.  
  306. PORT STATE SERVICE
  307. 53/udp open domain
  308. 67/udp open|filtered dhcps
  309. 68/udp open|filtered dhcpc
  310. 69/udp open|filtered tftp
  311. 88/udp open|filtered kerberos-sec
  312. 123/udp open|filtered ntp
  313. 137/udp open|filtered netbios-ns
  314. 138/udp open|filtered netbios-dgm
  315. 139/udp open|filtered netbios-ssn
  316. 161/udp open|filtered snmp
  317. 162/udp open|filtered snmptrap
  318. 389/udp open|filtered ldap
  319. 520/udp open|filtered route
  320. 2049/udp open|filtered nfs
  321.  
  322. Nmap done: 1 IP address (1 host up) scanned in 9.32 seconds
  323. #######################################################################################################################################
  324. Starting Nmap 7.70 ( https://nmap.org ) at 2018-09-23 17:49 EDT
  325. Nmap scan report for 18sexyteens.club (89.105.197.75)
  326. Host is up (0.10s latency).
  327.  
  328. PORT STATE SERVICE VERSION
  329. 67/udp open|filtered dhcps
  330. |_dhcp-discover: ERROR: Script execution failed (use -d to debug)
  331. Too many fingerprints match this host to give specific OS details
  332.  
  333. TRACEROUTE (using proto 1/icmp)
  334. HOP RTT ADDRESS
  335. 1 ... 30
  336.  
  337. OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
  338. Nmap done: 1 IP address (1 host up) scanned in 114.67 seconds
  339. + -- --=[Port 68 opened... running tests...
  340. Starting Nmap 7.70 ( https://nmap.org ) at 2018-09-23 17:51 EDT
  341. Nmap scan report for 18sexyteens.club (89.105.197.75)
  342. Host is up (0.17s latency).
  343.  
  344. PORT STATE SERVICE VERSION
  345. 68/udp open|filtered dhcpc
  346. Too many fingerprints match this host to give specific OS details
  347.  
  348. TRACEROUTE (using proto 1/icmp)
  349. HOP RTT ADDRESS
  350. 1 ... 30
  351.  
  352. OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
  353. Nmap done: 1 IP address (1 host up) scanned in 114.29 seconds
  354. + -- --=[Port 69 opened... running tests...
  355. Starting Nmap 7.70 ( https://nmap.org ) at 2018-09-23 17:52 EDT
  356. Nmap scan report for 18sexyteens.club (89.105.197.75)
  357. Host is up (0.0036s latency).
  358.  
  359. PORT STATE SERVICE VERSION
  360. 69/udp open|filtered tftp
  361. Too many fingerprints match this host to give specific OS details
  362.  
  363. TRACEROUTE (using proto 1/icmp)
  364. HOP RTT ADDRESS
  365. 1 ... 30
  366.  
  367. OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
  368. Nmap done: 1 IP address (1 host up) scanned in 142.12 seconds
  369. + -- --=[Port 79 closed... skipping.
  370. + -- --=[Port 80 closed... skipping.
  371. + -- --=[Port 110 closed... skipping.
  372. + -- --=[Port 111 closed... skipping.
  373. + -- --=[Port 123 opened... running tests...
  374. Starting Nmap 7.70 ( https://nmap.org ) at 2018-09-23 17:55 EDT
  375. Nmap scan report for 18sexyteens.club (89.105.197.75)
  376. Host is up (0.11s latency).
  377.  
  378. PORT STATE SERVICE VERSION
  379. 123/udp open|filtered ntp
  380. Too many fingerprints match this host to give specific OS details
  381.  
  382. TRACEROUTE (using proto 1/icmp)
  383. HOP RTT ADDRESS
  384. 1 ... 30
  385.  
  386. OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
  387. Nmap done: 1 IP address (1 host up) scanned in 135.13 seconds
  388. + -- --=[Port 135 closed... skipping.
  389. + -- --=[Port 137 closed... skipping.
  390. + -- --=[Port 139 closed... skipping.
  391. + -- --=[Port 161 opened... running tests...
  392. Starting Nmap 7.70 ( https://nmap.org ) at 2018-09-23 17:57 EDT
  393. Nmap scan report for 18sexyteens.club (89.105.197.75)
  394. Host is up (0.89s latency).
  395.  
  396. PORT STATE SERVICE VERSION
  397. 161/tcp filtered snmp
  398. 161/udp open|filtered snmp
  399. Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
  400. Aggressive OS guesses: CMI Genus NEMA terminal (93%), FreeBSD 6.1-RELEASE (93%), Linux 3.0 (93%), Nokia N81 mobile phone (Symbian OS) (93%), ISS Proventia GX3002 firewall (Linux 2.4.18) (93%), Linux 2.6.22 (Debian 4.0) (93%), IBM i 6 (93%), Actiontec MI424WR-GEN3I WAP (92%), FreeBSD 8.0-CURRENT (91%), IBM OS/400 V5R2 - V5R3 (91%)
  401. No exact OS matches for host (test conditions non-ideal).
  402.  
  403. TRACEROUTE (using proto 1/icmp)
  404. HOP RTT ADDRESS
  405. 1 ... 30
  406.  
  407. OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
  408. Nmap done: 1 IP address (1 host up) scanned in 183.58 seconds
  409.  
  410.  
  411. .,,. .
  412. .\$$$$$L..,,==aaccaacc%#s$b. d8, d8P
  413. d8P #$$$$$$$$$$$$$$$$$$$$$$$$$$$b. `BP d888888p
  414. d888888P '7$$$$\""""''^^`` .7$$$|D*"'``` ?88'
  415. d8bd8b.d8p d8888b ?88' d888b8b _.os#$|8*"` d8P ?8b 88P
  416. 88P`?P'?P d8b_,dP 88P d8P' ?88 .oaS###S*"` d8P d8888b $whi?88b 88b
  417. d88 d8 ?8 88b 88b 88b ,88b .osS$$$$*" ?88,.d88b, d88 d8P' ?88 88P `?8b
  418. d88' d88b 8b`?8888P'`?8b`?88P'.aS$$$$Q*"` `?88' ?88 ?88 88b d88 d88
  419. .a#$$$$$$"` 88b d8P 88b`?8888P'
  420. ,s$$$$$$$"` 888888P' 88n _.,,,ass;:
  421. .a$$$$$$$P` d88P' .,.ass%#S$$$$$$$$$$$$$$'
  422. .a$###$$$P` _.,,-aqsc#SS$$$$$$$$$$$$$$$$$$$$$$$$$$'
  423. ,a$$###$$P` _.,-ass#S$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$####SSSS'
  424. .a$$$$$$$$$$SSS$$$$$$$$$$$$$$$$$$$$$$$$$$$$SS##==--""''^^/$$$$$$'
  425. _______________________________________________________________ ,&$$$$$$'_____
  426. ll&&$$$$'
  427. .;;lll&&&&'
  428. ...;;lllll&'
  429. ......;;;llll;;;....
  430. ` ......;;;;... . .
  431.  
  432.  
  433. =[ metasploit v4.17.14-dev ]
  434. + -- --=[ 1809 exploits - 1030 auxiliary - 313 post ]
  435. + -- --=[ 539 payloads - 42 encoders - 10 nops ]
  436. + -- --=[ Free Metasploit Pro trial: http://r-7.co/trymsp ]
  437.  
  438. RHOSTS => 18sexyteens.club
  439. [-] 89.105.197.75 SNMP request timeout.
  440. [*] Scanned 1 of 1 hosts (100% complete)
  441.  
  442. #######################################################################################################################################
  443.  
  444. I, [2018-09-23T18:00:49.928565 #25430] INFO -- : Initiating port scan
  445. I, [2018-09-23T18:25:13.012722 #25430] INFO -- : Using nmap scan output file logs/nmap_output_2018-09-23_18-00-49.xml
  446. W, [2018-09-23T18:25:13.013484 #25430] WARN -- : Yasuo did not find any potential hosts to enumerate
  447. #######################################################################################################################################
  448. Starting Nmap 7.70 ( https://nmap.org ) at 2018-09-23 18:25 EDT
  449. NSE: Loaded 285 scripts for scanning.
  450. NSE: Script Pre-scanning.
  451. Initiating NSE at 18:25
  452. NSE: [shodan-api] Error: Please specify your ShodanAPI key with the shodan-api.apikey argument
  453. NSE: [mtrace] A source IP must be provided through fromip argument.
  454. Completed NSE at 18:25, 10.37s elapsed
  455. Initiating NSE at 18:25
  456. Completed NSE at 18:25, 0.00s elapsed
  457. Initiating NSE at 18:25
  458. Completed NSE at 18:25, 0.00s elapsed
  459. Pre-scan script results:
  460. | broadcast-igmp-discovery:
  461. | 192.168.0.1
  462. | Interface: eth0
  463. | Version: 2
  464. | Group: 224.0.0.2
  465. | Description: All Routers on this Subnet
  466. | 192.168.0.1
  467. | Interface: eth0
  468. | Version: 2
  469. | Group: 224.0.0.22
  470. | Description: IGMP
  471. | 192.168.0.2
  472. | Interface: eth0
  473. | Version: 2
  474. | Group: 224.0.0.251
  475. | Description: mDNS (rfc6762)
  476. | 192.168.0.2
  477. | Interface: eth0
  478. | Version: 2
  479. | Group: 224.0.0.252
  480. | Description: Link-local Multicast Name Resolution (rfc4795)
  481. | 192.168.0.3
  482. | Interface: eth0
  483. | Version: 2
  484. | Group: 239.255.255.246
  485. | Description: Organization-Local Scope (rfc2365)
  486. |_ Use the newtargets script-arg to add the results as targets
  487. |_broadcast-pim-discovery: ERROR: Script execution failed (use -d to debug)
  488. | broadcast-ping:
  489. | IP: 192.168.0.1 MAC: 38:70:0c:d7:c1:0a
  490. |_ Use --script-args=newtargets to add the results as targets
  491. | lltd-discovery:
  492. | 192.168.0.3
  493. | Hostname: [TV]UN46ES7100
  494. | Mac: 1c:5a:3e:1e:10:51 (Samsung Electronics)
  495. |_ Use the newtargets script-arg to add the results as targets
  496. |_mrinfo: ERROR: Script execution failed (use -d to debug)
  497. | targets-asn:
  498. |_ targets-asn.asn is a mandatory parameter
  499. Initiating Ping Scan at 18:25
  500. Scanning 18sexyteens.club (89.105.197.75) [7 ports]
  501. Completed Ping Scan at 18:25, 0.95s elapsed (1 total hosts)
  502. Initiating Parallel DNS resolution of 1 host. at 18:25
  503. Completed Parallel DNS resolution of 1 host. at 18:25, 0.12s elapsed
  504. Initiating SYN Stealth Scan at 18:25
  505. Scanning 18sexyteens.club (89.105.197.75) [1000 ports]
  506. Increasing send delay for 89.105.197.75 from 0 to 5 due to 11 out of 14 dropped probes since last increase.
  507. Increasing send delay for 89.105.197.75 from 5 to 10 due to 15 out of 37 dropped probes since last increase.
  508. SYN Stealth Scan Timing: About 20.41% done; ETC: 18:27 (0:02:01 remaining)
  509. adjust_timeouts2: packet supposedly had rtt of 8698109 microseconds. Ignoring time.
  510. adjust_timeouts2: packet supposedly had rtt of 8698109 microseconds. Ignoring time.
  511. Warning: 89.105.197.75 giving up on port because retransmission cap hit (6).
  512. SYN Stealth Scan Timing: About 39.01% done; ETC: 18:28 (0:01:45 remaining)
  513. SYN Stealth Scan Timing: About 68.69% done; ETC: 18:27 (0:00:44 remaining)
  514. Completed SYN Stealth Scan at 18:27, 124.33s elapsed (1000 total ports)
  515. Initiating UDP Scan at 18:27
  516. Scanning 18sexyteens.club (89.105.197.75) [1000 ports]
  517. Discovered open port 53/udp on 89.105.197.75
  518. Completed UDP Scan at 18:27, 23.69s elapsed (1000 total ports)
  519. Initiating Service scan at 18:27
  520. Scanning 1000 services on 18sexyteens.club (89.105.197.75)
  521. Service scan Timing: About 0.40% done
  522. Service scan Timing: About 3.20% done; ETC: 20:09 (1:38:49 remaining)
  523. Service scan Timing: About 6.20% done; ETC: 19:46 (1:13:53 remaining)
  524. Service scan Timing: About 9.20% done; ETC: 19:38 (1:04:19 remaining)
  525. Service scan Timing: About 12.20% done; ETC: 19:34 (0:58:32 remaining)
  526. Service scan Timing: About 15.20% done; ETC: 19:32 (0:54:29 remaining)
  527. Service scan Timing: About 18.20% done; ETC: 19:30 (0:51:14 remaining)
  528. Service scan Timing: About 23.40% done; ETC: 19:23 (0:42:53 remaining)
  529. Service scan Timing: About 24.20% done; ETC: 19:28 (0:45:53 remaining)
  530. Service scan Timing: About 29.30% done; ETC: 19:23 (0:39:27 remaining)
  531. Service scan Timing: About 35.30% done; ETC: 19:23 (0:35:55 remaining)
  532. Service scan Timing: About 41.30% done; ETC: 19:23 (0:32:30 remaining)
  533. Service scan Timing: About 47.30% done; ETC: 19:23 (0:29:06 remaining)
  534. Service scan Timing: About 53.30% done; ETC: 19:22 (0:25:44 remaining)
  535. Service scan Timing: About 59.30% done; ETC: 19:22 (0:22:23 remaining)
  536. Service scan Timing: About 65.30% done; ETC: 19:22 (0:19:04 remaining)
  537. Service scan Timing: About 71.30% done; ETC: 19:22 (0:15:45 remaining)
  538. Service scan Timing: About 77.30% done; ETC: 19:22 (0:12:27 remaining)
  539. Service scan Timing: About 83.30% done; ETC: 19:22 (0:09:09 remaining)
  540. Service scan Timing: About 88.80% done; ETC: 19:22 (0:06:10 remaining)
  541. Service scan Timing: About 94.80% done; ETC: 19:22 (0:02:52 remaining)
  542. Completed Service scan at 19:23, 3318.04s elapsed (1000 services on 1 host)
  543. Initiating OS detection (try #1) against 18sexyteens.club (89.105.197.75)
  544. Initiating Traceroute at 19:23
  545. Completed Traceroute at 19:23, 0.91s elapsed
  546. Initiating Parallel DNS resolution of 1 host. at 19:23
  547. Completed Parallel DNS resolution of 1 host. at 19:23, 0.03s elapsed
  548. NSE: Script scanning 89.105.197.75.
  549. Initiating NSE at 19:23
  550. NSE: [ip-geolocation-maxmind] You must specify a Maxmind database file with the maxmind_db argument.
  551. NSE: [ip-geolocation-maxmind] Download the database from http://dev.maxmind.com/geoip/legacy/geolite/
  552. Completed NSE at 19:24, 62.09s elapsed
  553. Initiating NSE at 19:24
  554. NSOCK ERROR [3634.4550s] mksock_bind_addr(): Bind to 0.0.0.0:919 failed (IOD #713): Address already in use (98)
  555. NSOCK ERROR [3637.3710s] mksock_bind_addr(): Bind to 0.0.0.0:918 failed (IOD #732): Address already in use (98)
  556. NSOCK ERROR [3666.5070s] mksock_bind_addr(): Bind to 0.0.0.0:921 failed (IOD #959): Address already in use (98)
  557. Completed NSE at 19:26, 139.58s elapsed
  558. Initiating NSE at 19:26
  559. Completed NSE at 19:26, 8.80s elapsed
  560. Nmap scan report for 18sexyteens.club (89.105.197.75)
  561. Host is up (0.59s latency).
  562. Not shown: 999 open|filtered ports, 908 filtered ports, 92 closed ports
  563. PORT STATE SERVICE VERSION
  564. 53/udp open domain (unknown banner: get lost)
  565. | dns-nsid:
  566. |_ bind.version: get lost
  567. | fingerprint-strings:
  568. | DNSVersionBindReq:
  569. | version
  570. | bind
  571. | lost
  572. | NBTStat:
  573. |_ CKAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
  574. 1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at https://nmap.org/cgi-bin/submit.cgi?new-service :
  575. SF-Port53-UDP:V=7.70%I=7%D=9/23%Time=5BA8136E%P=x86_64-pc-linux-gnu%r(DNSV
  576. SF:ersionBindReq,41,"\0\x06\x85\0\0\x01\0\x01\0\x01\0\0\x07version\x04bind
  577. SF:\0\0\x10\0\x03\xc0\x0c\0\x10\0\x03\0\0\0\0\0\t\x08get\x20lost\xc0\x0c\0
  578. SF:\x02\0\x03\0\0\0\0\0\x02\xc0\x0c")%r(DNSStatusRequest,C,"\0\0\x90\x04\0
  579. SF:\0\0\0\0\0\0\0")%r(NBTStat,32,"\x80\xf0\x80\x15\0\x01\0\0\0\0\0\0\x20CK
  580. SF:AAAAAAAAAAAAAAAAAAAAAAAAAAAAAA\0\0!\0\x01");
  581. Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
  582. Device type: firewall|general purpose
  583. Running: Linux 2.4.X|2.6.X, ISS embedded
  584. OS CPE: cpe:/o:linux:linux_kernel:2.4.18 cpe:/h:iss:proventia_gx3002 cpe:/o:linux:linux_kernel:2.6.22
  585. OS details: ISS Proventia GX3002 firewall (Linux 2.4.18), Linux 2.6.22 (Debian 4.0)
  586. Network Distance: 1 hop
  587.  
  588. Host script results:
  589. | asn-query:
  590. | BGP: 89.105.192.0/20 and 89.105.192.0/19 | Country: NL
  591. | Origin AS: 24875 - NOVOSERVE-AS, NL
  592. |_ Peer AS: 33891
  593. |_fcrdns: FAIL (No PTR record)
  594. | firewalk:
  595. | HOP HOST PROTOCOL BLOCKED PORTS
  596. | 0 10.211.1.85 tcp 1,3-4,6-7,9,13,17,19,24
  597. |_ udp 2-3,7,9,13,17,19-22
  598. |_hostmap-robtex: ERROR: Script execution failed (use -d to debug)
  599. | ip-geolocation-geoplugin:
  600. |_89.105.197.75 (18sexyteens.club)
  601. |_ipidseq: Random Positive Increments
  602. |_path-mtu: PMTU == 1500
  603. | resolveall:
  604. | Host '18sexyteens.club' also resolves to:
  605. | Use the 'newtargets' script-arg to add the results as targets
  606. |_ Use the --resolve-all option to scan all resolved addresses without using this script.
  607. | traceroute-geolocation:
  608. | HOP RTT ADDRESS GEOLOCATION
  609. |_ 1 906.57 89.105.197.75 51.909,4.503 Netherlands (South Holland)
  610. | whois-ip: Record found at whois.ripe.net
  611. | inetnum: 89.105.197.64 - 89.105.197.127
  612. | netname: NLISPTHEWEBMEN12
  613. | descr: The Webmen Hosting B.V.
  614. | country: NL
  615. | role: Novoserve Role Account
  616. |_email: abuse@novoserve.com
  617.  
  618. TRACEROUTE (using port 443/tcp)
  619. HOP RTT ADDRESS
  620. 1 906.57 ms 89.105.197.75
  621.  
  622. NSE: Script Post-scanning.
  623. Initiating NSE at 19:26
  624. Completed NSE at 19:26, 0.00s elapsed
  625. Initiating NSE at 19:26
  626. Completed NSE at 19:26, 0.00s elapsed
  627. Initiating NSE at 19:26
  628. Completed NSE at 19:26, 0.00s elapsed
  629. Read data files from: /usr/bin/../share/nmap
  630. OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
  631. Nmap done: 1 IP address (1 host up) scanned in 3695.75 seconds
  632. Raw packets sent: 8828 (361.062KB) | Rcvd: 1429 (104.892KB)
  633. #######################################################################################################################################
  634. =======================================================================================================================================
  635. | Domain: http://18sexyteens.club/
  636. | Server: nginx
  637. | IP: 89.105.197.75
  638. =======================================================================================================================================
  639. |
  640. | Directory check:
  641. | [+] CODE: 200 URL: http://18sexyteens.club/icons/
  642. | [+] CODE: 200 URL: http://18sexyteens.club/phpmyadmin/
  643. | [+] CODE: 200 URL: http://18sexyteens.club/webmail/
  644. =======================================================================================================================================
  645. |
  646. | File check:
  647. | [+] CODE: 200 URL: http://18sexyteens.club/index.php
  648. | [+] CODE: 200 URL: http://18sexyteens.club/robots.txt
  649. =======================================================================================================================================
  650. |
  651. | Check robots.txt:
  652. |
  653. | Check sitemap.xml:
  654. =======================================================================================================================================
  655. #######################################################################################################################################
  656. | E-mails:
  657. | [+] E-mail Found: klaus.hartl@stilbuero.de
  658. | [+] E-mail Found: kevinh@kevcom.com
  659. | [+] E-mail Found: alpha@zforms.ru
  660. | [+] E-mail Found: humbedooh@apache.org
  661. | [+] E-mail Found: mike@hyperreal.org
  662. | [+] E-mail Found: crawleradmin.t-info@telekom.de
  663. |
  664. | File Upload Forms:
  665. |
  666. | FCKeditor File Upload:
  667. |
  668. | Source Code Disclosure:
  669. | [+] Source Code Found: http://18sexyteens.club/phpmyadmin/doc/html/_sources/setup.txt
  670. | [+] Source Code Found: http://18sexyteens.club/phpmyadmin/doc/html/_sources/faq.txt
  671. |
  672. | PHPinfo() Disclosure:
  673. |
  674. | External hosts:
  675. | [+] External Host Found: https://hosted.weblate.org
  676. | [+] External Host Found: https://demo.phpmyadmin.net
  677. | [+] External Host Found: http://server
  678. | [+] External Host Found: http://pear.php.net
  679. | [+] External Host Found: http://bugzilla.mozilla.org
  680. | [+] External Host Found: http://wiki.phpmyadmin.net
  681. | [+] External Host Found: http://sf.net
  682. | [+] External Host Found: https://launchpad.net
  683. | [+] External Host Found: https://www.phpmyadmin.net
  684. | [+] External Host Found: http://www.gnu.org
  685. | [+] External Host Found: http://www.google.com
  686. | [+] External Host Found: https://en.wikipedia.org
  687. | [+] External Host Found: http://dev.mysql.com
  688. | [+] External Host Found: http://bugs.php.net
  689. | [+] External Host Found: http://php.net
  690. | [+] External Host Found: http://www.acko.net
  691. | [+] External Host Found: http://www.php.net
  692. | [+] External Host Found: http://host
  693. | [+] External Host Found: http://httpd.apache.org
  694. | [+] External Host Found: http://www.drizzle.org
  695. | [+] External Host Found: http://sphinx-doc.org
  696. | [+] External Host Found: https://wiki.phpmyadmin.net
  697. | [+] External Host Found: https://sourceforge.net
  698. | [+] External Host Found: http://fedoraproject.org
  699. | [+] External Host Found: http://pecl.php.net
  700. | [+] External Host Found: http://www.fpdf.org
  701. | [+] External Host Found: http://bugs.mysql.com
  702. | [+] External Host Found: http://www.mysql.com
  703. | [+] External Host Found: http://www.wikipedia.org
  704. | [+] External Host Found: http://www.ozerov.de
  705. | [+] External Host Found: https://tools.ietf.org
  706. | [+] External Host Found: http://software.opensuse.org
  707. | [+] External Host Found: http://en.wikipedia.org
  708. | [+] External Host Found: http://www.hardened-php.net
  709. | [+] External Host Found: http://mariadb.org
  710. | [+] External Host Found: http://www.apachefriends.org
  711. | [+] External Host Found: http://www.tcpdf.org
  712. #######################################################################################################################################
  713. ---------------------------------------------------------------------------------------------------------------------------------------
  714. + Target IP: 89.105.197.75
  715. + Target Hostname: 18sexyteens.club
  716. + Target Port: 80
  717. + Start Time: 2018-09-23 17:03:03 (GMT-4)
  718. ---------------------------------------------------------------------------------------------------------------------------------------
  719. + Server: nginx
  720. + The anti-clickjacking X-Frame-Options header is not present.
  721. + The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
  722. + The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type
  723. + Server leaks inodes via ETags, header found with file /robots.txt, fields: 0x5a50f1c7 0x41
  724. + Web Server returns a valid response with junk HTTP methods, this may cause false positives.
  725. + DEBUG HTTP verb may show server debugging information. See http://msdn.microsoft.com/en-us/library/e8z01xdh%28VS.80%29.aspx for details.
  726. + Uncommon header 'x-dns-prefetch-control' found, with contents: off
  727. ######################################################################################################################################
  728. Anonymous JTSEC #OpDeathEathers full Recon #16
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!