Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #######################################################################################################################################
- =======================================================================================================================================
- Hostname www.camarapavao.mg.gov.br ISP SECURED SERVERS LLC
- Continent North America Flag
- US
- Country United States Country Code US
- Region Arizona Local time 09 Sep 2019 09:59 MST
- City Tempe Postal Code 85281
- IP Address 184.95.55.138 Latitude 33.431
- Longitude -111.926
- =======================================================================================================================================
- #######################################################################################################################################
- > www.camarapavao.mg.gov.br
- Server: 38.132.106.139
- Address: 38.132.106.139#53
- Non-authoritative answer:
- www.camarapavao.mg.gov.br canonical name = camarapavao.mg.gov.br.
- Name: camarapavao.mg.gov.br
- Address: 184.95.55.138
- >
- #######################################################################################################################################
- domain: mg.gov.br
- owner: COMPANHIA DE TECNOLOGIA DA INFORMAÇÃO ESTADO MG
- ownerid: 16.636.540/0001-04
- responsible: Governo do Estado de Minas Gerais
- country: BR
- owner-c: PGM14
- admin-c: PGM14
- tech-c: PGM14
- billing-c: PGM14
- nserver: zeus.prodemge.gov.br
- nsstat: 20190909 AA
- nslastaa: 20190909
- nserver: titanio.prodemge.gov.br
- nsstat: 20190909 AA
- nslastaa: 20190909
- nserver: tupan.prodemge.gov.br
- nsstat: 20190909 AA
- nslastaa: 20190909
- nserver: jupiter.prodemge.gov.br
- nsstat: 20190909 AA
- nslastaa: 20190909
- nserver: dnsipv6.prodemge.gov.br
- nsstat: 20190909 AA
- nslastaa: 20190909
- created: 19950727
- changed: 20190405
- status: published
- nic-hdl-br: PGM14
- person: Prodemge Ger. Rede - Dominios MG.GOV.BR
- e-mail: registro@mg.gov.br
- country: BR
- created: 20000901
- changed: 20190131
- ######################################################################################################################################
- [+] Target : www.camarapavao.mg.gov.br
- [+] IP Address : 184.95.55.138
- [+] Headers :
- [+] Date : Mon, 09 Sep 2019 17:06:59 GMT
- [+] Server : Apache
- [+] Cache-Control : no-cache, private
- [+] Set-Cookie : XSRF-TOKEN=eyJpdiI6ImErQ1J0VURUd2J1UVhuQ29mM3M4anc9PSIsInZhbHVlIjoibGg5NTBuTzNKMER4cFwvRU80SnhvSUxOVG0xRE5RVzh3bXlKWGxEbTc5QllyNW0wMjBOeDZvcDZxZ1VvYkR3ZXgiLCJtYWMiOiJmZjQyYmU5N2IwYjczMWQ5NGZmMGExMjkwNGM4MDM0YWM1ZjA0OGM0OGIzMzE1NTlkYzk2ZTVhNGU2MzE4ZDI3In0%3D; expires=Mon, 09-Sep-2019 19:06:59 GMT; Max-Age=7200; path=/, camara_municipal_de_pavao_session=eyJpdiI6ImpUWkFzdkJNa3hnWXUwVWY5SGgrUEE9PSIsInZhbHVlIjoidkdzcUw0ZVJMNXRGU2lBUjlvaWw0SVBqRFh3UDVFSlJFUndEc3ZyUjByTEJleVFcL2hwcytINEVYSkswUWJQeVAiLCJtYWMiOiI5MTA2YTE1YTFkMDVlYTNkOTcxMTcxYWVjMDBhZTIxY2MwZDNiMjE3YmM0ZWU3ODI1ZDkxZTE5NDczYjc3MGEzIn0%3D; expires=Mon, 09-Sep-2019 19:06:59 GMT; Max-Age=7200; path=/; httponly
- [+] Vary : Accept-Encoding,User-Agent
- [+] Content-Encoding : gzip
- [+] Content-Length : 9012
- [+] Keep-Alive : timeout=5, max=100
- [+] Connection : Keep-Alive
- [+] Content-Type : text/html; charset=UTF-8
- [+] SSL Certificate Information :
- [+] commonName : camarapavao.mg.gov.br
- [+] countryName : US
- [+] stateOrProvinceName : TX
- [+] localityName : Houston
- [+] organizationName : cPanel, Inc.
- [+] commonName : cPanel, Inc. Certification Authority
- [+] Version : 3
- [+] Serial Number : 17662C6F6421305186ECD1D95F5F8CBB
- [+] Not Before : Jul 21 00:00:00 2019 GMT
- [+] Not After : Oct 19 23:59:59 2019 GMT
- [+] OCSP : ('http://ocsp.comodoca.com',)
- [+] subject Alt Name : (('DNS', 'camarapavao.mg.gov.br'), ('DNS', 'cpanel.camarapavao.mg.gov.br'), ('DNS', 'mail.camarapavao.mg.gov.br'), ('DNS', 'webdisk.camarapavao.mg.gov.br'), ('DNS', 'webmail.camarapavao.mg.gov.br'), ('DNS', 'www.camarapavao.mg.gov.br'))
- [+] CA Issuers : ('http://crt.comodoca.com/cPanelIncCertificationAuthority.crt',)
- [+] CRL Distribution Points : ('http://crl.comodoca.com/cPanelIncCertificationAuthority.crl',)
- [+] Whois Lookup :
- [+] NIR : None
- [+] ASN Registry : arin
- [+] ASN : 20454
- [+] ASN CIDR : 184.95.32.0/19
- [+] ASN Country Code : US
- [+] ASN Date : 2011-02-02
- [+] ASN Description : SSASN2 - SECURED SERVERS LLC, US
- [+] cidr : 184.95.32.0/19
- [+] name : SECUREDSERVERS
- [+] handle : NET-184-95-32-0-1
- [+] range : 184.95.32.0 - 184.95.63.255
- [+] description : SECURED SERVERS LLC
- [+] country : US
- [+] state : AZ
- [+] city : Tempe
- [+] address : 2353 W University Bldg A
- [+] postal_code : 85281
- [+] emails : ['ipadmin@phoenixnap.com', 'abuse@phoenixnap.com']
- [+] created : 2011-02-02
- [+] updated : 2011-02-10
- [+] Crawling Target...
- [+] Looking for robots.txt........[ Found ]
- [+] Extracting robots Links.......[ 1 ]
- [+] Looking for sitemap.xml.......[ Not Found ]
- [+] Extracting CSS Links..........[ 3 ]
- [+] Extracting Javascript Links...[ 8 ]
- [+] Extracting Internal Links.....[ 45 ]
- [+] Extracting External Links.....[ 47 ]
- [+] Extracting Images.............[ 3 ]
- [+] Total Links Extracted : 107
- [+] Dumping Links in /opt/FinalRecon/dumps/www.camarapavao.mg.gov.br.dump
- [+] Completed!
- #######################################################################################################################################
- [+] Starting At 2019-09-09 13:07:18.832990
- [+] Collecting Information On: http://www.camarapavao.mg.gov.br/
- [#] Status: 200
- --------------------------------------------------
- [#] Web Server Detected: Apache
- [!] X-Frame-Options Headers not detect! target might be vulnerable Click Jacking
- - Date: Mon, 09 Sep 2019 17:07:14 GMT
- - Server: Apache
- - Cache-Control: no-cache, private
- - Set-Cookie: XSRF-TOKEN=eyJpdiI6ImdudEhHdWplNTRkZm1aSHFTM01JT0E9PSIsInZhbHVlIjoic2E3QkVXT2EySG5sM0lNOWp2dXJkcXprRnNOOEdsQTk2VmVoblBVZ1dRd2hwXC9kakVGVlRKZTZLcHlIXC9kdDBZIiwibWFjIjoiNjBhYzUzN2I3ZWZlYjk4YWMzYWZlOGFjYWNiNmQxMDA5MmYxYjQ0MjMyNWZkZjY2ODA4NjMxNWEzMmYyNzUzOSJ9; expires=Mon, 09-Sep-2019 19:07:15 GMT; Max-Age=7200; path=/, camara_municipal_de_pavao_session=eyJpdiI6IjBPQ1BHMmFuM1ZHRTN6ZEh6cE53N0E9PSIsInZhbHVlIjoiZ0lkT1JOeHNDR2RHQWx5UEdXc0xZQzJ5Mjl1TWZ1WThCNnJxa2RBZ3VZR3ZlalgwUEdoSHJmZ0duVnA1UTBZbiIsIm1hYyI6IjE2MzEyN2Q4MmU3MDhiMmEwNjc4NmE3MTIwMzNhZGQzMWQyYjBlM2RlNzZhZGViYThjNmM5ZjVlOGQwOGY5YjkifQ%3D%3D; expires=Mon, 09-Sep-2019 19:07:15 GMT; Max-Age=7200; path=/; httponly
- - Vary: Accept-Encoding,User-Agent
- - Content-Encoding: gzip
- - Content-Length: 9012
- - Keep-Alive: timeout=5, max=100
- - Connection: Keep-Alive
- - Content-Type: text/html; charset=UTF-8
- --------------------------------------------------
- [#] Finding Location..!
- [#] as: AS20454 SECURED SERVERS LLC
- [#] city: Tempe
- [#] country: United States
- [#] countryCode: US
- [#] isp: Secured Servers LLC
- [#] lat: 33.4215
- [#] lon: -111.974
- [#] org: Secured Servers LLC
- [#] query: 184.95.55.138
- [#] region: AZ
- [#] regionName: Arizona
- [#] status: success
- [#] timezone: America/Phoenix
- [#] zip: 85281
- --------------------------------------------------
- [x] Didn't Detect WAF Presence on: http://www.camarapavao.mg.gov.br/
- --------------------------------------------------
- [#] Starting Reverse DNS
- [-] Failed ! Fail
- --------------------------------------------------
- [!] Scanning Open Port
- [#] 21/tcp open ftp
- [#] 22/tcp open ssh
- [#] 53/tcp open domain
- [#] 80/tcp open http
- [#] 110/tcp open pop3
- [#] 111/tcp open rpcbind
- [#] 143/tcp open imap
- [#] 443/tcp open https
- [#] 465/tcp open smtps
- [#] 587/tcp open submission
- [#] 993/tcp open imaps
- [#] 995/tcp open pop3s
- [#] 3306/tcp open mysql
- [#] 5960/tcp open unknown
- --------------------------------------------------
- [+] Collecting Information Disclosure!
- [#] Detecting sitemap.xml file
- [-] sitemap.xml file not Found!?
- [#] Detecting robots.txt file
- [!] robots.txt File Found: http://www.camarapavao.mg.gov.br//robots.txt
- [#] Detecting GNU Mailman
- [!] GNU Mailman App Detected: http://www.camarapavao.mg.gov.br//mailman/admin
- [!] version: 2.1.27
- --------------------------------------------------
- [+] Crawling Url Parameter On: http://www.camarapavao.mg.gov.br/
- --------------------------------------------------
- [#] Searching Html Form !
- [-] No Html Form Found!?
- --------------------------------------------------
- [!] Found 7 dom parameter
- [#] http://www.camarapavao.mg.gov.br//#
- [#] http://www.camarapavao.mg.gov.br//#
- [#] http://www.camarapavao.mg.gov.br//#
- [#] http://www.camarapavao.mg.gov.br//#
- [#] http://www.camarapavao.mg.gov.br#servicos
- [#] http://www.camarapavao.mg.gov.br//#
- [#] http://www.camarapavao.mg.gov.br//#inicio
- --------------------------------------------------
- [!] 2 Internal Dynamic Parameter Discovered
- [+] http://www.camarapavao.mg.gov.br?page=2
- [+] http://www.camarapavao.mg.gov.br?page=2
- --------------------------------------------------
- [!] 2 External Dynamic Parameter Discovered
- [#] http://servicos.receita.fazenda.gov.br/Servicos/certidao/CndConjuntaInter/InformaNICertidao.asp?Tipo=1
- [#] http://servicos.receita.fazenda.gov.br/Servicos/certidao/certaut/OptaAutenticidade.asp?origem=PJ
- --------------------------------------------------
- [!] 49 Internal links Discovered
- [+] http://www.camarapavao.mg.gov.br/dependencias/icons/simple-line-icons.css
- [+] http://www.camarapavao.mg.gov.br/css/bootstrap.min.css
- [+] http://www.camarapavao.mg.gov.br/css/site.css
- [+] http://www.camarapavao.mg.gov.br
- [+] http://www.camarapavao.mg.gov.br/gestor
- [+] http://www.camarapavao.mg.gov.br/vereadores
- [+] http://www.camarapavao.mg.gov.br/mesa-diretora
- [+] http://www.camarapavao.mg.gov.br/comissoes
- [+] http://www.camarapavao.mg.gov.br/reuniao
- [+] http://www.camarapavao.mg.gov.br/projetos-leis
- [+] http://www.camarapavao.mg.gov.br/estruturas
- [+] http://www.camarapavao.mg.gov.br/orgaos
- [+] http://www.camarapavao.mg.gov.br/cidade
- [+] http://www.camarapavao.mg.gov.br/turismo
- [+] http://www.camarapavao.mg.gov.br/noticias
- [+] http://www.camarapavao.mg.gov.br/legislacao/4/Leis
- [+] http://www.camarapavao.mg.gov.br/legislacao/5/Leis%20Complementares
- [+] http://www.camarapavao.mg.gov.br/legislacao/2/Lei%20Or%C3%A7ament%C3%A1ria%20Anual
- [+] http://www.camarapavao.mg.gov.br/legislacao/1/Lei%20Diretrizs%20Or%C3%A7ament%C3%A1rias
- [+] http://www.camarapavao.mg.gov.br/legislacao/6/Lei%20Delegada
- [+] http://www.camarapavao.mg.gov.br/legislacao/3/Plano%20Plurianual%20
- [+] http://www.camarapavao.mg.gov.br/legislacao/7/Decretos
- [+] http://www.camarapavao.mg.gov.br/legislacao/8/Portarias%20
- [+] http://www.camarapavao.mg.gov.br/legislacao/9/Resolu%C3%A7%C3%B5es%20
- [+] http://www.camarapavao.mg.gov.br/legislacao/10/Proposi%C3%A7%C3%A3o
- [+] http://www.camarapavao.mg.gov.br/legislacao/12/Decis%C3%A3o
- [+] http://www.camarapavao.mg.gov.br/legislacao/11/Emenda%20Lei%20Org%C3%A2nica
- [+] http://www.camarapavao.mg.gov.br/editais
- [+] http://www.camarapavao.mg.gov.br/licitacoes
- [+] http://www.camarapavao.mg.gov.br/portal
- [+] http://www.camarapavao.mg.gov.br/cidade
- [+] http://www.camarapavao.mg.gov.br/noticia/23/dia-internacional-da-alfabetizacao
- [+] http://www.camarapavao.mg.gov.br/noticia/22/dia-da-independencia-do-brasil
- [+] http://www.camarapavao.mg.gov.br/noticia/21/dia-da-amazonia
- [+] http://www.camarapavao.mg.gov.br/noticia/20/dia-nacional-de-combate-ao-fumo
- [+] http://www.camarapavao.mg.gov.br/noticia/19/dia-do-inicio-da-semana-nacional-da-crianca-excepcional
- [+] http://www.camarapavao.mg.gov.br/noticia/18/feliz-dia-dos-pais
- [+] http://www.camarapavao.mg.gov.br/noticia/17/dia-da-campanha-educativa-de-combate-ao-cancer
- [+] http://www.camarapavao.mg.gov.br/noticia/16/dia-do-agricultor
- [+] http://www.camarapavao.mg.gov.br/noticia/15/dia-da-protecao-as-florestas
- [+] http://www.camarapavao.mg.gov.br/noticia/14/dia-do-bombeiro-brasileiro
- [+] http://www.camarapavao.mg.gov.br/noticia/13/dia-mundial-de-combate-as-drogas
- [+] http://www.camarapavao.mg.gov.br/noticia/12/dia-do-lavrador
- [+] http://www.camarapavao.mg.gov.br/portal
- [+] http://www.camarapavao.mg.gov.br/contracheque
- [+] http://www.camarapavao.mg.gov.br/webmail
- [+] http://www.camarapavao.mg.gov.br/diario
- [+] http://www.camarapavao.mg.gov.br/licitacoes
- [+] http://www.camarapavao.mg.gov.br/portal/ouvidoria
- --------------------------------------------------
- [!] 46 External links Discovered
- [#] https://digitaliza-institucional.s3.us-east-2.amazonaws.com/camara-municipal-de-pavao/site/dQJ66VPMr8VhSGg9n2UxhqMY0ZlxECMfh9hor64v.png
- [#] http://www.digitaliza.com.br/ged/
- [#] https://www.digitaliza.com.br/ged/
- [#] http://portal.tcu.gov.br/inicio/index.htm
- [#] http://www.tce.mg.gov.br/
- [#] http://portalsicom1.tce.mg.gov.br/
- [#] http://www.tjmg.jus.br/portal-tjmg/
- [#] http://www.tst.jus.br/certidao
- [#] http://www.tse.jus.br/eleitor/servicos/titulo-de-eleitor/situacao-eleitoral/consulta-por-nome
- [#] http://www.portaltransparencia.gov.br/
- [#] http://www.cgu.gov.br/
- [#] https://www12.senado.leg.br/hpsenado
- [#] http://www2.camara.leg.br/
- [#] http://www.iof.mg.gov.br/
- [#] http://consultasintegra.fazenda.mg.gov.br/sintegra/
- [#] http://www.sintegra.gov.br/
- [#] http://brasilescola.gov.br/
- [#] https://www.almg.gov.br/home/index.html
- [#] http://www.tesouro.fazenda.gov.br/gru
- [#] https://sti.tesouro.gov.br/cauc/index.jsf
- [#] https://siconfi.tesouro.gov.br/siconfi/index.jsf
- [#] http://www.previdencia.gov.br
- [#] http://cnd.dataprev.gov.br/cws/contexto/cnd/cnd.html
- [#] http://portal.imprensanacional.gov.br/
- [#] http://www4.planalto.gov.br/legislacao
- [#] http://portalfns.saude.gov.br/
- [#] http://www.fnde.gov.br/index.php
- [#] http://www2.copasa.com.br/servicos/copanor/2avia2/msginicial.asp
- [#] https://www.detran.mg.gov.br/
- [#] http://www.fazenda.mg.gov.br/governo/receita_estado/pagrecmunic_ano.htm
- [#] http://bussolaescolar.com.br/
- [#] http://portalamm.org.br/
- [#] http://portal.anvisa.gov.br/
- [#] http://idg.receita.fazenda.gov.br/
- [#] http://www.receita.fazenda.gov.br/PessoaJuridica/CNPJ/cnpjreva/Cnpjreva_Solicitacao.asp
- [#] http://www.receita.fazenda.gov.br/Aplicacoes/ATCTA/CPF/Fisica.htm
- [#] http://www.caixa.gov.br/Paginas/home-caixa.aspx
- [#] https://www1.caixa.gov.br/sistn/asp/login/login.asp
- [#] https://www.sifge.caixa.gov.br/Cidadao/Crf/FgeCfSCriteriosPesquisa.asp
- [#] http://www.correios.com.br/
- [#] https://www42.bb.com.br/portalbb/daf/beneficiario,802,4647,4652,0,1.bbx
- [#] https://atende.cemig.com.br/EntrarSemCadastro/Index
- [#] http://www2.copasa.com.br/servicos/2avia2/msginicial.asp
- [#] https://impostometro.com.br
- [#] http://www.amuc.org.br/
- [#] http://www.digitaliza.com.br
- --------------------------------------------------
- [#] Mapping Subdomain..
- [!] Found 3 Subdomain
- - webdisk.camarapavao.mg.gov.br
- - cpanel.camarapavao.mg.gov.br
- - webmail.camarapavao.mg.gov.br
- --------------------------------------------------
- [!] Done At 2019-09-09 13:07:28.559417
- #######################################################################################################################################
- [i] Scanning Site: http://www.camarapavao.mg.gov.br
- B A S I C I N F O
- ====================
- [+] Site Title: Câmara Municipal de Pavão
- [+] IP address: 184.95.55.138
- [+] Web Server: Apache
- [+] CMS: Could Not Detect
- [+] Cloudflare: Not Detected
- [+] Robots File: Found
- -------------[ contents ]----------------
- User-agent: *
- Disallow:
- -----------[end of contents]-------------
- W H O I S L O O K U P
- ========================
- % Copyright (c) Nic.br
- % The use of the data below is only permitted as described in
- % full by the terms of use at https://registro.br/termo/en.html ,
- % being prohibited its distribution, commercialization or
- % reproduction, in particular, to use it for advertising or
- % any similar purpose.
- % 2019-09-09T14:07:16-03:00
- domain: mg.gov.br
- owner: COMPANHIA DE TECNOLOGIA DA INFORMAÇÃO ESTADO MG
- ownerid: 16.636.540/0001-04
- responsible: Governo do Estado de Minas Gerais
- country: BR
- owner-c: PGM14
- admin-c: PGM14
- tech-c: PGM14
- billing-c: PGM14
- nserver: zeus.prodemge.gov.br
- nsstat: 20190909 AA
- nslastaa: 20190909
- nserver: titanio.prodemge.gov.br
- nsstat: 20190909 AA
- nslastaa: 20190909
- nserver: tupan.prodemge.gov.br
- nsstat: 20190909 AA
- nslastaa: 20190909
- nserver: jupiter.prodemge.gov.br
- nsstat: 20190909 AA
- nslastaa: 20190909
- nserver: dnsipv6.prodemge.gov.br
- nsstat: 20190909 AA
- nslastaa: 20190909
- created: 19950727
- changed: 20190405
- status: published
- nic-hdl-br: PGM14
- person: Prodemge Ger. Rede - Dominios MG.GOV.BR
- e-mail: registro@mg.gov.br
- country: BR
- created: 20000901
- changed: 20190131
- % Security and mail abuse issues should also be addressed to
- % cert.br, http://www.cert.br/ , respectivelly to cert@cert.br
- % and mail-abuse@cert.br
- %
- % whois.registro.br accepts only direct match queries. Types
- % of queries are: domain (.br), registrant (tax ID), ticket,
- % provider, contact handle (ID), CIDR block, IP and ASN.
- G E O I P L O O K U P
- =========================
- [i] IP Address: 184.95.55.138
- [i] Country: United States
- [i] State: Arizona
- [i] City: Tempe
- [i] Latitude: 33.4306
- [i] Longitude: -111.9256
- H T T P H E A D E R S
- =======================
- [i] HTTP/1.1 200 OK
- [i] Date: Mon, 09 Sep 2019 17:07:16 GMT
- [i] Server: Apache
- [i] Cache-Control: private, must-revalidate
- [i] pragma: no-cache
- [i] expires: -1
- [i] Set-Cookie: XSRF-TOKEN=eyJpdiI6Ino0VFNSdGtvUFhaUkJHZ2lPN1lQK2c9PSIsInZhbHVlIjoiSVdyejdUVmZlXC9lWHhhV3Z6d1dqdlJcL0I0emZ4T1NkT25EVzlKanJSYWNCWUJJbmtUTmkxT3FmTnNVQXpkV2p2IiwibWFjIjoiMGZkZjMwMDkyYmI5NzVjMDBjZjZlYzdjZWEyODQzYWI2OTE4ZTdkYjVmOWNjMjJkNWE5Zjg1YTFmNGJlNDY1MiJ9; expires=Mon, 09-Sep-2019 19:07:16 GMT; Max-Age=7200; path=/
- [i] Set-Cookie: camara_municipal_de_pavao_session=eyJpdiI6ImtFSUFxTnllSVBBOGRVd3dTSWk5Vnc9PSIsInZhbHVlIjoiOFY1dnk5WFZRUThYcmJOU0MrTTFSZ1k5VmJQQ0lWUTVoemVnQ0I5MjBmb1NBQ1wvNzlsSkI2dWZ0ZWxsZVhMMHoiLCJtYWMiOiIwNTMxZGU0OGViODczMjU3NzYzMDFiMmFmNjc2YzA3MDQ3ZWZiZTlhY2M1NzlhMGE5OWVhNGJiMzY4ODZmOWU1In0%3D; expires=Mon, 09-Sep-2019 19:07:16 GMT; Max-Age=7200; path=/; httponly
- [i] Vary: Accept-Encoding,User-Agent
- [i] Connection: close
- [i] Content-Type: text/html; charset=UTF-8
- D N S L O O K U P
- ===================
- camarapavao.mg.gov.br. 14399 IN TXT "v=spf1 +a +mx +ip4:184.95.55.138 ~all"
- camarapavao.mg.gov.br. 21599 IN SOA ns1.leidatransparencia.com.br. contato.digitaliza.com.br. 2019021902 3600 1800 1209600 86400
- camarapavao.mg.gov.br. 21599 IN NS ns1.leidatransparencia.com.br.
- camarapavao.mg.gov.br. 21599 IN NS ns2.leidatransparencia.com.br.
- camarapavao.mg.gov.br. 14399 IN A 184.95.55.138
- camarapavao.mg.gov.br. 14399 IN MX 0 camarapavao.mg.gov.br.
- S U B N E T C A L C U L A T I O N
- ====================================
- Address = 184.95.55.138
- Network = 184.95.55.138 / 32
- Netmask = 255.255.255.255
- Broadcast = not needed on Point-to-Point links
- Wildcard Mask = 0.0.0.0
- Hosts Bits = 0
- Max. Hosts = 1 (2^0 - 0)
- Host Range = { 184.95.55.138 - 184.95.55.138 }
- N M A P P O R T S C A N
- ============================
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-09-09 17:07 UTC
- Nmap scan report for camarapavao.mg.gov.br (184.95.55.138)
- Host is up (0.066s latency).
- rDNS record for 184.95.55.138: ns1.leidatransparencia.com.br
- PORT STATE SERVICE
- 21/tcp open ftp
- 22/tcp open ssh
- 23/tcp closed telnet
- 80/tcp open http
- 110/tcp open pop3
- 143/tcp open imap
- 443/tcp open https
- 3389/tcp closed ms-wbt-server
- Nmap done: 1 IP address (1 host up) scanned in 0.51 seconds
- S U B - D O M A I N F I N D E R
- ==================================
- [i] Total Subdomains Found : 2
- [+] Subdomain: cpanel.camarapavao.mg.gov.br
- [-] IP: 184.95.55.138
- [+] Subdomain: webmail.camarapavao.mg.gov.br
- [-] IP: 184.95.55.138
- #######################################################################################################################################
- [INFO] ------TARGET info------
- [*] TARGET: http://www.camarapavao.mg.gov.br/
- [*] TARGET IP: 184.95.55.138
- [INFO] NO load balancer detected for www.camarapavao.mg.gov.br...
- [*] DNS servers: camarapavao.mg.gov.br.
- [*] TARGET server: Apache
- [*] CC: US
- [*] Country: United States
- [*] RegionCode: AZ
- [*] RegionName: Arizona
- [*] City: Tempe
- [*] ASN: AS20454
- [*] BGP_PREFIX: 184.95.32.0/19
- [*] ISP: SSASN2 - SECURED SERVERS LLC, US
- [INFO] DNS enumeration:
- [*] ftp.camarapavao.mg.gov.br 184.95.55.138
- [*] mail.camarapavao.mg.gov.br camarapavao.mg.gov.br. 184.95.55.138
- [*] webmail.camarapavao.mg.gov.br 184.95.55.138
- [INFO] Possible abuse mails are:
- [*] abuse@mail.mg.gov.br
- [*] abuse@mg.gov.br
- [*] abuse@phoenixnap.com
- [*] dominio@mg.gov.br
- [*] mail-abuse@cert.br
- [*] postmaster@mail.mg.gov.br
- [*] root@mail.mg.gov.br
- [INFO] NO PAC (Proxy Auto Configuration) file FOUND
- [ALERT] robots.txt file FOUND in http://www.camarapavao.mg.gov.br/robots.txt
- [INFO] Checking for HTTP status codes recursively from http://www.camarapavao.mg.gov.br/robots.txt
- [INFO] Status code Folders
- [INFO] Starting FUZZing in http://www.camarapavao.mg.gov.br/FUzZzZzZzZz...
- [INFO] Status code Folders
- [ALERT] Look in the source code. It may contain passwords
- [INFO] Links found from http://www.camarapavao.mg.gov.br/ http://184.95.55.138/:
- [*] http://184.95.55.138/cgi-sys/defaultwebpage.cgi
- [*] http://brasilescola.gov.br/
- [*] http://bussolaescolar.com.br/
- [*] http://cnd.dataprev.gov.br/cws/contexto/cnd/cnd.html
- [*] http://consultasintegra.fazenda.mg.gov.br/sintegra/
- [*] http://idg.receita.fazenda.gov.br/
- [*] http://portalamm.org.br/
- [*] http://portal.anvisa.gov.br/
- [*] http://portalfns.saude.gov.br/
- [*] http://portal.imprensanacional.gov.br/
- [*] http://portalsicom1.tce.mg.gov.br/
- [*] http://portal.tcu.gov.br/inicio/index.htm
- [*] https://atende.cemig.com.br/EntrarSemCadastro/Index
- [*] http://servicos.receita.fazenda.gov.br/Servicos/certidao/certaut/OptaAutenticidade.asp?origem=PJ
- [*] http://servicos.receita.fazenda.gov.br/Servicos/certidao/CndConjuntaInter/InformaNICertidao.asp?Tipo=1
- [*] https://impostometro.com.br/
- [*] https://siconfi.tesouro.gov.br/siconfi/index.jsf
- [*] https://sti.tesouro.gov.br/cauc/index.jsf
- [*] https://www12.senado.leg.br/hpsenado
- [*] https://www1.caixa.gov.br/sistn/asp/login/login.asp
- [*] https://www42.bb.com.br/portalbb/daf/beneficiario,802,4647,4652,0,1.bbx
- [*] https://www.almg.gov.br/home/index.html
- [*] https://www.detran.mg.gov.br/
- [*] https://www.digitaliza.com.br/ged/
- [*] https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d15226.58788596225!2d-41.00783347985214!3d-17.428721636186786!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x74b4b1ca8bc8cad:0xf5772be86c73e759!2zUGF2w6NvLCBNRywgMzk4MTQtMDAw!5e0!3m2!1spt-BR!2sbr!4v1534515732470https://www.sifge.caixa.gov.br/Cidadao/Crf/FgeCfSCriteriosPesquisa.asp
- [*] http://www2.camara.leg.br/
- [*] http://www2.copasa.com.br/servicos/2avia2/msginicial.asp
- [*] http://www2.copasa.com.br/servicos/copanor/2avia2/msginicial.asp
- [*] http://www4.planalto.gov.br/legislacao
- [*] http://www.amuc.org.br/
- [*] http://www.caixa.gov.br/Paginas/home-caixa.aspx
- [*] http://www.camarapavao.mg.gov.br/
- [*] http://www.camarapavao.mg.gov.br/cidade
- [*] http://www.camarapavao.mg.gov.br/comissoes
- [*] http://www.camarapavao.mg.gov.br/contracheque
- [*] http://www.camarapavao.mg.gov.br/diario
- [*] http://www.camarapavao.mg.gov.br/editais
- [*] http://www.camarapavao.mg.gov.br/estruturas
- [*] http://www.camarapavao.mg.gov.br/gestor
- [*] http://www.camarapavao.mg.gov.br/#inicio
- [*] http://www.camarapavao.mg.gov.br/legislacao/10/Proposição
- [*] http://www.camarapavao.mg.gov.br/legislacao/11/Emenda Lei Orgânica
- [*] http://www.camarapavao.mg.gov.br/legislacao/12/Decisão
- [*] http://www.camarapavao.mg.gov.br/legislacao/1/Lei Diretrizs Orçamentárias
- [*] http://www.camarapavao.mg.gov.br/legislacao/2/Lei Orçamentária Anual
- [*] http://www.camarapavao.mg.gov.br/legislacao/3/Plano Plurianual
- [*] http://www.camarapavao.mg.gov.br/legislacao/4/Leis
- [*] http://www.camarapavao.mg.gov.br/legislacao/5/Leis Complementares
- [*] http://www.camarapavao.mg.gov.br/legislacao/6/Lei Delegada
- [*] http://www.camarapavao.mg.gov.br/legislacao/7/Decretos
- [*] http://www.camarapavao.mg.gov.br/legislacao/8/Portarias
- [*] http://www.camarapavao.mg.gov.br/legislacao/9/Resoluções
- [*] http://www.camarapavao.mg.gov.br/licitacoes
- [*] http://www.camarapavao.mg.gov.br/mesa-diretora
- [*] http://www.camarapavao.mg.gov.br/noticia/12/dia-do-lavrador
- [*] http://www.camarapavao.mg.gov.br/noticia/13/dia-mundial-de-combate-as-drogas
- [*] http://www.camarapavao.mg.gov.br/noticia/14/dia-do-bombeiro-brasileiro
- [*] http://www.camarapavao.mg.gov.br/noticia/15/dia-da-protecao-as-florestas
- [*] http://www.camarapavao.mg.gov.br/noticia/16/dia-do-agricultor
- [*] http://www.camarapavao.mg.gov.br/noticia/17/dia-da-campanha-educativa-de-combate-ao-cancer
- [*] http://www.camarapavao.mg.gov.br/noticia/18/feliz-dia-dos-pais
- [*] http://www.camarapavao.mg.gov.br/noticia/19/dia-do-inicio-da-semana-nacional-da-crianca-excepcional
- [*] http://www.camarapavao.mg.gov.br/noticia/20/dia-nacional-de-combate-ao-fumo
- [*] http://www.camarapavao.mg.gov.br/noticia/21/dia-da-amazonia
- [*] http://www.camarapavao.mg.gov.br/noticia/22/dia-da-independencia-do-brasil
- [*] http://www.camarapavao.mg.gov.br/noticia/23/dia-internacional-da-alfabetizacao
- [*] http://www.camarapavao.mg.gov.br/noticias
- [*] http://www.camarapavao.mg.gov.br/orgaos
- [*] http://www.camarapavao.mg.gov.br/?page=2
- [*] http://www.camarapavao.mg.gov.br/portal
- [*] http://www.camarapavao.mg.gov.br/portal/ouvidoria
- [*] http://www.camarapavao.mg.gov.br/projetos-leis
- [*] http://www.camarapavao.mg.gov.br/reuniao
- [*] http://www.camarapavao.mg.gov.br/#servicos
- [*] http://www.camarapavao.mg.gov.br/turismo
- [*] http://www.camarapavao.mg.gov.br/vereadores
- [*] http://www.camarapavao.mg.gov.br/webmail
- [*] http://www.cgu.gov.br/
- [*] http://www.correios.com.br/
- [*] http://www.digitaliza.com.br/
- [*] http://www.digitaliza.com.br/ged/
- [*] http://www.fazenda.mg.gov.br/governo/receita_estado/pagrecmunic_ano.htm
- [*] http://www.fnde.gov.br/index.php
- [*] http://www.iof.mg.gov.br/
- [*] http://www.portaltransparencia.gov.br/
- [*] http://www.previdencia.gov.br/
- [*] http://www.receita.fazenda.gov.br/Aplicacoes/ATCTA/CPF/Fisica.htm
- [*] http://www.receita.fazenda.gov.br/PessoaJuridica/CNPJ/cnpjreva/Cnpjreva_Solicitacao.asp
- [*] http://www.sintegra.gov.br/
- [*] http://www.tce.mg.gov.br/
- [*] http://www.tesouro.fazenda.gov.br/gru
- [*] http://www.tjmg.jus.br/portal-tjmg/
- [*] http://www.tse.jus.br/eleitor/servicos/titulo-de-eleitor/situacao-eleitoral/consulta-por-nome
- [*] http://www.tst.jus.br/certidao
- [INFO] Shodan detected the following opened ports on 184.95.55.138:
- [*] 0
- [*] 1
- [*] 110
- [*] 111
- [*] 143
- [*] 2079
- [*] 2082
- [*] 2083
- [*] 2086
- [*] 2087
- [*] 2095
- [*] 2096
- [*] 21
- [*] 214
- [*] 22
- [*] 3
- [*] 3306
- [*] 4
- [*] 443
- [*] 465
- [*] 53
- [*] 587
- [*] 6
- [*] 7
- [*] 8
- [*] 80
- [*] 993
- [*] 995
- [INFO] ------VirusTotal SECTION------
- [INFO] VirusTotal passive DNS only stores address records. The following domains resolved to the given IP address:
- [INFO] Latest URLs hosted in this IP address detected by at least one URL scanner or malicious URL dataset:
- [INFO] Latest files that are not detected by any antivirus solution and were downloaded by VirusTotal from the IP address provided:
- [INFO] ------Alexa Rank SECTION------
- [INFO] Percent of Visitors Rank in Country:
- [INFO] Percent of Search Traffic:
- [INFO] Percent of Unique Visits:
- [INFO] Total Sites Linking In:
- [*] Total Sites
- [INFO] Useful links related to www.camarapavao.mg.gov.br - 184.95.55.138:
- [*] https://www.virustotal.com/pt/ip-address/184.95.55.138/information/
- [*] https://www.hybrid-analysis.com/search?host=184.95.55.138
- [*] https://www.shodan.io/host/184.95.55.138
- [*] https://www.senderbase.org/lookup/?search_string=184.95.55.138
- [*] https://www.alienvault.com/open-threat-exchange/ip/184.95.55.138
- [*] http://pastebin.com/search?q=184.95.55.138
- [*] http://urlquery.net/search.php?q=184.95.55.138
- [*] http://www.alexa.com/siteinfo/www.camarapavao.mg.gov.br
- [*] http://www.google.com/safebrowsing/diagnostic?site=www.camarapavao.mg.gov.br
- [*] https://censys.io/ipv4/184.95.55.138
- [*] https://www.abuseipdb.com/check/184.95.55.138
- [*] https://urlscan.io/search/#184.95.55.138
- [*] https://github.com/search?q=184.95.55.138&type=Code
- [INFO] Useful links related to AS20454 - 184.95.32.0/19:
- [*] http://www.google.com/safebrowsing/diagnostic?site=AS:20454
- [*] https://www.senderbase.org/lookup/?search_string=184.95.32.0/19
- [*] http://bgp.he.net/AS20454
- [*] https://stat.ripe.net/AS20454
- [INFO] Date: 09/09/19 | Time: 13:08:06
- [INFO] Total time: 0 minute(s) and 41 second(s)
- #######################################################################################################################################
- [⍥] Perfoming Sud⍥my scans
- [*] Load target domain: camarapavao.mg.gov.br
- - starting scanning @ 2019-09-09 13:10:12
- [+] Running & Checking source to be used
- ---------------------------------------------
- ⍥ Shodan [ ✕ ]
- ⍥ Dnsdumpster [ ✔ ]
- ⍥ Certspotter [ ✔ ]
- ⍥ Securitytrails [ ✕ ]
- ⍥ Riddler [ ✔ ]
- ⍥ Entrust [ ✔ ]
- ⍥ Hackertarget [ ✔ ]
- ⍥ Threatminer [ ✔ ]
- ⍥ Binaryedge [ ✕ ]
- ⍥ Webarchive [ ✔ ]
- ⍥ Certsh [ ✔ ]
- ⍥ Censys [ ✕ ]
- ⍥ Threatcrowd [ ✔ ]
- ⍥ Bufferover [ ✔ ]
- ⍥ Virustotal [ ✕ ]
- ⍥ Findsubdomain [ ✔ ]
- [+] Get & Count subdomain total From source
- ---------------------------------------------
- ⍥ Hackertarget: Total Subdomain (3)
- ⍥ Findsubdomain: Total Subdomain (6)
- ⍥ Certspotter: Total Subdomain (6)
- ⍥ Threatminer: Total Subdomain (0)
- ⍥ Certsh: Total Subdomain (10)
- ⍥ BufferOver: Total Subdomain (5)
- ⍥ Entrust: Total Subdomain (1)
- ⍥ Threatcrowd: Total Subdomain (0)
- ⍥ Dnsdumpster: Total Subdomain (6)
- ⍥ Riddler: Total Subdomain (0)
- ⍥ Webarchive: Total Subdomain (2)
- [+] Parsing & Sorting list Domain
- ---------------------------------------------
- ⍥ Total [12]
- - 0 camarapavao.mg.gov.br.
- - autodiscover.camarapavao.mg.gov.br
- - camarapavao.mg.gov.br
- - cpanel.camarapavao.mg.gov.br
- - esic.camarapavao.mg.gov.br
- - mail.camarapavao.mg.gov.br
- - transparencia.camarapavao.mg.gov.br
- - webdisk.camarapavao.mg.gov.br
- - webmail.camarapavao.mg.gov.br
- - www.camarapavao.mg.gov.br
- - www.esic.camarapavao.mg.gov.br
- - www.transparencia.camarapavao.mg.gov.br
- ⍥ Total [12]
- [+] Probe subdomain for working on http/https
- ---------------------------------------------
- - http://www.camarapavao.mg.gov.br
- - http://camarapavao.mg.gov.br
- - https://cpanel.camarapavao.mg.gov.br
- - https://www.camarapavao.mg.gov.br
- - https://camarapavao.mg.gov.br
- - https://mail.camarapavao.mg.gov.br
- - http://cpanel.camarapavao.mg.gov.br
- - http://webmail.camarapavao.mg.gov.br
- - http://mail.camarapavao.mg.gov.br
- - https://webmail.camarapavao.mg.gov.br
- - http://webdisk.camarapavao.mg.gov.br
- - https://webdisk.camarapavao.mg.gov.br
- ⍥ Total [12]
- [+] Check Live Host: Ping Sweep - ICMP PING
- ---------------------------------------------
- ⍥ [LIVE] 0
- ⍥ [LIVE] camarapavao.mg.gov.br.
- ⍥ [DEAD] autodiscover.camarapavao.mg.gov.br
- ⍥ [LIVE] camarapavao.mg.gov.br
- ⍥ [LIVE] cpanel.camarapavao.mg.gov.br
- ⍥ [DEAD] esic.camarapavao.mg.gov.br
- ⍥ [LIVE] mail.camarapavao.mg.gov.br
- ⍥ [DEAD] transparencia.camarapavao.mg.gov.br
- ⍥ [LIVE] webdisk.camarapavao.mg.gov.br
- ⍥ [LIVE] webmail.camarapavao.mg.gov.br
- ⍥ [LIVE] www.camarapavao.mg.gov.br
- ⍥ [DEAD] www.esic.camarapavao.mg.gov.br
- ⍥ [DEAD] www.transparencia.camarapavao.mg.gov.br
- [+] Check Resolving: Subdomains & Domains
- ---------------------------------------------
- ⍥ Resolving domains to: RESOLVE ERROR
- ⍥ Resolving domains to: 184.95.55.138
- ⍥ Resolving domains to: RESOLVE ERROR
- ⍥ Resolving domains to: 184.95.55.138
- ⍥ Resolving domains to: 184.95.55.138
- ⍥ Resolving domains to: RESOLVE ERROR
- ⍥ Resolving domains to: 184.95.55.138
- ⍥ Resolving domains to: RESOLVE ERROR
- ⍥ Resolving domains to: 184.95.55.138
- ⍥ Resolving domains to: 184.95.55.138
- ⍥ Resolving domains to: 184.95.55.138
- ⍥ Resolving domains to: RESOLVE ERROR
- ⍥ Resolving domains to: RESOLVE ERROR
- [+] Subdomain TakeOver - Check Possible Vulns
- ---------------------------------------------
- ⍥ [FAILS] En: Unknown http://camarapavao.mg.gov.br
- ⍥ [FAILS] En: Unknown http://www.camarapavao.mg.gov.br
- ⍥ [FAILS] En: Unknown https://webmail.camarapavao.mg.gov.br
- ⍥ [FAILS] En: Unknown https://cpanel.camarapavao.mg.gov.br
- ⍥ [FAILS] En: Unknown https://www.camarapavao.mg.gov.br
- ⍥ [FAILS] En: Unknown https://camarapavao.mg.gov.br
- ⍥ [FAILS] En: Unknown http://mail.camarapavao.mg.gov.br
- ⍥ [FAILS] En: Unknown http://webmail.camarapavao.mg.gov.br
- ⍥ [FAILS] En: Unknown http://cpanel.camarapavao.mg.gov.br
- ⍥ [FAILS] En: Unknown https://mail.camarapavao.mg.gov.br
- ⍥ [FAILS] En: Unknown http://webdisk.camarapavao.mg.gov.br
- ⍥ [FAILS] En: Unknown https://webdisk.camarapavao.mg.gov.br
- [+] Checks status code on port 80 and 443
- ---------------------------------------------
- ⍥ [200] http://camarapavao.mg.gov.br
- ⍥ [200] http://www.camarapavao.mg.gov.br
- ⍥ [200] https://webmail.camarapavao.mg.gov.br
- ⍥ [200] https://cpanel.camarapavao.mg.gov.br
- ⍥ [200] https://www.camarapavao.mg.gov.br
- ⍥ [200] https://camarapavao.mg.gov.br
- ⍥ [200] http://mail.camarapavao.mg.gov.br
- ⍥ [200] http://cpanel.camarapavao.mg.gov.br
- ⍥ [200] https://mail.camarapavao.mg.gov.br
- ⍥ [401] http://webdisk.camarapavao.mg.gov.br
- ⍥ [401] https://webdisk.camarapavao.mg.gov.br
- [+] Web Screenshots: from domain list
- ---------------------------------------------
- [+] Sud⍥my has been sucessfully completed
- ---------------------------------------------
- ⍥ Location output:
- - output/09-09-2019/camarapavao.mg.gov.br
- - output/09-09-2019/camarapavao.mg.gov.br/report
- - output/09-09-2019/camarapavao.mg.gov.br/screenshots
- #######################################################################################################################################
- Trying "camarapavao.mg.gov.br"
- ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 39455
- ;; flags: qr rd ra; QUERY: 1, ANSWER: 6, AUTHORITY: 2, ADDITIONAL: 3
- ;; QUESTION SECTION:
- ;camarapavao.mg.gov.br. IN ANY
- ;; ANSWER SECTION:
- camarapavao.mg.gov.br. 14400 IN MX 0 camarapavao.mg.gov.br.
- camarapavao.mg.gov.br. 14400 IN A 184.95.55.138
- camarapavao.mg.gov.br. 43200 IN SOA ns1.leidatransparencia.com.br. contato.digitaliza.com.br. 2019021902 3600 1800 1209600 86400
- camarapavao.mg.gov.br. 14400 IN TXT "v=spf1 +a +mx +ip4:184.95.55.138 ~all"
- camarapavao.mg.gov.br. 43200 IN NS ns1.leidatransparencia.com.br.
- camarapavao.mg.gov.br. 43200 IN NS ns2.leidatransparencia.com.br.
- ;; AUTHORITY SECTION:
- camarapavao.mg.gov.br. 43200 IN NS ns1.leidatransparencia.com.br.
- camarapavao.mg.gov.br. 43200 IN NS ns2.leidatransparencia.com.br.
- ;; ADDITIONAL SECTION:
- camarapavao.mg.gov.br. 14400 IN A 184.95.55.138
- ns2.leidatransparencia.com.br. 3600 IN A 184.95.55.139
- ns1.leidatransparencia.com.br. 3600 IN A 184.95.55.138
- Received 311 bytes from 2001:18c0:121:6900:724f:b8ff:fefd:5b6a#53 in 521 ms
- #######################################################################################################################################
- ; <<>> DiG 9.11.5-P4-5.1+b1-Debian <<>> +trace camarapavao.mg.gov.br
- ;; global options: +cmd
- . 82185 IN NS m.root-servers.net.
- . 82185 IN NS b.root-servers.net.
- . 82185 IN NS f.root-servers.net.
- . 82185 IN NS c.root-servers.net.
- . 82185 IN NS j.root-servers.net.
- . 82185 IN NS a.root-servers.net.
- . 82185 IN NS e.root-servers.net.
- . 82185 IN NS d.root-servers.net.
- . 82185 IN NS i.root-servers.net.
- . 82185 IN NS g.root-servers.net.
- . 82185 IN NS k.root-servers.net.
- . 82185 IN NS h.root-servers.net.
- . 82185 IN NS l.root-servers.net.
- . 82185 IN RRSIG NS 8 0 518400 20190922050000 20190909040000 59944 . UdevRT5xRd+xLrIiCOgOJvCQyYg+GtsS+27xyFTrdzuu147InV6Z3rJG 588jQ6Qkv54DO2olI94IRTo+7rGpvBg3QR3uPNAI2CXyL3RtADrjQ1Eh AhvGuq3VAjGoLh4upughjB5Vz3ZFnj8hv+KeEodYDXEk58uAHnWM+fVt EI660UE2Lsm20pjkt6DC7ePkdad9c4tSboSCWUtqWJASkWDMJ27Jn4ww EWGx/QqfPV+gnd/dvB1iGbuk9KeUR7ZSVktrfsgAf3MWVx2yL9irmqf3 8haedccQxutc8B19xH9jUrW3BdLV0/BzINhBjmG1DVRi5P69ZonS5f/G PVh+Zg==
- ;; Received 525 bytes from 38.132.106.139#53(38.132.106.139) in 268 ms
- br. 172800 IN NS a.dns.br.
- br. 172800 IN NS b.dns.br.
- br. 172800 IN NS c.dns.br.
- br. 172800 IN NS e.dns.br.
- br. 172800 IN NS d.dns.br.
- br. 172800 IN NS f.dns.br.
- br. 86400 IN DS 2471 13 2 5E4F35998B8F909557FA119C4CBFDCA2D660A26F069EF006B403758A 07D1A2E4
- br. 86400 IN RRSIG DS 8 1 86400 20190922170000 20190909160000 59944 . mXoSYJOC0x7hMynzUilICD4Nf1Cm3l1wNELm9SvBtPl0K2DO4s3iYI/M wF8J5CV93flIy4qrrKy3JBfPzj5JbUYcHm1ehK/Nig3zRRmdtoxJBJIn BCKcK2sHDRCwOVgzSGwg5aTv6BpXDg9EOJHoQBJ9gIYsVMuuE9K9/nW6 kkCvcndOPZpZwpSS/DcYe1u77Y6QIZIZpglJOtlm54xXN1kHu8MIw9hq V9AJETTJ4SptkOvwY6rboJKKXp2WzWBREKihKMSXWoGzII6nIJkRDDBn hxDHl5UYNquhM85r3Xqi1dnSoMJQa7vBc7EnyUFsEsdSUMZE3LRHxkxs zC20fQ==
- ;; Received 777 bytes from 2001:500:200::b#53(b.root-servers.net) in 68 ms
- mg.gov.br. 3600 IN NS jupiter.prodemge.gov.br.
- mg.gov.br. 3600 IN NS zeus.prodemge.gov.br.
- mg.gov.br. 3600 IN NS tupan.prodemge.gov.br.
- mg.gov.br. 3600 IN NS titanio.prodemge.gov.br.
- mg.gov.br. 3600 IN NS dnsipv6.prodemge.gov.br.
- mg.gov.br. 900 IN NSEC mi.gov.br. NS RRSIG NSEC
- mg.gov.br. 900 IN RRSIG NSEC 13 3 900 20190923121007 20190909111007 50774 gov.br. 0GGLSu6Z1LrZ4EYSGhi3W+SQXKPusQ6pCivUOZLhuGGwwS6gccA1iAjd sqrTWMe1FUFRXyg6DZF1r4QUHB+nFQ==
- ;; Received 433 bytes from 2001:12f8:8::10#53(b.dns.br) in 115 ms
- camarapavao.mg.gov.br. 43200 IN NS ns1.leidatransparencia.com.br.
- camarapavao.mg.gov.br. 43200 IN NS ns2.leidatransparencia.com.br.
- ;; Received 109 bytes from 200.198.5.13#53(zeus.prodemge.gov.br) in 152 ms
- camarapavao.mg.gov.br. 14400 IN A 184.95.55.138
- camarapavao.mg.gov.br. 86400 IN NS ns2.leidatransparencia.com.br.
- camarapavao.mg.gov.br. 86400 IN NS ns1.leidatransparencia.com.br.
- ;; Received 157 bytes from 184.95.55.139#53(ns2.leidatransparencia.com.br) in 312 ms
- #######################################################################################################################################
- [*] Using system resolvers ['38.132.106.139', '194.187.251.67', '185.93.180.131', '192.168.0.1', '2001:18c0:121:6900:724f:b8ff:fefd:5b6a']
- [+] Getting nameservers
- 184.95.55.138 - ns1.leidatransparencia.com.br
- 184.95.55.139 - ns2.leidatransparencia.com.br
- [-] Zone transfer failed
- [+] TXT records found
- "v=spf1 +a +mx +ip4:184.95.55.138 ~all"
- [+] MX records found, added to target list
- 0 camarapavao.mg.gov.br.
- [*] Scanning camarapavao.mg.gov.br for A records
- 184.95.55.138 - camarapavao.mg.gov.br
- 184.95.55.138 - cpanel.camarapavao.mg.gov.br
- 184.95.55.138 - ftp.camarapavao.mg.gov.br
- 184.95.55.138 - mail.camarapavao.mg.gov.br
- 184.95.55.138 - webdisk.camarapavao.mg.gov.br
- 184.95.55.138 - webmail.camarapavao.mg.gov.br
- 184.95.55.138 - whm.camarapavao.mg.gov.br
- 184.95.55.138 - www.camarapavao.mg.gov.br
- #######################################################################################################################################
- AVAILABLE PLUGINS
- -----------------
- OpenSslCcsInjectionPlugin
- SessionResumptionPlugin
- HttpHeadersPlugin
- EarlyDataPlugin
- CompressionPlugin
- CertificateInfoPlugin
- RobotPlugin
- OpenSslCipherSuitesPlugin
- HeartbleedPlugin
- FallbackScsvPlugin
- SessionRenegotiationPlugin
- CHECKING HOST(S) AVAILABILITY
- -----------------------------
- 184.95.55.138:443 => 184.95.55.138
- SCAN RESULTS FOR 184.95.55.138:443 - 184.95.55.138
- --------------------------------------------------
- * Downgrade Attacks:
- TLS_FALLBACK_SCSV: OK - Supported
- * Session Renegotiation:
- Client-initiated Renegotiation: OK - Rejected
- Secure Renegotiation: OK - Supported
- * TLS 1.2 Session Resumption Support:
- With Session IDs: OK - Supported (5 successful, 0 failed, 0 errors, 5 total attempts).
- With TLS Tickets: OK - Supported
- * OpenSSL CCS Injection:
- OK - Not vulnerable to OpenSSL CCS injection
- * SSLV2 Cipher Suites:
- Server rejected all cipher suites.
- * Certificate Information:
- Content
- SHA1 Fingerprint: 0bb9ffb54c6e98aa4cc1db836729653559d3ca66
- Common Name: leidatransparencia.com.br
- Issuer: cPanel, Inc. Certification Authority
- Serial Number: 133719112027201498553866909398642790766
- Not Before: 2019-08-28 00:00:00
- Not After: 2019-11-26 23:59:59
- Signature Algorithm: sha256
- Public Key Algorithm: RSA
- Key Size: 2048
- Exponent: 65537 (0x10001)
- DNS Subject Alternative Names: ['leidatransparencia.com.br', 'cpanel.leidatransparencia.com.br', 'mail.leidatransparencia.com.br', 'webdisk.leidatransparencia.com.br', 'webmail.leidatransparencia.com.br', 'www.leidatransparencia.com.br']
- Trust
- Hostname Validation: FAILED - Certificate does NOT match 184.95.55.138
- Android CA Store (9.0.0_r9): OK - Certificate is trusted
- Apple CA Store (iOS 12, macOS 10.14, watchOS 5, and tvOS 12):OK - Certificate is trusted
- Java CA Store (jdk-12.0.1): OK - Certificate is trusted
- Mozilla CA Store (2019-03-14): OK - Certificate is trusted
- Windows CA Store (2019-05-27): OK - Certificate is trusted
- Symantec 2018 Deprecation: WARNING: Certificate distrusted by Google and Mozilla on September 2018
- Received Chain: leidatransparencia.com.br --> cPanel, Inc. Certification Authority --> COMODO RSA Certification Authority
- Verified Chain: leidatransparencia.com.br --> cPanel, Inc. Certification Authority --> COMODO RSA Certification Authority
- Received Chain Contains Anchor: OK - Anchor certificate not sent
- Received Chain Order: OK - Order is valid
- Verified Chain contains SHA1: OK - No SHA1-signed certificate in the verified certificate chain
- Extensions
- OCSP Must-Staple: NOT SUPPORTED - Extension not found
- Certificate Transparency: WARNING - Only 2 SCTs included but Google recommends 3 or more
- OCSP Stapling
- OCSP Response Status: successful
- Validation w/ Mozilla Store: OK - Response is trusted
- Responder Id: 7E035A65416BA77E0AE1B89D08EA1D8E1D6AC765
- Cert Status: good
- Cert Serial Number: 64995D3C25637740B9A36E62D1D1116E
- This Update: Sep 8 20:50:46 2019 GMT
- Next Update: Sep 15 20:50:46 2019 GMT
- * ROBOT Attack:
- OK - Not vulnerable, RSA cipher suites not supported
- * TLSV1_3 Cipher Suites:
- Server rejected all cipher suites.
- * Deflate Compression:
- OK - Compression disabled
- * SSLV3 Cipher Suites:
- Server rejected all cipher suites.
- * TLSV1_1 Cipher Suites:
- Server rejected all cipher suites.
- * TLSV1_2 Cipher Suites:
- Forward Secrecy OK - Supported
- RC4 OK - Not Supported
- Preferred:
- None - Server followed client cipher suite preference.
- Accepted:
- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 256 bits HTTP 503 Service Unavailable
- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 256 bits HTTP 503 Service Unavailable
- TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 128 bits HTTP 503 Service Unavailable
- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 128 bits HTTP 503 Service Unavailable
- * TLSV1 Cipher Suites:
- Server rejected all cipher suites.
- * OpenSSL Heartbleed:
- OK - Not vulnerable to Heartbleed
- SCAN COMPLETED IN 9.02 S
- ------------------------
- #######################################################################################################################################
- Domains still to check: 1
- Checking if the hostname camarapavao.mg.gov.br. given is in fact a domain...
- Analyzing domain: camarapavao.mg.gov.br.
- Checking NameServers using system default resolver...
- IP: 184.95.55.138 (United States)
- HostName: ns1.leidatransparencia.com.br Type: NS
- HostName: ns1.leidatransparencia.com.br Type: PTR
- IP: 184.95.55.139 (United States)
- HostName: ns2.leidatransparencia.com.br Type: NS
- HostName: ns2.leidatransparencia.com.br Type: PTR
- Checking MailServers using system default resolver...
- IP: 184.95.55.138 (United States)
- HostName: ns1.leidatransparencia.com.br Type: NS
- HostName: ns1.leidatransparencia.com.br Type: PTR
- HostName: camarapavao.mg.gov.br Type: MX
- Checking the zone transfer for each NS... (if this takes more than 10 seconds, just hit CTRL-C and it will continue. Bug in the libs)
- No zone transfer found on nameserver 184.95.55.138
- No zone transfer found on nameserver 184.95.55.139
- Checking SPF record...
- Checking 192 most common hostnames using system default resolver...
- IP: 184.95.55.138 (United States)
- HostName: ns1.leidatransparencia.com.br Type: NS
- HostName: ns1.leidatransparencia.com.br Type: PTR
- HostName: camarapavao.mg.gov.br Type: MX
- Type: SPF
- HostName: www.camarapavao.mg.gov.br. Type: A
- IP: 184.95.55.138 (United States)
- HostName: ns1.leidatransparencia.com.br Type: NS
- HostName: ns1.leidatransparencia.com.br Type: PTR
- HostName: camarapavao.mg.gov.br Type: MX
- Type: SPF
- HostName: www.camarapavao.mg.gov.br. Type: A
- HostName: ftp.camarapavao.mg.gov.br. Type: A
- IP: 184.95.55.138 (United States)
- HostName: ns1.leidatransparencia.com.br Type: NS
- HostName: ns1.leidatransparencia.com.br Type: PTR
- HostName: camarapavao.mg.gov.br Type: MX
- Type: SPF
- HostName: www.camarapavao.mg.gov.br. Type: A
- HostName: ftp.camarapavao.mg.gov.br. Type: A
- HostName: mail.camarapavao.mg.gov.br. Type: A
- IP: 184.95.55.138 (United States)
- HostName: ns1.leidatransparencia.com.br Type: NS
- HostName: ns1.leidatransparencia.com.br Type: PTR
- HostName: camarapavao.mg.gov.br Type: MX
- Type: SPF
- HostName: www.camarapavao.mg.gov.br. Type: A
- HostName: ftp.camarapavao.mg.gov.br. Type: A
- HostName: mail.camarapavao.mg.gov.br. Type: A
- HostName: webmail.camarapavao.mg.gov.br. Type: A
- Checking with nmap the reverse DNS hostnames of every <ip>/24 netblock using system default resolver...
- Checking netblock 184.95.55.0
- Searching for camarapavao.mg.gov.br. emails in Google
- Checking 2 active hosts using nmap... (nmap -sn -n -v -PP -PM -PS80,25 -PA -PY -PU53,40125 -PE --reason <ip> -oA <output_directory>/nmap/<ip>.sn)
- Host 184.95.55.138 is up (reset ttl 64)
- Host 184.95.55.139 is up (reset ttl 64)
- Checking ports on every active host using nmap... (nmap -O --reason --webxml --traceroute -sS -sV -sC -Pn -n -v -F <ip> -oA <output_directory>/nmap/<ip>)
- Scanning ip 184.95.55.138 (webmail.camarapavao.mg.gov.br.):
- 21/tcp open ftp syn-ack ttl 51 ProFTPD
- 22/tcp open ssh syn-ack ttl 53 OpenSSH 5.3 (protocol 2.0)
- 53/tcp open domain syn-ack ttl 53 ISC BIND 9.8.2rc1 (RedHat Enterprise Linux 6)
- 80/tcp open http syn-ack ttl 48 Apache httpd
- 110/tcp open pop3 syn-ack ttl 47 Dovecot pop3d
- 111/tcp open rpcbind syn-ack ttl 53
- 143/tcp open imap syn-ack ttl 51 Dovecot imapd
- 443/tcp open ssl/http syn-ack ttl 47 Apache httpd
- 465/tcp open ssl/smtp syn-ack ttl 47 Exim smtpd 4.92
- |_smtp-commands: Couldn't establish connection on port 465
- 587/tcp open smtp syn-ack ttl 53 Exim smtpd 4.92
- |_smtp-commands: Couldn't establish connection on port 587
- 993/tcp open imaps? syn-ack ttl 48
- 995/tcp open pop3s? syn-ack ttl 51
- 3306/tcp open mysql syn-ack ttl 51 MySQL 5.7.27
- OS Info: Service Info: Host: servidor.leidatransparencia.com.br; OS: Linux; CPE: cpe:/o:redhat:enterprise_linux:6
- Scanning ip 184.95.55.139 (ns2.leidatransparencia.com.br (PTR)):
- WebCrawling domain's web servers... up to 50 max links.
- + URL to crawl: http://ns1.leidatransparencia.com.br
- + Date: 2019-09-09
- + Crawling URL: http://ns1.leidatransparencia.com.br:
- + Links:
- + Crawling http://ns1.leidatransparencia.com.br (timed out)
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: http://www.camarapavao.mg.gov.br.
- + Date: 2019-09-09
- + Crawling URL: http://www.camarapavao.mg.gov.br.:
- + Links:
- + Crawling http://www.camarapavao.mg.gov.br. (timed out)
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: http://ftp.camarapavao.mg.gov.br.
- + Date: 2019-09-09
- + Crawling URL: http://ftp.camarapavao.mg.gov.br.:
- + Links:
- + Crawling http://ftp.camarapavao.mg.gov.br. (timed out)
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: http://camarapavao.mg.gov.br
- + Date: 2019-09-09
- + Crawling URL: http://camarapavao.mg.gov.br:
- + Links:
- + Crawling http://camarapavao.mg.gov.br (timed out)
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: http://mail.camarapavao.mg.gov.br.
- + Date: 2019-09-09
- + Crawling URL: http://mail.camarapavao.mg.gov.br.:
- + Links:
- + Crawling http://mail.camarapavao.mg.gov.br. (timed out)
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: http://webmail.camarapavao.mg.gov.br.
- + Date: 2019-09-09
- + Crawling URL: http://webmail.camarapavao.mg.gov.br.:
- + Links:
- + Crawling http://webmail.camarapavao.mg.gov.br. (timed out)
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: https://ns1.leidatransparencia.com.br
- + Date: 2019-09-09
- + Crawling URL: https://ns1.leidatransparencia.com.br:
- + Links:
- + Crawling https://ns1.leidatransparencia.com.br (timed out)
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: https://www.camarapavao.mg.gov.br.
- + Date: 2019-09-09
- + Crawling URL: https://www.camarapavao.mg.gov.br.:
- + Links:
- + Crawling https://www.camarapavao.mg.gov.br. (timed out)
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: https://ftp.camarapavao.mg.gov.br.
- + Date: 2019-09-09
- + Crawling URL: https://ftp.camarapavao.mg.gov.br.:
- + Links:
- + Crawling https://ftp.camarapavao.mg.gov.br. (timed out)
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: https://camarapavao.mg.gov.br
- + Date: 2019-09-09
- + Crawling URL: https://camarapavao.mg.gov.br:
- + Links:
- + Crawling https://camarapavao.mg.gov.br (timed out)
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: https://mail.camarapavao.mg.gov.br.
- + Date: 2019-09-09
- + Crawling URL: https://mail.camarapavao.mg.gov.br.:
- + Links:
- + Crawling https://mail.camarapavao.mg.gov.br. (timed out)
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: https://webmail.camarapavao.mg.gov.br.
- + Date: 2019-09-09
- + Crawling URL: https://webmail.camarapavao.mg.gov.br.:
- + Links:
- + Crawling https://webmail.camarapavao.mg.gov.br. (timed out)
- + Searching for directories...
- + Searching open folders...
- --Finished--
- Summary information for domain camarapavao.mg.gov.br.
- -----------------------------------------
- Domain Ips Information:
- IP: 184.95.55.138
- HostName: ns1.leidatransparencia.com.br Type: NS
- HostName: ns1.leidatransparencia.com.br Type: PTR
- HostName: camarapavao.mg.gov.br Type: MX
- Type: SPF
- HostName: www.camarapavao.mg.gov.br. Type: A
- HostName: ftp.camarapavao.mg.gov.br. Type: A
- HostName: mail.camarapavao.mg.gov.br. Type: A
- HostName: webmail.camarapavao.mg.gov.br. Type: A
- Country: United States
- Is Active: True (reset ttl 64)
- Port: 21/tcp open ftp syn-ack ttl 51 ProFTPD
- Port: 22/tcp open ssh syn-ack ttl 53 OpenSSH 5.3 (protocol 2.0)
- Port: 53/tcp open domain syn-ack ttl 53 ISC BIND 9.8.2rc1 (RedHat Enterprise Linux 6)
- Port: 80/tcp open http syn-ack ttl 48 Apache httpd
- Port: 110/tcp open pop3 syn-ack ttl 47 Dovecot pop3d
- Port: 111/tcp open rpcbind syn-ack ttl 53
- Port: 143/tcp open imap syn-ack ttl 51 Dovecot imapd
- Port: 443/tcp open ssl/http syn-ack ttl 47 Apache httpd
- Port: 465/tcp open ssl/smtp syn-ack ttl 47 Exim smtpd 4.92
- Script Info: |_smtp-commands: Couldn't establish connection on port 465
- Port: 587/tcp open smtp syn-ack ttl 53 Exim smtpd 4.92
- Script Info: |_smtp-commands: Couldn't establish connection on port 587
- Port: 993/tcp open imaps? syn-ack ttl 48
- Port: 995/tcp open pop3s? syn-ack ttl 51
- Port: 3306/tcp open mysql syn-ack ttl 51 MySQL 5.7.27
- Os Info: Host: servidor.leidatransparencia.com.br; OS: Linux; CPE: cpe:/o:redhat:enterprise_linux:6
- IP: 184.95.55.139
- HostName: ns2.leidatransparencia.com.br Type: NS
- HostName: ns2.leidatransparencia.com.br Type: PTR
- Country: United States
- Is Active: True (reset ttl 64)
- #######################################################################################################################################
- dnsenum VERSION:1.2.4
- ----- www.camarapavao.mg.gov.br -----
- Host's addresses:
- __________________
- camarapavao.mg.gov.br. 12235 IN A 184.95.55.138
- Name Servers:
- ______________
- ns2.leidatransparencia.com.br. 12234 IN A 184.95.55.139
- ns1.leidatransparencia.com.br. 10922 IN A 184.95.55.138
- Mail (MX) Servers:
- ___________________
- camarapavao.mg.gov.br. 12234 IN A 184.95.55.138
- Trying Zone Transfers and getting Bind Versions:
- _________________________________________________
- Trying Zone Transfer for www.camarapavao.mg.gov.br on ns2.leidatransparencia.com.br ...
- Trying Zone Transfer for www.camarapavao.mg.gov.br on ns1.leidatransparencia.com.br ...
- brute force file not specified, bay.
- #######################################################################################################################################
- [*] Found SPF record:
- [*] v=spf1 +a +mx +ip4:184.95.55.138 ~all
- [*] SPF record contains an All item: ~all
- [*] No DMARC record found. Looking for organizational record
- [+] No organizational DMARC record
- [+] Spoofing possible for www.camarapavao.mg.gov.br!
- #######################################################################################################################################
- Starting Nmap 7.80 ( https://nmap.org ) at 2019-09-09 13:45 EDT
- Nmap scan report for www.camarapavao.mg.gov.br (184.95.55.138)
- Host is up (0.046s latency).
- rDNS record for 184.95.55.138: ns1.leidatransparencia.com.br
- Not shown: 2 filtered ports
- PORT STATE SERVICE
- 53/udp open|filtered domain
- 67/udp open|filtered dhcps
- 68/udp open|filtered dhcpc
- 69/udp open|filtered tftp
- 88/udp open|filtered kerberos-sec
- 123/udp open|filtered ntp
- 139/udp open|filtered netbios-ssn
- 161/udp open|filtered snmp
- 162/udp open|filtered snmptrap
- 389/udp open|filtered ldap
- 500/udp open|filtered isakmp
- 520/udp open|filtered route
- 2049/udp open|filtered nfs
- Nmap done: 1 IP address (1 host up) scanned in 2.07 seconds
- #######################################################################################################################################
- Starting Nmap 7.80 ( https://nmap.org ) at 2019-09-09 13:14 EDT
- Nmap scan report for ns1.leidatransparencia.com.br (184.95.55.138)
- Host is up (0.092s latency).
- Not shown: 470 closed ports
- PORT STATE SERVICE
- 21/tcp open ftp
- 22/tcp open ssh
- 53/tcp open domain
- 80/tcp open http
- 110/tcp open pop3
- 111/tcp open rpcbind
- 143/tcp open imap
- 443/tcp open https
- 465/tcp open smtps
- 587/tcp open submission
- 993/tcp open imaps
- 995/tcp open pop3s
- 3306/tcp open mysql
- Nmap done: 1 IP address (1 host up) scanned in 1.77 seconds
- #######################################################################################################################################
- Starting Nmap 7.80 ( https://nmap.org ) at 2019-09-09 13:14 EDT
- NSE: [ftp-brute] usernames: Time limit 3m00s exceeded.
- NSE: [ftp-brute] usernames: Time limit 3m00s exceeded.
- NSE: [ftp-brute] passwords: Time limit 3m00s exceeded.
- Nmap scan report for ns1.leidatransparencia.com.br (184.95.55.138)
- Host is up (0.12s latency).
- PORT STATE SERVICE VERSION
- 21/tcp open ftp ProFTPD
- | ftp-brute:
- | Accounts: No valid accounts found
- |_ Statistics: Performed 4726 guesses in 180 seconds, average tps: 24.9
- |_vulscan: ERROR: Script execution failed (use -d to debug)
- Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- Aggressive OS guesses: Linux 2.6.32 - 3.1 (94%), Linux 3.11 (94%), Linux 2.6.32 - 3.10 (93%), Linux 2.6.32 - 3.13 (93%), Linux 2.6.32 - 3.9 (93%), Linux 3.2 (93%), Linux 2.6.32 (93%), Linux 3.5 (93%), Linux 3.8 (93%), Linux 3.1 (92%)
- No exact OS matches for host (test conditions non-ideal).
- Network Distance: 19 hops
- TRACEROUTE (using port 21/tcp)
- HOP RTT ADDRESS
- 1 97.04 ms 10.247.204.1
- 2 55.26 ms vlan102.as02.qc1.ca.m247.com (176.113.74.17)
- 3 55.28 ms xe-0-0-1-0.agg2.qc1.ca.m247.com (37.120.128.166)
- 4 55.25 ms vlan304.as032.buc.ro.m247.com (77.243.185.226)
- 5 55.51 ms te0-7-0-2.rcr21.ymq02.atlas.cogentco.com (38.122.42.161)
- 6 56.01 ms be2090.ccr22.ymq01.atlas.cogentco.com (154.54.45.117)
- 7 56.06 ms be2088.ccr21.alb02.atlas.cogentco.com (154.54.43.18)
- 8 56.12 ms be2915.ccr41.jfk02.atlas.cogentco.com (154.54.40.62)
- 9 56.22 ms be2807.ccr42.dca01.atlas.cogentco.com (154.54.40.110)
- 10 76.60 ms be3084.ccr41.iad02.atlas.cogentco.com (154.54.30.66)
- 11 76.57 ms be2962.rcr22.iad01.atlas.cogentco.com (154.54.46.114)
- 12 76.63 ms be3248.nr21.b023801-0.iad01.atlas.cogentco.com (154.24.4.46)
- 13 56.71 ms 38.88.249.10
- 14 ... 15
- 16 117.02 ms 10.110.10.3
- 17 117.03 ms 108.170.0.37
- 18 ...
- 19 96.59 ms ns1.leidatransparencia.com.br (184.95.55.138)
- #######################################################################################################################################
- # general
- (gen) banner: SSH-2.0-OpenSSH_5.3
- (gen) software: OpenSSH 5.3
- (gen) compatibility: OpenSSH 5.9-6.6, Dropbear SSH 2013.56+ (some functionality from 0.52)
- (gen) compression: enabled (zlib@openssh.com)
- # key exchange algorithms
- (kex) diffie-hellman-group-exchange-sha256 -- [warn] using custom size modulus (possibly weak)
- `- [info] available since OpenSSH 4.4
- (kex) diffie-hellman-group-exchange-sha1 -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
- `- [warn] using weak hashing algorithm
- `- [info] available since OpenSSH 2.3.0
- (kex) diffie-hellman-group14-sha1 -- [warn] using weak hashing algorithm
- `- [info] available since OpenSSH 3.9, Dropbear SSH 0.53
- (kex) diffie-hellman-group1-sha1 -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
- `- [fail] disabled (in client) since OpenSSH 7.0, logjam attack
- `- [warn] using small 1024-bit modulus
- `- [warn] using weak hashing algorithm
- `- [info] available since OpenSSH 2.3.0, Dropbear SSH 0.28
- # host-key algorithms
- (key) ssh-rsa -- [info] available since OpenSSH 2.5.0, Dropbear SSH 0.28
- (key) ssh-dss -- [fail] removed (in server) and disabled (in client) since OpenSSH 7.0, weak algorithm
- `- [warn] using small 1024-bit modulus
- `- [warn] using weak random number generator could reveal the key
- `- [info] available since OpenSSH 2.1.0, Dropbear SSH 0.28
- # encryption algorithms (ciphers)
- (enc) aes128-ctr -- [info] available since OpenSSH 3.7, Dropbear SSH 0.52
- (enc) aes192-ctr -- [info] available since OpenSSH 3.7
- (enc) aes256-ctr -- [info] available since OpenSSH 3.7, Dropbear SSH 0.52
- (enc) arcfour256 -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
- `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
- `- [warn] using weak cipher
- `- [info] available since OpenSSH 4.2
- (enc) arcfour128 -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
- `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
- `- [warn] using weak cipher
- `- [info] available since OpenSSH 4.2
- (enc) aes128-cbc -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
- `- [warn] using weak cipher mode
- `- [info] available since OpenSSH 2.3.0, Dropbear SSH 0.28
- (enc) 3des-cbc -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
- `- [warn] using weak cipher
- `- [warn] using weak cipher mode
- `- [warn] using small 64-bit block size
- `- [info] available since OpenSSH 1.2.2, Dropbear SSH 0.28
- (enc) blowfish-cbc -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
- `- [fail] disabled since Dropbear SSH 0.53
- `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
- `- [warn] using weak cipher mode
- `- [warn] using small 64-bit block size
- `- [info] available since OpenSSH 1.2.2, Dropbear SSH 0.28
- (enc) cast128-cbc -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
- `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
- `- [warn] using weak cipher mode
- `- [warn] using small 64-bit block size
- `- [info] available since OpenSSH 2.1.0
- (enc) aes192-cbc -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
- `- [warn] using weak cipher mode
- `- [info] available since OpenSSH 2.3.0
- (enc) aes256-cbc -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
- `- [warn] using weak cipher mode
- `- [info] available since OpenSSH 2.3.0, Dropbear SSH 0.47
- (enc) arcfour -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
- `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
- `- [warn] using weak cipher
- `- [info] available since OpenSSH 2.1.0
- (enc) rijndael-cbc@lysator.liu.se -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
- `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
- `- [warn] using weak cipher mode
- `- [info] available since OpenSSH 2.3.0
- # message authentication code algorithms
- (mac) hmac-md5 -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
- `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
- `- [warn] using encrypt-and-MAC mode
- `- [warn] using weak hashing algorithm
- `- [info] available since OpenSSH 2.1.0, Dropbear SSH 0.28
- (mac) hmac-sha1 -- [warn] using encrypt-and-MAC mode
- `- [warn] using weak hashing algorithm
- `- [info] available since OpenSSH 2.1.0, Dropbear SSH 0.28
- (mac) umac-64@openssh.com -- [warn] using encrypt-and-MAC mode
- `- [warn] using small 64-bit tag size
- `- [info] available since OpenSSH 4.7
- (mac) hmac-sha2-256 -- [warn] using encrypt-and-MAC mode
- `- [info] available since OpenSSH 5.9, Dropbear SSH 2013.56
- (mac) hmac-sha2-512 -- [warn] using encrypt-and-MAC mode
- `- [info] available since OpenSSH 5.9, Dropbear SSH 2013.56
- (mac) hmac-ripemd160 -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
- `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
- `- [warn] using encrypt-and-MAC mode
- `- [info] available since OpenSSH 2.5.0
- (mac) hmac-ripemd160@openssh.com -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
- `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
- `- [warn] using encrypt-and-MAC mode
- `- [info] available since OpenSSH 2.1.0
- (mac) hmac-sha1-96 -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
- `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
- `- [warn] using encrypt-and-MAC mode
- `- [warn] using weak hashing algorithm
- `- [info] available since OpenSSH 2.5.0, Dropbear SSH 0.47
- (mac) hmac-md5-96 -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
- `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
- `- [warn] using encrypt-and-MAC mode
- `- [warn] using weak hashing algorithm
- `- [info] available since OpenSSH 2.5.0
- # algorithm recommendations (for OpenSSH 5.3)
- (rec) -diffie-hellman-group14-sha1 -- kex algorithm to remove
- (rec) -diffie-hellman-group1-sha1 -- kex algorithm to remove
- (rec) -diffie-hellman-group-exchange-sha1 -- kex algorithm to remove
- (rec) -ssh-dss -- key algorithm to remove
- (rec) -arcfour -- enc algorithm to remove
- (rec) -rijndael-cbc@lysator.liu.se -- enc algorithm to remove
- (rec) -blowfish-cbc -- enc algorithm to remove
- (rec) -3des-cbc -- enc algorithm to remove
- (rec) -aes256-cbc -- enc algorithm to remove
- (rec) -arcfour256 -- enc algorithm to remove
- (rec) -cast128-cbc -- enc algorithm to remove
- (rec) -aes192-cbc -- enc algorithm to remove
- (rec) -arcfour128 -- enc algorithm to remove
- (rec) -aes128-cbc -- enc algorithm to remove
- (rec) -hmac-md5-96 -- mac algorithm to remove
- (rec) -hmac-ripemd160 -- mac algorithm to remove
- (rec) -hmac-sha1-96 -- mac algorithm to remove
- (rec) -umac-64@openssh.com -- mac algorithm to remove
- (rec) -hmac-md5 -- mac algorithm to remove
- (rec) -hmac-ripemd160@openssh.com -- mac algorithm to remove
- (rec) -hmac-sha1 -- mac algorithm to remove
- #######################################################################################################################################
- USER_FILE => /usr/share/brutex/wordlists/simple-users.txt
- RHOSTS => 184.95.55.138
- RHOST => 184.95.55.138
- [*] 184.95.55.138:22 - SSH - Using malformed packet technique
- [*] 184.95.55.138:22 - SSH - Starting scan
- [+] 184.95.55.138:22 - SSH - User 'admin' found
- [+] 184.95.55.138:22 - SSH - User 'administrator' found
- [+] 184.95.55.138:22 - SSH - User 'anonymous' found
- [+] 184.95.55.138:22 - SSH - User 'backup' found
- [+] 184.95.55.138:22 - SSH - User 'bee' found
- [+] 184.95.55.138:22 - SSH - User 'ftp' found
- [+] 184.95.55.138:22 - SSH - User 'guest' found
- [+] 184.95.55.138:22 - SSH - User 'GUEST' found
- [+] 184.95.55.138:22 - SSH - User 'info' found
- [+] 184.95.55.138:22 - SSH - User 'mail' found
- [+] 184.95.55.138:22 - SSH - User 'mailadmin' found
- [+] 184.95.55.138:22 - SSH - User 'msfadmin' found
- [+] 184.95.55.138:22 - SSH - User 'mysql' found
- [+] 184.95.55.138:22 - SSH - User 'nobody' found
- [+] 184.95.55.138:22 - SSH - User 'oracle' found
- [+] 184.95.55.138:22 - SSH - User 'owaspbwa' found
- [+] 184.95.55.138:22 - SSH - User 'postfix' found
- [+] 184.95.55.138:22 - SSH - User 'postgres' found
- [+] 184.95.55.138:22 - SSH - User 'private' found
- [+] 184.95.55.138:22 - SSH - User 'proftpd' found
- [+] 184.95.55.138:22 - SSH - User 'public' found
- [+] 184.95.55.138:22 - SSH - User 'root' found
- [+] 184.95.55.138:22 - SSH - User 'superadmin' found
- [+] 184.95.55.138:22 - SSH - User 'support' found
- [+] 184.95.55.138:22 - SSH - User 'sys' found
- [+] 184.95.55.138:22 - SSH - User 'system' found
- [+] 184.95.55.138:22 - SSH - User 'systemadmin' found
- [+] 184.95.55.138:22 - SSH - User 'systemadministrator' found
- [+] 184.95.55.138:22 - SSH - User 'test' found
- [+] 184.95.55.138:22 - SSH - User 'tomcat' found
- [+] 184.95.55.138:22 - SSH - User 'user' found
- [+] 184.95.55.138:22 - SSH - User 'webmaster' found
- [+] 184.95.55.138:22 - SSH - User 'www-data' found
- [+] 184.95.55.138:22 - SSH - User 'Fortimanager_Access' found
- [*] Scanned 1 of 1 hosts (100% complete)
- [*] Auxiliary module execution completed
- #######################################################################################################################################
- Starting Nmap 7.80 ( https://nmap.org ) at 2019-09-09 13:19 EDT
- Nmap scan report for ns1.leidatransparencia.com.br (184.95.55.138)
- Host is up (0.10s latency).
- PORT STATE SERVICE VERSION
- 53/tcp open domain ISC BIND 9.8.2rc1 (RedHat Enterprise Linux 6)
- |_dns-fuzz: Server didn't response to our probe, can't fuzz
- | dns-nsec-enum:
- |_ No NSEC records found
- | dns-nsec3-enum:
- |_ DNSSEC NSEC3 not supported
- | dns-nsid:
- |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6_10.3
- |_vulscan: ERROR: Script execution failed (use -d to debug)
- Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- Aggressive OS guesses: Linux 2.6.32 (93%), Linux 3.5 (93%), Linux 3.8 (93%), Linux 2.6.32 - 3.10 (93%), Linux 2.6.32 - 3.13 (93%), Linux 2.6.32 - 3.9 (93%), Linux 3.2 (93%), Linux 2.6.32 - 3.1 (92%), Linux 3.11 (92%), Linux 3.1 (92%)
- No exact OS matches for host (test conditions non-ideal).
- Network Distance: 19 hops
- Service Info: OS: Linux; CPE: cpe:/o:redhat:enterprise_linux:6
- Host script results:
- | dns-blacklist:
- | SPAM
- |_ l2.apews.org - SPAM
- | dns-brute:
- | DNS Brute-force hostnames:
- | ns1.leidatransparencia.com.br - 184.95.55.138
- | ns2.leidatransparencia.com.br - 184.95.55.139
- | mail.leidatransparencia.com.br - 184.95.55.138
- | www.leidatransparencia.com.br - 184.95.55.138
- |_ ftp.leidatransparencia.com.br - 184.95.55.138
- TRACEROUTE (using port 53/tcp)
- HOP RTT ADDRESS
- 1 95.26 ms 10.247.204.1
- 2 65.58 ms vlan102.as02.qc1.ca.m247.com (176.113.74.17)
- 3 65.64 ms xe-0-0-1-0.agg2.qc1.ca.m247.com (37.120.128.166)
- 4 46.00 ms vlan304.as032.buc.ro.m247.com (77.243.185.226)
- 5 65.65 ms te0-7-0-2.rcr21.ymq02.atlas.cogentco.com (38.122.42.161)
- 6 65.00 ms be2089.ccr21.ymq01.atlas.cogentco.com (154.54.45.113)
- 7 65.05 ms be2104.ccr22.alb02.atlas.cogentco.com (154.54.43.22)
- 8 65.11 ms be2916.ccr42.jfk02.atlas.cogentco.com (154.54.41.62)
- 9 54.35 ms be2807.ccr42.dca01.atlas.cogentco.com (154.54.40.110)
- 10 93.93 ms be3083.ccr41.iad02.atlas.cogentco.com (154.54.30.54)
- 11 73.89 ms be2956.rcr21.iad01.atlas.cogentco.com (154.54.30.194)
- 12 93.99 ms be3249.nr21.b023801-0.iad01.atlas.cogentco.com (154.24.4.50)
- 13 94.01 ms 38.88.249.10
- 14 ... 15
- 16 135.45 ms 10.110.10.3
- 17 135.45 ms 108.170.0.37
- 18 ...
- 19 135.47 ms ns1.leidatransparencia.com.br (184.95.55.138)
- #######################################################################################################################################
- HTTP/1.1 200 OK
- Date: Mon, 09 Sep 2019 17:20:37 GMT
- Server: Apache
- Last-Modified: Wed, 30 Jan 2019 02:06:03 GMT
- Accept-Ranges: bytes
- Content-Length: 163
- Vary: Accept-Encoding,User-Agent
- Content-Type: text/html
- HTTP/1.1 200 OK
- Date: Mon, 09 Sep 2019 17:20:37 GMT
- Server: Apache
- Last-Modified: Wed, 30 Jan 2019 02:06:03 GMT
- Accept-Ranges: bytes
- Content-Length: 163
- Vary: Accept-Encoding,User-Agent
- Content-Type: text/html
- Allow: HEAD,GET,POST,OPTIONS
- #######################################################################################################################################
- Starting Nmap 7.80 ( https://nmap.org ) at 2019-09-09 13:20 EDT
- Nmap scan report for ns1.leidatransparencia.com.br (184.95.55.138)
- Host is up (0.11s latency).
- PORT STATE SERVICE VERSION
- 110/tcp open pop3 Dovecot pop3d
- | pop3-brute:
- | Accounts: No valid accounts found
- | Statistics: Performed 55 guesses in 41 seconds, average tps: 1.5
- |_ ERROR: Failed to connect.
- |_pop3-capabilities: SASL(PLAIN LOGIN) CAPA USER STLS TOP UIDL PIPELINING AUTH-RESP-CODE RESP-CODES
- |_vulscan: ERROR: Script execution failed (use -d to debug)
- Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- Aggressive OS guesses: Linux 2.6.32 (92%), Linux 3.8 (92%), Linux 2.6.32 - 3.10 (92%), Linux 2.6.32 - 3.13 (92%), Linux 2.6.32 - 3.9 (92%), Linux 2.6.32 - 3.1 (91%), Linux 3.11 (91%), Linux 3.5 (91%), Linux 3.2 (91%), Linux 2.6.32 - 2.6.39 (91%)
- No exact OS matches for host (test conditions non-ideal).
- Network Distance: 19 hops
- TRACEROUTE (using port 110/tcp)
- HOP RTT ADDRESS
- 1 108.14 ms 10.247.204.1
- 2 58.37 ms vlan102.as02.qc1.ca.m247.com (176.113.74.17)
- 3 58.39 ms xe-0-0-1-0.agg2.qc1.ca.m247.com (37.120.128.166)
- 4 58.37 ms vlan304.as032.buc.ro.m247.com (77.243.185.226)
- 5 58.47 ms te0-7-0-2.rcr21.ymq02.atlas.cogentco.com (38.122.42.161)
- 6 58.51 ms be2089.ccr21.ymq01.atlas.cogentco.com (154.54.45.113)
- 7 58.54 ms be2104.ccr22.alb02.atlas.cogentco.com (154.54.43.22)
- 8 58.60 ms be2916.ccr42.jfk02.atlas.cogentco.com (154.54.41.62)
- 9 45.01 ms be2806.ccr41.dca01.atlas.cogentco.com (154.54.40.106)
- 10 57.61 ms be3083.ccr41.iad02.atlas.cogentco.com (154.54.30.54)
- 11 81.72 ms be2962.rcr22.iad01.atlas.cogentco.com (154.54.46.114)
- 12 81.79 ms be3248.nr21.b023801-0.iad01.atlas.cogentco.com (154.24.4.46)
- 13 81.78 ms 38.88.249.10
- 14 ... 15
- 16 128.81 ms 10.110.10.3
- 17 105.86 ms 108.170.0.21
- 18 105.86 ms 10.220.17.12
- 19 81.91 ms ns1.leidatransparencia.com.br (184.95.55.138)
- #######################################################################################################################################
- Starting Nmap 7.80 ( https://nmap.org ) at 2019-09-09 13:31 EDT
- NSE: Loaded 164 scripts for scanning.
- NSE: Script Pre-scanning.
- Initiating NSE at 13:31
- Completed NSE at 13:31, 0.00s elapsed
- Initiating NSE at 13:31
- Completed NSE at 13:31, 0.00s elapsed
- Initiating Parallel DNS resolution of 1 host. at 13:31
- Completed Parallel DNS resolution of 1 host. at 13:31, 0.02s elapsed
- Initiating SYN Stealth Scan at 13:31
- Scanning ns1.leidatransparencia.com.br (184.95.55.138) [1 port]
- Completed SYN Stealth Scan at 13:31, 0.54s elapsed (1 total ports)
- Initiating Service scan at 13:31
- Initiating OS detection (try #1) against ns1.leidatransparencia.com.br (184.95.55.138)
- Retrying OS detection (try #2) against ns1.leidatransparencia.com.br (184.95.55.138)
- Initiating Traceroute at 13:31
- Completed Traceroute at 13:31, 6.09s elapsed
- Initiating Parallel DNS resolution of 16 hosts. at 13:31
- Completed Parallel DNS resolution of 16 hosts. at 13:31, 0.31s elapsed
- NSE: Script scanning 184.95.55.138.
- Initiating NSE at 13:31
- Completed NSE at 13:31, 0.01s elapsed
- Initiating NSE at 13:31
- Completed NSE at 13:31, 0.00s elapsed
- Nmap scan report for ns1.leidatransparencia.com.br (184.95.55.138)
- Host is up.
- PORT STATE SERVICE VERSION
- 443/tcp filtered https
- Too many fingerprints match this host to give specific OS details
- TRACEROUTE (using proto 1/icmp)
- HOP RTT ADDRESS
- 1 57.31 ms 10.247.204.1
- 2 57.34 ms vlan102.as02.qc1.ca.m247.com (176.113.74.17)
- 3 77.15 ms xe-0-0-1-0.agg2.qc1.ca.m247.com (37.120.128.166)
- 4 57.39 ms vlan304.as032.buc.ro.m247.com (77.243.185.226)
- 5 57.39 ms te0-7-0-2.rcr21.ymq02.atlas.cogentco.com (38.122.42.161)
- 6 57.40 ms be2089.ccr21.ymq01.atlas.cogentco.com (154.54.45.113)
- 7 57.44 ms be2088.ccr21.alb02.atlas.cogentco.com (154.54.43.18)
- 8 57.46 ms be2915.ccr41.jfk02.atlas.cogentco.com (154.54.40.62)
- 9 57.48 ms be2806.ccr41.dca01.atlas.cogentco.com (154.54.40.106)
- 10 36.76 ms be2658.ccr22.iad02.atlas.cogentco.com (154.54.47.138)
- 11 57.45 ms be2962.rcr22.iad01.atlas.cogentco.com (154.54.46.114)
- 12 60.90 ms be3249.nr21.b023801-0.iad01.atlas.cogentco.com (154.24.4.50)
- 13 60.85 ms 38.88.249.10
- 14 ... 15
- 16 127.34 ms 10.110.10.3
- 17 127.31 ms 108.170.0.37
- 18 104.02 ms 10.220.17.12
- 19 ... 30
- NSE: Script Post-scanning.
- Initiating NSE at 13:31
- Completed NSE at 13:31, 0.00s elapsed
- Initiating NSE at 13:31
- Completed NSE at 13:31, 0.00s elapsed
- #######################################################################################################################################
- Starting Nmap 7.80 ( https://nmap.org ) at 2019-09-09 13:36 EDT
- Nmap scan report for ns1.leidatransparencia.com.br (184.95.55.138)
- Host is up.
- PORT STATE SERVICE VERSION
- 3306/tcp filtered mysql
- Too many fingerprints match this host to give specific OS details
- TRACEROUTE (using proto 1/icmp)
- HOP RTT ADDRESS
- 1 74.20 ms 10.247.204.1
- 2 74.28 ms vlan102.as02.qc1.ca.m247.com (176.113.74.17)
- 3 74.51 ms xe-0-0-1-0.agg2.qc1.ca.m247.com (37.120.128.166)
- 4 74.29 ms vlan304.as032.buc.ro.m247.com (77.243.185.226)
- 5 74.41 ms te0-7-0-2.rcr21.ymq02.atlas.cogentco.com (38.122.42.161)
- 6 74.40 ms be2089.ccr21.ymq01.atlas.cogentco.com (154.54.45.113)
- 7 74.47 ms be2088.ccr21.alb02.atlas.cogentco.com (154.54.43.18)
- 8 74.50 ms be2915.ccr41.jfk02.atlas.cogentco.com (154.54.40.62)
- 9 74.53 ms be2806.ccr41.dca01.atlas.cogentco.com (154.54.40.106)
- 10 74.61 ms be2658.ccr22.iad02.atlas.cogentco.com (154.54.47.138)
- 11 62.77 ms be2962.rcr22.iad01.atlas.cogentco.com (154.54.46.114)
- 12 62.74 ms be3249.nr21.b023801-0.iad01.atlas.cogentco.com (154.24.4.50)
- 13 62.67 ms 38.88.249.10
- 14 ... 15
- 16 105.09 ms 10.110.10.3
- 17 105.08 ms 108.170.0.37
- 18 105.06 ms 10.220.17.12
- 19 ... 30
- #######################################################################################################################################
- Starting Nmap 7.80 ( https://nmap.org ) at 2019-09-09 13:37 EDT
- NSE: Loaded 47 scripts for scanning.
- NSE: Script Pre-scanning.
- Initiating NSE at 13:37
- Completed NSE at 13:37, 0.00s elapsed
- Initiating NSE at 13:37
- Completed NSE at 13:37, 0.00s elapsed
- Initiating Parallel DNS resolution of 1 host. at 13:37
- Completed Parallel DNS resolution of 1 host. at 13:37, 0.03s elapsed
- Initiating UDP Scan at 13:37
- Scanning ns1.leidatransparencia.com.br (184.95.55.138) [15 ports]
- Completed UDP Scan at 13:37, 1.73s elapsed (15 total ports)
- Initiating Service scan at 13:37
- Scanning 13 services on ns1.leidatransparencia.com.br (184.95.55.138)
- Service scan Timing: About 7.69% done; ETC: 13:58 (0:19:36 remaining)
- Completed Service scan at 13:39, 102.57s elapsed (13 services on 1 host)
- Initiating OS detection (try #1) against ns1.leidatransparencia.com.br (184.95.55.138)
- Retrying OS detection (try #2) against ns1.leidatransparencia.com.br (184.95.55.138)
- Initiating Traceroute at 13:39
- Completed Traceroute at 13:39, 7.89s elapsed
- Initiating Parallel DNS resolution of 1 host. at 13:39
- Completed Parallel DNS resolution of 1 host. at 13:39, 0.00s elapsed
- NSE: Script scanning 184.95.55.138.
- Initiating NSE at 13:39
- Completed NSE at 13:39, 7.12s elapsed
- Initiating NSE at 13:39
- Completed NSE at 13:39, 1.01s elapsed
- Nmap scan report for ns1.leidatransparencia.com.br (184.95.55.138)
- Host is up (0.043s latency).
- PORT STATE SERVICE VERSION
- 53/udp open|filtered domain
- 67/udp open|filtered dhcps
- 68/udp open|filtered dhcpc
- 69/udp open|filtered tftp
- 88/udp open|filtered kerberos-sec
- 123/udp open|filtered ntp
- 137/udp filtered netbios-ns
- 138/udp filtered netbios-dgm
- 139/udp open|filtered netbios-ssn
- 161/udp open|filtered snmp
- 162/udp open|filtered snmptrap
- 389/udp open|filtered ldap
- 500/udp open|filtered isakmp
- |_ike-version: ERROR: Script execution failed (use -d to debug)
- 520/udp open|filtered route
- 2049/udp open|filtered nfs
- Too many fingerprints match this host to give specific OS details
- TRACEROUTE (using port 137/udp)
- HOP RTT ADDRESS
- 1 29.38 ms 10.247.204.1
- 2 ... 3
- 4 24.80 ms 10.247.204.1
- 5 29.39 ms 10.247.204.1
- 6 29.38 ms 10.247.204.1
- 7 29.38 ms 10.247.204.1
- 8 29.38 ms 10.247.204.1
- 9 29.38 ms 10.247.204.1
- 10 29.39 ms 10.247.204.1
- 11 ... 18
- 19 784.98 ms 10.247.204.1
- 20 848.76 ms 10.247.204.1
- 21 ... 26
- 27 20.69 ms 10.247.204.1
- 28 ... 29
- 30 19.78 ms 10.247.204.1
- NSE: Script Post-scanning.
- Initiating NSE at 13:39
- Completed NSE at 13:39, 0.00s elapsed
- Initiating NSE at 13:39
- Completed NSE at 13:39, 0.00s elapsed
- Read data files from: /usr/bin/../share/nmap
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 123.64 seconds
- Raw packets sent: 150 (14.132KB) | Rcvd: 1648 (203.966KB)
- #######################################################################################################################################
- Hosts
- =====
- address mac name os_name os_flavor os_sp purpose info comments
- ------- --- ---- ------- --------- ----- ------- ---- --------
- 184.95.55.138 ns1.leidatransparencia.com.br Unknown device
- Services
- ========
- host port proto name state info
- ---- ---- ----- ---- ----- ----
- 184.95.55.138 53 udp domain open
- 184.95.55.138 67 udp dhcps unknown
- 184.95.55.138 68 udp dhcpc unknown
- 184.95.55.138 69 udp tftp unknown
- 184.95.55.138 88 udp kerberos-sec unknown
- 184.95.55.138 123 udp ntp unknown
- 184.95.55.138 137 udp netbios-ns filtered
- 184.95.55.138 138 udp netbios-dgm filtered
- 184.95.55.138 139 udp netbios-ssn unknown
- 184.95.55.138 161 udp snmp unknown
- 184.95.55.138 162 udp snmptrap unknown
- 184.95.55.138 389 udp ldap unknown
- 184.95.55.138 500 udp isakmp unknown
- 184.95.55.138 520 udp route unknown
- 184.95.55.138 2049 udp nfs unknown
- #######################################################################################################################################
- Anonymous JTSEC #OpAmazonia Full Recon #25
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement