Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #######################################################################################################################################
- Hostname www.ishopy.co.il ISP Bezeq International (AS8551)
- Continent Asia Flag
- IL
- Country Israel Country Code IL (ISR)
- Region Unknown Local time 10 Mar 2018 05:32 IST
- City Unknown Latitude 31.5
- IP Address 81.218.229.174 Longitude 34.75
- ######################################################################################################################################
- HostIP:81.218.229.174
- HostName:ishopy.co.il
- Gathered Inet-whois information for 81.218.229.174
- ---------------------------------
- inetnum: 81.218.229.0 - 81.218.229.255
- netname: SECUREST-LTD
- descr: Securest LTD
- country: IL
- admin-c: BNT1-RIPE
- tech-c: se3315-ripe
- status: ASSIGNED PA
- mnt-by: AS8551-MNT
- mnt-lower: AS8551-MNT
- remarks: please send ABUSE complains to abuse@securest.biz
- created: 2009-08-26T11:21:55Z
- last-modified: 2010-06-21T00:33:20Z
- source: RIPE
- role: BEZEQINT NETWORKING TEAM
- address: Bezeq International
- address: 40 hashacham st.
- address: Petach Tikva 49170 Israel
- phone: +972 1 800014014
- fax-no: +972 3 9257674
- admin-c: MR916-RIPE
- tech-c: MR916-RIPE
- tech-c: RD1278-RIPE
- nic-hdl: BNT1-RIPE
- remarks: Please Send Spam and Abuse ONLY to abuse@bezeqint.net
- mnt-by: AS8551-MNT
- mnt-by: gp-44282
- created: 2005-09-27T12:31:29Z
- last-modified: 2017-11-30T13:25:20Z
- source: RIPE # Filtered
- person: Shlomi Elimeleh
- address: P.O.B 10
- address: 60250, Or Yehuda
- address: Israel
- mnt-by: MNT-NFORCE
- phone: +972 545688015
- fax-no: +972 (3)6050206
- nic-hdl: se3315-ripe
- created: 2007-06-26T14:29:02Z
- last-modified: 2017-10-30T21:55:39Z
- source: RIPE
- % Information related to '81.218.224.0/19AS8551'
- route: 81.218.224.0/19
- descr: BEZEQINT-ADSL
- origin: AS8551
- mnt-by: AS8551-MNT
- created: 2003-03-11T08:12:20Z
- last-modified: 2003-03-11T08:12:20Z
- source: RIPE # Filtered
- % This query was served by the RIPE Database Query Service version 1.90 (WAGYU)
- Gathered Inic-whois information for ishopy.co.il
- ---------------------------------
- domain: ishopy.co.il
- descr: acumana LTD
- descr: Hatichon 33
- descr: Haifa
- descr: 32296
- descr: Israel
- e-mail: chenganel AT gmail.com
- admin-c: GI-CG5194-IL
- tech-c: GI-CG5194-IL
- zone-c: GI-CG5194-IL
- nserver: ns1.qwais.com
- nserver: ns2.qwais.com
- validity: 12-12-2019
- DNSSEC: unsigned
- status: Transfer Locked
- changed: domain-registrar AT isoc.org.il 20YV@ (AssF
- �(iguned)
- changed: domain-registrar AT isoc.org.il 20131218 (Changed)
- changed: domain-registrar AT isoc.org.il 20140309 (Changed)
- person: chen ganel
- address: Hatichon 33
- address: Haifa
- address: 32296
- address: Israel
- phone: +972 54 2333399
- e-mail: chenganel AT gmail.com
- nic-hdl: GI-CG5194-IL
- changed: Managing Registrar 20131117
- registrar name: Gorni Interactive Ltd
- registrar info: http://www.box.co.il/
- % Rights to the data above are restricted by coV@pyrigF
- �(ht.
- Gathered Netcraft information for ishopy.co.il
- ---------------------------------
- Retrieving Netcraft.com information for ishopy.co.il
- Netcraft.com Information gathered
- Gathered Subdomain information for ishopy.co.il
- ---------------------------------
- Searching Google.com:80...
- Searching Altavista.com:80...
- Found 0 possible subdomain(s) for host ishopy.co.il, Searched 0 pages containing 0 results
- Gathered E-Mail information for ishopy.co.il
- ---------------------------------
- Searching Google.com:80...
- Searching Altavista.com:80...
- Found 0 E-Mail(s) for host ishopy.co.il, Searched 0 pages containing 0 results
- Gathered TCP Port information for 81.218.229.174
- ---------------------------------
- Port State
- 1/tcp open
- 2/tcp open
- 3/tcp open
- 4/tcp open
- 5/tcp open
- 6/tcp open
- 7/tcp open
- 8/tcp open
- 9/tcp open
- 10/tcp open
- 11/tcp open
- 12/tcp open
- 13/tcp open
- 14/tcp open
- 15/tcp open
- 16/tcp open
- 17/tcp open
- 18/tcp open
- 19/tcp open
- 20/tcp open
- 21/tcp open
- 22/tcp open
- 23/tcp open
- 24/tcp open
- 26/tcp open
- 27/tcp open
- 28/tcp open
- 29/tcp open
- 30/tcp open
- 31/tcp open
- 32/tcp open
- 33/tcp open
- 34/tcp open
- 35/tcp open
- 36/tcp open
- 37/tcp open
- 38/tcp open
- 39/tcp open
- 40/tcp open
- 41/tcp open
- 42/tcp open
- 43/tcp open
- 44/tcp open
- 45/tcp open
- 46/tcp open
- 47/tcp open
- 48/tcp open
- 49/tcp open
- 50/tcp open
- 51/tcp open
- 52/tcp open
- 53/tcp open
- 54/tcp open
- 55/tcp open
- 56/tcp open
- 57/tcp open
- 58/tcp open
- 59/tcp open
- 60/tcp open
- 61/tcp open
- 62/tcp open
- 63/tcp open
- 64/tcp open
- 65/tcp open
- 66/tcp open
- 67/tcp open
- 68/tcp open
- 69/tcp open
- 70/tcp open
- 71/tcp open
- 72/tcp open
- 73/tcp open
- 74/tcp open
- 75/tcp open
- 76/tcp open
- 77/tcp open
- 78/tcp open
- 79/tcp open
- 80/tcp open
- 81/tcp open
- 82/tcp open
- 83/tcp open
- 84/tcp open
- 85/tcp open
- 86/tcp open
- 87/tcp open
- 88/tcp open
- 89/tcp open
- 90/tcp open
- 91/tcp open
- 92/tcp open
- 93/tcp open
- 94/tcp open
- 95/tcp open
- 96/tcp open
- 97/tcp open
- 98/tcp open
- 99/tcp open
- 100/tcp open
- 101/tcp open
- 102/tcp open
- 103/tcp open
- 104/tcp open
- 105/tcp open
- 106/tcp open
- 107/tcp open
- 108/tcp open
- 109/tcp open
- 110/tcp open
- 111/tcp open
- 112/tcp open
- 113/tcp open
- 114/tcp open
- 115/tcp open
- 116/tcp open
- 117/tcp open
- 118/tcp open
- 119/tcp open
- 120/tcp open
- 121/tcp open
- 122/tcp open
- 123/tcp open
- 124/tcp open
- 125/tcp open
- 126/tcp open
- 127/tcp open
- 128/tcp open
- 129/tcp open
- 130/tcp open
- 131/tcp open
- 132/tcp open
- 133/tcp open
- 134/tcp open
- 140/tcp open
- 141/tcp open
- 142/tcp open
- 143/tcp open
- 144/tcp open
- 145/tcp open
- 146/tcp open
- 147/tcp open
- 148/tcp open
- 149/tcp open
- Portscan Finished: Scanned 150 ports, 0 ports were in state closed
- #######################################################################################################################################
- [i] Scanning Site: http://ishopy.co.il
- B A S I C I N F O
- ====================
- [+] Site Title: הקניון של היזמים החדשים - ISHOPY
- [+] IP address: 81.218.229.174
- [+] Web Server: Apache/2
- [+] CMS: Could Not Detect
- [+] Cloudflare: Not Detected
- [+] Robots File: Found
- -------------[ contents ]----------------
- User-agent: *
- Disallow: /wp-admin/
- -----------[end of contents]-------------
- W H O I S L O O K U P
- ========================
- % The data in the WHOIS database of the .il registry is provided
- % by ISOC-IL for information purposes, and to assist persons in
- % obtaining information about or related to a domain name
- % registration record. ISOC-IL does not guarantee its accuracy.
- % By submitting a WHOIS query, you agree that you will use this
- % Data only for lawful purposes and that, under no circumstances
- % will you use this Data to: (1) allow, enable, or otherwise
- % support the transmission of mass unsolicited, commercial
- % advertising or solicitations via e-mail (spam);
- % or (2) enable high volume, automated, electronic processes that
- % apply to ISOC-IL (or its systems).
- % ISOC-IL reserves the right to modify these terms at any time.
- % By submitting this query, you agree to abide by this policy.
- query: ishopy.co.il
- reg-name: ishopy
- domain: ishopy.co.il
- descr: acumana LTD
- descr: Hatichon 33
- descr: Haifa
- descr: 32296
- descr: Israel
- e-mail: chenganel AT gmail.com
- admin-c: GI-CG5194-IL
- tech-c: GI-CG5194-IL
- zone-c: GI-CG5194-IL
- nserver: ns1.qwais.com
- nserver: ns2.qwais.com
- validity: 12-12-2019
- DNSSEC: unsigned
- status: Transfer Locked
- changed: domain-registrar AT isoc.org.il 20131212 (Assigned)
- changed: domain-registrar AT isoc.org.il 20131218 (Changed)
- changed: domain-registrar AT isoc.org.il 20140309 (Changed)
- person: chen ganel
- address: Hatichon 33
- address: Haifa
- address: 32296
- address: Israel
- phone: +972 54 2333399
- e-mail: chenganel AT gmail.com
- nic-hdl: GI-CG5194-IL
- changed: Managing Registrar 20131117
- registrar name: Gorni Interactive Ltd
- registrar info: http://www.box.co.il/
- % Rights to the data above are restricted by copyright.
- G E O I P L O O K U P
- =========================
- [i] IP Address: 81.218.229.174
- [i] Country: IL
- [i] State: N/A
- [i] City: N/A
- [i] Latitude: 31.500000
- [i] Longitude: 34.750000
- H T T P H E A D E R S
- =======================
- [i] HTTP/1.1 301 Moved Permanently
- [i] Date: Sat, 10 Mar 2018 06:22:30 GMT
- [i] Server: Apache/2
- [i] Expires: Thu, 19 Nov 1981 08:52:00 GMT
- [i] Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
- [i] Pragma: no-cache
- [i] X-Pingback: http://www.ishopy.co.il/xmlrpc.php
- [i] Set-Cookie: PHPSESSID=1d15l1rn22be346397b0ge43m2; path=/
- [i] Location: http://www.ishopy.co.il/
- [i] Vary: Accept-Encoding,User-Agent
- [i] Content-Length: 0
- [i] Connection: close
- [i] Content-Type: text/html; charset=UTF-8
- [i] HTTP/1.1 200 OK
- [i] Date: Sat, 10 Mar 2018 06:22:32 GMT
- [i] Server: Apache/2
- [i] Expires: Thu, 19 Nov 1981 08:52:00 GMT
- [i] Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
- [i] Pragma: no-cache
- [i] X-Pingback: http://www.ishopy.co.il/xmlrpc.php
- [i] Set-Cookie: PHPSESSID=20pr2v0r0qtdvs1nbomd0rb4n3; path=/
- [i] Vary: Accept-Encoding,User-Agent
- [i] Connection: close
- [i] Content-Type: text/html; charset=UTF-8
- D N S L O O K U P
- ===================
- ;; Truncated, retrying in TCP mode.
- ishopy.co.il. 14400 IN MX 10 mail.ishopy.co.il.
- ishopy.co.il. 14400 IN TXT "v=spf1 a mx ip4:81.218.229.174 ~all"
- ishopy.co.il. 14400 IN A 81.218.229.174
- ishopy.co.il. 14400 IN SOA ns1.qwais.com. hostmaster.ishopy.co.il. 2015020101 14400 3600 1209600 86400
- ishopy.co.il. 14400 IN NS ns1.qwais.com.
- ishopy.co.il. 14400 IN NS ns2.qwais.com.
- S U B N E T C A L C U L A T I O N
- ====================================
- Address = 81.218.229.174
- Network = 81.218.229.174 / 32
- Netmask = 255.255.255.255
- Broadcast = not needed on Point-to-Point links
- Wildcard Mask = 0.0.0.0
- Hosts Bits = 0
- Max. Hosts = 1 (2^0 - 0)
- Host Range = { 81.218.229.174 - 81.218.229.174 }
- N M A P P O R T S C A N
- ============================
- Starting Nmap 7.01 ( https://nmap.org ) at 2018-03-10 03:35 UTC
- Nmap scan report for ishopy.co.il (81.218.229.174)
- Host is up (0.14s latency).
- rDNS record for 81.218.229.174: mail.qwais.com
- PORT STATE SERVICE VERSION
- 21/tcp open ftp ProFTPD 1.3.4b
- 22/tcp filtered ssh
- 23/tcp filtered telnet
- 25/tcp open smtp Exim smtpd 4.80.1
- 80/tcp open http Apache httpd 2
- 110/tcp open pop3 Dovecot DirectAdmin pop3d
- 143/tcp open imap Dovecot imapd
- 443/tcp open ssl/http Apache httpd 2
- 445/tcp filtered microsoft-ds
- 3389/tcp filtered ms-wbt-server
- Service Info: Hosts: il1.qwais.com, localhost; OS: Unix
- Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 15.80 seconds
- #######################################################################################################################################
- [!] IP Address : 81.218.229.174
- [!] CMS Detected : WordPress
- [?] Would you like to use WPScan? [Y/n] Y
- _______________________________________________________________
- __ _______ _____
- \ \ / / __ \ / ____|
- \ \ /\ / /| |__) | (___ ___ __ _ _ __ ®
- \ \/ \/ / | ___/ \___ \ / __|/ _` | '_ \
- \ /\ / | | ____) | (__| (_| | | | |
- \/ \/ |_| |_____/ \___|\__,_|_| |_|
- WordPress Security Scanner by the WPScan Team
- Version 2.9.3
- Sponsored by Sucuri - https://sucuri.net
- @_WPScan_, @ethicalhack3r, @erwan_lr, pvdl, @_FireFart_
- _______________________________________________________________
- [i] It seems like you have not updated the database for some time.
- [?] Do you want to update now? [Y]es [N]o [A]bort, default: [N]Y
- [i] Updating the Database ...
- [i] Update completed.
- [+] URL: http://www.ishopy.co.il/
- [+] Started: Fri Mar 9 22:42:43 2018
- [!] The target seems to be down
- [+] Honeypot Probabilty: 30%
- ----------------------------------------
- [~] Trying to gather whois information for www.ishopy.co.il
- [+] Whois information found
- Registrant Name : None
- Status : None
- Dnssec : None
- Expiration Date : None
- Domain Name : None
- Phone : None
- Registrar : None
- Referral Url : None
- Name Servers : None
- Emails : None
- ----------------------------------------
- [+] Robots.txt retrieved
- User-agent: *
- Disallow: /wp-admin/
- ----------------------------------------
- PORT STATE SERVICE VERSION
- 21/tcp open ftp ProFTPD 1.3.4b
- 22/tcp filtered ssh
- 23/tcp filtered telnet
- 25/tcp open smtp Exim smtpd 4.80.1
- 80/tcp open http Apache httpd 2
- 110/tcp open pop3 Dovecot DirectAdmin pop3d
- 143/tcp open imap Dovecot imapd
- 443/tcp open ssl/http Apache httpd 2
- 445/tcp filtered microsoft-ds
- 3389/tcp filtered ms-wbt-server
- ----------------------------------------
- [+] DNS Records
- [+] Host Records (A)
- www.ishopy.co.ilHTTP: (mail.qwais.com) (81.218.229.174) AS8551 Bezeq International Israel
- [+] TXT Records
- [+] DNS Map: https://dnsdumpster.com/static/map/ishopy.co.il.png
- [>] Initiating 3 intel modules
- [>] Loading Alpha module (1/3)
- [>] Beta module deployed (2/3)
- [>] Gamma module initiated (3/3)
- No emails found
- No hosts found
- [+] Virtual hosts:
- -----------------
- #######################################################################################################################################
- Original* ishopy.co.il 81.218.229.174 NS:ns1.qwais.com MX:mail.ishopy.co.il
- Omission shopy.co.il 82.166.0.156 NS:dns.adamnet.co.il MX:alt1.aspmx.l.google.com
- Omission ihopy.co.il NS:ns1.sitesdepot.com
- Subdomain i.shopy.co.il 82.166.0.156 NS:dns.adamnet.co.il MX:alt1.aspmx.l.google.com
- Various ishopy.co-il.com 209.15.13.134 NS:ns1.dnslink.com
- #####################################################################################################################################
- Ip Address Status Type Domain Name Server
- ---------- ------ ---- ----------- ------
- 81.218.229.174 200 host ftp.ishopy.co.il Apache/2
- 127.0.0.1 host localhost.ishopy.co.il
- 81.218.229.174 host mail.ishopy.co.il
- 81.218.229.174 500 host old.ishopy.co.il Apache/2
- 81.218.229.174 200 host pop.ishopy.co.il Apache/2
- 81.218.229.174 host smtp.ishopy.co.il
- 81.218.229.174 host www.ishopy.co.il
- 81.218.229.174 host www.old.ishopy.co.il
- ######################################################################################################################################
- Scan date: 9-3-2018 23:31:17
- =====================================================================================================================================
- | Domain: http://ishopy.co.il/
- | IP: 81.218.229.174
- ======================================================================================================================================
- |
- | Directory check:
- | Skipped because http://ishopy.co.il/uniscan834/ did not return the code 404
- =====================================================================================================================================
- |
- | File check:
- | Skipped because http://ishopy.co.il/uniscan697/ did not return the code 404
- ======================================================================================================================================
- |
- | Check robots.txt:
- |
- | Check sitemap.xml:
- ========================================================================================================================================
- |
- | Crawler Started:
- | Plugin name: FCKeditor upload test v.1 Loaded.
- | Plugin name: Code Disclosure v.1.1 Loaded.
- | Plugin name: External Host Detect v.1.2 Loaded.
- | Plugin name: Web Backdoor Disclosure v.1.1 Loaded.
- | Plugin name: E-mail Detection v.1.1 Loaded.
- | Plugin name: Timthumb <= 1.32 vulnerability v.1 Loaded.
- | Plugin name: phpinfo() Disclosure v.1 Loaded.
- | Plugin name: Upload Form Detect v.1.1 Loaded.
- | [+] Crawling finished, 1 URL's found!
- |
- | FCKeditor File Upload:
- |
- | Source Code Disclosure:
- |
- | External hosts:
- |
- | Web Backdoors:
- |
- | E-mails:
- |
- | Timthumb:
- |
- | PHPinfo() Disclosure:
- |
- | File Upload Forms:
- |
- | Ignored Files:
- =======================================================================================================================================
- | Dynamic tests:
- | Plugin name: Learning New Directories v.1.2 Loaded.
- | Plugin name: FCKedior tests v.1.1 Loaded.
- | Plugin name: Timthumb <= 1.32 vulnerability v.1 Loaded.
- | Plugin name: Find Backup Files v.1.2 Loaded.
- | Plugin name: Blind SQL-injection tests v.1.3 Loaded.
- | Plugin name: Local File Include tests v.1.1 Loaded.
- | Plugin name: PHP CGI Argument Injection v.1.1 Loaded.
- | Plugin name: Remote Command Execution tests v.1.1 Loaded.
- | Plugin name: Remote File Include tests v.1.2 Loaded.
- | Plugin name: SQL-injection tests v.1.2 Loaded.
- | Plugin name: Cross-Site Scripting tests v.1.2 Loaded.
- | Plugin name: Web Shell Finder v.1.3 Loaded.
- | [+] 0 New directories added
- |
- |
- | FCKeditor tests:
- | Skipped because http://ishopy.co.il/testing123 did not return the code 404
- |
- |
- | Timthumb < 1.33 vulnerability:
- |
- |
- | Backup Files:
- | Skipped because http://ishopy.co.il/testing123 did not return the code 404
- |
- |
- | Blind SQL Injection:
- |
- |
- | Local File Include:
- |
- |
- | PHP CGI Argument Injection:
- |
- |
- | Remote Command Execution:
- |
- |
- | Remote File Include:
- |
- |
- | SQL Injection:
- |
- |
- | Cross-Site Scripting (XSS):
- |
- |
- | Web Shell Finder:
- =======================================================================================================================================
- | Static tests:
- | Plugin name: Local File Include tests v.1.1 Loaded.
- | Plugin name: Remote Command Execution tests v.1.1 Loaded.
- | Plugin name: Remote File Include tests v.1.1 Loaded.
- |
- |
- | Local File Include:
- |
- |
- | Remote Command Execution:
- |
- |
- | Remote File Include:
- =======================================================================================================================================
- #######################################################################################################################################
- [92m====================================================================================[0m
- [91m RUNNING NSLOOKUP [0m
- [92m====================================================================================[0m
- Server: 10.211.254.254
- Address: 10.211.254.254#53
- Non-authoritative answer:
- Name: ishopy.co.il
- Address: 81.218.229.174
- ishopy.co.il has address 81.218.229.174
- ishopy.co.il mail is handled by 10 mail.ishopy.co.il.
- [92m====================================================================================[0m
- [91m CHECKING OS FINGERPRINT [0m
- [92m====================================================================================[0m
- Xprobe2 v.0.3 Copyright (c) 2002-2005 fyodor@o0o.nu, ofir@sys-security.com, meder@o0o.nu
- [+] Target is ishopy.co.il
- [+] Loading modules.
- [+] Following modules are loaded:
- [x] [1] ping:icmp_ping - ICMP echo discovery module
- [x] [2] ping:tcp_ping - TCP-based ping discovery module
- [x] [3] ping:udp_ping - UDP-based ping discovery module
- [x] [4] infogather:ttl_calc - TCP and UDP based TTL distance calculation
- [x] [5] infogather:portscan - TCP and UDP PortScanner
- [x] [6] fingerprint:icmp_echo - ICMP Echo request fingerprinting module
- [x] [7] fingerprint:icmp_tstamp - ICMP Timestamp request fingerprinting module
- [x] [8] fingerprint:icmp_amask - ICMP Address mask request fingerprinting module
- [x] [9] fingerprint:icmp_port_unreach - ICMP port unreachable fingerprinting module
- [x] [10] fingerprint:tcp_hshake - TCP Handshake fingerprinting module
- [x] [11] fingerprint:tcp_rst - TCP RST fingerprinting module
- [x] [12] fingerprint:smb - SMB fingerprinting module
- [x] [13] fingerprint:snmp - SNMPv2c fingerprinting module
- [+] 13 modules registered
- [+] Initializing scan engine
- [+] Running scan engine
- [-] ping:tcp_ping module: no closed/open TCP ports known on 81.218.229.174. Module test failed
- [-] ping:udp_ping module: no closed/open UDP ports known on 81.218.229.174. Module test failed
- [-] No distance calculation. 81.218.229.174 appears to be dead or no ports known
- [+] Host: 81.218.229.174 is down (Guess probability: 0%)
- [+] Cleaning up scan engine
- [+] Modules deinitialized
- [+] Execution completed.
- [92m====================================================================================[0m
- [91m GATHERING WHOIS INFO [0m
- [92m====================================================================================[0m
- % The data in the WHOIS database of the .il registry is provided
- % by ISOC-IL for information purposes, and to assist persons in
- % obtaining information about or related to a domain name
- % registration record. ISOC-IL does not guarantee its accuracy.
- % By submitting a WHOIS query, you agree that you will use this
- % Data only for lawful purposes and that, under no circumstances
- % will you use this Data to: (1) allow, enable, or otherwise
- % support the transmission of mass unsolicited, commercial
- % advertising or solicitations via e-mail (spam);
- % or (2) enable high volume, automated, electronic processes that
- % apply to ISOC-IL (or its systems).
- % ISOC-IL reserves the right to modify these terms at any time.
- % By submitting this query, you agree to abide by this policy.
- query: ishopy.co.il
- reg-name: ishopy
- domain: ishopy.co.il
- descr: acumana LTD
- descr: Hatichon 33
- descr: Haifa
- descr: 32296
- descr: Israel
- e-mail: chenganel AT gmail.com
- admin-c: GI-CG5194-IL
- tech-c: GI-CG5194-IL
- zone-c: GI-CG5194-IL
- nserver: ns1.qwais.com
- nserver: ns2.qwais.com
- validity: 12-12-2019
- DNSSEC: unsigned
- status: Transfer Locked
- changed: domain-registrar AT isoc.org.il 20131212 (Assigned)
- changed: domain-registrar AT isoc.org.il 20131218 (Changed)
- changed: domain-registrar AT isoc.org.il 20140309 (Changed)
- person: chen ganel
- address: Hatichon 33
- address: Haifa
- address: 32296
- address: Israel
- phone: +972 54 2333399
- e-mail: chenganel AT gmail.com
- nic-hdl: GI-CG5194-IL
- changed: Managing Registrar 20131117
- registrar name: Gorni Interactive Ltd
- registrar info: http://www.box.co.il/
- % Rights to the data above are restricted by copyright.
- [92m====================================================================================[0m
- [91m GATHERING OSINT INFO [0m
- [92m====================================================================================[0m
- *******************************************************************
- * *
- * | |_| |__ ___ /\ /\__ _ _ ____ _____ ___| |_ ___ _ __ *
- * | __| '_ \ / _ \ / /_/ / _` | '__\ \ / / _ \/ __| __/ _ \ '__| *
- * | |_| | | | __/ / __ / (_| | | \ V / __/\__ \ || __/ | *
- * \__|_| |_|\___| \/ /_/ \__,_|_| \_/ \___||___/\__\___|_| *
- * *
- * TheHarvester Ver. 2.7 *
- * Coded by Christian Martorella *
- * Edge-Security Research *
- * cmartorella@edge-security.com *
- *******************************************************************
- Full harvest..
- [-] Searching in Google..
- Searching 0 results...
- [-] Searching in PGP Key server..
- [-] Searching in Bing..
- Searching 50 results...
- [-] Searching in Exalead..
- Searching 50 results...
- [+] Emails found:
- ------------------
- pixel-152072724967286-web-@ishopy.co.il
- [+] Hosts found in search engines:
- ------------------------------------
- [-] Resolving hostnames IPs...
- 81.218.229.174:www.ishopy.co.il
- [+] Virtual hosts:
- ==================
- 81.218.229.174 www.vipri.co.il
- 81.218.229.174 www.playmagnet.co.il
- 81.218.229.174 www.zohara-klein.co.il
- #######################################################################################################################################
- ; <<>> DiG 9.11.2-P1-1-Debian <<>> -x ishopy.co.il
- ;; global options: +cmd
- ;; Got answer:
- ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 764
- ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
- ;; OPT PSEUDOSECTION:
- ; EDNS: version: 0, flags:; udp: 4096
- ;; QUESTION SECTION:
- ;il.co.ishopy.in-addr.arpa. IN PTR
- ;; AUTHORITY SECTION:
- in-addr.arpa. 3600 IN SOA b.in-addr-servers.arpa. nstld.iana.org. 2018013208 1800 900 604800 3600
- ;; Query time: 549 msec
- ;; SERVER: 10.211.254.254#53(10.211.254.254)
- ;; WHEN: Sat Mar 10 19:14:30 EST 2018
- ;; MSG SIZE rcvd: 122
- dnsenum VERSION:1.2.4
- [1;34m
- ----- ishopy.co.il -----
- [0m[1;31m
- Host's addresses:
- __________________
- [0mishopy.co.il. 7642 IN A 81.218.229.174
- [1;31m
- Name Servers:
- ______________
- [0mns2.qwais.com. 7640 IN A 81.218.229.192
- ns1.qwais.com. 7640 IN A 81.218.229.174
- [1;31m
- Mail (MX) Servers:
- ___________________
- [0mmail.ishopy.co.il. 7643 IN A 81.218.229.174
- [1;31m
- Trying Zone Transfers and getting Bind Versions:
- _________________________________________________
- [0m
- Trying Zone Transfer for ishopy.co.il on ns1.qwais.com ...
- ishopy.co.il. 14400 IN SOA (
- ishopy.co.il. 14400 IN MX 10
- ishopy.co.il. 14400 IN TXT "v=spf1
- ishopy.co.il. 14400 IN A 81.218.229.174
- ishopy.co.il. 14400 IN NS ns1.qwais.com.
- ishopy.co.il. 14400 IN NS ns2.qwais.com.
- ftp.ishopy.co.il. 14400 IN A 81.218.229.174
- localhost.ishopy.co.il. 14400 IN AAAA ::1
- localhost.ishopy.co.il. 14400 IN A 127.0.0.1
- mail.ishopy.co.il. 14400 IN A 81.218.229.174
- old.ishopy.co.il. 14400 IN A 81.218.229.174
- www.old.ishopy.co.il. 14400 IN A 81.218.229.174
- pop.ishopy.co.il. 14400 IN A 81.218.229.174
- smtp.ishopy.co.il. 14400 IN A 81.218.229.174
- www.ishopy.co.il. 14400 IN A 81.218.229.174
- Trying Zone Transfer for ishopy.co.il on ns2.qwais.com ...
- ishopy.co.il. 14400 IN SOA (
- ishopy.co.il. 14400 IN MX 10
- ishopy.co.il. 14400 IN TXT "v=spf1
- ishopy.co.il. 14400 IN A 81.218.229.174
- ishopy.co.il. 14400 IN NS ns1.qwais.com.
- ishopy.co.il. 14400 IN NS ns2.qwais.com.
- ftp.ishopy.co.il. 14400 IN A 81.218.229.174
- localhost.ishopy.co.il. 14400 IN AAAA ::1
- localhost.ishopy.co.il. 14400 IN A 127.0.0.1
- mail.ishopy.co.il. 14400 IN A 81.218.229.174
- old.ishopy.co.il. 14400 IN A 81.218.229.174
- www.old.ishopy.co.il. 14400 IN A 81.218.229.174
- pop.ishopy.co.il. 14400 IN A 81.218.229.174
- smtp.ishopy.co.il. 14400 IN A 81.218.229.174
- www.ishopy.co.il. 14400 IN A 81.218.229.174
- brute force file not specified, bay.
- [92m====================================================================================[0m
- [91m GATHERING DNS SUBDOMAINS [0m
- [92m====================================================================================[0m
- [91m
- ____ _ _ _ _ _____
- / ___| _ _| |__ | (_)___| |_|___ / _ __
- \___ \| | | | '_ \| | / __| __| |_ \| '__|
- ___) | |_| | |_) | | \__ \ |_ ___) | |
- |____/ \__,_|_.__/|_|_|___/\__|____/|_|[0m[93m
- # Coded By Ahmed Aboul-Ela - @aboul3la
- [94m[-] Enumerating subdomains now for ishopy.co.il[0m
- [93m[-] verbosity is enabled, will show the subdomains results in realtime[0m
- [92m[-] Searching now in Baidu..[0m
- [92m[-] Searching now in Yahoo..[0m
- [92m[-] Searching now in Google..[0m
- [92m[-] Searching now in Bing..[0m
- [92m[-] Searching now in Ask..[0m
- [92m[-] Searching now in Netcraft..[0m
- [92m[-] Searching now in DNSdumpster..[0m
- [92m[-] Searching now in Virustotal..[0m
- [92m[-] Searching now in ThreatCrowd..[0m
- [92m[-] Searching now in SSL Certificates..[0m
- [92m[-] Searching now in PassiveDNS..[0m
- [91mYahoo: [0mwww.ishopy.co.il
- [91mVirustotal: [0mmail.ishopy.co.il
- [93m[-] Saving results to file: [0m[91m/usr/share/sniper/loot/domains/domains-ishopy.co.il.txt[0m
- [93m[-] Total Unique Subdomains Found: 2[0m
- [92mwww.ishopy.co.il[0m
- [92mmail.ishopy.co.il[0m
- [91m ╔═╗╦═╗╔╦╗╔═╗╦ ╦[0m
- [91m ║ ╠╦╝ ║ ╚═╗╠═╣[0m
- [91m ╚═╝╩╚═ ╩o╚═╝╩ ╩[0m
- [92m====================================================================================[0m
- [91m GATHERING CERTIFICATE SUBDOMAINS [0m
- [92m====================================================================================[0m
- [94m
- [91m[+] Domains saved to: /usr/share/sniper/loot/domains/domains-ishopy.co.il-full.txt
- [0m
- [92m====================================================================================[0m
- [91m CHECKING FOR SUBDOMAIN HIJACKING [0m
- [92m====================================================================================[0m
- [92m====================================================================================[0m
- [91m CHECKING EMAIL SECURITY [0m
- [92m====================================================================================[0m
- [92m====================================================================================[0m
- [91m STARTING DOMAIN FLYOVER [0m
- [92m====================================================================================[0m
- __
- ____ _____ ___ ______ _/ /_____ ____ ___
- / __ `/ __ `/ / / / __ `/ __/ __ \/ __ \/ _ \
- / /_/ / /_/ / /_/ / /_/ / /_/ /_/ / / / / __/
- \__,_/\__, /\__,_/\__,_/\__/\____/_/ /_/\___/
- /_/ discover v0.5.0 - by @michenriksen
- Identifying nameservers for ishopy.co.il... Done
- Using nameservers:
- - 81.218.229.174
- - 81.218.229.192
- Checking for wildcard DNS... Done
- Running collector: [1m[1mCertificate Search[0m... Done (0 hosts)
- Running collector: [1m[1mVirusTotal[0m... [1m[33mSkipped
- [0m[1m[33m -> Key 'virustotal' has not been set
- [0mRunning collector: [1m[1mDictionary[0m... Done (27 hosts)
- Running collector: [1m[1mGoogle Transparency Report[0m... Done (0 hosts)
- Running collector: [1m[1mCensys[0m... [1m[33mSkipped
- [0m[1m[33m -> Key 'censys_secret' has not been set
- [0mRunning collector: [1m[1mWayback Machine[0m... Done (2 hosts)
- Running collector: [1m[1mRiddler[0m... [1m[33mSkipped
- [0m[1m[33m -> Key 'riddler_username' has not been set
- [0mRunning collector: [1m[1mPTRArchive[0m... [1m[31mError
- [0m[1m[31m -> PTRArchive returned unexpected response code: 502
- [0mRunning collector: [1m[1mThreat Crowd[0m... Done (0 hosts)
- Running collector: [1m[1mHackerTarget[0m... Done (1 host)
- Running collector: [1m[1mPassiveTotal[0m... [1m[33mSkipped
- [0m[1m[33m -> Key 'passivetotal_key' has not been set
- [0mRunning collector: [1m[1mNetcraft[0m... Done (0 hosts)
- Running collector: [1m[1mShodan[0m... [1m[33mSkipped
- [0m[1m[33m -> Key 'shodan' has not been set
- [0mRunning collector: [1m[1mDNSDB[0m... Done (1 host)
- Running collector: [1m[1mPublicWWW[0m... Done (1 host)
- Resolving [1m[1m31[0m unique hosts...
- 81.218.229.174 [1m[1m.ishopy.co.il[0m
- 81.218.229.174 [1m[1mishopy.co.il[0m
- 81.218.229.174 [1m[1mmail.ishopy.co.il[0m
- 81.218.229.174 [1m[1mwww.ishopy.co.il[0m
- [0K
- Found subnets:
- - 81.218.229.0-255 : 4 hosts
- Wrote [1m[1m4[0m hosts to:
- - [1m[1mfile:///root/aquatone/ishopy.co.il/hosts.txt[0m
- - [1m[1mfile:///root/aquatone/ishopy.co.il/hosts.json[0m
- __
- ____ _____ ___ ______ _/ /_____ ____ ___
- / __ `/ __ `/ / / / __ `/ __/ __ \/ __ \/ _ \
- / /_/ / /_/ / /_/ / /_/ / /_/ /_/ / / / / __/
- \__,_/\__, /\__,_/\__,_/\__/\____/_/ /_/\___/
- /_/ takeover v0.5.0 - by @michenriksen
- Loaded [1m[1m4[0m hosts from [1m[1m/root/aquatone/ishopy.co.il/hosts.json[0m
- Loaded [1m[1m25[0m domain takeover detectors
- Identifying nameservers for ishopy.co.il... Done
- Using nameservers:
- - 81.218.229.192
- - 81.218.229.174
- Checking hosts for domain takeover vulnerabilities...
- Finished checking hosts:
- - Vulnerable : [1m[1m[1m[31m0[0m[0m
- - Not Vulnerable : [1m[1m[1m[32m4[0m[0m
- Wrote [1m[1m0[0m potential subdomain takeovers to:
- - [1m[1mfile:///root/aquatone/ishopy.co.il/takeovers.json[0m
- __
- ____ _____ ___ ______ _/ /_____ ____ ___
- / __ `/ __ `/ / / / __ `/ __/ __ \/ __ \/ _ \
- / /_/ / /_/ / /_/ / /_/ / /_/ /_/ / / / / __/
- \__,_/\__, /\__,_/\__,_/\__/\____/_/ /_/\___/
- /_/ scan v0.5.0 - by @michenriksen
- Loaded [1m[1m4[0m hosts from [1m[1m/root/aquatone/ishopy.co.il/hosts.json[0m
- Probing [1m[1m2[0m ports...
- Wrote open ports to [1m[1mfile:///root/aquatone/ishopy.co.il/open_ports.txt[0m
- Wrote URLs to [1m[1mfile:///root/aquatone/ishopy.co.il/urls.txt[0m
- __
- ____ _____ ___ ______ _/ /_____ ____ ___
- / __ `/ __ `/ / / / __ `/ __/ __ \/ __ \/ _ \
- / /_/ / /_/ / /_/ / /_/ / /_/ /_/ / / / / __/
- \__,_/\__, /\__,_/\__,_/\__/\____/_/ /_/\___/
- /_/ gather v0.5.0 - by @michenriksen
- Processing [1m[1m0[0m pages...
- Finished processing pages:
- - Successful : [1m[1m[1m[32m0[0m[0m
- - Failed : [1m[1m[1m[31m0[0m[0m
- Generating report...done
- Report pages generated:
- #######################################################################################################################################
- Anonymous Operation Izsrael USA JTSEC full recon 2018 #2
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement