Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ######################################################################################################################################
- OPDeathEathers Anonymous JTSEC full recon #13
- #######################################################################################################################################
- hostname img.jpg4.net ISP SAKURA Internet Inc. (AS9370)
- Continent Asia Flag
- JP
- Country Japan Country Code JP (JPN)
- Region 32 Local time 16 Aug 2017 19:09 JST
- Metropolis Unknown Postal Code 540-0008
- City Osaka Latitude 34.686
- IP Address 153.121.64.174 Longitude 135.52
- img.jpg4.net
- #######################################################################################################################################
- dig img.jpg4.net any
- ; <<>> DiG 9.10.3-P4-Debian <<>> img.jpg4.net any
- ;; global options: +cmd
- ;; Got answer:
- ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 27534
- ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
- ;; OPT PSEUDOSECTION:
- ; EDNS: version: 0, flags:; udp: 4096
- ;; QUESTION SECTION:
- ;img.jpg4.net. IN ANY
- ;; ANSWER SECTION:
- img.jpg4.net. 1461 IN A 153.121.64.174
- ;; Query time: 8 msec
- ;; SERVER: 192.168.1.254#53(192.168.1.254)
- ;; WHEN: Wed Aug 16 06:07:55 EDT 2017
- ;; MSG SIZE rcvd: 57
- #######################################################################################################################################
- traceroute to img.jpg4.net (153.121.64.174), 30 hops max, 60 byte packets
- 1 gateway (192.168.1.254) 0.446 ms 0.637 ms 0.796 ms
- 2 10.135.18.1 (10.135.18.1) 7.009 ms 7.362 ms 7.433 ms
- 3 STTLWAWBCI01.bb.telus.com (75.154.217.108) 72.459 ms 72.548 ms 73.156 ms
- 4 sea001bf00.iij.net (206.81.80.237) 73.376 ms 73.638 ms 73.702 ms
- 5 tky001bb10.IIJ.Net (58.138.88.129) 200.193 ms tky001bb11.IIJ.Net (58.138.88.133) 199.645 ms tky001bb10.IIJ.Net (58.138.88.129) 200.275 ms
- 6 tky001ip56.IIJ.Net (58.138.102.106) 202.107 ms tky001ip57.IIJ.Net (58.138.102.110) 197.871 ms tky001ip57.IIJ.Net (58.138.102.102) 195.750 ms
- 7 210.138.107.34 (210.138.107.34) 205.185 ms 205.255 ms 202.232.9.206 (202.232.9.206) 206.420 ms
- 11 www6160up.sakura.ne.jp (153.121.64.174) <syn,ack> 205.330 ms 205.408 ms 205.794 ms
- HOST: whatismyip Loss% Snt Last Avg Best Wrst StDev
- 1.|-- 107.170.238.254 0.0% 3 0.3 1.8 0.3 4.5 2.2
- 2.|-- 138.197.248.220 0.0% 3 0.3 0.5 0.3 0.8 0.0
- 3.|-- ae-13.r05.plalca01.us.bb.gin.ntt.net 0.0% 3 1.6 1.4 1.2 1.6 0.0
- 4.|-- ae-15.r01.snjsca04.us.bb.gin.ntt.net 0.0% 3 108.5 108.6 108.5 108.7 0.0
- 5.|-- ae-10.r23.snjsca04.us.bb.gin.ntt.net 0.0% 3 2.0 2.2 2.0 2.4 0.0
- 6.|-- ae-21.r30.tokyjp05.jp.bb.gin.ntt.net 0.0% 3 108.9 109.1 108.7 109.7 0.0
- 7.|-- ae-2.r02.tokyjp05.jp.bb.gin.ntt.net 0.0% 3 108.8 108.7 108.5 108.8 0.0
- 8.|-- ce-0-15-0-3.r02.tokyjp05.jp.ce.gin.ntt.net 0.0% 3 108.6 108.5 108.3 108.6 0.0
- 9.|-- ??? 100.0 3 0.0 0.0 0.0 0.0 0.0
- 10.|-- ??? 100.0 3 0.0 0.0 0.0 0.0 0.0
- 11.|-- ??? 100.0 3 0.0 0.0 0.0 0.0 0.0
- 12.|-- www6160up.sakura.ne.jp 33.3% 3 109.0 109.1 109.0 109.2 0.0
- #######################################################################################################################################
- Checking for HTTP-Loadbalancing [Date]: 10:08:58, 10:08:59, 10:08:59, 10:09:00, 10:09:01, 10:09:02, 10:09:02, 10:09:03, 10:09:04, 10:09:05, 10:09:05, 10:09:06, 10:09:07, 10:09:08, 10:09:09, 10:09:09, 10:09:10, 10:09:11, 10:09:12, 10:09:12, 10:09:13, 10:09:14, 10:09:15, 10:09:15, 10:09:16, 10:09:17, 10:09:18, 10:09:18, 10:09:19, 10:09:20, 10:09:21, 10:09:21, 10:09:22, 10:09:23, 10:09:24, 10:09:24, 10:09:25, 10:09:26, 10:09:27, 10:09:27, 10:09:28, 10:09:29, 10:09:30, 10:09:31, 10:09:32, 10:09:33, 10:09:33, 10:09:34, 10:09:35, 10:09:36, NOT FOUND
- ######################################################################################################################################
- Starting Nmap 7.50 ( https://nmap.org ) at 2017-08-16 06:10 EDT
- Nmap scan report for img.jpg4.net (153.121.64.174)
- Host is up (0.36s latency).
- Not shown: 96 filtered ports
- PORT STATE SERVICE VERSION
- 21/tcp closed ftp
- 80/tcp open http Apache httpd 2.2.15 ((CentOS))
- |_http-server-header: Apache/2.2.15 (CentOS)
- |_http-title: Site doesn't have a title (text/html; charset=UTF-8).
- 631/tcp closed ipp
- 3306/tcp closed mysql
- Device type: general purpose
- Running: Linux 2.6.X
- OS CPE: cpe:/o:linux:linux_kernel:2.6.39
- OS details: Linux 2.6.39
- Network Distance: 18 hops
- Starting Nmap 7.01 ( https://nmap.org ) at 2017-08-16 12:40 UTC
- Nmap scan report for img.jpg4.net (153.121.64.174)
- Host is up (0.15s latency).
- rDNS record for 153.121.64.174: www6160up.sakura.ne.jp
- PORT STATE SERVICE VERSION
- 21/tcp closed ftp
- 22/tcp filtered ssh
- 23/tcp filtered telnet
- 25/tcp filtered smtp
- 80/tcp open http Apache httpd 2.2.15 ((CentOS))
- 110/tcp filtered pop3
- 143/tcp filtered imap
- 443/tcp filtered https
- 445/tcp filtered microsoft-ds
- 3389/tcp filtered ms-wbt-server
- TRACEROUTE (using port 3306/tcp)
- HOP RTT ADDRESS
- 1 111.99 ms 10.13.0.1
- 2 112.56 ms 37.187.24.252
- 3 112.01 ms 178.33.103.229
- 4 113.34 ms 10.95.33.8
- 5 115.34 ms 91.121.215.179
- 6 183.65 ms 192.99.146.127
- 7 194.40 ms 198.27.73.204
- 8 209.90 ms 198.27.73.207
- 9 258.66 ms 198.27.73.148
- 10 ...
- 11 258.45 ms 124.211.34.125
- 12 369.74 ms 203.181.100.209
- 13 367.99 ms 118.155.197.42
- 14 376.23 ms 124.211.10.42
- 15 ... 17
- 18 378.06 ms 153.121.64.174
- ######################################################################################################################################
- Protocol on 153.121.64.174:80/tcp matches http
- Protocol on 153.121.64.174:80/tcp matches http-apache-2
- Unidentified ports: none.
- amap v5.4 finished at 2017-08-16 06:10:56
- inetnum: 153.121.32.0 - 153.121.95.255
- netname: SAKURA
- descr: SAKURA Internet Inc.
- descr: Grandfront Osaka Bldg. Tower-A 35F, 4-20, Ofukacho, Kita-ku, Osaka 530-0011 Japan
- country: JP
- admin-c: JNIC1-AP
- tech-c: JNIC1-AP
- status: ALLOCATED PORTABLE
- remarks: Email address for spam or abuse complaints : abuse@sakura.ad.jp
- mnt-irt: IRT-JPNIC-JP
- mnt-by: MAINT-JPNIC
- mnt-lower: MAINT-JPNIC
- changed: hm-changed@apnic.net 20121220
- changed: ip-apnic@nic.ad.jp 20170703
- source: APNIC
- irt: IRT-JPNIC-JP
- address: Urbannet-Kanda Bldg 4F, 3-6-2 Uchi-Kanda
- address: Chiyoda-ku, Tokyo 101-0047, Japan
- e-mail: hostmaster@nic.ad.jp
- abuse-mailbox: hostmaster@nic.ad.jp
- admin-c: JNIC1-AP
- tech-c: JNIC1-AP
- auth: # Filtered
- mnt-by: MAINT-JPNIC
- changed: abuse@apnic.net 20101108
- changed: hm-changed@apnic.net 20101111
- changed: ip-apnic@nic.ad.jp 20140702
- source: APNIC
- role: Japan Network Information Center
- address: Urbannet-Kanda Bldg 4F
- address: 3-6-2 Uchi-Kanda
- address: Chiyoda-ku, Tokyo 101-0047,Japan
- country: JP
- phone: +81-3-5297-2311
- fax-no: +81-3-5297-2312
- e-mail: hostmaster@nic.ad.jp
- admin-c: JI13-AP
- tech-c: JE53-AP
- nic-hdl: JNIC1-AP
- mnt-by: MAINT-JPNIC
- changed: hm-changed@apnic.net 20041222
- changed: hm-changed@apnic.net 20050324
- changed: ip-apnic@nic.ad.jp 20051027
- changed: ip-apnic@nic.ad.jp 20120828
- source: APNIC
- % Information related to '153.121.64.0 - 153.121.64.255'
- inetnum: 153.121.64.0 - 153.121.64.255
- netname: SAKURA-NET
- descr: SAKURA Internet Inc.
- country: JP
- admin-c: KT749JP
- tech-c: JP00072233
- remarks: This information has been partially mirrored by APNIC from
- remarks: JPNIC. To obtain more specific information, please use the
- remarks: JPNIC WHOIS Gateway at
- remarks: http://www.nic.ad.jp/en/db/whois/en-gateway.html or
- remarks: whois.nic.ad.jp for WHOIS client. (The WHOIS client
- remarks: defaults to Japanese output, use the /e switch for English
- remarks: output)
- changed: apnic-ftp@nic.ad.jp 20140404
- source: JPNIC
- % This query was served by the APNIC Whois Service version 1.88.15-35 (WHOIS-US4)
- Host's addresses:
- __________________
- img.jpg4.net. 1464 IN A 153.121.64.174
- Name Servers:
- ______________
- ---------------------------------------------------------------------------------------------------------------------------------------
- + Target IP: 153.121.64.174
- + Target Hostname: img.jpg4.net.
- + Target Port: 80
- + Start Time: 2017-08-16 06:24:33 (GMT-4)
- ---------------------------------------------------------------------------------------------------------------------------------------
- + Server: Apache/2.2.15 (CentOS)
- + Retrieved x-powered-by header: PHP/7.0.7
- + The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
- + Uncommon header 'proxuri' found, with contents: /
- + Uncommon header 'xline' found, with contents: 184http://img.jpg4.club/
- + Uncommon header 'line' found, with contents: 203
- + Uncommon header 'cf-ray' found, with contents: 38f3af77323e0b50-NRT
- + The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type
- + All CGI directories 'found', use '-C none' to test none
- + Apache/2.2.15 appears to be outdated (current is at least Apache/2.4.12). Apache 2.0.65 (final release) and 2.2.29 are also current.
- + IP address found in the 'imghost' header. The IP is "87.98.166.29".
- + Uncommon header 'imghost' found, with contents: 153.121.64.174mh---rm:87.98.166.29
- + OSVDB-877: HTTP TRACE method is active, suggesting the host is vulnerable to XST
- + ERROR: Error limit (20) reached for host, giving up. Last error:
- + Scan terminated: 2 error(s) and 11 item(s) reported on remote host
- + End Time: 2017-08-16 06:39:32 (GMT-4) (899 seconds)
- ##############################################################################################################################################################################################################################################################################
- #######################################################################################################################################
- Hostname nudepetitegirls.net ISP Iws Networks LLC (AS199968)
- Continent Europe Flag
- NL
- Country Netherlands Country Code NL (NLD)
- Region Unknown Local time 20 Aug 2017 12:19 CEST
- City Unknown Latitude 52.382
- IP Address 91.223.82.42 Longitude 4.899
- nudepetitegirls.net
- ######################################################################################################################################
- whois nudepetitegirls.net
- Domain Name: NUDEPETITEGIRLS.NET
- Registry Domain ID: 1984424080_DOMAIN_NET-VRSN
- Registrar WHOIS Server: whois.name.com
- Registrar URL: http://www.name.com
- Updated Date: 2017-07-14T19:13:49Z
- Creation Date: 2015-11-28T15:07:58Z
- Registry Expiry Date: 2017-11-28T15:07:58Z
- Registrar: Name.com, Inc.
- Registrar IANA ID: 625
- Registrar Abuse Contact Email: abuse@name.com
- Registrar Abuse Contact Phone: 7202492374
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Name Server: DNS5.WAREZ-HOST.COM
- Name Server: DNS6.WAREZ-HOST.COM
- DNSSEC: unsigned
- URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/
- Domain Name: NUDEPETITEGIRLS.NET
- Registry Domain ID: 1984424080_DOMAIN_NET-VRSN
- Registrar WHOIS Server: whois.name.com
- Registrar URL: http://www.name.com
- Updated Date: 2017-07-14T19:13:49Z
- Creation Date: 2015-11-28T15:07:58Z
- Registrar Registration Expiration Date: 2017-11-28T15:07:58Z
- Registrar: Name.com, Inc.
- Registrar IANA ID: 625
- Reseller:
- Domain Status: clientTransferProhibited https://www.icann.org/epp#clientTransferProhibited
- Registry Registrant ID: Not Available From Registry
- Registrant Name: Domino Soto
- Registrant Organization: Sotos
- Registrant Street: Esa Street
- Registrant City: Peru
- Registrant State/Province: Peru
- Registrant Postal Code: 6785
- Registrant Country: PE
- Registrant Phone: +51.44563456
- Registrant Email: elcarlos_89_4@hotmail.com
- Registry Admin ID: Not Available From Registry
- Admin Name: Domino Soto
- Admin Organization: Sotos
- Admin Street: Esa Street
- Admin City: Peru
- Admin State/Province: Peru
- Admin Postal Code: 6785
- Admin Country: PE
- Admin Phone: +51.44563456
- Admin Email: elcarlos_89_4@hotmail.com
- Registry Tech ID: Not Available From Registry
- Tech Name: Domino Soto
- Tech Organization: Sotos
- Tech Street: Esa Street
- Tech City: Peru
- Tech State/Province: Peru
- Tech Postal Code: 6785
- Tech Country: PE
- Tech Phone: +51.44563456
- Tech Email: elcarlos_89_4@hotmail.com
- Name Server: dns5.warez-host.com
- Name Server: dns6.warez-host.com
- DNSSEC: unSigned
- Registrar Abuse Contact Email: abuse@name.com
- Registrar Abuse Contact Phone: +1.7203101849
- ######################################################################################################################################
- #################################################################################################################################
- ;; ANSWER SECTION:
- nudepetitegirls.net. 14393 IN MX 0 nudepetitegirls.net.
- nudepetitegirls.net. 14222 IN A 91.223.82.42
- nudepetitegirls.net. 38466 IN NS dns9.hostplay.com.
- nudepetitegirls.net. 38466 IN NS dns10.hostplay.com.
- nudepetitegirls.net. 38466 IN NS dns5.warez-host.com.
- nudepetitegirls.net. 38466 IN NS dns6.warez-host.com.
- #################################################################################################################################
- tcptraceroute -i eth0 nudepetitegirls.net
- Running:
- traceroute -T -O info -i eth0 nudepetitegirls.net
- traceroute to nudepetitegirls.net (91.223.82.42), 30 hops max, 60 byte packets
- 1 gateway (192.168.1.254) 0.544 ms 0.741 ms 0.911 ms
- 2 10.135.18.1 (10.135.18.1) 6.937 ms 7.342 ms 7.561 ms
- 3 NYCMNYCIZR01.bb.telus.com (75.154.223.248) 29.898 ms 30.032 ms 30.159 ms
- 4 ae4-1.nyk10.core-backbone.com (206.130.10.42) 30.399 ms 30.523 ms 30.915 ms
- 5 ae3-2072.ams10.core-backbone.com (80.255.15.165) 106.907 ms 107.041 ms 107.113 ms
- 6 core-backbone.serverius.nl (81.95.2.106) 111.535 ms 111.691 ms core-backbone.serverius.nl (81.95.2.222) 113.491 ms
- 7 178.21.17.21 (178.21.17.21) 106.468 ms 107.430 ms 178.21.17.23 (178.21.17.23) 107.692 ms
- 8 nld-net-ip.as51430.net (37.46.123.250) 137.777 ms 119.706 ms 131.000 ms
- 9 green.warez-host.com (91.223.82.42) <syn,ack> 106.036 ms 106.142 ms 112.602 ms
- #####################################################################################################################################
- ######################################################################################################################################
- Checking for HTTP-Loadbalancing [Date]: 10:17:19, 10:17:19, 10:17:19, 10:17:19, 10:17:20, 10:17:20, 10:17:20, 10:17:21, 10:17:21, 10:17:21, 10:17:21, 10:17:22, 10:17:22, 10:17:22, 10:17:22, 10:17:23, 10:17:23, 10:17:23, 10:17:23, 10:17:24, 10:17:24, 10:17:24, 10:17:24, 10:17:25, 10:17:25, 10:17:25, 10:17:26, 10:17:26, 10:17:26, 10:17:26, 10:17:27, 10:17:27, 10:17:27, 10:17:27, 10:17:28, 10:17:28, 10:17:28, 10:17:28, 10:17:29, 10:17:29, 10:17:29, 10:17:30, 10:17:30, 10:17:30, 10:17:30, 10:17:31, 10:17:31, 10:17:31, 10:17:31, 10:17:32, NOT FOUND
- ######################################################################################################################################
- nmap -PN -n -F -T4 -sV -A -oG temp.txt nudepetitegirls.net
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-08-20 06:17 EDT
- Nmap scan report for nudepetitegirls.net (91.223.82.42)
- Host is up (0.23s latency).
- Not shown: 80 closed ports
- PORT STATE SERVICE VERSION
- 21/tcp open ftp Pure-FTPd
- 25/tcp filtered smtp
- 26/tcp open smtp Exim smtpd 4.89
- | smtp-commands: green.warez-host.com Hello ip29.ip-87-98-166.eu [87.98.166.29], SIZE 52428800, 8BITMIME, PIPELINING, AUTH PLAIN LOGIN, STARTTLS, HELP,
- |_ Commands supported: AUTH STARTTLS HELO EHLO MAIL RCPT DATA BDAT NOOP QUIT RSET HELP
- 53/tcp open domain ISC BIND 9.8.2rc1
- | dns-nsid:
- |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4
- 80/tcp open http nginx
- 110/tcp open pop3 Dovecot pop3d
- 111/tcp open rpcbind 2-4 (RPC #100000)
- 135/tcp filtered msrpc
- 139/tcp filtered netbios-ssn
- 143/tcp open imap Dovecot imapd
- | ssl-cert: Subject: commonName=green.warez-host.com
- | Subject Alternative Name: DNS:green.warez-host.com, DNS:www.green.warez-host.com
- | Not valid before: 2017-04-03T00:00:00
- |_Not valid after: 2018-04-03T23:59:59
- 443/tcp open ssl/http Apache httpd 2.4.27 ((Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4)
- |_http-title: Did not follow redirect to https://91.223.82.42/~abc24/
- | ssl-cert: Subject: commonName=nudepetitegirls.net
- | Subject Alternative Name: DNS:nudepetitegirls.net, DNS:www.nudepetitegirls.net
- | Not valid before: 2017-07-29T00:00:00
- |_Not valid after: 2017-10-27T23:59:59
- |_ssl-date: 2017-08-20T10:18:38+00:00; -1s from scanner time.
- 445/tcp filtered microsoft-ds
- 465/tcp filtered smtps
- 587/tcp filtered submission
- 993/tcp open ssl/imap Dovecot imapd
- | ssl-cert: Subject: commonName=green.warez-host.com
- | Subject Alternative Name: DNS:green.warez-host.com, DNS:www.green.warez-host.com
- | Not valid before: 2017-04-03T00:00:00
- |_Not valid after: 2018-04-03T23:59:59
- |_ssl-date: 2017-08-20T10:18:34+00:00; -1s from scanner time.
- 995/tcp open ssl/pop3 Dovecot pop3d
- | ssl-cert: Subject: commonName=green.warez-host.com
- | Subject Alternative Name: DNS:green.warez-host.com, DNS:www.green.warez-host.com
- | Not valid before: 2017-04-03T00:00:00
- |_Not valid after: 2018-04-03T23:59:59
- |_ssl-date: 2017-08-20T10:18:34+00:00; -1s from scanner time.
- 3306/tcp open mysql MySQL (blocked - too many connection errors)
- 5666/tcp open tcpwrapped
- 8888/tcp open http Apache httpd 2.4.27 ((Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4)
- 49152/tcp filtered unknown
- Device type: general purpose|storage-misc|firewall|WAP
- Running (JUST GUESSING): Linux 2.6.X|3.X|4.X|2.4.X (94%), Synology DiskStation Manager 5.X (90%), WatchGuard Fireware 11.X (89%)
- OS CPE: cpe:/o:linux:linux_kernel:2.6.39 cpe:/o:linux:linux_kernel:3.10 cpe:/o:linux:linux_kernel cpe:/a:synology:diskstation_manager:5.1 cpe:/o:watchguard:fireware:11.8 cpe:/o:linux:linux_kernel:4.2 cpe:/o:linux:linux_kernel:2.4
- Aggressive OS guesses: Linux 2.6.39 (94%), Linux 2.6.32 (90%), Linux 3.10 (90%), Linux 3.4 (90%), Linux 3.1 - 3.2 (90%), Synology DiskStation Manager 5.1 (90%), Linux 2.6.32 or 3.10 (89%), WatchGuard Fireware 11.8 (89%), Linux 2.6.32 - 2.6.39 (88%), Linux 3.2 - 3.8 (86%)
- No exact OS matches for host (test conditions non-ideal).
- Network Distance: 12 hops
- Service Info: Host: green.warez-host.com; OS: Red Hat Enterprise Linux 6; CPE: cpe:/o:redhat:enterprise_linux:6
- Host script results:
- |_clock-skew: mean: -1s, deviation: 0s, median: -1s
- TRACEROUTE (using port 199/tcp)
- HOP RTT ADDRESS
- 1 ... 2
- 3 3994.96 ms 178.33.103.229
- 4 ...
- 5 3999.67 ms 213.186.32.213
- 6 4005.71 ms 94.23.122.218
- 7 ... 9
- 10 4011.71 ms 178.21.17.23
- 11 ...
- 12 4147.97 ms 91.223.82.42
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 80.42 seconds
- ######################################################################################################################################
- Protocol on 91.223.82.42:21/tcp matches ftp
- Protocol on 91.223.82.42:80/tcp matches http
- Protocol on 91.223.82.42:143/tcp matches imap
- Protocol on 91.223.82.42:110/tcp matches pop3
- Protocol on 91.223.82.42:26/tcp matches smtp
- Protocol on 91.223.82.42:8888/tcp matches http
- Protocol on 91.223.82.42:8888/tcp matches http-apache-2
- Protocol on 91.223.82.42:443/tcp matches http
- Protocol on 91.223.82.42:443/tcp matches http-apache-2
- Protocol on 91.223.82.42:3306/tcp matches mysql
- this connect
- this connect
- Protocol on 91.223.82.42:111/tcp matches rpc
- Protocol on 91.223.82.42:53/tcp matches dns
- Protocol on 91.223.82.42:111/tcp matches rpc-rpcbind-v4
- o'
- inetnum: 91.223.82.0 - 91.223.82.255
- netname: IWS-NETWORK
- country: NL
- org: ORG-INL21-RIPE
- admin-c: IIWS-RIPE
- tech-c: IIWS-RIPE
- status: ASSIGNED PI
- mnt-by: RIPE-NCC-END-MNT
- mnt-by: IWSCO-MNT
- mnt-routes: IWSCO-MNT
- mnt-domains: IWSCO-MNT
- created: 2011-02-03T15:46:53Z
- last-modified: 2016-04-14T10:47:00Z
- source: RIPE # Filtered
- sponsoring-org: ORG-AI49-RIPE
- organisation: ORG-INL21-RIPE
- org-name: IWS NETWORKS LLC
- org-type: other
- address: 09 Aghayan str
- address: Yerevan
- address: Armenia
- phone: +971 56 653 9955
- abuse-c: AR33870-RIPE
- remarks: *************************************************************
- remarks: | We are Internet Services Provider
- remarks: *-----------------------------------------------------------*
- remarks: | In case of Spam/Virus/Portscans/Attacks/Fraud Activity etc
- remarks: | please send an email to abuse@iws.co
- remarks: | for any other questions info@iws.co
- remarks: | Be friendly ...!
- remarks: | Unfriendly emails will be ignored!
- remarks: *************************************************************
- mnt-ref: IWSCO-MNT
- mnt-by: IWSCO-MNT
- created: 2015-10-09T10:21:22Z
- last-modified: 2015-10-16T13:03:30Z
- source: RIPE # Filtered
- person: IWS Networks Ltd
- address: International Widespread Services Limited
- address: Ras Al Khaimah
- address: P.O. Box 10559
- address: UAE
- phone: +971 56 653 9955
- abuse-mailbox: abuse@iws.co
- abuse-mailbox: abuse@hostplay.com
- nic-hdl: IIWS-RIPE
- mnt-by: IWS-NETWORK
- created: 2013-09-16T11:32:43Z
- last-modified: 2013-09-16T11:32:43Z
- source: RIPE
- % Information related to '91.223.82.0/24AS199968'
- route: 91.223.82.0/24
- descr: International Widespread Services Limited
- origin: AS199968
- mnt-by: IWSCO-MNT
- created: 2014-05-29T20:29:02Z
- last-modified: 2014-05-29T20:29:02Z
- source: RIPE
- % This query was served by the RIPE Database Query Service version 1.89.2 (HEREFORD)
- +] using maximum random delay of 10 millisecond(s) between requests
- cpanel.nudepetitegirls.net
- IP address #1: 91.223.82.42
- ftp.nudepetitegirls.net
- IP address #1: 91.223.82.42
- mail.nudepetitegirls.net
- IP address #1: 91.223.82.42
- webmail.nudepetitegirls.net
- IP address #1: 91.223.82.42
- www.nudepetitegirls.net
- IP address #1: 91.223.82.42
- [+] 5 (sub)domains and 5 IP address(es) found
- ----- nudepetitegirls.net -----
- Host's addresses:
- __________________
- nudepetitegirls.net. 14230 IN A 91.223.82.42
- Name Servers:
- ______________
- dns6.warez-host.com. 14230 IN A 91.223.82.41
- dns10.hostplay.com. 14230 IN A 91.223.82.41
- dns5.warez-host.com. 14230 IN A 91.223.82.41
- dns9.hostplay.com. 14230 IN A 91.223.82.41
- Mail (MX) Servers:
- ___________________
- nudepetitegirls.net. 14229 IN A 91.223.82.42
- Trying Zone Transfers and getting Bind Versions:
- _________________________________________________
- ---------------------------------------------------------------------------------------------------------------------------------------
- + Target IP: 91.223.82.42
- + Target Hostname: nudepetitegirls.net
- + Target Port: 80
- + Start Time: 2017-08-20 06:17:01 (GMT-4)
- ---------------------------------------------------------------------------------------------------------------------------------------
- + Server: nginx
- + Retrieved x-powered-by header: PHP/5.5.38
- + The anti-clickjacking X-Frame-Options header is not present.
- + The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
- + The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type
- + Server leaks inodes via ETags, header found with file /, fields: 0x5896b116 0x264
- + Web Server returns a valid response with junk HTTP methods, this may cause false positives.
- + DEBUG HTTP verb may show server debugging information. See http://msdn.microsoft.com/en-us/library/e8z01xdh%28VS.80%29.aspx for details.
- + /webmail/blank.html: IlohaMail 0.8.10 contains an XSS vulnerability. Previous versions contain other non-descript vulnerabilities.
- + /securecontrolpanel/: Web Server Control Panel
- + /webmail/: Web based mail package installed.
- + OSVDB-3233: /mailman/listinfo: Mailman was found on the server.
- + OSVDB-2117: /cpanel/: Web-based control panel
- + OSVDB-3092: /img-sys/: Default image directory should not allow directory listing.
- + OSVDB-3092: /java-sys/: Default Java directory should not allow directory listing.
- + OSVDB-3093: /webmail/lib/emailreader_execute_on_each_page.inc.php: This might be interesting... has been seen in web logs from an unknown scanner.
- + OSVDB-3268: /images/: Directory indexing found.
- + OSVDB-3268: /images/?pattern=/etc/*&sort=name: Directory indexing found.
- + /controlpanel/: Admin login page/section found.
- + 8263 requests: 3 error(s) and 18 item(s) reported on remote host
- + End Time: 2017-08-20 07:03:07 (GMT-4) (2766 seconds)
- ---------------------------------------------------------------------------------------------------------------------------------------
- teenieporn.net
- ######################################################################################################################################
- whois teenieporn.net
- Domain Name: TEENIEPORN.NET
- Registry Domain ID: 1953013232_DOMAIN_NET-VRSN
- Registrar WHOIS Server: whois.evonames.com
- Registrar URL: http://www.danesconames.com
- Updated Date: 2017-08-14T17:56:25Z
- Creation Date: 2015-08-14T17:41:31Z
- Registry Expiry Date: 2018-08-14T17:41:31Z
- Registrar: Danesco Trading Ltd.
- Registrar IANA ID: 1418
- Registrar Abuse Contact Email:
- Registrar Abuse Contact Phone:
- Domain Status: ok https://icann.org/epp#ok
- Name Server: HUGH.NS.CLOUDFLARE.COM
- Name Server: LADY.NS.CLOUDFLARE.COM
- DNSSEC: unsigned
- Domain Name: TEENIEPORN.NET
- Registry Domain ID:
- Registrar WHOIS Server: whois.evonames.com
- Registrar URL: https://evonames.com/
- Updated Date: 2017-08-14 17:57:23.413192
- Creation Date: 2015-08-14
- Registrar Registration Expiration Date: 2018-08-14
- Registrar: DANESCO TRADING LTD
- Registrar IANA ID: 1418
- Registrar Abuse Contact Email: abuse@evonames.com
- Registrar Abuse Contact Phone: +357.95713635
- Reseller: AHnames.com https://www.AHnames.com/
- Domain Status: ok
- Registry Registrant ID: MR_7296006WP
- Registrant Name: WhoisProtectService.net
- Registrant Organization: PROTECTSERVICE, LTD.
- Registrant Street: Agios Fylaxeos 66 and Chr. Perevou 2, Kalia Court, off. 601
- Registrant City: Limassol
- Registrant State/Province:
- Registrant Postal Code: 3025
- Registrant Country: Cyprus
- Registrant Phone: +357.95713635
- Registrant Phone Ext:
- Registrant Fax: +357.95713635
- Registrant Fax Ext:
- Registrant Email: teenieporn.net@whoisprotectservice.net
- Registry Admin ID: MR_7296006WP
- Admin Name: WhoisProtectService.net
- Admin Organization: PROTECTSERVICE, LTD.
- Admin Street: Agios Fylaxeos 66 and Chr. Perevou 2, Kalia Court, off. 601
- Admin City: Limassol
- Admin State/Province:
- Admin Postal Code: 3025
- Admin Country: Cyprus
- Admin Phone: +357.95713635
- Admin Phone Ext:
- Admin Fax: +357.95713635
- Admin Fax Ext:
- Admin Email: teenieporn.net@whoisprotectservice.net
- Registry Tech ID: MR_7296006WP
- Tech Name: WhoisProtectService.net
- Tech Organization: PROTECTSERVICE, LTD.
- Tech Street: Agios Fylaxeos 66 and Chr. Perevou 2, Kalia Court, off. 601
- Tech City: Limassol
- Tech State/Province:
- Tech Postal Code: 3025
- Tech Country: Cyprus
- Tech Phone: +357.95713635
- Tech Phone Ext:
- Tech Fax: +357.95713635
- Tech Fax Ext:
- Tech Email: teenieporn.net@whoisprotectservice.net
- Registry Billing ID: MR_7296006WP
- Billing Name: WhoisProtectService.net
- Billing Organization: PROTECTSERVICE, LTD.
- Billing Street: Agios Fylaxeos 66 and Chr. Perevou 2, Kalia Court, off. 601
- Billing City: Limassol
- Billing State/Province:
- Billing Postal Code: 3025
- Billing Country: Cyprus
- Billing Phone: +357.95713635
- Billing Phone Ext:
- Billing Fax: +357.95713635
- Billing Fax Ext:
- Billing Email: teenieporn.net@whoisprotectservice.net
- Name Server: HUGH.NS.CLOUDFLARE.COM
- Name Server: LADY.NS.CLOUDFLARE.COM
- DNSSEC: unsigned
- URL of the ICANN WHOIS Data Problem Reporting System: http://wdprs.internic.net/
- >>> Last update of WHOIS database: 2017-08-14 17:58:10 <<<
- Abuse email: abuse@ahnames.com
- ######################################################################################################################################
- teenieporn.net. 3789 IN RRSIG HINFO 13 2 3789 20170821112930 20170819092930 35273 teenieporn.net. eI6Yde+blf23MbKQra7z1hsb6qb6EfrYY21qWzM3I+uQ7xkQIBVkpv4F lCZ7MmjFgnPPOJvYlBh97/HgTicrsQ==
- teenieporn.net. 3789 IN HINFO "ANY obsoleted" "See draft-ietf-dnsop-refuse-any"
- teenieporn.net. 76960 IN NS lady.ns.cloudflare.com.
- teenieporn.net. 76960 IN NS hugh.ns.cloudflare.com.
- ;; Query time: 35 msec
- ;; SERVER: 192.168.1.254#53(192.168.1.254)
- ;; WHEN: Sun Aug 20 06:29:29 EDT 2017
- ;; MSG SIZE rcvd: 266
- ######################################################################################################################################
- tcptraceroute -i eth0 teenieporn.net
- Running:
- traceroute -T -O info -i eth0 teenieporn.net
- traceroute to teenieporn.net (104.24.98.72), 30 hops max, 60 byte packets
- 1 gateway (192.168.1.254) 1.383 ms 1.570 ms 1.830 ms
- 2 10.135.18.1 (10.135.18.1) 8.380 ms 8.741 ms 9.035 ms
- 3 NYCMNYCIZR01.bb.telus.com (75.154.223.248) 31.363 ms 31.515 ms 31.636 ms
- 4 de-cix-new-york.as13335.net (206.130.10.31) 32.162 ms 32.237 ms 32.309 ms
- 5 104.24.98.72 (104.24.98.72) <syn,ack> 32.851 ms 33.047 ms 33.213 ms
- ######################################################################################################################################
- Checking for HTTP-Loadbalancing [Date]: 10:29:50, 10:29:50, 10:29:50, 10:29:51, 10:29:51, 10:29:51, 10:29:51, 10:29:52, 10:29:52, 10:29:52, 10:29:52, 10:29:53, 10:29:53, 10:29:53, 10:29:53, 10:29:54, 10:29:54, 10:29:54, 10:29:54, 10:29:55, 10:29:55, 10:29:55, 10:29:55, 10:29:56, 10:29:56, 10:29:56, 10:29:56, 10:29:57, 10:29:57, 10:29:57, 10:29:57, 10:29:58, 10:29:58, 10:29:58, 10:29:58, 10:29:59, 10:29:59, 10:29:59, 10:29:59, 10:30:00, 10:30:00, 10:30:00, 10:30:00, 10:30:01, 10:30:01, 10:30:01, 10:30:01, 10:30:02, 10:30:02, 10:30:02, NOT FOUND
- Checking for HTTP-Loadbalancing [Diff]: FOUND
- < Expires: Sun, 20 Aug 2017 10:30:21 GMT
- > Expires: Sun, 20 Aug 2017 10:30:25 GMT
- < CF-RAY: 3914ace04459693e-CDG
- > CF-RAY: 3914acf912591049-CDG
- teenieporn.net does Load-balancing. Found via Methods: DNS HTTP[Diff]
- ######################################################################################################################################
- nmap -PN -n -F -T4 -sV -A -oG temp.txt teenieporn.net
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-08-20 06:30 EDT
- Nmap scan report for teenieporn.net (104.24.98.72)
- Host is up (0.21s latency).
- Other addresses for teenieporn.net (not scanned): 2400:cb00:2048:1::6818:6348 2400:cb00:2048:1::6818:6248 104.24.99.72
- Not shown: 96 filtered ports
- PORT STATE SERVICE VERSION
- 80/tcp open http Cloudflare nginx
- |_http-server-header: cloudflare-nginx
- 443/tcp open ssl/http Cloudflare nginx
- | ssl-cert: Subject: commonName=sni217184.cloudflaressl.com
- | Subject Alternative Name: DNS:sni217184.cloudflaressl.com, DNS:*.ammomporn.pro, DNS:*.ampornvideo.com, DNS:*.asipornteens.com, DNS:*.bouvtkablirome.cf, DNS:*.celebritybeautypics.com, DNS:*.centgutlemota.gq, DNS:*.coahytergbyber.tk, DNS:*.enmenalanba.gq, DNS:*.freeteens-tube.com, DNS:*.freeteensvideo.net, DNS:*.ghetharhealthmingca.cf, DNS:*.hotmomporn.pro, DNS:*.inonnomocho.tk, DNS:*.inteenporn.com, DNS:*.inteensvideo.com, DNS:*.ltimgeoverquirob.ga, DNS:*.momsonporn.pro, DNS:*.pornomom.pro, DNS:*.pornoteenvideo.com, DNS:*.pornoteenxxx.net, DNS:*.pornoxxxteens.com, DNS:*.pornteensclips.com, DNS:*.proce2.net, DNS:*.sailndream.com, DNS:*.sednasystem.fr, DNS:*.sexypornmom.com, DNS:*.sexypornteen.com, DNS:*.starelisearde.cf, DNS:*.taraduncan.ru, DNS:*.teenieporn.net, DNS:*.teenspornovideo.com, DNS:*.tv-live-xp.ru, DNS:*.younginporn.com, DNS:*.youngsexporn.pro, DNS:ammomporn.pro, DNS:ampornvideo.com, DNS:asipornteens.com, DNS:bouvtkablirome.cf, DNS:celebritybeautypics.com, DNS:centgutlemota.gq, DNS:coahytergbyber.tk, DNS:enmenalanba.gq, DNS:freeteens-tube.com, DNS:freeteensvideo.net, DNS:ghetharhealthmingca.cf, DNS:hotmomporn.pro, DNS:inonnomocho.tk, DNS:inteenporn.com, DNS:inteensvideo.com, DNS:ltimgeoverquirob.ga, DNS:momsonporn.pro, DNS:pornomom.pro, DNS:pornoteenvideo.com, DNS:pornoteenxxx.net, DNS:pornoxxxteens.com, DNS:pornteensclips.com, DNS:proce2.net, DNS:sailndream.com, DNS:sednasystem.fr, DNS:sexypornmom.com, DNS:sexypornteen.com, DNS:starelisearde.cf, DNS:taraduncan.ru, DNS:teenieporn.net, DNS:teenspornovideo.com, DNS:tv-live-xp.ru, DNS:younginporn.com, DNS:youngsexporn.pro
- | Not valid before: 2017-06-27T00:00:00
- |_Not valid after: 2018-01-03T23:59:59
- 8080/tcp open http Cloudflare nginx
- |_http-server-header: cloudflare-nginx
- |_http-title: teenieporn.net | 521: Web server is down
- 8443/tcp open ssl/http Cloudflare nginx
- |_http-title: 400 The plain HTTP request was sent to HTTPS port
- | ssl-cert: Subject: commonName=sni217184.cloudflaressl.com
- | Subject Alternative Name: DNS:sni217184.cloudflaressl.com, DNS:*.ammomporn.pro, DNS:*.ampornvideo.com, DNS:*.asipornteens.com, DNS:*.bouvtkablirome.cf, DNS:*.celebritybeautypics.com, DNS:*.centgutlemota.gq, DNS:*.coahytergbyber.tk, DNS:*.enmenalanba.gq, DNS:*.freeteens-tube.com, DNS:*.freeteensvideo.net, DNS:*.ghetharhealthmingca.cf, DNS:*.hotmomporn.pro, DNS:*.inonnomocho.tk, DNS:*.inteenporn.com, DNS:*.inteensvideo.com, DNS:*.ltimgeoverquirob.ga, DNS:*.momsonporn.pro, DNS:*.pornomom.pro, DNS:*.pornoteenvideo.com, DNS:*.pornoteenxxx.net, DNS:*.pornoxxxteens.com, DNS:*.pornteensclips.com, DNS:*.proce2.net, DNS:*.sailndream.com, DNS:*.sednasystem.fr, DNS:*.sexypornmom.com, DNS:*.sexypornteen.com, DNS:*.starelisearde.cf, DNS:*.taraduncan.ru, DNS:*.teenieporn.net, DNS:*.teenspornovideo.com, DNS:*.tv-live-xp.ru, DNS:*.younginporn.com, DNS:*.youngsexporn.pro, DNS:ammomporn.pro, DNS:ampornvideo.com, DNS:asipornteens.com, DNS:bouvtkablirome.cf, DNS:celebritybeautypics.com, DNS:centgutlemota.gq, DNS:coahytergbyber.tk, DNS:enmenalanba.gq, DNS:freeteens-tube.com, DNS:freeteensvideo.net, DNS:ghetharhealthmingca.cf, DNS:hotmomporn.pro, DNS:inonnomocho.tk, DNS:inteenporn.com, DNS:inteensvideo.com, DNS:ltimgeoverquirob.ga, DNS:momsonporn.pro, DNS:pornomom.pro, DNS:pornoteenvideo.com, DNS:pornoteenxxx.net, DNS:pornoxxxteens.com, DNS:pornteensclips.com, DNS:proce2.net, DNS:sailndream.com, DNS:sednasystem.fr, DNS:sexypornmom.com, DNS:sexypornteen.com, DNS:starelisearde.cf, DNS:taraduncan.ru, DNS:teenieporn.net, DNS:teenspornovideo.com, DNS:tv-live-xp.ru, DNS:younginporn.com, DNS:youngsexporn.pro
- | Not valid before: 2017-06-27T00:00:00
- |_Not valid after: 2018-01-03T23:59:59
- Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- Device type: general purpose
- Running (JUST GUESSING): Linux 3.X|2.6.X (88%)
- OS CPE: cpe:/o:linux:linux_kernel:3.18 cpe:/o:linux:linux_kernel:2.6
- Aggressive OS guesses: Linux 3.18 (88%), Linux 2.6.18 - 2.6.22 (86%)
- No exact OS matches for host (test conditions non-ideal).
- Network Distance: 8 hops
- TRACEROUTE (using port 8080/tcp)
- HOP RTT ADDRESS
- 1 314.53 ms 10.13.0.1
- 2 319.03 ms 37.187.24.252
- 3 322.52 ms 178.33.103.229
- 4 326.81 ms 10.95.33.8
- 5 335.53 ms 91.121.215.177
- 6 344.73 ms 37.187.36.214
- 7 431.06 ms 195.42.144.143
- 8 341.54 ms 104.24.98.72
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 121.55 seconds
- ######################################################################################################################################
- amap -i temp.txt
- amap v5.4 (www.thc.org/thc-amap) started at 2017-08-20 06:32:11 - APPLICATION MAPPING mode
- Protocol on 104.24.98.72:80/tcp matches http
- Protocol on 104.24.98.72:443/tcp matches http
- Protocol on 104.24.98.72:8443/tcp matches http
- Protocol on 104.24.98.72:8080/tcp matches http
- Protocol on 104.24.98.72:443/tcp matches ssl
- Protocol on 104.24.98.72:8443/tcp matches ssl
- Unidentified ports: none.
- amap v5.4 finished at 2017-08-20 06:32:16
- NetRange: 104.16.0.0 - 104.31.255.255
- CIDR: 104.16.0.0/12
- NetName: CLOUDFLARENET
- NetHandle: NET-104-16-0-0-1
- Parent: NET104 (NET-104-0-0-0-0)
- NetType: Direct Assignment
- OriginAS: AS13335
- Organization: Cloudflare, Inc. (CLOUD14)
- RegDate: 2014-03-28
- Updated: 2017-02-17
- Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
- Ref: https://whois.arin.net/rest/net/NET-104-16-0-0-1
- OrgName: Cloudflare, Inc.
- OrgId: CLOUD14
- Address: 101 Townsend Street
- City: San Francisco
- StateProv: CA
- PostalCode: 94107
- Country: US
- RegDate: 2010-07-09
- Updated: 2017-02-17
- Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
- Ref: https://whois.arin.net/rest/org/CLOUD14
- OrgTechHandle: ADMIN2521-ARIN
- OrgTechName: Admin
- OrgTechPhone: +1-650-319-8930
- OrgTechEmail: admin@cloudflare.com
- OrgTechRef: https://whois.arin.net/rest/poc/ADMIN2521-ARIN
- OrgAbuseHandle: ABUSE2916-ARIN
- OrgAbuseName: Abuse
- OrgAbusePhone: +1-650-319-8930
- OrgAbuseEmail: abuse@cloudflare.com
- OrgAbuseRef: https://whois.arin.net/rest/poc/ABUSE2916-ARIN
- OrgNOCHandle: NOC11962-ARIN
- OrgNOCName: NOC
- OrgNOCPhone: +1-650-319-8930
- OrgNOCEmail: noc@cloudflare.com
- OrgNOCRef: https://whois.arin.net/rest/poc/NOC11962-ARIN
- RNOCHandle: NOC11962-ARIN
- RNOCName: NOC
- RNOCPhone: +1-650-319-8930
- RNOCEmail: noc@cloudflare.com
- RNOCRef: https://whois.arin.net/rest/poc/NOC11962-ARIN
- RTechHandle: ADMIN2521-ARIN
- RTechName: Admin
- RTechPhone: +1-650-319-8930
- RTechEmail: admin@cloudflare.com
- RTechRef: https://whois.arin.net/rest/poc/ADMIN2521-ARIN
- RAbuseHandle: ABUSE2916-ARIN
- RAbuseName: Abuse
- RAbusePhone: +1-650-319-8930
- RAbuseEmail: abuse@cloudflare.com
- RAbuseRef: https://whois.arin.net/rest/poc/ABUSE2916-ARIN
- www.teenieporn.net
- IPv6 address #1: 2400:cb00:2048:1::6818:6248
- IPv6 address #2: 2400:cb00:2048:1::6818:6348
- www.teenieporn.net
- IP address #1: 104.24.99.72
- IP address #2: 104.24.98.72
- [+] 2 (sub)domains and 4 IP address(es) found
- [+] Hosts found in search engines:
- ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
- [-] Resolving hostnames IPs...
- 104.24.99.72:Www.teenieporn.net
- 104.24.98.72:www.teenieporn.net
- [+] Virtual hosts:
- ==================
- 104.24.99.72 IpnEn.prixmoinscher.com
- 104.24.99.72 theveter.org
- 104.24.99.72 mamecanique.com
- 104.24.99.72 www.waterhouses
- 104.24.99.72 www.algeriatourismawards
- 104.24.99.72 nordichrct.org
- 104.24.99.72 pasimm
- 104.24.99.72 kisahafrakids.com
- 104.24.99.72 www.diunduh.id
- 104.24.99.72 filamfitnessforlife
- 104.24.99.72 www.kafflbd.com
- 104.24.99.72 www.bookshelfguys
- 104.24.99.72 shopwatersports.site
- 104.24.99.72 www.missionhillsranch
- 104.24.99.72 veclajme.com
- 104.24.99.72 www.secretivelaravel.com
- 104.24.99.72 www.seocompanydehradun.in
- 104.24.99.72 www.getswing.in
- 104.24.99.72 www.palmswestperio.com
- 104.24.99.72 www.authstar
- 104.24.99.72 lecollecteur.xyz
- 104.24.99.72 www.missionhillsranchoc.com
- 104.24.99.72 www.girlswithnaturalhair.com
- 104.24.99.72 pasimm.com
- 104.24.99.72 www.smart
- 104.24.99.72 www.waterhouses.com
- 104.24.99.72 www.marshalloralsurgery.com
- 104.24.99.72 www.bitrepository
- 104.24.99.72 www.infusionlogisticsllc
- 104.24.99.72 www.nmrglue.com
- 104.24.99.72 mpetackle
- 104.24.99.72 www.sitedechatenlignegratuit.xyz
- 104.24.99.72 tamsuchiase.net
- 104.24.99.72 carpetmarketone.com
- 104.24.99.72 trkclk.xyz
- 104.24.99.72 www.porouswalker.com
- 104.24.99.72 www.whitebeartransport.com
- 104.24.99.72 findlayyfc.org
- 104.24.99.72 www.commentfer.fr
- 104.24.99.72 www.longmontdomesticviolence.org
- 104.24.99.72 www.desko.nl
- 104.24.99.72 filamfitnessforlife.org
- 104.24.99.72 samanthapress.com
- 104.24.99.72 www.unitedfeather
- 104.24.99.72 www.unitedfeather.com
- 104.24.99.72 www.villafracanzanpiovene.com
- 104.24.99.72 muslimananny.us
- 104.24.99.72 www.obedientpaws.com
- 104.24.99.72 www.cromo.com.au
- 104.24.99.72 greenleaf.com.ua
- 104.24.99.72 www.microless
- 104.24.99.72 www.bookshelfguys.com
- 104.24.99.72 www.smarttravel.store
- 104.24.99.72 www.authstar.com
- 104.24.99.72 filmovi.pl
- 104.24.99.72 www.webdesignsolution.altervista.org
- 104.24.99.72 innovativeshopblogger.club
- 104.24.99.72 www.ringtonesgalore.co.uk
- 104.24.99.72 www.sicherespasswort.rocks
- 104.24.99.72 ilfalsodemetrio.com
- 104.24.99.72 dom-kino.top
- 104.24.99.72 www.lospueblosmasbonitos.net
- 104.24.99.72 lojamybaby.com.br
- 104.24.99.72 brunnbyec.se
- 104.24.99.72 www.pritzzz.info
- 104.24.98.72 www.whitebeartransport
- 104.24.98.72 www.crushersgrinder.com
- 104.24.98.72 www.girlswithnaturalhair
- 104.24.98.72 www.veclajme.com
- 104.24.98.72 samanthapress
- 104.24.98.72 www.kafflbd.com
- 104.24.98.72 www.infusionlogisticsllc
- 104.24.98.72 carpetmarketone.com
- 104.24.98.72 www.bitrepository.com
- 104.24.98.72 bayuangora.com
- 104.24.98.72 www.sitedechatenlignegratuit.xyz
- 104.24.98.72 www.getswing.in
- 104.24.98.72 www.unitedfeather.com
- 104.24.98.72 mpetackle.com
- 104.24.98.72 veclajme.com
- 104.24.98.72 pasimm.com
- 104.24.98.72 www.nmrglue
- 104.24.98.72 findlayyfc.org
- 104.24.98.72 nordichrct.org
- 104.24.98.72 www.obedientpaws.com
- 104.24.98.72 www.missionhillsranchoc.com
- 104.24.98.72 www.authstar.com
- 104.24.98.72 www.girlswithnaturalhair.com
- 104.24.98.72 www.waterhouses
- 104.24.98.72 autorepairmanuals.club
- 104.24.98.72 yaxmobi
- 104.24.98.72 www.gaigoihang.net
- 104.24.98.72 www.whitebeartransport.com
- 104.24.98.72 www.waterhouses.com
- 104.24.98.72 overclocking
- 104.24.98.72 samanthapress.com
- 104.24.98.72 www.cromo
- 104.24.98.72 corebet.com
- 104.24.98.72 www.marshalloralsurgery.com
- 104.24.98.72 www.porouswalker.com
- 104.24.98.72 www.palmswestperio.com
- 104.24.98.72 www.cromo.com.au
- 104.24.98.72 www.villafracanzanpiovene.com
- 104.24.98.72 www.longmontdomesticviolence.org
- 104.24.98.72 hsxjhome.com
- 104.24.98.72 www.desko.nl
- 104.24.98.72 writingwriters
- 104.24.98.72 greenleaf.com.ua
- 104.24.98.72 vesmirtut.tk
- 104.24.98.72 rosesschool
- 104.24.98.72 www.railroadlocomodels.com
- 104.24.98.72 lojamybaby.com.br
- 104.24.98.72 www.ringtonesgalore.co.uk
- 104.24.98.72 dom-kino.top
- 104.24.98.72 www.normalerrohre.bid
- 104.24.98.72 www.motocyklerozrywka.info
- 104.24.98.72 cuttacksuperreport.tk
- 104.24.98.72 www.webdesignsolution.altervista.org
- 104.24.98.72 pralem.pt
- 104.24.98.72 vip.autolikerbrasil.com.br
- 104.24.98.72 www.lospueblosmasbonitos.net
- 104.24.98.72 pss-16.ru
- 104.24.98.72 dothanteambuilding.com
- 104.24.98.72 damebeger.no
- 104.24.98.72 brunnbyec.se
- 104.24.98.72 mobiletechsolutions
- 104.24.98.72 www.commentfer.fr
- 104.24.98.72 IpnEn.prixmoinscher.com
- ----- teenieporn.net -----
- Host's addresses:
- __________________
- teenieporn.net. 253 IN A 104.24.99.72
- teenieporn.net. 253 IN A 104.24.98.72
- Name Servers:
- ______________
- lady.ns.cloudflare.com. 712 IN A 173.245.58.127
- hugh.ns.cloudflare.com. 82203 IN A 173.245.59.117
- Mail (MX) Servers:
- ___________________
- Trying Zone Transfers and getting Bind Versions:
- ___------------------------------------------------------------------------------------------------------------------------------------
- + Target IP: 104.24.99.72
- + Target Hostname: teenieporn.net
- + Target Port: 80
- + Start Time: 2017-08-20 14:35:12 (GMT-4)
- ---------------------------------------------------------------------------------------------------------------------------------------
- + Server: cloudflare-nginx
- + The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
- + Uncommon header 'cf-ray' found, with contents: 39177380745b08e4-CDG
- + The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type
- + All CGI directories 'found', use '-C none' to test none
- + Server banner has changed from 'cloudflare-nginx' to '-nginx' which may suggest a WAF, load balancer or proxy is in place
- + ERROR: Error limit (20) reached for host, giving up. Last error: error reading HTTP response
- + Scan terminated: 20 error(s) and 3 item(s) reported on remote host
- + End Time: 2017-08-20 16:11:02 (GMT-4) (5750 seconds)
- ---------------------------------------------------------------------------------------------------------------------------------------
- ______________________________________________
- Hostname www.pretty-youngs.biz ISP Quasi Networks LTD. (AS29073)
- Continent Africa Flag
- SC
- Country Seychelles Country Code SC (SYC)
- Region Unknown Local time 20 Aug 2017 22:54 +04
- City Unknown Latitude -4.583
- IP Address 94.102.48.34 Longitude 55.667
- pretty-youngs.biz
- ######################################################################################################################################
- whois pretty-youngs.biz
- Domain Name: PRETTY-YOUNGS.BIZ
- Domain ID: D42665769-BIZ
- Sponsoring Registrar: ENOM, LLC
- Sponsoring Registrar IANA ID: 48
- Registrar URL (registration services): whois.enom.com
- Domain Status: clientTransferProhibited
- Registrant ID: 8C86D9920FA58007
- Registrant Name: Mike Zeleznick
- Registrant Organization: -
- Registrant Address1: Headquarters 2055
- Registrant City: Ogden
- Registrant State/Province: UT
- Registrant Postal Code: 84217
- Registrant Country: United States
- Registrant Country Code: US
- Registrant Phone Number: +1.8013411638
- Registrant Email: lavashin56@gmail.com
- Administrative Contact ID: 8C86D9920FA58007
- Administrative Contact Name: Mike Zeleznick
- Administrative Contact Organization: -
- Administrative Contact Address1: Headquarters 2055
- Administrative Contact City: Ogden
- Administrative Contact State/Province: UT
- Administrative Contact Postal Code: 84217
- Administrative Contact Country: United States
- Administrative Contact Country Code: US
- Administrative Contact Phone Number: +1.8013411638
- Administrative Contact Email: lavashin56@gmail.com
- Billing Contact ID: 8C86D9920FA58007
- Billing Contact Name: Mike Zeleznick
- Billing Contact Organization: -
- Billing Contact Address1: Headquarters 2055
- Billing Contact City: Ogden
- Billing Contact State/Province: UT
- Billing Contact Postal Code: 84217
- Billing Contact Country: United States
- Billing Contact Country Code: US
- Billing Contact Phone Number: +1.8013411638
- Billing Contact Email: lavashin56@gmail.com
- Technical Contact ID: 8C86D9920FA58007
- Technical Contact Name: Mike Zeleznick
- Technical Contact Organization: -
- Technical Contact Address1: Headquarters 2055
- Technical Contact City: Ogden
- Technical Contact State/Province: UT
- Technical Contact Postal Code: 84217
- Technical Contact Country: United States
- Technical Contact Country Code: US
- Technical Contact Phone Number: +1.8013411638
- Technical Contact Email: lavashin56@gmail.com
- Name Server: DNS5.NAME-SERVICES.COM
- Name Server: DNS4.NAME-SERVICES.COM
- Name Server: DNS3.NAME-SERVICES.COM
- Name Server: DNS2.NAME-SERVICES.COM
- Name Server: DNS1.NAME-SERVICES.COM
- Created by Registrar: ENOM, LLC
- Last Updated by Registrar: ENOM, LLC
- Domain Registration Date: Thu Dec 09 11:31:11 GMT 2010
- Domain Expiration Date: Fri Dec 08 23:59:59 GMT 2017
- Domain Last Updated Date: Sat Mar 11 00:55:17 GMT 2017
- IN ANY
- ;; ANSWER SECTION:
- pretty-youngs.biz. 1793 IN A 94.102.48.34
- pretty-youngs.biz. 3596 IN NS dns1.name-services.com.
- pretty-youngs.biz. 3596 IN NS dns2.name-services.com.
- pretty-youngs.biz. 3596 IN NS dns3.name-services.com.
- pretty-youngs.biz. 3596 IN NS dns5.name-services.com.
- pretty-youngs.biz. 3596 IN NS dns4.name-services.com.
- ;; Query time: 8 msec
- ;; SERVER: 192.168.1.254#53(192.168.1.254)
- ;; WHEN: Sun Aug 20 14:38:07 EDT 2017
- ;; MSG SIZE rcvd: 174
- ######################################################################################################################################
- traceroute -T -O info -i eth0 pretty-youngs.biz
- traceroute to pretty-youngs.biz (94.102.48.34), 30 hops max, 60 byte packets
- 1 gateway (192.168.1.254) 0.567 ms 0.750 ms 0.907 ms
- 2 10.135.18.1 (10.135.18.1) 11.128 ms 11.876 ms 15.361 ms
- 3 75.154.223.222 (75.154.223.222) 32.854 ms 32.938 ms 33.022 ms
- 4 lag-113.ear3.NewYork1.Level3.net (4.15.212.245) 95.618 ms 95.775 ms 95.934 ms
- 5 ae-240-3616.edge6.Amsterdam1.Level3.net (4.69.162.254) 104.504 ms 104.848 ms 104.981 ms
- 6 * * *
- 7 no-reverse-dns-configured.com (94.102.48.34) <syn,ack> 103.479 ms 103.621 ms 103.974 ms
- ######################################################################################################################################
- Checking for HTTP-Loadbalancing [Date]: 16:38:08, 16:38:08, 16:38:09, 16:38:09, 16:38:10, 16:38:10, 16:38:11, 16:38:11, 16:38:12, 16:38:13, 16:38:13, 16:38:14, 16:38:14, 16:38:15, 16:38:15, 16:38:16, 16:38:16, 16:38:17, 16:38:17, 16:38:18, 16:38:18, 16:38:19, 16:38:20, 16:38:20, 16:38:21, 16:38:21, 16:38:22, 16:38:22, 16:38:23, 16:38:23, 16:38:24, 16:38:24, 16:38:25, 16:38:25, 16:38:26, 16:38:26, 16:38:27, 16:38:27, 16:38:28, 16:38:29, 16:38:29, 16:38:29, 16:38:30, 16:38:31, 16:38:31, 16:38:32, 16:38:32, 16:38:32, 16:38:33, 16:38:33, NOT FOUND
- Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
- pretty-youngs.biz does NOT use Load-balancing.
- ######################################################################################################################################
- ######################################################################################################################################
- nmap -PN -n -F -T4 -sV -A -oG temp.txt pretty-youngs.biz
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-08-20 14:40 EDT
- Nmap scan report for pretty-youngs.biz (94.102.48.34)
- Host is up (0.20s latency).
- Not shown: 84 closed ports
- PORT STATE SERVICE VERSION
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 25/tcp filtered smtp
- 53/tcp open domain ISC BIND 9.8.2rc1
- | dns-nsid:
- |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4
- 80/tcp open http nginx 1.12.1
- |_http-server-header: nginx/1.12.1
- |_http-title: Did not follow redirect to http://www.pretty-youngs.biz/new.html
- 81/tcp filtered hosts2-ns
- 110/tcp open pop3 Dovecot pop3d
- | ssl-cert: Subject: commonName=imap.example.com
- | Not valid before: 2015-06-12T12:04:14
- |_Not valid after: 2016-06-11T12:04:14
- |_ssl-date: 2017-08-20T16:39:28+00:00; -2h01m06s from scanner time.
- 135/tcp filtered msrpc
- 139/tcp filtered netbios-ssn
- 143/tcp open imap Dovecot imapd
- |_imap-capabilities: IDLE ENABLE completed LITERAL+ AUTH=LOGIN AUTH=CRAM-MD5A0001 SASL-IR AUTH=PLAIN Capability AUTH=DIGEST-MD5 STARTTLS LOGIN-REFERRALS IMAP4rev1 OK ID
- | ssl-cert: Subject: commonName=imap.example.com
- | Not valid before: 2015-06-12T12:04:14
- |_Not valid after: 2016-06-11T12:04:14
- |_ssl-date: 2017-08-20T16:39:27+00:00; -2h01m07s from scanner time.
- 445/tcp filtered microsoft-ds
- 465/tcp filtered smtps
- 587/tcp filtered submission
- 993/tcp open ssl/imap Dovecot imapd
- | ssl-cert: Subject: commonName=imap.example.com
- | Not valid before: 2015-06-12T12:04:14
- |_Not valid after: 2016-06-11T12:04:14
- |_ssl-date: 2017-08-20T16:39:23+00:00; -2h01m07s from scanner time.
- 995/tcp open ssl/pop3 Dovecot pop3d
- | ssl-cert: Subject: commonName=imap.example.com
- | Not valid before: 2015-06-12T12:04:14
- |_Not valid after: 2016-06-11T12:04:14
- |_ssl-date: 2017-08-20T16:39:22+00:00; -2h01m07s from scanner time.
- 3306/tcp open mysql MySQL (unauthorized)
- Aggressive OS guesses: Linux 2.6.39 (99%), Linux 2.6.32 (95%), WatchGuard Fireware 11.8 (95%), Synology DiskStation Manager 5.1 (94%), Linux 3.10 (94%), Linux 2.6.32 or 3.10 (94%), Linux 3.4 (94%), Linux 3.1 - 3.2 (93%), Linux 2.6.32 - 2.6.39 (93%), Linux 3.2 - 3.8 (91%)
- No exact OS matches for host (test conditions non-ideal).
- Network Distance: 10 hops
- Service Info: OS: Red Hat Enterprise Linux 6; CPE: cpe:/o:redhat:enterprise_linux:6
- Host script results:
- |_clock-skew: mean: -2h01m06s, deviation: 0s, median: -2h01m07s
- TRACEROUTE (using port 199/tcp)
- HOP RTT ADDRESS
- 1 138.20 ms 10.13.0.1
- 2 152.92 ms 37.187.24.252
- 3 142.69 ms 178.33.103.229
- 4 147.16 ms 10.95.33.8
- 5 156.67 ms 213.186.32.213
- 6 ...
- 7 169.68 ms 176.10.83.128
- 8 165.21 ms 176.10.83.119
- 9 ...
- 10 162.71 ms 94.102.48.34
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 36.51 seconds
- ######################################################################################################################################
- amap -i temp.txt
- amap v5.4 (www.thc.org/thc-amap) started at 2017-08-20 14:40:41 - APPLICATION MAPPING mode
- Protocol on 94.102.48.34:80/tcp matches http
- Protocol on 94.102.48.34:80/tcp matches http-apache-2
- Protocol on 94.102.48.34:110/tcp matches pop3
- Protocol on 94.102.48.34:3306/tcp matches mysql
- Protocol on 94.102.48.34:3306/tcp matches mysql-secured
- Protocol on 94.102.48.34:143/tcp matches imap
- Protocol on 94.102.48.34:993/tcp matches ssl
- Protocol on 94.102.48.34:995/tcp matches ssl
- Protocol on 94.102.48.34:53/tcp matches dns
- Unidentified ports: none.
- amap v5.4 finished at 2017-08-20 14:40:59
- inetnum: 94.102.48.0 - 94.102.48.150
- netname: SC-QUASI58
- descr: QUASI
- country: SC
- org: ORG-QNL3-RIPE
- admin-c: QNL1-RIPE
- tech-c: QNL1-RIPE
- status: ASSIGNED PA
- mnt-by: QUASINETWORKS-MNT
- mnt-lower: QUASINETWORKS-MNT
- mnt-routes: QUASINETWORKS-MNT
- created: 2011-05-07T22:25:22Z
- last-modified: 2016-01-23T22:29:27Z
- source: RIPE
- organisation: ORG-QNL3-RIPE
- org-name: Quasi Networks LTD.
- org-type: OTHER
- address: Suite 1, Second Floor
- address: Sound & Vision House, Francis Rachel Street
- address: Victoria, Mahe, SEYCHELLES
- remarks: *****************************************************************************
- remarks: IMPORTANT INFORMATION
- remarks: *****************************************************************************
- remarks: We are a high bandwidth network provider offering bandwidth solutions.
- remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
- remarks: Please only use abuse@quasinetworks.com for abuse reports.
- remarks: For all other requests, please see the details on our website.
- remarks: *****************************************************************************
- abuse-mailbox: abuse@quasinetworks.com
- abuse-c: AR34302-RIPE
- mnt-ref: QUASINETWORKS-MNT
- mnt-by: QUASINETWORKS-MNT
- created: 2015-11-08T22:25:26Z
- last-modified: 2015-11-27T09:37:50Z
- source: RIPE # Filtered
- role: Quasi Networks LTD
- address: Suite 1, Second Floor
- address: Sound & Vision House, Francis Rachel Street
- address: Victoria, Mahe, SEYCHELLES
- remarks: *****************************************************************************
- remarks: IMPORTANT INFORMATION
- remarks: *****************************************************************************
- remarks: We are a high bandwidth network provider offering bandwidth solutions.
- remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
- remarks: Please only use abuse@quasinetworks.com for abuse reports.
- remarks: For all other requests, please see the details on our website.
- remarks: *****************************************************************************
- abuse-mailbox: abuse@quasinetworks.com
- nic-hdl: QNL1-RIPE
- mnt-by: QUASINETWORKS-MNT
- created: 2015-11-07T22:43:04Z
- last-modified: 2015-11-07T23:04:49Z
- source: RIPE # Filtered
- % Information related to '94.102.48.0/20AS29073'
- route: 94.102.48.0/20
- descr: Quasi Networks LTD (IBC)
- origin: AS29073
- mnt-by: QUASINETWORKS-MNT
- created: 2008-09-02T11:55:23Z
- last-modified: 2016-01-23T22:40:05Z
- source: RIPE
- % This query was served by the RIPE Database Query Service version 1.89.2 (HEREFORD)
- [+] using maximum random delay of 10 millisecond(s) between requests
- b.pretty-youngs.biz
- IP address #1: 94.102.52.195
- www.pretty-youngs.biz
- IP address #1: 94.102.48.34
- [+] 2 (sub)domains and 2 IP address(es) found
- [+] Hosts found in search engines:
- ------------------------------------
- [-] Resolving hostnames IPs...
- 94.102.48.34:Www.pretty-youngs.biz
- 94.102.52.195:b.pretty-youngs.biz
- 94.102.48.34:www.pretty-youngs.biz
- [+] Virtual hosts:
- ==================
- 94.102.48.34 pretty-youngs.biz
- 94.102.48.34 www.cute-models.name
- 94.102.48.34 top.top-dolls.net
- 94.102.48.34 add.top-dolls.net
- 94.102.48.34 www.prix.net
- 94.102.48.34 CombiEnregistreur.prixmoinscher.com
- 94.102.48.34 www.commentfer.fr
- ----- pretty-youngs.biz -----
- Host's addresses:
- __________________
- pretty-youngs.biz. 1797 IN A 94.102.48.34
- Name Servers:
- ______________
- dns5.name-services.com. 3600 IN A 162.88.61.41
- dns1.name-services.com. 3600 IN A 162.88.61.23
- dns3.name-services.com. 3600 IN A 162.88.61.39
- dns2.name-services.com. 3600 IN A 162.88.60.23
- dns4.name-services.com. 3600 IN A 162.88.60.39
- Mail (MX) Servers:
- ___________________
- Trying Zone Transfers and getting Bind Versions:
- _________________________________________________
- - Nikto v2.1.6
- ---------------------------------------------------------------------------------------------------------------------------------------
- + Target IP: 94.102.48.34
- + Target Hostname: pretty-youngs.biz
- + Target Port: 80
- + Start Time: 2017-08-20 14:38:01 (GMT-4)
- ---------------------------------------------------------------------------------------------------------------------------------------
- + Server: nginx/1.12.1
- + The anti-clickjacking X-Frame-Options header is not present.
- + The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
- + The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type
- + Root page / redirects to: http://www.pretty-youngs.biz/new.html
- + Server leaks inodes via ETags, header found with file /favicon.ico, inode: 21898235, size: 0, mtime: Sat Jun 13 23:10:33 2015
- + OSVDB-3092: /manager/: May be a web server or site manager.
- + OSVDB-3268: /icons/: Directory indexing found.
- + OSVDB-3233: /icons/README: Apache default file found.
- + Retrieved x-powered-by header: PHP/5.3.3
- + /myadmin/: Admin login page/section found.
- + 8262 requests: 1 error(s) and 9 item(s) reported on remote host
- + End Time: 2017-08-20 15:17:43 (GMT-4) (2382 seconds)
- ---------------------------------------------------------------------------
- Hostname rose.modelsartcenter.com ISP Quasi Networks LTD. (AS29073)
- Continent Africa Flag
- SC
- Country Seychelles Country Code SC (SYC)
- Region Unknown Local time 21 Aug 2017 00:49 +04
- City Unknown Latitude -4.583
- IP Address 94.102.55.194 Longitude 55.667
- rose.modelsartcenter.com
- ######################################################################################################################################
- dig rose.modelsartcenter.com any
- ; <<>> DiG 9.10.3-P4-Debian <<>> rose.modelsartcenter.com any
- ;; global options: +cmd
- ;; Got answer:
- ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 6613
- ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
- ;; OPT PSEUDOSECTION:
- ; EDNS: version: 0, flags:; udp: 4096
- ;; QUESTION SECTION:
- ;rose.modelsartcenter.com. IN ANY
- ;; ANSWER SECTION:
- rose.modelsartcenter.com. 511 IN A 94.102.55.194
- ;; Query time: 8 msec
- ;; SERVER: 192.168.1.254#53(192.168.1.254)
- ;; WHEN: Sun Aug 20 16:52:48 EDT 2017
- ;; MSG SIZE rcvd: 69
- ######################################################################################################################################
- tcptraceroute -i eth0 rose.modelsartcenter.com
- Running:
- traceroute -T -O info -i eth0 rose.modelsartcenter.com
- traceroute to rose.modelsartcenter.com (94.102.55.194), 30 hops max, 60 byte packets
- 1 gateway (192.168.1.254) 0.465 ms 0.712 ms 0.933 ms
- 2 10.135.18.1 (10.135.18.1) 7.433 ms 7.808 ms 8.074 ms
- 3 75.154.223.222 (75.154.223.222) 30.001 ms 29.901 ms 30.103 ms
- 4 * * *
- 5 ae-237-3613.edge6.Amsterdam1.Level3.net (4.69.162.242) 104.900 ms 104.984 ms 105.098 ms
- 6 * * *
- 7 stark2-ip7.idfnv.net (94.102.55.194) <syn,ack> 103.962 ms 103.804 ms 104.385 ms
- Checking for HTTP-Loadbalancing [Date]: 20:51:52, 20:51:52, 20:51:52, 20:51:53, 20:51:53, 20:51:53, 20:51:54, 20:51:54, 20:51:54, 20:51:55, 20:51:55, 20:51:55, 20:51:56, 20:51:56, 20:51:56, 20:51:56, 20:51:57, 20:51:57, 20:51:58, 20:51:58, 20:51:58, 20:51:59, 20:51:59, 20:51:59, 20:51:59, 20:52:00, 20:52:00, 20:52:00, 20:52:00, 20:52:01, 20:52:01, 20:52:01, 20:52:01, 20:52:02, 20:52:02, 20:52:02, 20:52:03, 20:52:03, 20:52:03, 20:52:03, 20:52:04, 20:52:04, 20:52:04, 20:52:04, 20:52:05, 20:52:05, 20:52:05, 20:52:05, 20:52:06, 20:52:06, NOT FOUND
- Checking for HTTP-Loadbalancing [Diff]: NOT FOUND
- rose.modelsartcenter.com does NOT use Load-balancing.
- ######################################################################################################################################
- nmap -PN -n -F -T4 -sV -A -oG temp.txt rose.modelsartcenter.com
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-08-20 16:53 EDT
- Nmap scan report for rose.modelsartcenter.com (94.102.55.194)
- Host is up (2.6s latency).
- Not shown: 62 closed ports, 36 filtered ports
- PORT STATE SERVICE VERSION
- 80/tcp open http Apache httpd 2.2.15 ((CentOS))
- |_http-title: Rose model. Preteen models paradise.
- 443/tcp open ssl/https?
- |_http-title: Apache HTTP Server Test Page powered by CentOS
- | ssl-cert: Subject: commonName=b08s04/organizationName=SomeOrganization/stateOrProvinceName=SomeState/countryName=--
- | Not valid before: 2016-01-05T16:28:07
- |_Not valid after: 2017-01-04T16:28:07
- |_ssl-date: 2017-08-20T20:53:32+00:00; -1m26s from scanner time.
- Device type: general purpose
- Running (JUST GUESSING): Linux 2.6.X (86%)
- OS CPE: cpe:/o:linux:linux_kernel:2.6.39
- Aggressive OS guesses: Linux 2.6.39 (86%)
- No exact OS matches for host (test conditions non-ideal).
- Network Distance: 11 hops
- Host script results:
- |_clock-skew: mean: -1m27s, deviation: 0s, median: -1m27s
- TRACEROUTE (using port 9999/tcp)
- HOP RTT ADDRESS
- 1 4387.09 ms 10.13.0.1
- 2 ...
- 3 4391.54 ms 178.33.103.231
- 4 4396.04 ms 10.95.33.10
- 5 ... 8
- 9 5039.61 ms 176.10.83.119
- 10 ...
- 11 3480.99 ms 94.102.55.194
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 91.86 seconds
- ######################################################################################################################################
- amap -i temp.txt
- amap v5.4 (www.thc.org/thc-amap) started at 2017-08-20 16:55:17 - APPLICATION MAPPING mode
- Protocol on 94.102.55.194:80/tcp matches http
- Protocol on 94.102.55.194:80/tcp matches http-apache-2
- Protocol on 94.102.55.194:443/tcp matches ntp
- Protocol on 94.102.55.194:443/tcp matches ssl
- Protocol on 94.102.55.194:443/tcp matches http
- Protocol on 94.102.55.194:443/tcp matches http-apache-2
- 55.255
- netname: SC-QUASI64
- descr: QUASI
- country: SC
- org: ORG-QNL3-RIPE
- admin-c: QNL1-RIPE
- tech-c: QNL1-RIPE
- status: ASSIGNED PA
- mnt-by: QUASINETWORKS-MNT
- mnt-lower: QUASINETWORKS-MNT
- mnt-routes: QUASINETWORKS-MNT
- created: 2009-08-13T00:17:48Z
- last-modified: 2016-01-23T22:34:29Z
- source: RIPE
- organisation: ORG-QNL3-RIPE
- org-name: Quasi Networks LTD.
- org-type: OTHER
- address: Suite 1, Second Floor
- address: Sound & Vision House, Francis Rachel Street
- address: Victoria, Mahe, SEYCHELLES
- remarks: *****************************************************************************
- remarks: IMPORTANT INFORMATION
- remarks: *****************************************************************************
- remarks: We are a high bandwidth network provider offering bandwidth solutions.
- remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
- remarks: Please only use abuse@quasinetworks.com for abuse reports.
- remarks: For all other requests, please see the details on our website.
- remarks: *****************************************************************************
- abuse-mailbox: abuse@quasinetworks.com
- abuse-c: AR34302-RIPE
- mnt-ref: QUASINETWORKS-MNT
- mnt-by: QUASINETWORKS-MNT
- created: 2015-11-08T22:25:26Z
- last-modified: 2015-11-27T09:37:50Z
- source: RIPE # Filtered
- role: Quasi Networks LTD
- address: Suite 1, Second Floor
- address: Sound & Vision House, Francis Rachel Street
- address: Victoria, Mahe, SEYCHELLES
- remarks: *****************************************************************************
- remarks: IMPORTANT INFORMATION
- remarks: *****************************************************************************
- remarks: We are a high bandwidth network provider offering bandwidth solutions.
- remarks: Government agencies can sent their requests to gov.request@quasinetworks.com
- remarks: Please only use abuse@quasinetworks.com for abuse reports.
- remarks: For all other requests, please see the details on our website.
- remarks: *****************************************************************************
- abuse-mailbox: abuse@quasinetworks.com
- nic-hdl: QNL1-RIPE
- mnt-by: QUASINETWORKS-MNT
- created: 2015-11-07T22:43:04Z
- last-modified: 2015-11-07T23:04:49Z
- source: RIPE # Filtered
- % Information related to '94.102.48.0/20AS29073'
- route: 94.102.48.0/20
- descr: Quasi Networks LTD (IBC)
- origin: AS29073
- mnt-by: QUASINETWORKS-MNT
- created: 2008-09-02T11:55:23Z
- last-modified: 2016-01-23T22:40:05Z
- source: RIPE
- % This query was served by the RIPE Database Query Service version 1.89.2 (ANGUS)
- ----- rose.modelsartcenter.com -----
- Host's addresses:
- __________________
- rose.modelsartcenter.com. 512 IN A 94.102.55.194
- Name Servers:
- ______________
- ---------------------------------------------------------------------------------------------------------------------------------------
- + Target IP: 94.102.55.194
- + Target Hostname: rose.modelsartcenter.com
- + Target Port: 80
- + Start Time: 2017-08-20 16:52:58 (GMT-4)
- ---------------------------------------------------------------------------------------------------------------------------------------
- + Server: Apache/2.2.15 (CentOS)
- + Retrieved x-powered-by header: PHP/5.3.3
- + The anti-clickjacking X-Frame-Options header is not present.
- + The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
- + The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type
- + Apache/2.2.15 appears to be outdated (current is at least Apache/2.4.12). Apache 2.0.65 (final release) and 2.2.29 are also current.
- + Web Server returns a valid response with junk HTTP methods, this may cause false positives.
- + OSVDB-877: HTTP TRACE method is active, suggesting the host is vulnerable to XST
- + OSVDB-12184: /?=PHPB8B5F2A0-3C92-11d3-A3A9-4C7B08C10000: PHP reveals potentially sensitive information via certain HTTP requests that contain specific QUERY strings.
- + OSVDB-12184: /?=PHPE9568F34-D428-11d2-A769-00AA001ACF42: PHP reveals potentially sensitive information via certain HTTP requests that contain specific QUERY strings.
- + OSVDB-12184: /?=PHPE9568F35-D428-11d2-A769-00AA001ACF42: PHP reveals potentially sensitive information via certain HTTP requests that contain specific QUERY strings.
- + OSVDB-3268: /icons/: Directory indexing found.
- + Server leaks inodes via ETags, header found with file /icons/README, inode: 41092339, size: 5108, mtime: Tue Aug 28 06:48:10 2007
- + OSVDB-3233: /icons/README: Apache default file found.
- + 8321 requests: 3 error(s) and 13 item(s) reported on remote host
- + End Time: 2017-08-20 17:48:14 (GMT-4) (3316 seconds)
- ---------------------------------------------------------------------------------------------------------------------------------------
- + 1 host(s) tested
- Hostname justlittlestars.com ISP Unknown
- Continent Unknown Flag
- US
- Country United States Country Code US
- Region Unknown Local time 20 Aug 2017 17:43 CDT
- City Unknown Latitude 37.751
- IP Address (IPv6) 2400:cb00:2048:1::6812:3460 Longitude -97.822
- justlittlestars.com
- ######################################################################################################################################
- whois justlittlestars.com
- Domain Name: JUSTLITTLESTARS.COM
- Registry Domain ID: 1700558925_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.directnic.com
- Registrar URL: http://www.directnic.com
- Updated Date: 2017-02-20T19:33:19Z
- Creation Date: 2012-02-05T14:58:58Z
- Registry Expiry Date: 2018-02-05T14:58:58Z
- Registrar: DNC Holdings, Inc.
- Registrar IANA ID: 291
- Registrar Abuse Contact Email:
- Registrar Abuse Contact Phone:
- Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Domain Status: clientUpdateProhibited https://icann.org/epp#clientUpdateProhibited
- Name Server: ADA.NS.CLOUDFLARE.COM
- Name Server: JONAH.NS.CLOUDFLARE.COM
- DNSSEC: unsigned
- Domain Name: JUSTLITTLESTARS.COM
- Registry Domain ID: 1700558925_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.directnic.com
- Registrar URL: http://www.directnic.com
- Updated Date: 2017-02-20T19:33:19-06:00
- Creation Date: 2012-02-05T14:58:58-06:00
- Registrar Registration Expiration Date: 2018-02-05T14:58:58-06:00
- Registrar: DNC Holdings, Inc.
- Sponsoring Registrar IANA ID: 291
- Registrar Abuse Contact Email: abuse@directnic.com
- Registrar Abuse Contact Phone: +1.8778569598
- Domain Status: clientDeleteProhibited (https://www.icann.org/epp#clientDeleteProhibited)
- Domain Status: clientTransferProhibited (https://www.icann.org/epp#clientTransferProhibited)
- Domain Status: clientUpdateProhibited (https://www.icann.org/epp#clientUpdateProhibited)
- Domain Status: transferPeriod (https://www.icann.org/epp#transferPeriod)
- Registrant Name: Andrew Kornilov
- Registrant Organization: person
- Registrant Street: 127/1 Schorsa Str
- Registrant City: Odessa
- Registrant State/Province: Odessa Oblast
- Registrant Postal Code: 65036
- Registrant Country: UA
- Registrant Phone: +380.380674830000
- Registrant Phone Ext:
- Registrant Fax:
- Registrant Fax Ext:
- Registrant Email: webmaster@hotglamworld.com
- Admin Name: Andrew Kornilov
- Admin Organization: person
- Admin Street: 127/1 Schorsa Str
- Admin City: Odessa
- Admin State/Province: Odessa Oblast
- Admin Postal Code: 65036
- Admin Country: UA
- Admin Phone: +380.380674830000
- Admin Phone Ext:
- Admin Fax:
- Admin Fax Ext:
- Admin Email: webmaster@hotglamworld.com
- Tech Name: Andrew Kornilov
- Tech Organization: person
- Tech Street: 127/1 Schorsa Str
- Tech City: Odessa
- Tech State/Province: Odessa Oblast
- Tech Postal Code: 65036
- Tech Country: UA
- Tech Phone: +380.380674830000
- Tech Phone Ext:
- Tech Fax:
- Tech Fax Ext:
- Tech Email: webmaster@hotglamworld.com
- Name Server: ADA.NS.CLOUDFLARE.COM
- Name Server: JONAH.NS.CLOUDFLARE.COM
- ######################################################################################################################################
- dig justlittlestars.com any
- ; <<>> DiG 9.10.3-P4-Debian <<>> justlittlestars.com any
- ;; global options: +cmd
- ;; Got answer:
- ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 28014
- ;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 1
- ;; OPT PSEUDOSECTION:
- ; EDNS: version: 0, flags:; udp: 4096
- ;; QUESTION SECTION:
- ;justlittlestars.com. IN ANY
- ;; ANSWER SECTION:
- justlittlestars.com. 299 IN A 104.18.52.96
- justlittlestars.com. 299 IN A 104.18.53.96
- justlittlestars.com. 3449 IN NS ada.ns.cloudflare.com.
- justlittlestars.com. 3449 IN NS jonah.ns.cloudflare.com.
- ;; Query time: 8 msec
- ;; SERVER: 192.168.1.254#53(192.168.1.254)
- ;; WHEN: Sun Aug 20 18:42:53 EDT 2017
- ;; MSG SIZE rcvd: 132
- tcptraceroute -i eth0 justlittlestars.com
- Running:
- traceroute -T -O info -i eth0 justlittlestars.com
- traceroute to justlittlestars.com (104.18.53.96), 30 hops max, 60 byte packets
- 1 gateway (192.168.1.254) 0.516 ms 0.719 ms 0.897 ms
- 2 10.135.18.1 (10.135.18.1) 7.064 ms 7.149 ms 7.698 ms
- 3 NYCMNYCIZR01.bb.telus.com (75.154.223.248) 29.791 ms 32.328 ms 32.408 ms
- 4 de-cix-new-york.as13335.net (206.130.10.31) 31.892 ms 32.023 ms 32.147 ms
- 5 104.18.53.96 (104.18.53.96) <syn,ack> 31.040 ms 31.181 ms 31.509 ms
- Checking for HTTP-Loadbalancing [Date]: 23:00:49, 23:00:49, 23:00:50, 23:00:50, 23:00:51, 23:00:51, 23:00:52, 23:00:52, 23:00:52, 23:00:53, 23:00:53, 23:00:53, 23:00:54, 23:00:54, 23:00:55, 23:00:55, 23:00:55, 23:00:56, 23:00:57, 23:00:57, 23:00:58, 23:00:58, 23:00:58, 23:00:59, 23:00:59, 23:01:00, 23:01:00, 23:01:00, 23:01:01, 23:01:01, 23:01:02, 23:01:02, 23:01:03, 23:01:03, 23:01:04, 23:01:04, 23:01:05, 23:01:05, 23:01:06, 23:01:06, 23:01:06, 23:01:07, 23:01:07, 23:01:08, 23:01:08, 23:01:08, 23:01:09, 23:01:09, 23:01:10, 23:01:10, NOT FOUND
- Checking for HTTP-Loadbalancing [Diff]: FOUND
- < CF-RAY: 3918f919b18d1055-CDG
- > CF-RAY: 3918f91ba54e691a-CDG
- justlittlestars.com does Load-balancing. Found via Methods: DNS HTTP[Diff]
- ######################################################################################################################################
- nmap -PN -n -F -T4 -sV -A -oG temp.txt justlittlestars.com
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-08-20 19:01 EDT
- Nmap scan report for justlittlestars.com (104.18.53.96)
- Host is up (0.18s latency).
- Other addresses for justlittlestars.com (not scanned): 2400:cb00:2048:1::6812:3460 2400:cb00:2048:1::6812:3560 104.18.52.96
- Not shown: 96 filtered ports
- PORT STATE SERVICE VERSION
- 80/tcp open http Cloudflare nginx
- |_http-title: JustLittleStars.com - Hot webcam teens!
- 443/tcp open ssl/http Cloudflare nginx
- | ssl-cert: Subject: commonName=sni201751.cloudflaressl.com
- | Subject Alternative Name: DNS:sni201751.cloudflaressl.com, DNS:*.24dose.com, DNS:*.callrandazzo.com, DNS:*.cryptly.co, DNS:*.dolls4fuck.com, DNS:*.e-cuties.ws, DNS:*.eggformr.cf, DNS:*.fanideae.xyz, DNS:*.gottateens.com, DNS:*.ivptvariance.ml, DNS:*.jeffreyscottharris.co, DNS:*.jeffreysharris.com, DNS:*.justlittlestars.com, DNS:*.mudwhya.cf, DNS:*.opktech.co, DNS:*.opktech.website, DNS:*.pdf-masters.cf, DNS:*.sector4.co, DNS:*.shy-cams.com, DNS:*.sirtryc.cf, DNS:*.texas86rxns.ml, DNS:*.tiny-cams.com, DNS:*.young-and-virg.in, DNS:24dose.com, DNS:callrandazzo.com, DNS:cryptly.co, DNS:dolls4fuck.com, DNS:e-cuties.ws, DNS:eggformr.cf, DNS:fanideae.xyz, DNS:gottateens.com, DNS:ivptvariance.ml, DNS:jeffreyscottharris.co, DNS:jeffreysharris.com, DNS:justlittlestars.com, DNS:mudwhya.cf, DNS:opktech.co, DNS:opktech.website, DNS:pdf-masters.cf, DNS:sector4.co, DNS:shy-cams.com, DNS:sirtryc.cf, DNS:texas86rxns.ml, DNS:tiny-cams.com, DNS:young-and-virg.in
- | Not valid before: 2017-08-16T00:00:00
- |_Not valid after: 2018-02-22T23:59:59
- 8080/tcp open http Cloudflare nginx
- 8443/tcp open ssl/http Cloudflare nginx
- Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- Device type: general purpose
- Running (JUST GUESSING): Linux 3.X|2.6.X|4.X (88%)
- OS CPE: cpe:/o:linux:linux_kernel:3.18 cpe:/o:linux:linux_kernel:2.6 cpe:/o:linux:linux_kernel:4
- Aggressive OS guesses: Linux 3.18 (88%), Linux 2.6.18 - 2.6.22 (86%), Linux 3.12 - 4.4 (85%)
- No exact OS matches for host (test conditions non-ideal).
- Network Distance: 8 hops
- TRACEROUTE (using port 443/tcp)
- HOP RTT ADDRESS
- 1 218.58 ms 10.13.0.1
- 2 257.14 ms 37.187.24.252
- 3 222.87 ms 178.33.103.229
- 4 227.36 ms 10.95.33.8
- 5 236.35 ms 91.121.215.177
- 6 242.36 ms 37.187.36.214
- 7 253.89 ms 195.42.144.143
- 8 248.16 ms 104.18.53.96
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 78.71 seconds
- ######################################################################################################################################
- amap -i temp.txt
- amap v5.4 (www.thc.org/thc-amap) started at 2017-08-20 19:02:29 - APPLICATION MAPPING mode
- Protocol on 104.18.53.96:80/tcp matches http
- Protocol on 104.18.53.96:443/tcp matches http
- Protocol on 104.18.53.96:8080/tcp matches http
- Protocol on 104.18.53.96:443/tcp matches ssl
- Protocol on 104.18.53.96:8443/tcp matches http
- Protocol on 104.18.53.96:8443/tcp matches ssl
- Unidentified ports: none.
- amap v5.4 finished at 2017-08-20 19:02:35
- ######################################################################################################################################
- ######################################################################################################################################
- localhost.justlittlestars.com
- IP address #1: 127.0.0.1
- [+] warning: domain might be vulnerable to "same site" scripting (http://snipurl.com/etbcv)
- www.justlittlestars.com
- IPv6 address #1: 2400:cb00:2048:1::6812:3560
- IPv6 address #2: 2400:cb00:2048:1::6812:3460
- www.justlittlestars.com
- IP address #1: 104.18.53.96
- IP address #2: 104.18.52.96
- ----- justlittlestars.com -----
- Host's addresses:
- __________________
- justlittlestars.com. 300 IN A 104.18.53.96
- justlittlestars.com. 300 IN A 104.18.52.96
- Wildcard detection using: sdelaoewvdfx
- _______________________________________
- sdelaoewvdfx.justlittlestars.com. 300 IN A 5.45.77.42
- Name Servers:
- ______________
- jonah.ns.cloudflare.com. 40100 IN A 173.245.59.186
- ada.ns.cloudflare.com. 86400 IN A 173.245.58.54
- Mail (MX) Servers:
- ___________________
- Trying Zone Transfers and getting Bind Versions:
- _________________________________________________
- ---------------------------------------------------------------------------------------------------------------------------------------
- + Target IP: 104.18.52.96
- + Target Hostname: justlittlestars.com
- + Target Port: 80
- + Start Time: 2017-08-20 18:43:22 (GMT-4)
- ---------------------------------------------------------------------------------------------------------------------------------------
- + Server: cloudflare-nginx
- + The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
- + Uncommon header 'cf-ray' found, with contents: 3918df0d70261055-CDG
- + The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type
- + All CGI directories 'found', use '-C none' to test none
- + Server banner has changed from 'cloudflare-nginx' to '-nginx' which may suggest a WAF, load balancer or proxy is in place
- + OSVDB-8103: /global.inc: PHP-Survey's include file should not be available via the web. Configure the web server to ignore .inc files or change this to global.inc.php
- + ERROR: Error limit (20) reached for host, giving up. Last error: error reading HTTP response
- + Scan terminated: 18 error(s) and 4 item(s) reported on remote host
- + End Time: 2017-08-20 19:15:19 (GMT-4) (1917 seconds)
- ---------------------------------------------------------------------------------------------------------------------------------------
- Hostname 24dose.com ISP Unknown
- Continent Unknown Flag
- US
- Country United States Country Code US
- Region Unknown Local time 20 Aug 2017 18:23 CDT
- City Unknown Latitude 37.751
- IP Address (IPv6) 2400:cb00:2048:1::681f:5d5a Longitude -97.822
- NetRange: 104.16.0.0 - 104.31.255.255
- CIDR: 104.16.0.0/12
- NetName: CLOUDFLARENET
- NetHandle: NET-104-16-0-0-1
- Parent: NET104 (NET-104-0-0-0-0)
- NetType: Direct Assignment
- OriginAS: AS13335
- Organization: Cloudflare, Inc. (CLOUD14)
- RegDate: 2014-03-28
- Updated: 2017-02-17
- Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
- Ref: https://whois.arin.net/rest/net/NET-104-16-0-0-1
- OrgName: Cloudflare, Inc.
- OrgId: CLOUD14
- Address: 101 Townsend Street
- City: San Francisco
- StateProv: CA
- PostalCode: 94107
- Country: US
- RegDate: 2010-07-09
- Updated: 2017-02-17
- Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
- Ref: https://whois.arin.net/rest/org/CLOUD14
- OrgTechHandle: ADMIN2521-ARIN
- OrgTechName: Admin
- OrgTechPhone: +1-650-319-8930
- OrgTechEmail: admin@cloudflare.com
- OrgTechRef: https://whois.arin.net/rest/poc/ADMIN2521-ARIN
- OrgAbuseHandle: ABUSE2916-ARIN
- OrgAbuseName: Abuse
- OrgAbusePhone: +1-650-319-8930
- OrgAbuseEmail: abuse@cloudflare.com
- OrgAbuseRef: https://whois.arin.net/rest/poc/ABUSE2916-ARIN
- OrgNOCHandle: NOC11962-ARIN
- OrgNOCName: NOC
- OrgNOCPhone: +1-650-319-8930
- OrgNOCEmail: noc@cloudflare.com
- OrgNOCRef: https://whois.arin.net/rest/poc/NOC11962-ARIN
- RNOCHandle: NOC11962-ARIN
- RNOCName: NOC
- RNOCPhone: +1-650-319-8930
- RNOCEmail: noc@cloudflare.com
- RNOCRef: https://whois.arin.net/rest/poc/NOC11962-ARIN
- RAbuseHandle: ABUSE2916-ARIN
- RAbuseName: Abuse
- RAbusePhone: +1-650-319-8930
- RAbuseEmail: abuse@cloudflare.com
- RAbuseRef: https://whois.arin.net/rest/poc/ABUSE2916-ARIN
- RTechHandle: ADMIN2521-ARIN
- RTechName: Admin
- RTechPhone: +1-650-319-8930
- RTechEmail: admin@cloudflare.com
- RTechRef: https://whois.arin.net/rest/poc/ADMIN2521-ARIN
- in.24dose.com
- IPv6 address #1: 2400:cb00:2048:1::681f:5c5a
- IPv6 address #2: 2400:cb00:2048:1::681f:5d5a
- in.24dose.com
- IP address #1: 104.31.92.90
- IP address #2: 104.31.93.90
- localhost.24dose.com
- IP address #1: 127.0.0.1
- [+] warning: domain might be vulnerable to "same site" scripting (http://snipurl.com/etbcv)
- mail.24dose.com
- IPv6 address #1: 2400:cb00:2048:1::681f:5d5a
- IPv6 address #2: 2400:cb00:2048:1::681f:5c5a
- mail.24dose.com
- IP address #1: 104.31.92.90
- IP address #2: 104.31.93.90
- www.24dose.com
- IPv6 address #1: 2400:cb00:2048:1::681f:5c5a
- IPv6 address #2: 2400:cb00:2048:1::681f:5d5a
- www.24dose.com
- IP address #1: 104.31.92.90
- IP address #2: 104.31.93.90
- ----- 24dose.com -----
- Host's addresses:
- __________________
- 24dose.com. 19 IN A 104.31.92.90
- 24dose.com. 19 IN A 104.31.93.90
- Wildcard detection using: aeskbrzqktgn
- _______________________________________
- aeskbrzqktgn.24dose.com. 300 IN A 5.45.77.42
- Name Servers:
- ______________
- jonah.ns.cloudflare.com. 39211 IN A 173.245.59.186
- ada.ns.cloudflare.com. 86400 IN A 173.245.58.54
- Mail (MX) Servers:
- ___________________
- Trying Zone Transfers and getting Bind Versions:
- _________________________________________________
- ---------------------------------------------------------------------------------------------------------------------------------------
- + Target IP: 104.31.92.90
- + Target Hostname: 24dose.com
- + Target Port: 80
- + Start Time: 2017-08-21 19:17:58 (GMT-4)
- ---------------------------------------------------------------------------------------------------------------------------------------
- + Server: cloudflare-nginx
- + The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
- + Uncommon header 'cf-ray' found, with contents: 39214f1f46c469b2-CDG
- + The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type
- + All CGI directories 'found', use '-C none' to test none
- + Server banner has changed from 'cloudflare-nginx' to '-nginx' which may suggest a WAF, load balancer or proxy is in place
- tiny-cams.com
- ######################################################################################################################################
- whois tiny-cams.com
- Domain Name: TINY-CAMS.COM
- Registry Domain ID: 1688339232_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.PublicDomainRegistry.com
- Registrar URL: http://www.publicdomainregistry.com
- Updated Date: 2016-11-21T23:41:04Z
- Creation Date: 2011-11-21T23:52:22Z
- Registry Expiry Date: 2017-11-21T23:52:22Z
- Registrar: PDR Ltd. d/b/a PublicDomainRegistry.com
- Registrar IANA ID: 303
- Registrar Abuse Contact Email: abuse-contact@publicdomainregistry.com
- Registrar Abuse Contact Phone: +1.2013775952
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Name Server: ADA.NS.CLOUDFLARE.COM
- Name Server: JONAH.NS.CLOUDFLARE.COM
- DNSSEC: unsigned
- URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/
- .
- Domain Name: TINY-CAMS.COM
- Registry Domain ID: 1688339232_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.publicdomainregistry.com
- Registrar URL: www.publicdomainregistry.com
- Updated Date: 2016-11-21T23:41:04Z
- Creation Date: 2011-11-21T23:52:22Z
- Registrar Registration Expiration Date: 2017-11-21T23:52:22Z
- Registrar: PDR Ltd. d/b/a PublicDomainRegistry.com
- Registrar IANA ID: 303
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Registry Registrant ID: Not Available From Registry
- Registrant Name: Mark
- Registrant Organization:
- Registrant Street: Plantage Muidergracht 11
- Registrant City: Amsterdam
- Registrant State/Province: Limburg
- Registrant Postal Code: 1018
- Registrant Country: NL
- Registrant Phone: +31.205258749
- Registrant Phone Ext:
- Registrant Fax:
- Registrant Fax Ext:
- Registrant Email: adultprojects@gmail.com
- Registry Admin ID: Not Available From Registry
- Admin Name: Mark
- Admin Organization:
- Admin Street: Plantage Muidergracht 11
- Admin City: Amsterdam
- Admin State/Province: Limburg
- Admin Postal Code: 1018
- Admin Country: NL
- Admin Phone: +31.205258749
- Admin Phone Ext:
- Admin Fax:
- Admin Fax Ext:
- Admin Email: adultprojects@gmail.com
- Registry Tech ID: Not Available From Registry
- Tech Name: Mark
- Tech Organization:
- Tech Street: Plantage Muidergracht 11
- Tech City: Amsterdam
- Tech State/Province: Limburg
- Tech Postal Code: 1018
- Tech Country: NL
- Tech Phone: +31.205258749
- Tech Phone Ext:
- Tech Fax:
- Tech Fax Ext:
- Tech Email: adultprojects@gmail.com
- Name Server: ada.ns.cloudflare.com
- Name Server: jonah.ns.cloudflare.com
- DNSSEC:Unsigned
- Registrar Abuse Contact Email: abuse-contact@publicdomainregistry.com
- Registrar Abuse Contact Phone: +1.2013775952
- URL of the ICANN WHOIS Data Problem Reporting System: http://wdprs.internic.net/
- ######################################################################################################################################
- dig tiny-cams.com any
- ; <<>> DiG 9.10.3-P4-Debian <<>> tiny-cams.com any
- ;; global options: +cmd
- ;; Got answer:
- ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 45677
- ;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 1
- ;; OPT PSEUDOSECTION:
- ; EDNS: version: 0, flags:; udp: 4096
- ;; QUESTION SECTION:
- ;tiny-cams.com. IN ANY
- ;; ANSWER SECTION:
- tiny-cams.com. 3789 IN HINFO "ANY obsoleted" "See draft-ietf-dnsop-refuse-any"
- tiny-cams.com. 144970 IN NS jonah.ns.cloudflare.com.
- tiny-cams.com. 144970 IN NS ada.ns.cloudflare.com.
- ;; Query time: 35 msec
- ;; SERVER: 192.168.1.254#53(192.168.1.254)
- ;; WHEN: Mon Aug 21 19:45:50 EDT 2017
- ;; MSG SIZE rcvd: 152
- #################################################################################################################################
- ######################################################################################################################################
- tcptraceroute -i eth0 tiny-cams.com
- Running:
- traceroute -T -O info -i eth0 tiny-cams.com
- traceroute to tiny-cams.com (104.27.188.107), 30 hops max, 60 byte packets
- 1 gateway (192.168.1.254) 0.527 ms 0.813 ms 1.020 ms
- 2 10.135.18.1 (10.135.18.1) 8.248 ms 8.634 ms 9.159 ms
- 3 NYCMNYCIZR01.bb.telus.com (75.154.223.248) 30.919 ms 30.994 ms 31.070 ms
- 4 de-cix-new-york.as13335.net (206.130.10.31) 31.835 ms 31.993 ms 32.366 ms
- 5 104.27.188.107 (104.27.188.107) <syn,ack> 32.252 ms 32.523 ms 32.709 ms
- ######################################################################################################################################
- cd /pentest/enumeration/lbd
- ./lbd.sh tiny-cams.com
- ./Recon.sh: ligne 65 : cd: /pentest/enumeration/lbd: Aucun fichier ou dossier de ce type
- lbd - load balancing detector 0.2 - Checks if a given domain uses load-balancing.
- Written by Stefan Behte (http://ge.mine.nu)
- Proof-of-concept! Might give false positives.
- Checking for DNS-Loadbalancing: FOUND
- tiny-cams.com has address 104.27.189.107
- tiny-cams.com has address 104.27.188.107
- Checking for HTTP-Loadbalancing [Server]:
- cloudflare-nginx
- NOT FOUND
- Checking for HTTP-Loadbalancing [Date]: 00:03:45, 00:03:45, 00:03:46, 00:03:46, 00:03:47, 00:03:47, 00:03:48, 00:03:48, 00:03:49, 00:03:49, 00:03:50, 00:03:50, 00:03:50, 00:03:51, 00:03:51, 00:03:52, 00:03:52, 00:03:52, 00:03:53, 00:03:53, 00:03:54, 00:03:54, 00:03:55, 00:03:55, 00:03:55, 00:03:56, 00:03:56, 00:03:57, 00:03:57, 00:03:57, 00:03:58, 00:03:58, 00:03:59, 00:03:59, 00:03:59, 00:04:00, 00:04:00, 00:04:01, 00:04:01, 00:04:02, 00:04:02, 00:04:03, 00:04:03, 00:04:03, 00:04:04, 00:04:04, 00:04:05, 00:04:05, 00:04:06, 00:04:06, NOT FOUND
- Checking for HTTP-Loadbalancing [Diff]: FOUND
- < Expires: Tue, 22 Aug 2017 00:04:21 GMT
- > Expires: Tue, 22 Aug 2017 00:04:22 GMT
- < CF-RAY: 392192a7856e694a-CDG
- > CF-RAY: 392192aae6353bc3-CDG
- tiny-cams.com does Load-balancing. Found via Methods: DNS HTTP[Diff]
- ######################################################################################################################################
- nmap -PN -n -F -T4 -sV -A -oG temp.txt tiny-cams.com
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-08-21 20:04 EDT
- Nmap scan report for tiny-cams.com (104.27.188.107)
- Host is up (0.13s latency).
- Other addresses for tiny-cams.com (not scanned): 2400:cb00:2048:1::681b:bd6b 2400:cb00:2048:1::681b:bc6b 104.27.189.107
- Not shown: 96 filtered ports
- PORT STATE SERVICE VERSION
- 80/tcp open http Cloudflare nginx
- 443/tcp open ssl/http Cloudflare nginx
- | ssl-cert: Subject: commonName=sni201751.cloudflaressl.com
- | Subject Alternative Name: DNS:sni201751.cloudflaressl.com, DNS:*.24dose.com, DNS:*.callrandazzo.com, DNS:*.cryptly.co, DNS:*.dolls4fuck.com, DNS:*.e-cuties.ws, DNS:*.eggformr.cf, DNS:*.fanideae.xyz, DNS:*.gottateens.com, DNS:*.ivptvariance.ml, DNS:*.jeffreyscottharris.co, DNS:*.jeffreysharris.com, DNS:*.justlittlestars.com, DNS:*.mudwhya.cf, DNS:*.opktech.co, DNS:*.opktech.website, DNS:*.pdf-masters.cf, DNS:*.sector4.co, DNS:*.shy-cams.com, DNS:*.sirtryc.cf, DNS:*.texas86rxns.ml, DNS:*.tiny-cams.com, DNS:*.young-and-virg.in, DNS:24dose.com, DNS:callrandazzo.com, DNS:cryptly.co, DNS:dolls4fuck.com, DNS:e-cuties.ws, DNS:eggformr.cf, DNS:fanideae.xyz, DNS:gottateens.com, DNS:ivptvariance.ml, DNS:jeffreyscottharris.co, DNS:jeffreysharris.com, DNS:justlittlestars.com, DNS:mudwhya.cf, DNS:opktech.co, DNS:opktech.website, DNS:pdf-masters.cf, DNS:sector4.co, DNS:shy-cams.com, DNS:sirtryc.cf, DNS:texas86rxns.ml, DNS:tiny-cams.com, DNS:young-and-virg.in
- | Not valid before: 2017-08-16T00:00:00
- |_Not valid after: 2018-02-22T23:59:59
- 8080/tcp open http Cloudflare nginx
- 8443/tcp open ssl/http Cloudflare nginx
- | ssl-cert: Subject: commonName=sni201751.cloudflaressl.com
- | Subject Alternative Name: DNS:sni201751.cloudflaressl.com, DNS:*.24dose.com, DNS:*.callrandazzo.com, DNS:*.cryptly.co, DNS:*.dolls4fuck.com, DNS:*.e-cuties.ws, DNS:*.eggformr.cf, DNS:*.fanideae.xyz, DNS:*.gottateens.com, DNS:*.ivptvariance.ml, DNS:*.jeffreyscottharris.co, DNS:*.jeffreysharris.com, DNS:*.justlittlestars.com, DNS:*.mudwhya.cf, DNS:*.opktech.co, DNS:*.opktech.website, DNS:*.pdf-masters.cf, DNS:*.sector4.co, DNS:*.shy-cams.com, DNS:*.sirtryc.cf, DNS:*.texas86rxns.ml, DNS:*.tiny-cams.com, DNS:*.young-and-virg.in, DNS:24dose.com, DNS:callrandazzo.com, DNS:cryptly.co, DNS:dolls4fuck.com, DNS:e-cuties.ws, DNS:eggformr.cf, DNS:fanideae.xyz, DNS:gottateens.com, DNS:ivptvariance.ml, DNS:jeffreyscottharris.co, DNS:jeffreysharris.com, DNS:justlittlestars.com, DNS:mudwhya.cf, DNS:opktech.co, DNS:opktech.website, DNS:pdf-masters.cf, DNS:sector4.co, DNS:shy-cams.com, DNS:sirtryc.cf, DNS:texas86rxns.ml, DNS:tiny-cams.com, DNS:young-and-virg.in
- | Not valid before: 2017-08-16T00:00:00
- |_Not valid after: 2018-02-22T23:59:59
- Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- Device type: general purpose
- Running (JUST GUESSING): Linux 3.X|2.6.X|4.X (88%)
- OS CPE: cpe:/o:linux:linux_kernel:3.18 cpe:/o:linux:linux_kernel:2.6 cpe:/o:linux:linux_kernel:4
- Aggressive OS guesses: Linux 3.18 (88%), Linux 2.6.18 - 2.6.22 (86%), Linux 3.12 - 4.4 (85%)
- No exact OS matches for host (test conditions non-ideal).
- Network Distance: 8 hops
- TRACEROUTE (using port 80/tcp)
- HOP RTT ADDRESS
- 1 112.99 ms 10.13.0.1
- 2 113.00 ms 37.187.24.252
- 3 113.00 ms 178.33.103.229
- 4 ...
- 5 117.24 ms 91.121.215.177
- 6 126.30 ms 37.187.36.214
- 7 126.29 ms 195.42.144.143
- 8 117.26 ms 104.27.188.107
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 82.68 seconds
- ######################################################################################################################################
- amap -i temp.txt
- amap v5.4 (www.thc.org/thc-amap) started at 2017-08-21 20:05:28 - APPLICATION MAPPING mode
- Protocol on 104.27.188.107:80/tcp matches http
- Protocol on 104.27.188.107:443/tcp matches http
- Protocol on 104.27.188.107:8080/tcp matches http
- Protocol on 104.27.188.107:8443/tcp matches http
- Protocol on 104.27.188.107:443/tcp matches ssl
- Protocol on 104.27.188.107:8443/tcp matches ssl
- Unidentified ports: none.
- amap v5.4 finished at 2017-08-21 20:05:33
- Hostname tiny-cams.com ISP Unknown
- Continent Unknown Flag
- US
- Country United States Country Code US
- Region Unknown Local time 21 Aug 2017 18:50 CDT
- City Unknown Latitude 37.751
- IP Address (IPv6) 2400:cb00:2048:1::681b:bc6b Longitude -97.822
- NetRange: 104.16.0.0 - 104.31.255.255
- CIDR: 104.16.0.0/12
- NetName: CLOUDFLARENET
- NetHandle: NET-104-16-0-0-1
- Parent: NET104 (NET-104-0-0-0-0)
- NetType: Direct Assignment
- OriginAS: AS13335
- Organization: Cloudflare, Inc. (CLOUD14)
- RegDate: 2014-03-28
- Updated: 2017-02-17
- Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
- Ref: https://whois.arin.net/rest/net/NET-104-16-0-0-1
- OrgName: Cloudflare, Inc.
- OrgId: CLOUD14
- Address: 101 Townsend Street
- City: San Francisco
- StateProv: CA
- PostalCode: 94107
- Country: US
- RegDate: 2010-07-09
- Updated: 2017-02-17
- Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
- Ref: https://whois.arin.net/rest/org/CLOUD14
- OrgNOCHandle: NOC11962-ARIN
- OrgNOCName: NOC
- OrgNOCPhone: +1-650-319-8930
- OrgNOCEmail: noc@cloudflare.com
- OrgNOCRef: https://whois.arin.net/rest/poc/NOC11962-ARIN
- OrgTechHandle: ADMIN2521-ARIN
- OrgTechName: Admin
- OrgTechPhone: +1-650-319-8930
- OrgTechEmail: admin@cloudflare.com
- OrgTechRef: https://whois.arin.net/rest/poc/ADMIN2521-ARIN
- OrgAbuseHandle: ABUSE2916-ARIN
- OrgAbuseName: Abuse
- OrgAbusePhone: +1-650-319-8930
- OrgAbuseEmail: abuse@cloudflare.com
- OrgAbuseRef: https://whois.arin.net/rest/poc/ABUSE2916-ARIN
- RAbuseHandle: ABUSE2916-ARIN
- RAbuseName: Abuse
- RAbusePhone: +1-650-319-8930
- RAbuseEmail: abuse@cloudflare.com
- RAbuseRef: https://whois.arin.net/rest/poc/ABUSE2916-ARIN
- RNOCHandle: NOC11962-ARIN
- RNOCName: NOC
- RNOCPhone: +1-650-319-8930
- RNOCEmail: noc@cloudflare.com
- RNOCRef: https://whois.arin.net/rest/poc/NOC11962-ARIN
- RTechHandle: ADMIN2521-ARIN
- RTechName: Admin
- RTechPhone: +1-650-319-8930
- RTechEmail: admin@cloudflare.com
- RTechRef: https://whois.arin.net/rest/poc/ADMIN2521-ARIN
- [+] Emails found:
- ------------------
- pixel-1503359231368598-web-@tiny-cams.com
- pixel-1503359236888682-web-@tiny-cams.com
- [+] Hosts found in search engines:
- ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
- [-] Resolving hostnames IPs...
- 5.45.77.42:253Dwww.tiny-cams.com
- 104.27.188.107:Www.tiny-cams.com
- 104.27.189.107:www.tiny-cams.com
- [+] Virtual hosts:
- ==================
- 5.45.77.42 www.idealo.fr
- 5.45.77.42 unrealgalls.com
- 5.45.77.42 www.teensdefloration.net
- 5.45.77.42 www.justlittlestars.com
- 5.45.77.42 justlittlestars.com
- 5.45.77.42 www.freeteenpornmovs.com
- 5.45.77.42 www.prix.net
- 104.27.188.107 www.chefsresource.com
- 104.27.188.107 www.bourin.pro
- 104.27.188.107 www.onsaitcequonveutquonsache.com
- 104.27.188.107 onsaitcequonveutquonsache.com
- 104.27.188.107 www.getprelude.net
- 104.27.188.107 thefemmeblog.com
- 104.27.188.107 gumboserum.com
- 104.27.188.107 www.youtube-me.com
- 104.27.188.107 getonthemapdentist
- 104.27.188.107 www.theltwcriminallawattorneys.com
- 104.27.188.107 www.anantarahuahinwedding.com
- 104.27.188.107 www.pacificshores
- 104.27.188.107 www.pacificshoresproperties.com
- 104.27.188.107 www.foxlandharvestore
- 104.27.188.107 cougardaily.org
- 104.27.188.107 www.supereights.co.uk
- 104.27.188.107 iati.ir
- 104.27.188.107 www.potteryclassesinduluthmn.com
- 104.27.188.107 foxlandharvestore.com
- 104.27.188.107 www.itblackhats.com
- 104.27.188.107 www.iranresident.com
- 104.27.188.107 bomtan.tv
- 104.27.188.107 southamptonsailingclub
- 104.27.188.107 m.bomtan.tv
- 104.27.188.107 www.bombaytrading
- 104.27.188.107 www.quality-quails.co.uk
- 104.27.188.107 northwoodfamilydentalcenter
- 104.27.188.107 pokerbook.info
- 104.27.188.107 hostpayday.us
- 104.27.188.107 clipwud
- 104.27.188.107 ethnotronik.com
- 104.27.188.107 glassbrookdesigns
- 104.27.188.107 paradisekebabhouse
- 104.27.188.107 simracingresources
- 104.27.188.107 professionalwishwp
- 104.27.188.107 idemize.com
- 104.27.188.107 idhlaw.com
- 104.27.188.107 www.lacentrale.fr
- 104.27.188.107 holyjustice.com
- 104.27.188.107 www.zenza.com.au
- 104.27.188.107 glassbrookdesigns.com
- 104.27.188.107 rhondasnailsalon.com
- 104.27.188.107 www.rhondasnailsalon.com
- 104.27.188.107 pizzeriakosmos.com
- 104.27.188.107 ciparkfoundation.org
- 104.27.188.107 www.bombaytradingcorpn.co.in
- 104.27.188.107 eurohealthsystems.com
- 104.27.188.107 when-in-china
- 104.27.188.107 www.mizeghaza.com
- 104.27.188.107 southamptonsailingclub.com
- 104.27.188.107 when-in-china.com
- 104.27.188.107 veji-win.tk
- 104.27.188.107 tribenhphukhoa.vn
- 104.27.188.107 www.s8mgcw8.bid
- 104.27.188.107 marcoding021.com
- 104.27.188.107 www.winterbekleidung-outlet.de
- 104.27.188.107 www.museumsquartier.ch
- 104.27.188.107 partyplacestostay.com
- 104.27.188.107 bleguk.net
- 104.27.188.107 www.scienceshot
- 104.27.188.107 fotografoenproyecto.com
- 104.27.188.107 chickencottage
- 104.27.188.107 www.scienceshot.com
- 104.27.188.107 www.hotelcataguases.com.br
- 104.27.188.107 www.123flashchat.it
- 104.27.188.107 tech.justmaik.nl
- 104.27.189.107 www.onsaitcequonveutquonsache.com
- 104.27.189.107 cougardaily.org
- 104.27.189.107 onsaitcequonveutquonsache.com
- 104.27.189.107 gumboserum.com
- 104.27.189.107 foxlandharvestore
- 104.27.189.107 paradisekebabhouse
- 104.27.189.107 burritoparty
- 104.27.189.107 www.pacificshoresproperties.com
- 104.27.189.107 katebristow
- 104.27.189.107 www.getprelude.net
- 104.27.189.107 www.nearvendors
- 104.27.189.107 www.rhondasnailsalon
- 104.27.189.107 aharisolutions
- 104.27.189.107 www.quality-quails
- 104.27.189.107 sdfloat.com
- 104.27.189.107 foxlandharvestore
- 104.27.189.107 www.supereights.co.uk
- 104.27.189.107 www.draser
- 104.27.189.107 chromeincognitobutton
- 104.27.189.107 www.inquiringmindsacademy.com
- 104.27.189.107 thefemmeblog.com
- 104.27.189.107 trystemrefresh
- 104.27.189.107 northwoodfamilydentalcenter
- 104.27.189.107 airtimepaint
- 104.27.189.107 www.itblackhats
- 104.27.189.107 www.zenza.com.au
- 104.27.189.107 www.anantarahuahinwedding.com
- 104.27.189.107 www.quality-quails.co.uk
- 104.27.189.107 bomtan.tv
- 104.27.189.107 ciparkfoundation.org
- 104.27.189.107 northwoodfamilydentalcenter.com
- 104.27.189.107 idhlaw.com
- 104.27.189.107 sizlers
- 104.27.189.107 iranresident.com
- 104.27.189.107 www.potteryclassesinduluthmn.com
- 104.27.189.107 m.bomtan.tv
- 104.27.189.107 glassbrookdesigns
- 104.27.189.107 Amazon.fr
- 104.27.189.107 holyjustice.com
- 104.27.189.107 glassbrookdesigns.com
- 104.27.189.107 desitalemope.com
- 104.27.189.107 eurohealthsystems.com
- 104.27.189.107 airtimepaint.co.uk
- 104.27.189.107 www.niftylifestyle.com
- 104.27.189.107 pizzeriakosmos.com
- 104.27.189.107 thebookonit.com
- 104.27.189.107 zadevelopment.xyz
- 104.27.189.107 simracingresources
- 104.27.189.107 southamptonsailingclub.com
- 104.27.189.107 www.mizeghaza.com
- 104.27.189.107 justmaik.nl
- 104.27.189.107 tribenhphukhoa.vn
- 104.27.189.107 www.youtube-me.com
- 104.27.189.107 when-in-china.com
- 104.27.189.107 www.winterbekleidung-outlet.de
- 104.27.189.107 www.sonhoeartpijamas.com.br
- 104.27.189.107 www.scienceshot
- 104.27.189.107 vozrogdeniya.com
- 104.27.189.107 marcoding021.com
- 104.27.189.107 www.neuroventasbootcamp.com
- 104.27.189.107 schickfleisig.bid
- 104.27.189.107 nakashingraphic.com
- 104.27.189.107 www.museumsquartier.ch
- 104.27.189.107 www.scienceshot.com
- 104.27.189.107 www.arystalifescience.com.co
- 104.27.189.107 www.hotelcataguases.com.br
- localhost.tiny-cams.com
- IP address #1: 127.0.0.1
- [+] warning: domain might be vulnerable to "same site" scripting (http://snipurl.com/etbcv)
- www.tiny-cams.com
- IPv6 address #1: 2400:cb00:2048:1::681b:bc6b
- IPv6 address #2: 2400:cb00:2048:1::681b:bd6b
- www.tiny-cams.com
- IP address #1: 104.27.188.107
- IP address #2: 104.27.189.107
- [+] 3 (sub)domains and 5 IP address(es) found
- ----- tiny-cams.com -----
- Host's addresses:
- __________________
- tiny-cams.com. 226 IN A 104.27.189.107
- tiny-cams.com. 226 IN A 104.27.188.107
- Wildcard detection using: audfekshbcfs
- _______________________________________
- audfekshbcfs.tiny-cams.com. 300 IN A 5.45.77.42
- !!!!!!!!!!!!!!!!!!!!!!!!!!!!
- Wildcards detected, all subdomains will point to the same IP address
- Omitting results containing 5.45.77.42.
- Maybe you are using OpenDNS servers.
- !!!!!!!!!!!!!!!!!!!!!!!!!!!!
- Name Servers:
- ______________
- jonah.ns.cloudflare.com. 37661 IN A 173.245.59.186
- ada.ns.cloudflare.com. 84883 IN A 173.245.58.54
- Mail (MX) Servers:
- ___________________
- Trying Zone Transfers and getting Bind Versions:
- _________________________________________________
- ---------------------------------------------------------------------------------------------------------------------------------------
- + Target IP: 104.27.189.107
- + Target Hostname: tiny-cams.com
- + Target Port: 80
- + Start Time: 2017-08-21 20:59:09 (GMT-4)
- ---------------------------------------------------------------------------------------------------------------------------------------
- + Server: cloudflare-nginx
- + The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
- + Uncommon header 'cf-ray' found, with contents: 3921e352c07708f0-CDG
- + The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type
- + All CGI directories 'found', use '-C none' to test none
- + Server banner has changed from 'cloudflare-nginx' to '-nginx' which may suggest a WAF, load balancer or proxy is in place
- #######################################################################################################################################
- OPDeathEathers Anonymous JTSEC full recon #13
- OPDeathEathers Anonymous JTSEC full recon #13 OPDeathEathers Anonymous JTSEC full recon #13 OPDeathEathers Anonymous JTSEC full recon #13 OPDeathEathers Anonymous JTSEC full recon #13 OPDeathEathers Anonymous JTSEC full recon #13
Add Comment
Please, Sign In to add comment