Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #######################################################################################################################################
- =======================================================================================================================================
- Hostname vtckosti.gov.sd ISP Hetzner Online GmbH
- Continent Europe Flag
- DE
- Country Germany Country Code DE
- Region Unknown Local time 23 Apr 2019 08:35 CEST
- City Unknown Postal Code Unknown
- IP Address 5.9.149.251 Latitude 51.299
- Longitude 9.491
- =======================================================================================================================================
- #######################################################################################################################################
- > vtckosti.gov.sd
- Server: 38.132.106.139
- Address: 38.132.106.139#53
- Non-authoritative answer:
- Name: vtckosti.gov.sd
- Address: 5.9.149.251
- >
- #######################################################################################################################################
- HostIP:5.9.149.251
- HostName:vtckosti.gov.sd
- Gathered Inet-whois information for 5.9.149.251
- ---------------------------------------------------------------------------------------------------------------------------------------
- inetnum: 5.9.149.224 - 5.9.149.255
- netname: HETZNER-fsn1-dc10
- descr: Hetzner Online GmbH
- descr: Datacenter fsn1-dc10
- country: DE
- admin-c: HOAC1-RIPE
- tech-c: HOAC1-RIPE
- status: ASSIGNED PA
- remarks: INFRA-AW
- mnt-by: HOS-GUN
- mnt-lower: HOS-GUN
- mnt-routes: HOS-GUN
- created: 2012-11-19T13:40:12Z
- last-modified: 2018-03-15T14:36:18Z
- source: RIPE
- role: Hetzner Online GmbH - Contact Role
- address: Hetzner Online GmbH
- address: Industriestrasse 25
- address: D-91710 Gunzenhausen
- address: Germany
- phone: +49 9831 505-0
- fax-no: +49 9831 505-3
- abuse-mailbox: abuse@hetzner.de
- remarks: *************************************************
- remarks: * For spam/abuse/security issues please contact *
- remarks: * abuse@hetzner.de, not this address. *
- remarks: * The contents of your abuse email will be *
- remarks: * forwarded directly on to our client for *
- remarks: * handling. *
- remarks: *************************************************
- remarks:
- remarks: *************************************************
- remarks: * Any questions on Peering please send to *
- remarks: * peering@hetzner.de *
- remarks: *************************************************
- org: ORG-HOA1-RIPE
- admin-c: MH375-RIPE
- tech-c: GM834-RIPE
- tech-c: SK2374-RIPE
- tech-c: TF2013-RIPE
- tech-c: MF1400-RIPE
- tech-c: SK8441-RIPE
- nic-hdl: HOAC1-RIPE
- mnt-by: HOS-GUN
- created: 2004-08-12T09:40:20Z
- last-modified: 2015-08-06T09:39:14Z
- source: RIPE # Filtered
- % Information related to '5.9.0.0/16AS24940'
- route: 5.9.0.0/16
- descr: HETZNER-RZ-FKS-BLK5
- origin: AS24940
- mnt-by: HOS-GUN
- created: 2012-04-26T10:30:12Z
- last-modified: 2012-04-26T10:30:12Z
- source: RIPE
- % This query was served by the RIPE Database Query Service version 1.93.2 (BLAARKOP)
- Retrieving Netcraft.com information for vtckosti.gov.sd
- Netcraft.com Information gathered
- Gathered Subdomain information for vtckosti.gov.sd
- ---------------------------------------------------------------------------------------------------------------------------------------
- Searching Google.com:80...
- Searching Altavista.com:80...
- Found 0 possible subdomain(s) for host vtckosti.gov.sd, Searched 0 pages containing 0 results
- Gathered E-Mail information for vtckosti.gov.sd
- ---------------------------------------------------------------------------------------------------------------------------------------
- Searching Google.com:80...
- Searching Altavista.com:80...
- Found 0 E-Mail(s) for host vtckosti.gov.sd, Searched 0 pages containing 0 results
- Gathered TCP Port information for 5.9.149.251
- ---------------------------------------------------------------------------------------------------------------------------------------
- Port State
- 21/tcp open
- 53/tcp open
- 80/tcp open
- 110/tcp open
- 143/tcp open
- Portscan Finished: Scanned 150 ports, 3 ports were in state closed
- #######################################################################################################################################
- [?] Enter the target: example( http://domain.com )
- http://vtckosti.gov.sd/
- [!] IP Address : 5.9.149.251
- [!] vtckosti.gov.sd doesn't seem to use a CMS
- [+] Honeypot Probabilty: 30%
- ---------------------------------------------------------------------------------------------------------------------------------------
- [~] Trying to gather whois information for vtckosti.gov.sd
- [+] Whois information found
- [-] Unable to build response, visit https://who.is/whois/vtckosti.gov.sd
- ---------------------------------------------------------------------------------------------------------------------------------------
- PORT STATE SERVICE
- 21/tcp open ftp
- 22/tcp filtered ssh
- 23/tcp filtered telnet
- 80/tcp open http
- 110/tcp open pop3
- 143/tcp open imap
- 443/tcp open https
- 3389/tcp filtered ms-wbt-server
- Nmap done: 1 IP address (1 host up) scanned in 1.68 seconds
- ---------------------------------------------------------------------------------------------------------------------------------------
- [+] DNS Records
- ns8.mazinhost.net. (5.9.149.251) AS24940 Hetzner Online GmbH Germany
- ns2.mazinhost.com. (5.9.149.251) AS24940 Hetzner Online GmbH Germany
- ns1.mazinhost.com. (5.9.149.251) AS24940 Hetzner Online GmbH Germany
- ns7.mazinhost.net. (5.9.149.251) AS24940 Hetzner Online GmbH Germany
- [+] MX Records
- 0 (5.9.149.251) AS24940 Hetzner Online GmbH Germany
- [+] Host Records (A)
- vtckosti.gov.sdHTTP: (ns8.mazinhost.net) (5.9.149.251) AS24940 Hetzner Online GmbH Germany
- [+] TXT Records
- "v=spf1 +a +mx +ip4:5.9.149.251 ~all"
- [+] DNS Map: https://dnsdumpster.com/static/map/vtckosti.gov.sd.png
- [>] Initiating 3 intel modules
- [>] Loading Alpha module (1/3)
- [>] Beta module deployed (2/3)
- [>] Gamma module initiated (3/3)
- [+] Emails found:
- ---------------------------------------------------------------------------------------------------------------------------------------
- pixel-1556002955667379-web-@vtckosti.gov.sd
- [+] Hosts found in search engines:
- ---------------------------------------------------------------------------------------------------------------------------------------
- [-] Resolving hostnames IPs...
- 5.9.149.251:www.vtckosti.gov.sd
- [+] Virtual hosts:
- ---------------------------------------------------------------------------------------------------------------------------------------
- 5.9.149.251 hseportal.net
- 5.9.149.251 qurtobasd.com
- 5.9.149.251 iskan.sd
- 5.9.149.251 ntechsd.com
- #######################################################################################################################################
- [i] Scanning Site: http://vtckosti.gov.sd
- B A S I C I N F O
- =======================================================================================================================================
- [+] Site Title:
- [+] IP address: 5.9.149.251
- [+] Web Server: Could Not Detect
- [+] CMS: Could Not Detect
- [+] Cloudflare: Not Detected
- [+] Robots File: Could NOT Find robots.txt!
- G E O I P L O O K U P
- =======================================================================================================================================
- [i] IP Address: 5.9.149.251
- [i] Country: Germany
- [i] State:
- [i] City:
- [i] Latitude: 51.2993
- [i] Longitude: 9.491
- H T T P H E A D E R S
- =======================================================================================================================================
- [i] HTTP/1.1 200 OK
- [i] Date: Tue, 23 Apr 2019 07:10:44 GMT
- [i] X-Powered-By: PHP/7.3.1
- [i] X-UA-Compatible: IE=edge
- [i] Link: <http://vtckosti.gov.sd/index.php?rest_route=/>; rel="https://api.w.org/", <http://vtckosti.gov.sd/>; rel=shortlink
- [i] Content-Length: 233571
- [i] Content-Type: text/html; charset=UTF-8
- [i] Connection: close
- D N S L O O K U P
- =======================================================================================================================================
- vtckosti.gov.sd. 14399 IN TXT "v=spf1 +a +mx +ip4:5.9.149.251 ~all"
- vtckosti.gov.sd. 21599 IN SOA ns7.mazinhost.net. info.mazinhost.com. 2017111403 3600 7200 1209600 86400
- vtckosti.gov.sd. 21599 IN NS ns2.mazinhost.com.
- vtckosti.gov.sd. 21599 IN NS ns7.mazinhost.net.
- vtckosti.gov.sd. 21599 IN NS ns1.mazinhost.com.
- vtckosti.gov.sd. 21599 IN NS ns8.mazinhost.net.
- vtckosti.gov.sd. 14399 IN A 5.9.149.251
- vtckosti.gov.sd. 14399 IN MX 0 vtckosti.gov.sd.
- S U B N E T C A L C U L A T I O N
- =======================================================================================================================================
- Address = 5.9.149.251
- Network = 5.9.149.251 / 32
- Netmask = 255.255.255.255
- Broadcast = not needed on Point-to-Point links
- Wildcard Mask = 0.0.0.0
- Hosts Bits = 0
- Max. Hosts = 1 (2^0 - 0)
- Host Range = { 5.9.149.251 - 5.9.149.251 }
- N M A P P O R T S C A N
- =======================================================================================================================================
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-04-23 07:10 UTC
- Nmap scan report for vtckosti.gov.sd (5.9.149.251)
- Host is up (0.082s latency).
- rDNS record for 5.9.149.251: ns8.mazinhost.net
- PORT STATE SERVICE
- 21/tcp open ftp
- 22/tcp filtered ssh
- 23/tcp filtered telnet
- 80/tcp open http
- 110/tcp open pop3
- 143/tcp open imap
- 443/tcp open https
- 3389/tcp filtered ms-wbt-server
- Nmap done: 1 IP address (1 host up) scanned in 1.93 seconds
- #######################################################################################################################################
- Enter Address Website = 5.9.149.251
- Reversing IP With HackTarget '5.9.149.251'
- ---------------------------------------------------------------------------------------------------------------------------------------
- [+] 5.9.149.251
- [+] abanostrading.com
- [+] abuamna.com
- [+] acdenorthafrica.org
- [+] advancedarrbian.com
- [+] africasoft.net
- [+] agropowergroup.com
- [+] ahmedsalihgroup.com
- [+] aihlawfirm.com
- [+] ajax-developer.com
- [+] akhhospital.com
- [+] akmal-sd.com
- [+] alfagroupsd.com
- [+] alfaisal-ft.com
- [+] alfuttiam-mining.com
- [+] alhaffary.com
- [+] alhasan-ic.com
- [+] alidros.com
- [+] aljazeera-agency.com
- [+] aljumhoria.net
- [+] alkhobaib.com
- [+] almamlaka-eng.com
- [+] alnasr-sd.com
- [+] alsahl-alakhdar.com
- [+] altasamoh.com
- [+] al-baylasan.com
- [+] amanabiz.com
- [+] amarouse.com
- [+] amazon4tech.com
- [+] ameeralata.com
- [+] ammtechsd.com
- [+] anniatour.com
- [+] api.filettoapp.com
- [+] api.tbeebk.com
- [+] apk.tbeebk.com
- [+] aptech-sudan.com
- [+] arkan-advanced.com
- [+] asap-travel.com
- [+] ataaat.com
- [+] autodiscover.amarouse.com
- [+] autodiscover.filettoapp.com
- [+] autodiscover.filetto.sd
- [+] autodiscover.gafe.gov.sd
- [+] autodiscover.hadeeltrading.com
- [+] autodiscover.layerone.com.sd
- [+] autodiscover.maallcomgroup.com
- [+] autodiscover.manahgsudan.com
- [+] autodiscover.manahg.edu.sd
- [+] autodiscover.mtowngroup.com
- [+] autodiscover.reddplussd.org
- [+] autodiscover.syaratti.com
- [+] autodiscover.tagheez.com
- [+] autodiscover.tbeebk.com
- [+] autodiscover.almamlaka-eng.com
- [+] autodiscover.medicorp-sd.com
- [+] autodiscover.trainsmart-sd.com
- [+] autodiscover.valerie-it.com
- [+] avinova.net
- [+] biolinemed.com
- [+] biznessmap.com
- [+] blackgoldlog.com
- [+] bluetree-sd.com
- [+] britishaccreditationsudan.org
- [+] burganengineering.com
- [+] cac-sa.com
- [+] castle-sd.com
- [+] chartersd.com
- [+] cic.edu.sd
- [+] clessies.com
- [+] clinic.tbeebk.com
- [+] conductorengineering.com
- [+] connectit-sd.com
- [+] control.tbeebk.com
- [+] copeninvestment.com
- [+] cpanel.amarouse.com
- [+] cpanel.copeninvestment.com
- [+] cpanel.filettoapp.com
- [+] cpanel.gafe.gov.sd
- [+] cpanel.hadeeltrading.com
- [+] cpanel.layerone.com.sd
- [+] cpanel.maallcomgroup.com
- [+] cpanel.manahgsudan.com
- [+] cpanel.manahg.edu.sd
- [+] cpanel.mazinhost.com
- [+] cpanel.mtowngroup.com
- [+] cpanel.reddplussd.org
- [+] cpanel.shahdtourismsudan.com
- [+] cpanel.syaratti.com
- [+] cpanel.tagheez.com
- [+] cpanel.tbeebk.com
- [+] cpanel.almamlaka-eng.com
- [+] cpanel.ihc-edu.com
- [+] cpanel.medicorp-sd.com
- [+] cpanel.trainsmart-sd.com
- [+] cpanel.valerie-it.com
- [+] csrtahmedgasim.com
- [+] damlakhi.com
- [+] daralhanan.org
- [+] dark-apple.com
- [+] dashboard.tbeebk.com
- [+] davinciclinics.com
- [+] dawadesigns.com
- [+] dc-808ba726616f.brqsms.com
- [+] dms-sd.com
- [+] doctors.tbeebk.com
- [+] download.tbeebk.com
- [+] drsatti.org
- [+] dynamic.express
- [+] ebsostech.com
- [+] elafsd.com
- [+] elbayti.com
- [+] elizdehar.com
- [+] elnafieconsultancy.com
- [+] elrmaya.com
- [+] enjazsd.com
- [+] enmaa-sd.com
- [+] env-neelain.org
- [+] eplservice.com
- [+] euphoric-sudan.com
- [+] fabienne-france.com
- [+] faimoninvest.com
- [+] familybank.sd
- [+] fast-factor.com
- [+] fbs-sd.com
- [+] filetto.sd
- [+] filettoapp.com
- [+] flyalsomor.com
- [+] foodnetsd.com
- [+] fpdo-sd.org
- [+] fstcafrica.com
- [+] gafe.com.gafe.gov.sd
- [+] gafe.gov.sd
- [+] gasmenz.com
- [+] geneva-international.com
- [+] genifa-cargo.com
- [+] georock-mining.com
- [+] gitafmb.com
- [+] goalmech.com
- [+] goldenlines24.com
- [+] gstc-sd.com
- [+] hadeeltrading.com
- [+] haggarforum.com
- [+] hakeim.com
- [+] halansudan.com
- [+] hardinfotech.com
- [+] hash.sd
- [+] hospital.tbeebk.com
- [+] hseportal.net
- [+] humansecurityinitiativesud.org
- [+] h-i-services.net
- [+] idexads.com
- [+] ihc-edu.com
- [+] ims-sd.com
- [+] iskan.sd
- [+] ittirad.com
- [+] kaffaa.net
- [+] kaizentechco.com
- [+] kaizentech-co.com
- [+] khalid-design.com
- [+] khandgawi.net
- [+] khoromernational.com
- [+] kibfsudan.gov.sd
- [+] kinzoco.com
- [+] kourbaj.com
- [+] krikab.com
- [+] layerone.com.sd
- [+] legendtornado.net
- [+] limaaviationgroup.com
- [+] linebaynoonah.com
- [+] lynx-ins.net
- [+] maallcomgroup.com
- [+] maksudan.com
- [+] maliktco.com
- [+] manahg.edu.sd
- [+] manahgsudan.com
- [+] manhttan-co.com
- [+] marij-sd.com
- [+] massaie.com
- [+] massajed.com
- [+] matabmedical.com
- [+] matrixco24.com
- [+] mazinhost.com
- [+] mazin-mazin.com
- [+] meastaralliance.com
- [+] medicorp-sd.com
- [+] member.snrec.sd
- [+] mepco-sd.com
- [+] mkmbhs.com
- [+] mmacpanel.neelain.edu.sd
- [+] mmmp1.neelaincourses.com
- [+] mnd-soft.com
- [+] molar.sd
- [+] monitor-is.com
- [+] mos5-tel.com
- [+] mosabfaisal.com
- [+] msd-oil.com
- [+] mtowngroup.com
- [+] myapp.tbeebk.com
- [+] myenginesd.com
- [+] myengine-sd.com
- [+] mykaf.com
- [+] nadaelazhar.org
- [+] nasmoltd.com
- [+] nawayipm.com
- [+] nbnstone.com
- [+] ndct24.com
- [+] neelain.edu.sd
- [+] neelaincourses.com
- [+] netrixti.com
- [+] nge.sd
- [+] nhegmedical.com
- [+] ns1.mazinhost.com
- [+] ns2.mazinhost.com
- [+] ns3.mazinhost.com
- [+] ns4.mazinhost.com
- [+] ns8.mazinhost.net
- [+] nubianstone.com
- [+] omdasalih.com
- [+] opticallightsd.com
- [+] ordercode.net
- [+] osama-consultancy.com
- [+] outlook.office.ittirad.com
- [+] pay.amarouse.com
- [+] pegasus-solutions.net
- [+] petrodaf.com
- [+] petronour.com
- [+] phc-ca.com
- [+] pmb-shaddad.com
- [+] prestige-sd.com
- [+] prettybase.com
- [+] primaveratc.com
- [+] prosudan.com
- [+] qalaa.net
- [+] qurtobasd.com
- [+] rahtak.sd
- [+] raidantravel1.com
- [+] ralldesing.com
- [+] rasmasd.com
- [+] rcdosd.org
- [+] reddplussd.org
- [+] remaxscientific.com
- [+] reyada.org
- [+] roadmap-group.net
- [+] safariflat.com
- [+] saffanacomplex.com
- [+] sahelsudan.org
- [+] salamall.com
- [+] samiagallabi.com
- [+] sanatechnology.ae
- [+] sapath.org
- [+] saudi-business.net
- [+] saudi-pos.com
- [+] sddeveloper.com
- [+] secs.org.sd
- [+] shahdtourismsudan.com
- [+] sheikhelsadig.com
- [+] sigmaelectric.net
- [+] smartvision-sd.com
- [+] smes-reg.net
- [+] snrec.sd
- [+] sonosudan.com
- [+] sounion.org
- [+] spectrapacks.com
- [+] sse-sudan.com
- [+] storesd.com
- [+] stream4cs.com
- [+] subulint.net
- [+] sudabase.com
- [+] sudafoam.com
- [+] sudandiy.com
- [+] sudaneselawfirm.com
- [+] sudani-business.com
- [+] sudansoe.org
- [+] syaratti.com
- [+] tadai.org
- [+] tagheez.com
- [+] tbeebk.com
- [+] tele-power.net
- [+] test.tbeebk.com
- [+] toams-sd.com
- [+] trainsmart-sd.com
- [+] tumbus-tours.com
- [+] twinsabujbal.com
- [+] uba-aviation.com
- [+] unorbit.com
- [+] valentina-sd.com
- [+] valerie-it.com
- [+] vitalmulti.com
- [+] webdisk.amarouse.com
- [+] webdisk.copeninvestment.com
- [+] webdisk.filettoapp.com
- [+] webdisk.filetto.sd
- [+] webdisk.gafe.gov.sd
- [+] webdisk.hadeeltrading.com
- [+] webdisk.layerone.com.sd
- [+] webdisk.manahgsudan.com
- [+] webdisk.manahg.edu.sd
- [+] webdisk.mtowngroup.com
- [+] webdisk.reddplussd.org
- [+] webdisk.shahdtourismsudan.com
- [+] webdisk.tagheez.com
- [+] webdisk.tbeebk.com
- [+] webdisk.almamlaka-eng.com
- [+] webdisk.ihc-edu.com
- [+] webdisk.medicorp-sd.com
- [+] webdisk.trainsmart-sd.com
- [+] webdisk.valerie-it.com
- [+] webmail.aihlawfirm.com
- [+] webmail.amarouse.com
- [+] webmail.copeninvestment.com
- [+] webmail.filettoapp.com
- [+] webmail.filetto.sd
- [+] webmail.gafe.gov.sd
- [+] webmail.hadeeltrading.com
- [+] webmail.layerone.com.sd
- [+] webmail.manahgsudan.com
- [+] webmail.manahg.edu.sd
- [+] webmail.mtowngroup.com
- [+] webmail.reddplussd.org
- [+] webmail.sahelsudan.org
- [+] webmail.shahdtourismsudan.com
- [+] webmail.tagheez.com
- [+] webmail.tbeebk.com
- [+] webmail.almamlaka-eng.com
- [+] webmail.fpdo-sd.org
- [+] webmail.ihc-edu.com
- [+] webmail.medicorp-sd.com
- [+] webmail.trainsmart-sd.com
- [+] webmail.valerie-it.com
- [+] workspace.amarouse.com
- [+] wsslni.com
- [+] www.api.filettoapp.com
- [+] www.api.tbeebk.com
- [+] www.clinic.tbeebk.com
- [+] www.control.tbeebk.com
- [+] www.c.amarouse.com
- [+] www.dashboard.tbeebk.com
- [+] www.doctors.tbeebk.com
- [+] www.download.tbeebk.com
- [+] www.gafe.com.gafe.gov.sd
- [+] www.hospital.tbeebk.com
- [+] www.myapp.tbeebk.com
- [+] www.pay.amarouse.com
- [+] www.test.tbeebk.com
- [+] www.workspace.amarouse.com
- [+] yas91n.com
- [+] yazansoft.com
- [+] zakat-ens.com
- [+] zoaltech.com
- [+] zoolsoftware.com
- #######################################################################################################################################
- Reverse IP With YouGetSignal '5.9.149.251'
- ---------------------------------------------------------------------------------------------------------------------------------------
- [*] IP: 5.9.149.251
- [*] Domain: 5.9.149.251
- [*] Total Domains: 71
- [+] abumozanagt.sd
- [+] all.softportal.com
- [+] almohajreen.org
- [+] alsafwaa.edu.sd
- [+] articles.softportal.com
- [+] artmoney.softportal.com
- [+] autoelectodiagno.com
- [+] chemax.softportal.com
- [+] dle.softportal.com
- [+] download.softportal.com
- [+] elbayti.com
- [+] exinfo.gov.sd
- [+] file-subjects.com
- [+] gafe.gov.sd
- [+] games.softportal.com
- [+] haehd.org
- [+] haggarforum.com
- [+] hmwsudan.com
- [+] iskan.sd
- [+] k-lite.softportal.com
- [+] kaspersky.softportal.com
- [+] khandgawi.net
- [+] kibfsudan.gov.sd
- [+] kotc.edu.sd
- [+] m.softportal.com
- [+] makkawigroup.com
- [+] manahg.edu.sd
- [+] mazinhost.com
- [+] mepmentor.com
- [+] mgnetsd.com
- [+] mininfo.gov.sd
- [+] neelain.edu.sd
- [+] neelaincourses.com
- [+] news.softportal.com
- [+] nhegmedical.com
- [+] ns8.mazinhost.net
- [+] oiupharm.com
- [+] opera.softportal.com
- [+] pmb-shaddad.com
- [+] qip.softportal.com
- [+] rasmasd.com
- [+] rcdosd.org
- [+] reyada.org
- [+] rsailalnoor.com
- [+] salamall.com
- [+] sandoraa.com
- [+] sctdtraining.com
- [+] skype.softportal.com
- [+] snbc.gov.sd
- [+] softportal.com
- [+] sudabase.com
- [+] sudamall.sd
- [+] uba-aviation.com
- [+] vkontakte.softportal.com
- [+] vtckosti.gov.sd
- [+] wadgraino.net
- [+] www.alsalama.sd
- [+] www.elbayti.com
- [+] www.fatahosoft.com
- [+] www.ihubkhartoum.com
- [+] www.iskan.sd
- [+] www.manahg.edu.sd
- [+] www.monitor-is.com
- [+] www.neelain.edu.sd
- [+] www.pmb-shaddad.com
- [+] www.rsailalnoor.com
- [+] www.sahelsudan.org
- [+] www.sapath.org
- [+] www.softportal.com
- [+] www.visionaag.com
- [+] www.wadgraino.net
- #######################################################################################################################################
- Geo IP Lookup '5.9.149.251'
- ---------------------------------------------------------------------------------------------------------------------------------------
- [+] IP Address: 5.9.149.251
- [+] Country: Germany
- [+] State:
- [+] City:
- [+] Latitude: 51.2993
- [+] Longitude: 9.491
- #######################################################################################################################################
- Show HTTP Header '5.9.149.251'
- ---------------------------------------------------------------------------------------------------------------------------------------
- [+] HTTP/1.1 200 OK
- [+] Date: Tue, 23 Apr 2019 07:13:39 GMT
- [+] Server: Apache
- [+] Last-Modified: Tue, 07 Aug 2018 09:11:39 GMT
- [+] Accept-Ranges: bytes
- [+] Content-Length: 163
- [+] Content-Type: text/html
- #######################################################################################################################################
- Port Scan '5.9.149.251'
- ---------------------------------------------------------------------------------------------------------------------------------------
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-04-23 07:13 UTC
- Nmap scan report for ns8.mazinhost.net (5.9.149.251)
- Host is up (0.083s latency).
- PORT STATE SERVICE
- 21/tcp open ftp
- 22/tcp filtered ssh
- 23/tcp filtered telnet
- 80/tcp open http
- 110/tcp open pop3
- 143/tcp open imap
- 443/tcp open https
- 3389/tcp filtered ms-wbt-server
- Nmap done: 1 IP address (1 host up) scanned in 1.50 seconds
- #######################################################################################################################################
- Traceroute '5.9.149.251'
- ---------------------------------------------------------------------------------------------------------------------------------------
- Start: 2019-04-23T07:13:45+0000
- HOST: web01 Loss% Snt Last Avg Best Wrst StDev
- 1.|-- 45.79.12.202 0.0% 3 0.8 1.2 0.8 1.6 0.4
- 2.|-- 45.79.12.6 0.0% 3 0.6 3.1 0.5 8.3 4.5
- 3.|-- dls-b22-link.telia.net 0.0% 3 1.7 1.4 0.9 1.7 0.5
- 4.|-- atl-b22-link.telia.net 0.0% 3 18.8 19.1 18.8 19.5 0.4
- 5.|-- ash-bb3-link.telia.net 0.0% 3 31.1 30.6 30.0 31.1 0.5
- 6.|-- prs-bb4-link.telia.net 0.0% 3 108.6 111.5 107.1 118.9 6.4
- 7.|-- ffm-bb4-link.telia.net 0.0% 3 119.7 119.8 119.7 119.9 0.1
- 8.|-- ffm-b4-link.telia.net 0.0% 3 129.1 131.0 129.1 134.8 3.3
- 9.|-- hetzner-ic-326013-ffm-b4.c.telia.net 0.0% 3 129.6 129.5 129.3 129.6 0.1
- 10.|-- core24.fsn1.hetzner.com 0.0% 3 134.5 134.4 134.2 134.5 0.2
- 11.|-- ex9k1.dc10.fsn1.hetzner.com 0.0% 3 135.2 135.0 134.9 135.2 0.2
- 12.|-- static.234.149.9.5.clients.your-server.de 0.0% 3 135.0 135.5 135.0 136.4 0.8
- 13.|-- ns8.mazinhost.net 0.0% 3 134.3 134.2 134.1 134.3 0.1
- #######################################################################################################################################
- Ping '5.9.149.251'
- ---------------------------------------------------------------------------------------------------------------------------------------
- Starting Nping 0.7.70 ( https://nmap.org/nping ) at 2019-04-23 07:14 UTC
- SENT (0.0028s) ICMP [104.237.144.6 > 5.9.149.251 Echo request (type=8/code=0) id=35899 seq=1] IP [ttl=64 id=3868 iplen=28 ]
- RCVD (0.2038s) ICMP [5.9.149.251 > 104.237.144.6 Echo reply (type=0/code=0) id=35899 seq=1] IP [ttl=55 id=28169 iplen=28 ]
- SENT (1.0031s) ICMP [104.237.144.6 > 5.9.149.251 Echo request (type=8/code=0) id=35899 seq=3] IP [ttl=64 id=3868 iplen=28 ]
- RCVD (1.2230s) ICMP [5.9.149.251 > 104.237.144.6 Echo reply (type=0/code=0) id=35899 seq=3] IP [ttl=55 id=28170 iplen=28 ]
- SENT (2.0041s) ICMP [104.237.144.6 > 5.9.149.251 Echo request (type=8/code=0) id=35899 seq=3] IP [ttl=64 id=3868 iplen=28 ]
- RCVD (2.2430s) ICMP [5.9.149.251 > 104.237.144.6 Echo reply (type=0/code=0) id=35899 seq=3] IP [ttl=55 id=28171 iplen=28 ]
- SENT (3.0060s) ICMP [104.237.144.6 > 5.9.149.251 Echo request (type=8/code=0) id=35899 seq=4] IP [ttl=64 id=3868 iplen=28 ]
- RCVD (3.2630s) ICMP [5.9.149.251 > 104.237.144.6 Echo reply (type=0/code=0) id=35899 seq=4] IP [ttl=55 id=28172 iplen=28 ]
- Max rtt: 257.076ms | Min rtt: 201.009ms | Avg rtt: 229.211ms
- Raw packets sent: 4 (112B) | Rcvd: 4 (184B) | Lost: 0 (0.00%)
- Nping done: 1 IP address pinged in 3.26 seconds
- #######################################################################################################################################
- ; <<>> DiG 9.11.5-P4-1-Debian <<>> vtckosti.gov.sd
- ;; global options: +cmd
- ;; Got answer:
- ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 21737
- ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
- ;; OPT PSEUDOSECTION:
- ; EDNS: version: 0, flags:; udp: 4096
- ;; QUESTION SECTION:
- ;vtckosti.gov.sd. IN A
- ;; ANSWER SECTION:
- vtckosti.gov.sd. 11212 IN A 5.9.149.251
- ;; Query time: 120 msec
- ;; SERVER: 185.93.180.131#53(185.93.180.131)
- ;; WHEN: mar avr 23 06:47:04 EDT 2019
- ;; MSG SIZE rcvd: 60
- #######################################################################################################################################
- ; <<>> DiG 9.11.5-P4-1-Debian <<>> +trace vtckosti.gov.sd
- ;; global options: +cmd
- . 82278 IN NS e.root-servers.net.
- . 82278 IN NS h.root-servers.net.
- . 82278 IN NS m.root-servers.net.
- . 82278 IN NS g.root-servers.net.
- . 82278 IN NS k.root-servers.net.
- . 82278 IN NS c.root-servers.net.
- . 82278 IN NS i.root-servers.net.
- . 82278 IN NS b.root-servers.net.
- . 82278 IN NS j.root-servers.net.
- . 82278 IN NS f.root-servers.net.
- . 82278 IN NS l.root-servers.net.
- . 82278 IN NS d.root-servers.net.
- . 82278 IN NS a.root-servers.net.
- . 82278 IN RRSIG NS 8 0 518400 20190506050000 20190423040000 25266 . KXjzmSf07KW0mvIPQIh6tgQ+zTmjRCDezLK3iAO+O7YcXMdwY7773kbL fvPTXTp+5imeLrMJHS6j+n99tmaTrDFW3dWQSdxHKcEFmAe7CmwEeQUb Jk0Sug6i1mx1/ql2t8xOD3Hv0NO7TYsZc69mzK15W+xn8RVViLo4hgHE MwjVl8Sm3S1z6KqZw0gJpO/GdO/Pt1r370Aw9p7hL71Z8mQyNWDsOr9M 24uWBq2UwZdpkx3OeE4Uhj2UCrHT8iFaT70iHrfrZgez1QURtkp4SUjr 1lAAKxlV3BFlAL4akM1OWVll8rpt4ZX1nuDNVvP8ND466m3maJoGAV9K D75L3w==
- ;; Received 525 bytes from 185.93.180.131#53(185.93.180.131) in 117 ms
- sd. 172800 IN NS ans2.canar.sd.
- sd. 172800 IN NS ans1.canar.sd.
- sd. 172800 IN NS ns1.uaenic.ae.
- sd. 172800 IN NS sd.cctld.authdns.ripe.net.
- sd. 172800 IN NS ns2.uaenic.ae.
- sd. 172800 IN NS ans1.sis.sd.
- sd. 172800 IN NS ns-sd.afrinic.net.
- sd. 86400 IN NSEC se. NS RRSIG NSEC
- sd. 86400 IN RRSIG NSEC 8 1 86400 20190506050000 20190423040000 25266 . eH5pPCBMPKRyc4vv1/i90GH6j5i0L9wMWQ2K9HT0cRdnFrqHadF3gPCB YENOobZIvNtSSSXB/UKy2WGoeSbFBmDIkObYPmHEgAmC/hiX/LHgjOEm oVMnpqOACdUK8vXtcum2jSpa3tnrrhF7K9pOntHMx0S90kP70PZ4Xx9g ovIk0homGPg6x++HbnHJYFt1oJAx7Z7ScX5CpK0yCnDkRKxEMx2OhRRn 8ID1uQwz/S2cXSpN+CwtnPVA14Cre5DjYOxHyWIgAG87xZzWg0Md1YF6 3dek7TapvG4sm1k3LyRDPr3sxu6Hs0eJj7Hybbcr3uEzyFla9IqAuRxc vAc4NQ==
- ;; Received 702 bytes from 2001:503:ba3e::2:30#53(a.root-servers.net) in 51 ms
- ;; Received 72 bytes from 213.42.0.226#53(ns1.uaenic.ae) in 236 ms
- #######################################################################################################################################
- [*] Performing General Enumeration of Domain: vtckosti.gov.sd
- [-] DNSSEC is not configured for vtckosti.gov.sd
- [*] SOA ns7.mazinhost.net 5.9.149.251
- [*] NS ns8.mazinhost.net 5.9.149.251
- [*] Bind Version for 5.9.149.251 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.5
- [*] NS ns7.mazinhost.net 5.9.149.251
- [*] Bind Version for 5.9.149.251 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.5
- [*] MX vtckosti.gov.sd 5.9.149.251
- [*] A vtckosti.gov.sd 5.9.149.251
- [*] TXT vtckosti.gov.sd v=spf1 +a +mx +ip4:5.9.149.251 ~all
- [*] Enumerating SRV Records
- [*] SRV _caldav._tcp.vtckosti.gov.sd ns8.mazinhost.net 5.9.149.251 2079 0
- [*] SRV _caldavs._tcp.vtckosti.gov.sd ns8.mazinhost.net 5.9.149.251 2080 0
- [*] SRV _carddavs._tcp.vtckosti.gov.sd ns8.mazinhost.net 5.9.149.251 2080 0
- [*] SRV _carddav._tcp.vtckosti.gov.sd ns8.mazinhost.net 5.9.149.251 2079 0
- [*] SRV _autodiscover._tcp.vtckosti.gov.sd cpanelemaildiscovery.cpanel.net 208.74.123.37 443 0
- [*] SRV _autodiscover._tcp.vtckosti.gov.sd cpanelemaildiscovery.cpanel.net 208.74.120.196 443 0
- [+] 6 Records Found
- #######################################################################################################################################
- [*] Processing domain vtckosti.gov.sd
- [*] Using system resolvers ['185.93.180.131', '194.187.251.67', '38.132.106.139', '192.168.0.1', '2001:18c0:121:6900:724f:b8ff:fefd:5b6a']
- [+] Getting nameservers
- 5.9.149.251 - ns8.mazinhost.net
- 5.9.149.251 - ns7.mazinhost.net
- [-] Zone transfer failed
- [+] TXT records found
- "v=spf1 +a +mx +ip4:5.9.149.251 ~all"
- [+] MX records found, added to target list
- 0 vtckosti.gov.sd.
- [*] Scanning vtckosti.gov.sd for A records
- 5.9.149.251 - vtckosti.gov.sd
- 5.9.149.251 - autodiscover.vtckosti.gov.sd
- 5.9.149.251 - autoconfig.vtckosti.gov.sd
- 5.9.149.251 - cpanel.vtckosti.gov.sd
- 5.9.149.251 - ftp.vtckosti.gov.sd
- 5.9.149.251 - mail.vtckosti.gov.sd
- 5.9.149.251 - webdisk.vtckosti.gov.sd
- 5.9.149.251 - webmail.vtckosti.gov.sd
- 5.9.149.251 - whm.vtckosti.gov.sd
- 5.9.149.251 - www.vtckosti.gov.sd #######################################################################################################################################
- dnsenum VERSION:1.2.4
- ----- vtckosti.gov.sd -----
- Host's addresses:
- __________________
- vtckosti.gov.sd. 14400 IN A 5.9.149.251
- Name Servers:
- ______________
- ns7.mazinhost.net. 9323 IN A 5.9.149.251
- ns8.mazinhost.net. 11093 IN A 5.9.149.251
- ns1.mazinhost.com. 300 IN A 5.9.149.251
- ns2.mazinhost.com. 300 IN A 5.9.149.251
- Mail (MX) Servers:
- ___________________
- vtckosti.gov.sd. 14399 IN A 5.9.149.251
- Trying Zone Transfers and getting Bind Versions:
- _________________________________________________
- Trying Zone Transfer for vtckosti.gov.sd on ns7.mazinhost.net ...
- Trying Zone Transfer for vtckosti.gov.sd on ns8.mazinhost.net ...
- Trying Zone Transfer for vtckosti.gov.sd on ns1.mazinhost.com ...
- Trying Zone Transfer for vtckosti.gov.sd on ns2.mazinhost.com ...
- brute force file not specified, bay.
- #######################################################################################################################################
- ____ _ _ _ _ _____
- / ___| _ _| |__ | (_)___| |_|___ / _ __
- \___ \| | | | '_ \| | / __| __| |_ \| '__|
- ___) | |_| | |_) | | \__ \ |_ ___) | |
- |____/ \__,_|_.__/|_|_|___/\__|____/|_|
- # Coded By Ahmed Aboul-Ela - @aboul3la
- [-] Enumerating subdomains now for vtckosti.gov.sd
- [-] verbosity is enabled, will show the subdomains results in realtime
- [-] Searching now in Baidu..
- [-] Searching now in Yahoo..
- [-] Searching now in Google..
- [-] Searching now in Bing..
- [-] Searching now in Ask..
- [-] Searching now in Netcraft..
- [-] Searching now in DNSdumpster..
- [-] Searching now in Virustotal..
- [-] Searching now in ThreatCrowd..
- [-] Searching now in SSL Certificates..
- [-] Searching now in PassiveDNS..
- Virustotal: www.vtckosti.gov.sd
- HTTPSConnectionPool(host='dnsdumpster.com', port=443): Read timed out. (read timeout=25)
- [-] Saving results to file: /usr/share/sniper/loot//domains/domains-vtckosti.gov.sd.txt
- [-] Total Unique Subdomains Found: 1
- www.vtckosti.gov.sd
- #######################################################################################################################################
- ===============================================
- -=Subfinder v1.1.3 github.com/subfinder/subfinder
- ===============================================
- Running Source: Ask
- Running Source: Archive.is
- Running Source: Baidu
- Running Source: Bing
- Running Source: CertDB
- Running Source: CertificateTransparency
- Running Source: Certspotter
- Running Source: Commoncrawl
- Running Source: Crt.sh
- Running Source: Dnsdb
- Running Source: DNSDumpster
- Running Source: DNSTable
- Running Source: Dogpile
- Running Source: Exalead
- Running Source: Findsubdomains
- Running Source: Googleter
- Running Source: Hackertarget
- Running Source: Ipv4Info
- Running Source: PTRArchive
- Running Source: Sitedossier
- Running Source: Threatcrowd
- Running Source: ThreatMiner
- Running Source: WaybackArchive
- Running Source: Yahoo
- Running enumeration on vtckosti.gov.sd
- dnsdb: Unexpected return status 503
- ipv4info: <nil>
- dogpile: Get https://www.dogpile.com/search/web?q=vtckosti.gov.sd&qsi=1: EOF
- waybackarchive: parse http://web.archive.org/cdx/search/cdx?url=*.vtckosti.gov.sd/*&output=json&fl=original&collapse=urlkey&page=: net/url: invalid control character in URL
- archiveis: Get https://archive.fo/*.vtckosti.gov.sd: http: server gave HTTP response to HTTPS client
- Starting Bruteforcing of vtckosti.gov.sd with 9985 words
- Total 9 Unique subdomains found for vtckosti.gov.sd
- .vtckosti.gov.sd
- autoconfig.vtckosti.gov.sd
- autodiscover.vtckosti.gov.sd
- ftp.vtckosti.gov.sd
- mail.vtckosti.gov.sd
- webdisk.vtckosti.gov.sd
- webmail.vtckosti.gov.sd
- whm.vtckosti.gov.sd
- www.vtckosti.gov.sd
- #######################################################################################################################################
- [*] Processing domain vtckosti.gov.sd
- [*] Using system resolvers ['185.93.180.131', '194.187.251.67', '38.132.106.139', '192.168.0.1', '2001:18c0:121:6900:724f:b8ff:fefd:5b6a']
- [+] Getting nameservers
- 5.9.149.251 - ns8.mazinhost.net
- 5.9.149.251 - ns2.mazinhost.com
- 5.9.149.251 - ns1.mazinhost.com
- 5.9.149.251 - ns7.mazinhost.net
- [-] Zone transfer failed
- [+] TXT records found
- "v=spf1 +a +mx +ip4:5.9.149.251 ~all"
- [+] MX records found, added to target list
- 0 vtckosti.gov.sd.
- [*] Scanning vtckosti.gov.sd for A records
- 5.9.149.251 - vtckosti.gov.sd
- 5.9.149.251 - autodiscover.vtckosti.gov.sd
- 5.9.149.251 - ftp.vtckosti.gov.sd
- 5.9.149.251 - mail.vtckosti.gov.sd
- 5.9.149.251 - webmail.vtckosti.gov.sd
- 5.9.149.251 - www.vtckosti.gov.sd
- #######################################################################################################################################
- [*] Found SPF record:
- [*] v=spf1 +a +mx +ip4:5.9.149.251 ~all
- [*] SPF record contains an All item: ~all
- [*] No DMARC record found. Looking for organizational record
- [+] No organizational DMARC record
- [+] Spoofing possible for vtckosti.gov.sd!
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-04-23 03:56 EDT
- Nmap scan report for vtckosti.gov.sd (5.9.149.251)
- Host is up (0.13s latency).
- rDNS record for 5.9.149.251: ns8.mazinhost.net
- Not shown: 458 filtered ports, 9 closed ports
- Some closed ports may be reported as filtered due to --defeat-rst-ratelimit
- PORT STATE SERVICE
- 21/tcp open ftp
- 53/tcp open domain
- 80/tcp open http
- 110/tcp open pop3
- 143/tcp open imap
- 443/tcp open https
- 587/tcp open submission
- 993/tcp open imaps
- 995/tcp open pop3s
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-04-23 03:56 EDT
- Nmap scan report for vtckosti.gov.sd (5.9.149.251)
- Host is up (0.12s latency).
- rDNS record for 5.9.149.251: ns8.mazinhost.net
- Not shown: 2 filtered ports
- PORT STATE SERVICE
- 53/udp open domain
- 67/udp open|filtered dhcps
- 68/udp open|filtered dhcpc
- 69/udp open|filtered tftp
- 88/udp open|filtered kerberos-sec
- 123/udp open|filtered ntp
- 139/udp open|filtered netbios-ssn
- 161/udp open|filtered snmp
- 162/udp open|filtered snmptrap
- 389/udp open|filtered ldap
- 520/udp open|filtered route
- 2049/udp open|filtered nfs
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-04-23 03:56 EDT
- Nmap scan report for vtckosti.gov.sd (5.9.149.251)
- Host is up (0.13s latency).
- rDNS record for 5.9.149.251: ns8.mazinhost.net
- PORT STATE SERVICE VERSION
- 21/tcp open ftp Pure-FTPd
- Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- Device type: general purpose|firewall|storage-misc|VoIP phone
- Running (JUST GUESSING): Linux 2.6.X|3.X (91%), WatchGuard Fireware 11.X (91%), Synology DiskStation Manager 5.X (90%), Grandstream embedded (85%)
- OS CPE: cpe:/o:linux:linux_kernel:2.6.32 cpe:/o:linux:linux_kernel:3.10 cpe:/o:watchguard:fireware:11.8 cpe:/o:linux:linux_kernel cpe:/a:synology:diskstation_manager:5.1 cpe:/h:grandstream:gxv3275
- Aggressive OS guesses: Linux 2.6.32 (91%), Linux 2.6.32 or 3.10 (91%), Linux 2.6.39 (91%), Linux 3.4 (91%), WatchGuard Fireware 11.8 (91%), Linux 3.1 - 3.2 (91%), Synology DiskStation Manager 5.1 (90%), Linux 3.10 (89%), Linux 2.6.32 - 2.6.39 (87%), Linux 2.6.18 - 2.6.22 (86%)
- No exact OS matches for host (test conditions non-ideal).
- Network Distance: 11 hops
- TRACEROUTE (using port 21/tcp)
- HOP RTT ADDRESS
- 1 109.81 ms 10.252.200.1
- 2 111.02 ms vlan200.bb1.par1.fr.m247.com (185.94.189.129)
- 3 119.62 ms te-5-13-0.bb1.par1.fr.m247.com (193.27.65.201)
- 4 141.62 ms te-1-2-2-0.bb1.ams2.nl.m247.com (82.102.29.40)
- 5 119.67 ms 176.10.83.5
- 6 120.44 ms amsix-gw.hetzner.de (80.249.209.55)
- 7 122.45 ms core1.fra.hetzner.com (213.239.203.157)
- 8 126.95 ms core24.fsn1.hetzner.com (213.239.229.78)
- 9 126.94 ms ex9k1.dc10.fsn1.hetzner.com (213.239.229.50)
- 10 126.97 ms static.234.149.9.5.clients.your-server.de (5.9.149.234)
- 11 125.07 ms ns8.mazinhost.net (5.9.149.251)
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-04-23 04:07 EDT
- Nmap scan report for vtckosti.gov.sd (5.9.149.251)
- Host is up (0.13s latency).
- rDNS record for 5.9.149.251: ns8.mazinhost.net
- PORT STATE SERVICE VERSION
- 53/tcp open domain ISC BIND 9.8.2rc1 (RedHat Enterprise Linux 6)
- |_dns-fuzz: Server didn't response to our probe, can't fuzz
- | dns-nsec-enum:
- |_ No NSEC records found
- | dns-nsec3-enum:
- |_ DNSSEC NSEC3 not supported
- | dns-nsid:
- |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.5
- Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- Device type: general purpose|firewall|storage-misc|VoIP phone
- Running (JUST GUESSING): Linux 2.6.X|3.X (91%), WatchGuard Fireware 11.X (91%), Synology DiskStation Manager 5.X (90%), Grandstream embedded (85%)
- OS CPE: cpe:/o:linux:linux_kernel:2.6.32 cpe:/o:linux:linux_kernel:3.10 cpe:/o:watchguard:fireware:11.8 cpe:/o:linux:linux_kernel cpe:/a:synology:diskstation_manager:5.1 cpe:/h:grandstream:gxv3275
- Aggressive OS guesses: Linux 2.6.32 (91%), Linux 3.10 (91%), Linux 3.4 (91%), WatchGuard Fireware 11.8 (91%), Linux 3.1 - 3.2 (91%), Synology DiskStation Manager 5.1 (90%), Linux 2.6.32 or 3.10 (89%), Linux 2.6.39 (89%), Linux 2.6.32 - 2.6.39 (87%), Linux 2.6.18 - 2.6.22 (86%)
- No exact OS matches for host (test conditions non-ideal).
- Network Distance: 11 hops
- Service Info: OS: Linux; CPE: cpe:/o:redhat:enterprise_linux:6
- Host script results:
- | dns-brute:
- |_ DNS Brute-force hostnames: No results.
- TRACEROUTE (using port 53/tcp)
- HOP RTT ADDRESS
- 1 110.07 ms 10.252.200.1
- 2 110.12 ms vlan200.bb1.par1.fr.m247.com (185.94.189.129)
- 3 138.74 ms te-5-13-0.bb1.par1.fr.m247.com (193.27.65.201)
- 4 119.73 ms te-1-2-2-0.bb1.ams2.nl.m247.com (82.102.29.40)
- 5 119.79 ms 176.10.83.5
- 6 121.49 ms amsix-gw.hetzner.de (80.249.209.55)
- 7 122.53 ms core1.fra.hetzner.com (213.239.203.157)
- 8 126.70 ms core23.fsn1.hetzner.com (213.239.203.154)
- 9 126.76 ms ex9k1.dc10.fsn1.hetzner.com (213.239.229.54)
- 10 126.84 ms static.234.149.9.5.clients.your-server.de (5.9.149.234)
- 11 124.94 ms ns8.mazinhost.net (5.9.149.251)
- #######################################################################################################################################
- wig - WebApp Information Gatherer
- Scanning http://vtckosti.gov.sd...
- _______________________________ SITE INFO ________________________________
- IP Title
- 5.9.149.251 مركز التدريب المهني كوستي – مركز المهن الحياتية ف
- ________________________________ VERSION _________________________________
- Name Versions Type
- WordPress 5.1.1 CMS
- PHP 7.3.1 Platform
- ______________________________ INTERESTING _______________________________
- URL Note Type
- /readme.html Readme file Interesting
- /install.php Installation file Interesting
- /test.php Test file Interesting
- /test.htm Test file Interesting
- _________________________________ TOOLS __________________________________
- Name Link Software
- wpscan https://github.com/wpscanteam/wpscan WordPress
- CMSmap https://github.com/Dionach/CMSmap WordPress
- __________________________________________________________________________
- Time: 718.1 sec Urls: 326 Fingerprints: 40401
- #######################################################################################################################################
- HTTP/1.1 503 Service Unavailable
- Mime-Version: 1.0
- Date: Tue, 23 Apr 2019 08:22:23 GMT
- Content-Type: text/html;charset=utf-8
- Content-Length: 3549
- X-Squid-Error: ERR_CONNECT_FAIL 110
- Vary: Accept-Language
- Content-Language: en
- Connection: keep-alive
- HTTP/1.1 503 Service Unavailable
- Mime-Version: 1.0
- Date: Tue, 23 Apr 2019 08:23:23 GMT
- Content-Type: text/html;charset=utf-8
- Content-Length: 3549
- X-Squid-Error: ERR_CONNECT_FAIL 110
- Vary: Accept-Language
- Content-Language: en
- Connection: keep-alive
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-04-23 04:23 EDT
- Nmap scan report for vtckosti.gov.sd (5.9.149.251)
- Host is up (0.11s latency).
- rDNS record for 5.9.149.251: ns8.mazinhost.net
- PORT STATE SERVICE VERSION
- 110/tcp open pop3 Dovecot pop3d
- | pop3-brute:
- | Accounts: No valid accounts found
- | Statistics: Performed 45 guesses in 40 seconds, average tps: 1.1
- |_ ERROR: Failed to connect.
- |_pop3-capabilities: CAPA SASL(PLAIN LOGIN) RESP-CODES USER STLS TOP AUTH-RESP-CODE PIPELINING UIDL
- Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- Device type: general purpose|storage-misc|firewall|VoIP phone
- Running (JUST GUESSING): Linux 2.6.X|3.X (91%), Synology DiskStation Manager 5.X (90%), WatchGuard Fireware 11.X (89%), Grandstream embedded (85%)
- OS CPE: cpe:/o:linux:linux_kernel:2.6.32 cpe:/o:linux:linux_kernel:3.10 cpe:/o:linux:linux_kernel cpe:/a:synology:diskstation_manager:5.1 cpe:/o:watchguard:fireware:11.8 cpe:/h:grandstream:gxv3275
- Aggressive OS guesses: Linux 2.6.32 (91%), Linux 2.6.39 (91%), Linux 3.10 (91%), Linux 3.4 (91%), Linux 3.1 - 3.2 (91%), Synology DiskStation Manager 5.1 (90%), Linux 2.6.32 or 3.10 (89%), WatchGuard Fireware 11.8 (89%), Linux 2.6.32 - 2.6.39 (87%), Linux 2.6.18 - 2.6.22 (86%)
- No exact OS matches for host (test conditions non-ideal).
- Network Distance: 1 hop
- TRACEROUTE (using port 443/tcp)
- HOP RTT ADDRESS
- 1 109.27 ms ns8.mazinhost.net (5.9.149.251)
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-04-23 04:49 EDT
- Nmap scan report for ns8.mazinhost.net (5.9.149.251)
- Host is up (0.12s latency).
- Not shown: 454 filtered ports, 14 closed ports
- Some closed ports may be reported as filtered due to --defeat-rst-ratelimit
- PORT STATE SERVICE
- 21/tcp open ftp
- 53/tcp open domain
- 80/tcp open http
- 143/tcp open imap
- 443/tcp open https
- 465/tcp open smtps
- 587/tcp open submission
- 993/tcp open imaps
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-04-23 04:49 EDT
- Nmap scan report for ns8.mazinhost.net (5.9.149.251)
- Host is up (0.11s latency).
- Not shown: 2 filtered ports
- PORT STATE SERVICE
- 53/udp open domain
- 67/udp open|filtered dhcps
- 68/udp open|filtered dhcpc
- 69/udp open|filtered tftp
- 88/udp open|filtered kerberos-sec
- 123/udp open|filtered ntp
- 139/udp open|filtered netbios-ssn
- 161/udp open|filtered snmp
- 162/udp open|filtered snmptrap
- 389/udp open|filtered ldap
- 520/udp open|filtered route
- 2049/udp open|filtered nfs
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-04-23 04:49 EDT
- Nmap scan report for ns8.mazinhost.net (5.9.149.251)
- Host is up (0.13s latency).
- PORT STATE SERVICE VERSION
- 21/tcp open ftp Pure-FTPd
- Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- Device type: general purpose|storage-misc|firewall
- Running (JUST GUESSING): Linux 2.6.X|3.X (91%), Synology DiskStation Manager 5.X (90%), WatchGuard Fireware 11.X (89%)
- OS CPE: cpe:/o:linux:linux_kernel:2.6.32 cpe:/o:linux:linux_kernel:3.10 cpe:/o:linux:linux_kernel cpe:/a:synology:diskstation_manager:5.1 cpe:/o:watchguard:fireware:11.8
- Aggressive OS guesses: Linux 2.6.32 or 3.10 (91%), Synology DiskStation Manager 5.1 (90%), Linux 2.6.32 (89%), Linux 2.6.39 (89%), WatchGuard Fireware 11.8 (89%), Linux 3.1 - 3.2 (89%), Linux 3.10 (88%), Linux 3.4 (88%), Linux 2.6.32 - 2.6.39 (87%), Linux 2.6.18 - 2.6.22 (86%)
- No exact OS matches for host (test conditions non-ideal).
- Network Distance: 11 hops
- TRACEROUTE (using port 21/tcp)
- HOP RTT ADDRESS
- 1 114.34 ms 10.252.200.1
- 2 115.25 ms vlan200.bb1.par1.fr.m247.com (185.94.189.129)
- 3 125.09 ms te-2-9-0.bb1.par1.fr.m247.com (185.206.226.108)
- 4 161.31 ms te-1-2-2-0.bb1.ams2.nl.m247.com (82.102.29.40)
- 5 123.90 ms 176.10.83.5
- 6 123.96 ms amsix-gw.hetzner.de (80.249.209.55)
- 7 120.72 ms core1.fra.hetzner.com (213.239.203.157)
- 8 125.20 ms core24.fsn1.hetzner.com (213.239.229.78)
- 9 125.24 ms ex9k1.dc10.fsn1.hetzner.com (213.239.229.54)
- 10 125.33 ms static.234.149.9.5.clients.your-server.de (5.9.149.234)
- 11 125.83 ms ns8.mazinhost.net (5.9.149.251)
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-04-23 05:01 EDT
- Nmap scan report for ns8.mazinhost.net (5.9.149.251)
- Host is up (0.13s latency).
- PORT STATE SERVICE VERSION
- 53/tcp open domain ISC BIND 9.8.2rc1 (RedHat Enterprise Linux 6)
- |_dns-fuzz: Server didn't response to our probe, can't fuzz
- | dns-nsec-enum:
- |_ No NSEC records found
- | dns-nsec3-enum:
- |_ DNSSEC NSEC3 not supported
- | dns-nsid:
- |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.5
- Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- Aggressive OS guesses: Linux 2.6.32 (92%), Linux 2.6.32 or 3.10 (92%), WatchGuard Fireware 11.8 (92%), Synology DiskStation Manager 5.1 (92%), Linux 2.6.39 (91%), Linux 3.4 (91%), Linux 3.1 - 3.2 (91%), Linux 2.6.18 - 2.6.22 (90%), Linux 3.10 (90%), Linux 2.6.32 - 2.6.39 (89%)
- No exact OS matches for host (test conditions non-ideal).
- Network Distance: 11 hops
- Service Info: OS: Linux; CPE: cpe:/o:redhat:enterprise_linux:6
- Host script results:
- | dns-brute:
- | DNS Brute-force hostnames:
- | www.mazinhost.net - 162.251.82.251
- | ns1.mazinhost.net - 95.216.109.43
- | ns2.mazinhost.net - 95.216.109.43
- | ns3.mazinhost.net - 95.216.109.43
- | smtp.mazinhost.net - 208.91.198.143
- | smtp.mazinhost.net - 208.91.199.223
- | smtp.mazinhost.net - 208.91.199.224
- |_ smtp.mazinhost.net - 208.91.199.225
- TRACEROUTE (using port 53/tcp)
- HOP RTT ADDRESS
- 1 116.07 ms 10.252.200.1
- 2 116.12 ms vlan200.bb1.par1.fr.m247.com (185.94.189.129)
- 3 155.36 ms vlan2907.bb1.par1.fr.m247.com (212.103.51.185)
- 4 168.08 ms te-1-2-2-0.bb1.ams2.nl.m247.com (82.102.29.40)
- 5 125.56 ms 176.10.83.5
- 6 121.50 ms amsix-gw.hetzner.de (80.249.209.55)
- 7 123.55 ms core1.fra.hetzner.com (213.239.203.157)
- 8 128.14 ms core23.fsn1.hetzner.com (213.239.203.154)
- 9 128.22 ms ex9k1.dc10.fsn1.hetzner.com (213.239.229.50)
- 10 128.24 ms static.234.149.9.5.clients.your-server.de (5.9.149.234)
- 11 130.26 ms ns8.mazinhost.net (5.9.149.251)
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-04-23 05:02 EDT
- Nmap scan report for ns8.mazinhost.net (5.9.149.251)
- Host is up (0.13s latency).
- PORT STATE SERVICE VERSION
- 67/udp open|filtered dhcps
- |_dhcp-discover: ERROR: Script execution failed (use -d to debug)
- Too many fingerprints match this host to give specific OS details
- Network Distance: 11 hops
- TRACEROUTE (using proto 1/icmp)
- HOP RTT ADDRESS
- 1 113.83 ms 10.252.200.1
- 2 113.87 ms vlan200.bb1.par1.fr.m247.com (185.94.189.129)
- 3 118.00 ms te-2-13-0.bb1.par1.fr.m247.com (212.103.51.189)
- 4 151.89 ms te-1-2-2-0.bb1.ams2.nl.m247.com (82.102.29.40)
- 5 117.99 ms 176.10.83.5
- 6 118.04 ms amsix-gw.hetzner.de (80.249.209.55)
- 7 121.46 ms core4.fra.hetzner.com (213.239.252.45)
- 8 128.09 ms core24.fsn1.hetzner.com (213.239.203.150)
- 9 126.15 ms ex9k1.dc10.fsn1.hetzner.com (213.239.229.54)
- 10 126.25 ms static.234.149.9.5.clients.your-server.de (5.9.149.234)
- 11 126.22 ms ns8.mazinhost.net (5.9.149.251)
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-04-23 05:03 EDT
- Nmap scan report for ns8.mazinhost.net (5.9.149.251)
- Host is up (0.13s latency).
- PORT STATE SERVICE VERSION
- 68/udp open|filtered dhcpc
- Too many fingerprints match this host to give specific OS details
- Network Distance: 11 hops
- TRACEROUTE (using proto 1/icmp)
- HOP RTT ADDRESS
- 1 109.51 ms 10.252.200.1
- 2 109.71 ms vlan200.bb1.par1.fr.m247.com (185.94.189.129)
- 3 119.10 ms te-2-13-0.bb1.par1.fr.m247.com (212.103.51.189)
- 4 119.11 ms te-1-2-2-0.bb1.ams2.nl.m247.com (82.102.29.40)
- 5 119.08 ms 176.10.83.5
- 6 119.92 ms amsix-gw.hetzner.de (80.249.209.55)
- 7 122.55 ms core4.fra.hetzner.com (213.239.252.45)
- 8 127.14 ms core24.fsn1.hetzner.com (213.239.203.150)
- 9 127.12 ms ex9k1.dc10.fsn1.hetzner.com (213.239.229.54)
- 10 127.19 ms static.234.149.9.5.clients.your-server.de (5.9.149.234)
- 11 125.55 ms ns8.mazinhost.net (5.9.149.251)
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-04-23 05:05 EDT
- Nmap scan report for ns8.mazinhost.net (5.9.149.251)
- Host is up (0.13s latency).
- PORT STATE SERVICE VERSION
- 69/udp open|filtered tftp
- Too many fingerprints match this host to give specific OS details
- Network Distance: 11 hops
- TRACEROUTE (using proto 1/icmp)
- HOP RTT ADDRESS
- 1 108.15 ms 10.252.200.1
- 2 108.34 ms vlan200.bb1.par1.fr.m247.com (185.94.189.129)
- 3 118.00 ms te-2-13-0.bb1.par1.fr.m247.com (212.103.51.189)
- 4 156.39 ms te-1-2-2-0.bb1.ams2.nl.m247.com (82.102.29.40)
- 5 117.99 ms 176.10.83.5
- 6 118.00 ms amsix-gw.hetzner.de (80.249.209.55)
- 7 120.90 ms core4.fra.hetzner.com (213.239.252.45)
- 8 125.78 ms core24.fsn1.hetzner.com (213.239.203.150)
- 9 125.77 ms ex9k1.dc10.fsn1.hetzner.com (213.239.229.54)
- 10 125.82 ms static.234.149.9.5.clients.your-server.de (5.9.149.234)
- 11 126.23 ms ns8.mazinhost.net (5.9.149.251)
- #######################################################################################################################################
- HTTP/1.1 200 OK
- Date: Tue, 23 Apr 2019 09:38:02 GMT
- Last-Modified: Tue, 07 Aug 2018 09:11:39 GMT
- Accept-Ranges: bytes
- Content-Length: 163
- Content-Type: text/html
- Connection: keep-alive
- HTTP/1.1 200 OK
- Date: Tue, 23 Apr 2019 09:38:02 GMT
- Last-Modified: Tue, 07 Aug 2018 09:11:39 GMT
- Accept-Ranges: bytes
- Content-Length: 163
- Content-Type: text/html
- Connection: keep-alive
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-04-23 05:38 EDT
- Nmap scan report for ns8.mazinhost.net (5.9.149.251)
- Host is up (0.13s latency).
- PORT STATE SERVICE VERSION
- 123/udp open|filtered ntp
- Too many fingerprints match this host to give specific OS details
- Network Distance: 11 hops
- TRACEROUTE (using proto 1/icmp)
- HOP RTT ADDRESS
- 1 111.37 ms 10.252.200.1
- 2 113.11 ms vlan200.bb1.par1.fr.m247.com (185.94.189.129)
- 3 122.93 ms te-2-13-0.bb1.par1.fr.m247.com (212.103.51.189)
- 4 122.92 ms te-1-2-2-0.bb1.ams2.nl.m247.com (82.102.29.40)
- 5 121.23 ms 176.10.83.5
- 6 122.90 ms amsix-gw.hetzner.de (80.249.209.55)
- 7 146.31 ms core4.fra.hetzner.com (213.239.252.45)
- 8 127.10 ms core24.fsn1.hetzner.com (213.239.203.150)
- 9 127.13 ms ex9k1.dc10.fsn1.hetzner.com (213.239.229.54)
- 10 127.18 ms static.234.149.9.5.clients.your-server.de (5.9.149.234)
- 11 125.27 ms ns8.mazinhost.net (5.9.149.251)
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-04-23 05:48 EDT
- NSE: Loaded 148 scripts for scanning.
- NSE: Script Pre-scanning.
- NSE: Starting runlevel 1 (of 2) scan.
- Initiating NSE at 05:48
- Completed NSE at 05:48, 0.00s elapsed
- NSE: Starting runlevel 2 (of 2) scan.
- Initiating NSE at 05:48
- Completed NSE at 05:48, 0.00s elapsed
- Initiating Ping Scan at 05:48
- Scanning 5.9.149.251 [4 ports]
- Completed Ping Scan at 05:48, 0.15s elapsed (1 total hosts)
- Initiating Parallel DNS resolution of 1 host. at 05:48
- Completed Parallel DNS resolution of 1 host. at 05:48, 0.03s elapsed
- Initiating Connect Scan at 05:48
- Scanning ns8.mazinhost.net (5.9.149.251) [65535 ports]
- Discovered open port 587/tcp on 5.9.149.251
- Discovered open port 143/tcp on 5.9.149.251
- Discovered open port 110/tcp on 5.9.149.251
- Discovered open port 995/tcp on 5.9.149.251
- Discovered open port 993/tcp on 5.9.149.251
- Discovered open port 53/tcp on 5.9.149.251
- Discovered open port 80/tcp on 5.9.149.251
- Discovered open port 443/tcp on 5.9.149.251
- Discovered open port 21/tcp on 5.9.149.251
- Increasing send delay for 5.9.149.251 from 0 to 5 due to max_successful_tryno increase to 5
- Connect Scan Timing: About 0.35% done
- Connect Scan Timing: About 0.55% done
- Increasing send delay for 5.9.149.251 from 5 to 10 due to max_successful_tryno increase to 6
- Warning: 5.9.149.251 giving up on port because retransmission cap hit (6).
- Connect Scan Timing: About 1.00% done
- Connect Scan Timing: About 1.60% done; ETC: 07:54 (2:03:59 remaining)
- Connect Scan Timing: About 2.16% done; ETC: 07:44 (1:53:58 remaining)
- Connect Scan Timing: About 2.89% done; ETC: 07:39 (1:48:00 remaining)
- Connect Scan Timing: About 3.55% done; ETC: 07:34 (1:42:25 remaining)
- Connect Scan Timing: About 5.06% done; ETC: 07:30 (1:36:52 remaining)
- Connect Scan Timing: About 7.54% done; ETC: 07:27 (1:31:37 remaining)
- Connect Scan Timing: About 10.04% done; ETC: 07:24 (1:26:38 remaining)
- Discovered open port 2087/tcp on 5.9.149.251
- Connect Scan Timing: About 13.46% done; ETC: 07:22 (1:21:44 remaining)
- Connect Scan Timing: About 18.06% done; ETC: 07:22 (1:16:59 remaining)
- Connect Scan Timing: About 22.39% done; ETC: 07:21 (1:12:10 remaining)
- Discovered open port 2083/tcp on 5.9.149.251
- Connect Scan Timing: About 27.08% done; ETC: 07:20 (1:07:30 remaining)
- Connect Scan Timing: About 31.91% done; ETC: 07:20 (1:02:52 remaining)
- Connect Scan Timing: About 37.02% done; ETC: 07:20 (0:58:12 remaining)
- Connect Scan Timing: About 41.73% done; ETC: 07:20 (0:53:34 remaining)
- Connect Scan Timing: About 46.57% done; ETC: 07:19 (0:48:58 remaining)
- Connect Scan Timing: About 51.49% done; ETC: 07:19 (0:44:21 remaining)
- Connect Scan Timing: About 56.53% done; ETC: 07:19 (0:39:46 remaining)
- Discovered open port 2096/tcp on 5.9.149.251
- Connect Scan Timing: About 61.40% done; ETC: 07:19 (0:35:11 remaining)
- Connect Scan Timing: About 66.32% done; ETC: 07:18 (0:30:35 remaining)
- Discovered open port 2095/tcp on 5.9.149.251
- Connect Scan Timing: About 71.20% done; ETC: 07:18 (0:26:02 remaining)
- Discovered open port 2082/tcp on 5.9.149.251
- Connect Scan Timing: About 76.12% done; ETC: 07:18 (0:21:29 remaining)
- Connect Scan Timing: About 81.09% done; ETC: 07:17 (0:16:57 remaining)
- Connect Scan Timing: About 86.05% done; ETC: 07:17 (0:12:27 remaining)
- Connect Scan Timing: About 91.05% done; ETC: 07:17 (0:07:58 remaining)
- Discovered open port 2077/tcp on 5.9.149.251
- Connect Scan Timing: About 96.08% done; ETC: 07:16 (0:03:29 remaining)
- Discovered open port 465/tcp on 5.9.149.251
- Completed Connect Scan at 07:18, 5415.07s elapsed (65535 total ports)
- Initiating Service scan at 07:18
- Scanning 16 services on ns8.mazinhost.net (5.9.149.251)
- Service scan Timing: About 68.75% done; ETC: 07:21 (0:01:07 remaining)
- Completed Service scan at 07:20, 155.87s elapsed (16 services on 1 host)
- Initiating OS detection (try #1) against ns8.mazinhost.net (5.9.149.251)
- Retrying OS detection (try #2) against ns8.mazinhost.net (5.9.149.251)
- Initiating Traceroute at 07:21
- Completed Traceroute at 07:21, 0.25s elapsed
- Initiating Parallel DNS resolution of 11 hosts. at 07:21
- Completed Parallel DNS resolution of 11 hosts. at 07:21, 0.37s elapsed
- NSE: Script scanning 5.9.149.251.
- NSE: Starting runlevel 1 (of 2) scan.
- Initiating NSE at 07:21
- NSE Timing: About 99.17% done; ETC: 07:21 (0:00:00 remaining)
- NSE Timing: About 99.31% done; ETC: 07:22 (0:00:00 remaining)
- NSE Timing: About 99.35% done; ETC: 07:22 (0:00:01 remaining)
- NSE Timing: About 99.40% done; ETC: 07:23 (0:00:01 remaining)
- NSE Timing: About 99.86% done; ETC: 07:23 (0:00:00 remaining)
- NSE Timing: About 99.91% done; ETC: 07:24 (0:00:00 remaining)
- NSE Timing: About 99.95% done; ETC: 07:24 (0:00:00 remaining)
- Completed NSE at 07:24, 230.61s elapsed
- NSE: Starting runlevel 2 (of 2) scan.
- Initiating NSE at 07:24
- Completed NSE at 07:24, 1.15s elapsed
- Nmap scan report for ns8.mazinhost.net (5.9.149.251)
- Host is up, received syn-ack ttl 64 (0.13s latency).
- Scanned at 2019-04-23 05:48:05 EDT for 5808s
- Not shown: 61615 filtered ports, 3904 closed ports
- Reason: 61615 no-responses and 3904 conn-refused
- PORT STATE SERVICE REASON VERSION
- 21/tcp open ftp syn-ack Pure-FTPd
- | ssl-cert: Subject: commonName=ns8.mazinhost.net/organizationalUnitName=PositiveSSL
- | Subject Alternative Name: DNS:ns8.mazinhost.net, DNS:www.ns8.mazinhost.net
- | Issuer: commonName=cPanel, Inc. Certification Authority/organizationName=cPanel, Inc./stateOrProvinceName=TX/countryName=US/localityName=Houston
- | Public Key type: rsa
- | Public Key bits: 2048
- | Signature Algorithm: sha256WithRSAEncryption
- | Not valid before: 2018-05-19T00:00:00
- | Not valid after: 2019-05-19T23:59:59
- | MD5: ebe8 f669 2a41 00c3 49f7 f4d6 605d b865
- | SHA-1: 42f1 0588 6bff d05d 2be7 f17f ec1d f54d 10ca 9a97
- | -----BEGIN CERTIFICATE-----
- | MIIGMDCCBRigAwIBAgIQA20Akq/R8L9AhfPMDTevZzANBgkqhkiG9w0BAQsFADBy
- | MQswCQYDVQQGEwJVUzELMAkGA1UECBMCVFgxEDAOBgNVBAcTB0hvdXN0b24xFTAT
- | BgNVBAoTDGNQYW5lbCwgSW5jLjEtMCsGA1UEAxMkY1BhbmVsLCBJbmMuIENlcnRp
- | ZmljYXRpb24gQXV0aG9yaXR5MB4XDTE4MDUxOTAwMDAwMFoXDTE5MDUxOTIzNTk1
- | OVowVTEhMB8GA1UECxMYRG9tYWluIENvbnRyb2wgVmFsaWRhdGVkMRQwEgYDVQQL
- | EwtQb3NpdGl2ZVNTTDEaMBgGA1UEAxMRbnM4Lm1hemluaG9zdC5uZXQwggEiMA0G
- | CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTqGFb4g3zsnUiltRO7hvcqefawU/E
- | kbZDDRzv+fC7o9CtmVwnHn4JMBcZccLFkwq33DGK5wP1gHLuU1LHHmxIqjsKCvfT
- | L5iPNqq2QJWVB6VX+0ABIVUqEq1Qk8rX9xnoVw4Vrcf261aHcaMlSKxAqyekay4p
- | azkjinolw0jUEOlM6iEqF62+hBnivrW/NoNxDq7/rRu5HDvHsVa2BOIz9btr3WQN
- | S0vg6hWn9doMX/IRWUx6Ka2aq6w9lv14WXjfxAjDFx8EgmomwpVWbonn3IfPY4rl
- | BdNmiajIk0lmoYoJoOg8s7GHw3pSXmmLnUy4y4v+gjag6g/F7m9Z0MNfAgMBAAGj
- | ggLdMIIC2TAfBgNVHSMEGDAWgBR+A1plQWunfgrhuJ0I6h2OHWrHZTAdBgNVHQ4E
- | FgQUC6DptCTqii1lrU89VEly8dWbjgowDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB
- | /wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCME8GA1UdIARIMEYw
- | OgYLKwYBBAGyMQECAjQwKzApBggrBgEFBQcCARYdaHR0cHM6Ly9zZWN1cmUuY29t
- | b2RvLmNvbS9DUFMwCAYGZ4EMAQIBMEwGA1UdHwRFMEMwQaA/oD2GO2h0dHA6Ly9j
- | cmwuY29tb2RvY2EuY29tL2NQYW5lbEluY0NlcnRpZmljYXRpb25BdXRob3JpdHku
- | Y3JsMH0GCCsGAQUFBwEBBHEwbzBHBggrBgEFBQcwAoY7aHR0cDovL2NydC5jb21v
- | ZG9jYS5jb20vY1BhbmVsSW5jQ2VydGlmaWNhdGlvbkF1dGhvcml0eS5jcnQwJAYI
- | KwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmNvbW9kb2NhLmNvbTAzBgNVHREELDAqghFu
- | czgubWF6aW5ob3N0Lm5ldIIVd3d3Lm5zOC5tYXppbmhvc3QubmV0MIIBBQYKKwYB
- | BAHWeQIEAgSB9gSB8wDxAHcA7ku9t3XOYLrhQmkfq+GeZqMPfl+wctiDAMR7iXqo
- | /csAAAFjeKxlDAAABAMASDBGAiEAqXtMvgZ9tg9Q3gTvmCDrPrOjfLlSZlPENlBl
- | Q8oWEjwCIQCvubT7Fgh4tR2a64m0ff+Qfmgln5G85eo0R/A7JtdHxwB2AHR+2oMx
- | rTMQkSGcziVPQnDCv/1eQiAIxjc1eeYQe8xWAAABY3isZxQAAAQDAEcwRQIgMhVw
- | fjcqeSqm6O64dSjRtzhuJWnOBH927oo6bn2Dx+oCIQCgJarwU54PMCFEWdzhqOHV
- | lmYmuA7X1pBAvPqBUblgiTANBgkqhkiG9w0BAQsFAAOCAQEAKB3KYSjdcG9GfCV1
- | CjHAYbUhvQCZFl2HdUrDVdWGVDjKwlQu6dJpWtsbWjeW7th7D0lpTRcK3kD1011F
- | MVG2EDhwzy+Cg2hiGrpgHG+regMKK4LYdXdayypzF3uGcgs1bjc5l3j1Nd+vVO6Q
- | 4++bqrsRz+TfoDcuMfKh2jO8/IiJrVRykOJYp+TSvzdy5eI/JNW3KDkMC7v/klVo
- | s7JU46rxZSURXjX8a4PonnBxYpJZf+eyuLa9vduB575jIeLAHE8wLjU1ItDLBSBB
- | MAxhbvNLZ2v7qvGs5FWd38xJ0cenlst0WMVXqK/ZDBwfW42EvZveqek2KNo/lKHH
- | Az7cAg==
- |_-----END CERTIFICATE-----
- |_ssl-date: 2019-04-23T11:21:00+00:00; -4s from scanner time.
- 53/tcp open domain syn-ack ISC BIND 9.8.2rc1 (RedHat Enterprise Linux 6)
- | dns-nsid:
- |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.5
- 80/tcp open http-proxy syn-ack Squid http proxy
- |_http-open-proxy: Proxy might be redirecting requests
- |_http-title: 403 Forbidden
- 110/tcp open pop3 syn-ack Dovecot pop3d
- |_pop3-capabilities: SASL(PLAIN LOGIN) STLS TOP AUTH-RESP-CODE USER PIPELINING CAPA RESP-CODES UIDL
- |_ssl-date: 2019-04-23T11:21:00+00:00; -5s from scanner time.
- 143/tcp open imap syn-ack Dovecot imapd
- |_imap-capabilities: OK IMAP4rev1 AUTH=PLAIN NAMESPACE LITERAL+ AUTH=LOGINA0001 Pre-login ENABLE ID have capabilities more STARTTLS IDLE listed LOGIN-REFERRALS post-login SASL-IR
- |_ssl-date: 2019-04-23T11:20:57+00:00; -5s from scanner time.
- 443/tcp open ssl/http syn-ack Apache httpd
- |_http-server-header: Apache
- |_http-title: 403 Forbidden
- 465/tcp open ssl/smtp syn-ack Exim smtpd 4.89_1
- | smtp-commands: ns8.mazinhost.net Hello ns8.mazinhost.net [185.189.113.228], SIZE 52428800, 8BITMIME, PIPELINING, AUTH PLAIN LOGIN, HELP,
- |_ Commands supported: AUTH HELO EHLO MAIL RCPT DATA BDAT NOOP QUIT RSET HELP
- | ssl-cert: Subject: commonName=ns8.mazinhost.net/organizationalUnitName=PositiveSSL
- | Subject Alternative Name: DNS:ns8.mazinhost.net, DNS:www.ns8.mazinhost.net
- | Issuer: commonName=cPanel, Inc. Certification Authority/organizationName=cPanel, Inc./stateOrProvinceName=TX/countryName=US/localityName=Houston
- | Public Key type: rsa
- | Public Key bits: 2048
- | Signature Algorithm: sha256WithRSAEncryption
- | Not valid before: 2018-05-19T00:00:00
- | Not valid after: 2019-05-19T23:59:59
- | MD5: ebe8 f669 2a41 00c3 49f7 f4d6 605d b865
- | SHA-1: 42f1 0588 6bff d05d 2be7 f17f ec1d f54d 10ca 9a97
- | -----BEGIN CERTIFICATE-----
- | MIIGMDCCBRigAwIBAgIQA20Akq/R8L9AhfPMDTevZzANBgkqhkiG9w0BAQsFADBy
- | MQswCQYDVQQGEwJVUzELMAkGA1UECBMCVFgxEDAOBgNVBAcTB0hvdXN0b24xFTAT
- | BgNVBAoTDGNQYW5lbCwgSW5jLjEtMCsGA1UEAxMkY1BhbmVsLCBJbmMuIENlcnRp
- | ZmljYXRpb24gQXV0aG9yaXR5MB4XDTE4MDUxOTAwMDAwMFoXDTE5MDUxOTIzNTk1
- | OVowVTEhMB8GA1UECxMYRG9tYWluIENvbnRyb2wgVmFsaWRhdGVkMRQwEgYDVQQL
- | EwtQb3NpdGl2ZVNTTDEaMBgGA1UEAxMRbnM4Lm1hemluaG9zdC5uZXQwggEiMA0G
- | CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTqGFb4g3zsnUiltRO7hvcqefawU/E
- | kbZDDRzv+fC7o9CtmVwnHn4JMBcZccLFkwq33DGK5wP1gHLuU1LHHmxIqjsKCvfT
- | L5iPNqq2QJWVB6VX+0ABIVUqEq1Qk8rX9xnoVw4Vrcf261aHcaMlSKxAqyekay4p
- | azkjinolw0jUEOlM6iEqF62+hBnivrW/NoNxDq7/rRu5HDvHsVa2BOIz9btr3WQN
- | S0vg6hWn9doMX/IRWUx6Ka2aq6w9lv14WXjfxAjDFx8EgmomwpVWbonn3IfPY4rl
- | BdNmiajIk0lmoYoJoOg8s7GHw3pSXmmLnUy4y4v+gjag6g/F7m9Z0MNfAgMBAAGj
- | ggLdMIIC2TAfBgNVHSMEGDAWgBR+A1plQWunfgrhuJ0I6h2OHWrHZTAdBgNVHQ4E
- | FgQUC6DptCTqii1lrU89VEly8dWbjgowDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB
- | /wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCME8GA1UdIARIMEYw
- | OgYLKwYBBAGyMQECAjQwKzApBggrBgEFBQcCARYdaHR0cHM6Ly9zZWN1cmUuY29t
- | b2RvLmNvbS9DUFMwCAYGZ4EMAQIBMEwGA1UdHwRFMEMwQaA/oD2GO2h0dHA6Ly9j
- | cmwuY29tb2RvY2EuY29tL2NQYW5lbEluY0NlcnRpZmljYXRpb25BdXRob3JpdHku
- | Y3JsMH0GCCsGAQUFBwEBBHEwbzBHBggrBgEFBQcwAoY7aHR0cDovL2NydC5jb21v
- | ZG9jYS5jb20vY1BhbmVsSW5jQ2VydGlmaWNhdGlvbkF1dGhvcml0eS5jcnQwJAYI
- | KwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmNvbW9kb2NhLmNvbTAzBgNVHREELDAqghFu
- | czgubWF6aW5ob3N0Lm5ldIIVd3d3Lm5zOC5tYXppbmhvc3QubmV0MIIBBQYKKwYB
- | BAHWeQIEAgSB9gSB8wDxAHcA7ku9t3XOYLrhQmkfq+GeZqMPfl+wctiDAMR7iXqo
- | /csAAAFjeKxlDAAABAMASDBGAiEAqXtMvgZ9tg9Q3gTvmCDrPrOjfLlSZlPENlBl
- | Q8oWEjwCIQCvubT7Fgh4tR2a64m0ff+Qfmgln5G85eo0R/A7JtdHxwB2AHR+2oMx
- | rTMQkSGcziVPQnDCv/1eQiAIxjc1eeYQe8xWAAABY3isZxQAAAQDAEcwRQIgMhVw
- | fjcqeSqm6O64dSjRtzhuJWnOBH927oo6bn2Dx+oCIQCgJarwU54PMCFEWdzhqOHV
- | lmYmuA7X1pBAvPqBUblgiTANBgkqhkiG9w0BAQsFAAOCAQEAKB3KYSjdcG9GfCV1
- | CjHAYbUhvQCZFl2HdUrDVdWGVDjKwlQu6dJpWtsbWjeW7th7D0lpTRcK3kD1011F
- | MVG2EDhwzy+Cg2hiGrpgHG+regMKK4LYdXdayypzF3uGcgs1bjc5l3j1Nd+vVO6Q
- | 4++bqrsRz+TfoDcuMfKh2jO8/IiJrVRykOJYp+TSvzdy5eI/JNW3KDkMC7v/klVo
- | s7JU46rxZSURXjX8a4PonnBxYpJZf+eyuLa9vduB575jIeLAHE8wLjU1ItDLBSBB
- | MAxhbvNLZ2v7qvGs5FWd38xJ0cenlst0WMVXqK/ZDBwfW42EvZveqek2KNo/lKHH
- | Az7cAg==
- |_-----END CERTIFICATE-----
- |_ssl-date: 2019-04-23T11:20:59+00:00; -5s from scanner time.
- 587/tcp open smtp syn-ack Exim smtpd 4.89_1
- | smtp-commands: ns8.mazinhost.net Hello ns8.mazinhost.net [185.189.113.228], SIZE 52428800, 8BITMIME, PIPELINING, AUTH PLAIN LOGIN, STARTTLS, HELP,
- |_ Commands supported: AUTH STARTTLS HELO EHLO MAIL RCPT DATA BDAT NOOP QUIT RSET HELP
- | ssl-cert: Subject: commonName=ns8.mazinhost.net/organizationalUnitName=PositiveSSL
- | Subject Alternative Name: DNS:ns8.mazinhost.net, DNS:www.ns8.mazinhost.net
- | Issuer: commonName=cPanel, Inc. Certification Authority/organizationName=cPanel, Inc./stateOrProvinceName=TX/countryName=US/localityName=Houston
- | Public Key type: rsa
- | Public Key bits: 2048
- | Signature Algorithm: sha256WithRSAEncryption
- | Not valid before: 2018-05-19T00:00:00
- | Not valid after: 2019-05-19T23:59:59
- | MD5: ebe8 f669 2a41 00c3 49f7 f4d6 605d b865
- | SHA-1: 42f1 0588 6bff d05d 2be7 f17f ec1d f54d 10ca 9a97
- | -----BEGIN CERTIFICATE-----
- | MIIGMDCCBRigAwIBAgIQA20Akq/R8L9AhfPMDTevZzANBgkqhkiG9w0BAQsFADBy
- | MQswCQYDVQQGEwJVUzELMAkGA1UECBMCVFgxEDAOBgNVBAcTB0hvdXN0b24xFTAT
- | BgNVBAoTDGNQYW5lbCwgSW5jLjEtMCsGA1UEAxMkY1BhbmVsLCBJbmMuIENlcnRp
- | ZmljYXRpb24gQXV0aG9yaXR5MB4XDTE4MDUxOTAwMDAwMFoXDTE5MDUxOTIzNTk1
- | OVowVTEhMB8GA1UECxMYRG9tYWluIENvbnRyb2wgVmFsaWRhdGVkMRQwEgYDVQQL
- | EwtQb3NpdGl2ZVNTTDEaMBgGA1UEAxMRbnM4Lm1hemluaG9zdC5uZXQwggEiMA0G
- | CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTqGFb4g3zsnUiltRO7hvcqefawU/E
- | kbZDDRzv+fC7o9CtmVwnHn4JMBcZccLFkwq33DGK5wP1gHLuU1LHHmxIqjsKCvfT
- | L5iPNqq2QJWVB6VX+0ABIVUqEq1Qk8rX9xnoVw4Vrcf261aHcaMlSKxAqyekay4p
- | azkjinolw0jUEOlM6iEqF62+hBnivrW/NoNxDq7/rRu5HDvHsVa2BOIz9btr3WQN
- | S0vg6hWn9doMX/IRWUx6Ka2aq6w9lv14WXjfxAjDFx8EgmomwpVWbonn3IfPY4rl
- | BdNmiajIk0lmoYoJoOg8s7GHw3pSXmmLnUy4y4v+gjag6g/F7m9Z0MNfAgMBAAGj
- | ggLdMIIC2TAfBgNVHSMEGDAWgBR+A1plQWunfgrhuJ0I6h2OHWrHZTAdBgNVHQ4E
- | FgQUC6DptCTqii1lrU89VEly8dWbjgowDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB
- | /wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCME8GA1UdIARIMEYw
- | OgYLKwYBBAGyMQECAjQwKzApBggrBgEFBQcCARYdaHR0cHM6Ly9zZWN1cmUuY29t
- | b2RvLmNvbS9DUFMwCAYGZ4EMAQIBMEwGA1UdHwRFMEMwQaA/oD2GO2h0dHA6Ly9j
- | cmwuY29tb2RvY2EuY29tL2NQYW5lbEluY0NlcnRpZmljYXRpb25BdXRob3JpdHku
- | Y3JsMH0GCCsGAQUFBwEBBHEwbzBHBggrBgEFBQcwAoY7aHR0cDovL2NydC5jb21v
- | ZG9jYS5jb20vY1BhbmVsSW5jQ2VydGlmaWNhdGlvbkF1dGhvcml0eS5jcnQwJAYI
- | KwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmNvbW9kb2NhLmNvbTAzBgNVHREELDAqghFu
- | czgubWF6aW5ob3N0Lm5ldIIVd3d3Lm5zOC5tYXppbmhvc3QubmV0MIIBBQYKKwYB
- | BAHWeQIEAgSB9gSB8wDxAHcA7ku9t3XOYLrhQmkfq+GeZqMPfl+wctiDAMR7iXqo
- | /csAAAFjeKxlDAAABAMASDBGAiEAqXtMvgZ9tg9Q3gTvmCDrPrOjfLlSZlPENlBl
- | Q8oWEjwCIQCvubT7Fgh4tR2a64m0ff+Qfmgln5G85eo0R/A7JtdHxwB2AHR+2oMx
- | rTMQkSGcziVPQnDCv/1eQiAIxjc1eeYQe8xWAAABY3isZxQAAAQDAEcwRQIgMhVw
- | fjcqeSqm6O64dSjRtzhuJWnOBH927oo6bn2Dx+oCIQCgJarwU54PMCFEWdzhqOHV
- | lmYmuA7X1pBAvPqBUblgiTANBgkqhkiG9w0BAQsFAAOCAQEAKB3KYSjdcG9GfCV1
- | CjHAYbUhvQCZFl2HdUrDVdWGVDjKwlQu6dJpWtsbWjeW7th7D0lpTRcK3kD1011F
- | MVG2EDhwzy+Cg2hiGrpgHG+regMKK4LYdXdayypzF3uGcgs1bjc5l3j1Nd+vVO6Q
- | 4++bqrsRz+TfoDcuMfKh2jO8/IiJrVRykOJYp+TSvzdy5eI/JNW3KDkMC7v/klVo
- | s7JU46rxZSURXjX8a4PonnBxYpJZf+eyuLa9vduB575jIeLAHE8wLjU1ItDLBSBB
- | MAxhbvNLZ2v7qvGs5FWd38xJ0cenlst0WMVXqK/ZDBwfW42EvZveqek2KNo/lKHH
- | Az7cAg==
- |_-----END CERTIFICATE-----
- |_ssl-date: 2019-04-23T11:20:59+00:00; -5s from scanner time.
- 993/tcp open ssl/imaps? syn-ack
- |_ssl-date: 2019-04-23T11:20:57+00:00; -5s from scanner time.
- 995/tcp open ssl/pop3s? syn-ack
- |_ssl-date: 2019-04-23T11:20:57+00:00; -5s from scanner time.
- 2077/tcp open tsrmagt? syn-ack
- | fingerprint-strings:
- | SIPOptions:
- | HTTP/1.1 200 OK
- | Date: Tue, 23 Apr 2019 11:19:53 GMT
- | Server: cPanel
- | Persistent-Auth: false
- | Host: ns8.mazinhost.net:2077
- | Cache-Control: no-cache, no-store, must-revalidate, private
- | Connection: Keep-Alive
- | Vary: Accept-Encoding
- | Allow: GET, PUT, DELETE, PROPPATCH, COPY, PROPFIND, LOCK, OPTIONS, MKCOL, HEAD, UNLOCK, POST, MOVE
- | Content-Length: 0
- | Content-Type: text/plain
- | Expires: Fri, 01 Jan 1990 00:00:00 GMT
- | DAV: 1, 2
- | Keep-Alive: timeout=15, max=96
- |_ MS-Author-Via: DAV
- 2082/tcp open infowave? syn-ack
- | fingerprint-strings:
- | SIPOptions:
- | HTTP/1.0 401 Access Denied
- | Connection: close
- | Content-Type: text/html; charset="utf-8"
- | Date: Tue, 23 Apr 2019 11:19:53 GMT
- | Cache-Control: no-cache, no-store, must-revalidate, private
- | Pragma: no-cache
- | WWW-Authenticate: Basic realm="cPanel"
- | Set-Cookie: cprelogin=no; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2082
- | Set-Cookie: cpsession=%3aM3T9cwg9l8gihkOD%2cf903463095077d06f6c76b06c1f2f6d1; HttpOnly; path=/; port=2082
- | Set-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2082
- | Set-Cookie: roundcube_sessauth=expired; HttpOnly; domain=ns8.mazinhost.net; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2082
- | Set-Cookie: Horde=expired; HttpOnly; domain=.ns8.mazinhost.net; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2082
- |_ Set-Cookie: horde_secret_key=expired; HttpOnly; domain=.ns8.mazinhost.net; expires=Thu, 01-J
- 2083/tcp open ssl/radsec? syn-ack
- | fingerprint-strings:
- | GetRequest:
- | HTTP/1.0 401 Access Denied
- | Connection: close
- | Content-Type: text/html; charset="utf-8"
- | Date: Tue, 23 Apr 2019 11:18:45 GMT
- | Cache-Control: no-cache, no-store, must-revalidate, private
- | Pragma: no-cache
- | WWW-Authenticate: Basic realm="cPanel"
- | Set-Cookie: cprelogin=no; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure
- | Set-Cookie: cpsession=%3aZtlIwIbfjGuzk_np%2cf7b3043fe5c7b5f94c4a652512b7d89f; HttpOnly; path=/; port=2083; secure
- | Set-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure
- | Set-Cookie: roundcube_sessauth=expired; HttpOnly; domain=ns8.mazinhost.net; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure
- | Set-Cookie: Horde=expired; HttpOnly; domain=.ns8.mazinhost.net; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure
- | Set-Cookie: horde_secret_key=expired; HttpOnly; doma
- | HTTPOptions:
- | HTTP/1.0 401 Access Denied
- | Connection: close
- | Content-Type: text/html; charset="utf-8"
- | Date: Tue, 23 Apr 2019 11:18:46 GMT
- | Cache-Control: no-cache, no-store, must-revalidate, private
- | Pragma: no-cache
- | WWW-Authenticate: Basic realm="cPanel"
- | Set-Cookie: cprelogin=no; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure
- | Set-Cookie: cpsession=%3aO7q17tD6XYxuSOVr%2c67d1bf02408f4fe4b1a9be18c9e4a2c9; HttpOnly; path=/; port=2083; secure
- | Set-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure
- | Set-Cookie: roundcube_sessauth=expired; HttpOnly; domain=ns8.mazinhost.net; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure
- | Set-Cookie: Horde=expired; HttpOnly; domain=.ns8.mazinhost.net; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure
- |_ Set-Cookie: horde_secret_key=expired; HttpOnly; doma
- | ssl-cert: Subject: commonName=ns8.mazinhost.net/organizationalUnitName=PositiveSSL
- | Subject Alternative Name: DNS:ns8.mazinhost.net, DNS:www.ns8.mazinhost.net
- | Issuer: commonName=cPanel, Inc. Certification Authority/organizationName=cPanel, Inc./stateOrProvinceName=TX/countryName=US/localityName=Houston
- | Public Key type: rsa
- | Public Key bits: 2048
- | Signature Algorithm: sha256WithRSAEncryption
- | Not valid before: 2018-05-19T00:00:00
- | Not valid after: 2019-05-19T23:59:59
- | MD5: ebe8 f669 2a41 00c3 49f7 f4d6 605d b865
- | SHA-1: 42f1 0588 6bff d05d 2be7 f17f ec1d f54d 10ca 9a97
- | -----BEGIN CERTIFICATE-----
- | MIIGMDCCBRigAwIBAgIQA20Akq/R8L9AhfPMDTevZzANBgkqhkiG9w0BAQsFADBy
- | MQswCQYDVQQGEwJVUzELMAkGA1UECBMCVFgxEDAOBgNVBAcTB0hvdXN0b24xFTAT
- | BgNVBAoTDGNQYW5lbCwgSW5jLjEtMCsGA1UEAxMkY1BhbmVsLCBJbmMuIENlcnRp
- | ZmljYXRpb24gQXV0aG9yaXR5MB4XDTE4MDUxOTAwMDAwMFoXDTE5MDUxOTIzNTk1
- | OVowVTEhMB8GA1UECxMYRG9tYWluIENvbnRyb2wgVmFsaWRhdGVkMRQwEgYDVQQL
- | EwtQb3NpdGl2ZVNTTDEaMBgGA1UEAxMRbnM4Lm1hemluaG9zdC5uZXQwggEiMA0G
- | CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTqGFb4g3zsnUiltRO7hvcqefawU/E
- | kbZDDRzv+fC7o9CtmVwnHn4JMBcZccLFkwq33DGK5wP1gHLuU1LHHmxIqjsKCvfT
- | L5iPNqq2QJWVB6VX+0ABIVUqEq1Qk8rX9xnoVw4Vrcf261aHcaMlSKxAqyekay4p
- | azkjinolw0jUEOlM6iEqF62+hBnivrW/NoNxDq7/rRu5HDvHsVa2BOIz9btr3WQN
- | S0vg6hWn9doMX/IRWUx6Ka2aq6w9lv14WXjfxAjDFx8EgmomwpVWbonn3IfPY4rl
- | BdNmiajIk0lmoYoJoOg8s7GHw3pSXmmLnUy4y4v+gjag6g/F7m9Z0MNfAgMBAAGj
- | ggLdMIIC2TAfBgNVHSMEGDAWgBR+A1plQWunfgrhuJ0I6h2OHWrHZTAdBgNVHQ4E
- | FgQUC6DptCTqii1lrU89VEly8dWbjgowDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB
- | /wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCME8GA1UdIARIMEYw
- | OgYLKwYBBAGyMQECAjQwKzApBggrBgEFBQcCARYdaHR0cHM6Ly9zZWN1cmUuY29t
- | b2RvLmNvbS9DUFMwCAYGZ4EMAQIBMEwGA1UdHwRFMEMwQaA/oD2GO2h0dHA6Ly9j
- | cmwuY29tb2RvY2EuY29tL2NQYW5lbEluY0NlcnRpZmljYXRpb25BdXRob3JpdHku
- | Y3JsMH0GCCsGAQUFBwEBBHEwbzBHBggrBgEFBQcwAoY7aHR0cDovL2NydC5jb21v
- | ZG9jYS5jb20vY1BhbmVsSW5jQ2VydGlmaWNhdGlvbkF1dGhvcml0eS5jcnQwJAYI
- | KwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmNvbW9kb2NhLmNvbTAzBgNVHREELDAqghFu
- | czgubWF6aW5ob3N0Lm5ldIIVd3d3Lm5zOC5tYXppbmhvc3QubmV0MIIBBQYKKwYB
- | BAHWeQIEAgSB9gSB8wDxAHcA7ku9t3XOYLrhQmkfq+GeZqMPfl+wctiDAMR7iXqo
- | /csAAAFjeKxlDAAABAMASDBGAiEAqXtMvgZ9tg9Q3gTvmCDrPrOjfLlSZlPENlBl
- | Q8oWEjwCIQCvubT7Fgh4tR2a64m0ff+Qfmgln5G85eo0R/A7JtdHxwB2AHR+2oMx
- | rTMQkSGcziVPQnDCv/1eQiAIxjc1eeYQe8xWAAABY3isZxQAAAQDAEcwRQIgMhVw
- | fjcqeSqm6O64dSjRtzhuJWnOBH927oo6bn2Dx+oCIQCgJarwU54PMCFEWdzhqOHV
- | lmYmuA7X1pBAvPqBUblgiTANBgkqhkiG9w0BAQsFAAOCAQEAKB3KYSjdcG9GfCV1
- | CjHAYbUhvQCZFl2HdUrDVdWGVDjKwlQu6dJpWtsbWjeW7th7D0lpTRcK3kD1011F
- | MVG2EDhwzy+Cg2hiGrpgHG+regMKK4LYdXdayypzF3uGcgs1bjc5l3j1Nd+vVO6Q
- | 4++bqrsRz+TfoDcuMfKh2jO8/IiJrVRykOJYp+TSvzdy5eI/JNW3KDkMC7v/klVo
- | s7JU46rxZSURXjX8a4PonnBxYpJZf+eyuLa9vduB575jIeLAHE8wLjU1ItDLBSBB
- | MAxhbvNLZ2v7qvGs5FWd38xJ0cenlst0WMVXqK/ZDBwfW42EvZveqek2KNo/lKHH
- | Az7cAg==
- |_-----END CERTIFICATE-----
- |_ssl-date: 2019-04-23T11:20:58+00:00; -5s from scanner time.
- 2087/tcp open ssl/eli? syn-ack
- | fingerprint-strings:
- | GetRequest:
- | HTTP/1.0 401 Access Denied
- | Connection: close
- | Content-Type: text/html; charset="utf-8"
- | Date: Tue, 23 Apr 2019 11:18:45 GMT
- | Cache-Control: no-cache, no-store, must-revalidate, private
- | Pragma: no-cache
- | WWW-Authenticate: Basic realm="Web Host Manager"
- | Set-Cookie: whostmgrrelogin=no; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087; secure
- | Set-Cookie: whostmgrsession=%3aU3OAHj5GowCtSXss%2c3570e2bb40fb00ba49201bc325d4280f; HttpOnly; path=/; port=2087; secure
- | Set-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087; secure
- | Set-Cookie: roundcube_sessauth=expired; HttpOnly; domain=ns8.mazinhost.net; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087; secure
- | Set-Cookie: Horde=expired; HttpOnly; domain=.ns8.mazinhost.net; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087; secure
- | Set-Cookie: horde_secret_key=e
- | HTTPOptions:
- | HTTP/1.0 401 Access Denied
- | Connection: close
- | Content-Type: text/html; charset="utf-8"
- | Date: Tue, 23 Apr 2019 11:18:46 GMT
- | Cache-Control: no-cache, no-store, must-revalidate, private
- | Pragma: no-cache
- | WWW-Authenticate: Basic realm="Web Host Manager"
- | Set-Cookie: whostmgrrelogin=no; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087; secure
- | Set-Cookie: whostmgrsession=%3aVvWYjMt5zOAddbhV%2c7261bee0be4d37621fffc0bbe9d91dfa; HttpOnly; path=/; port=2087; secure
- | Set-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087; secure
- | Set-Cookie: roundcube_sessauth=expired; HttpOnly; domain=ns8.mazinhost.net; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087; secure
- | Set-Cookie: Horde=expired; HttpOnly; domain=.ns8.mazinhost.net; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087; secure
- |_ Set-Cookie: horde_secret_key=e
- | ssl-cert: Subject: commonName=ns8.mazinhost.net/organizationalUnitName=PositiveSSL
- | Subject Alternative Name: DNS:ns8.mazinhost.net, DNS:www.ns8.mazinhost.net
- | Issuer: commonName=cPanel, Inc. Certification Authority/organizationName=cPanel, Inc./stateOrProvinceName=TX/countryName=US/localityName=Houston
- | Public Key type: rsa
- | Public Key bits: 2048
- | Signature Algorithm: sha256WithRSAEncryption
- | Not valid before: 2018-05-19T00:00:00
- | Not valid after: 2019-05-19T23:59:59
- | MD5: ebe8 f669 2a41 00c3 49f7 f4d6 605d b865
- | SHA-1: 42f1 0588 6bff d05d 2be7 f17f ec1d f54d 10ca 9a97
- | -----BEGIN CERTIFICATE-----
- | MIIGMDCCBRigAwIBAgIQA20Akq/R8L9AhfPMDTevZzANBgkqhkiG9w0BAQsFADBy
- | MQswCQYDVQQGEwJVUzELMAkGA1UECBMCVFgxEDAOBgNVBAcTB0hvdXN0b24xFTAT
- | BgNVBAoTDGNQYW5lbCwgSW5jLjEtMCsGA1UEAxMkY1BhbmVsLCBJbmMuIENlcnRp
- | ZmljYXRpb24gQXV0aG9yaXR5MB4XDTE4MDUxOTAwMDAwMFoXDTE5MDUxOTIzNTk1
- | OVowVTEhMB8GA1UECxMYRG9tYWluIENvbnRyb2wgVmFsaWRhdGVkMRQwEgYDVQQL
- | EwtQb3NpdGl2ZVNTTDEaMBgGA1UEAxMRbnM4Lm1hemluaG9zdC5uZXQwggEiMA0G
- | CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTqGFb4g3zsnUiltRO7hvcqefawU/E
- | kbZDDRzv+fC7o9CtmVwnHn4JMBcZccLFkwq33DGK5wP1gHLuU1LHHmxIqjsKCvfT
- | L5iPNqq2QJWVB6VX+0ABIVUqEq1Qk8rX9xnoVw4Vrcf261aHcaMlSKxAqyekay4p
- | azkjinolw0jUEOlM6iEqF62+hBnivrW/NoNxDq7/rRu5HDvHsVa2BOIz9btr3WQN
- | S0vg6hWn9doMX/IRWUx6Ka2aq6w9lv14WXjfxAjDFx8EgmomwpVWbonn3IfPY4rl
- | BdNmiajIk0lmoYoJoOg8s7GHw3pSXmmLnUy4y4v+gjag6g/F7m9Z0MNfAgMBAAGj
- | ggLdMIIC2TAfBgNVHSMEGDAWgBR+A1plQWunfgrhuJ0I6h2OHWrHZTAdBgNVHQ4E
- | FgQUC6DptCTqii1lrU89VEly8dWbjgowDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB
- | /wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCME8GA1UdIARIMEYw
- | OgYLKwYBBAGyMQECAjQwKzApBggrBgEFBQcCARYdaHR0cHM6Ly9zZWN1cmUuY29t
- | b2RvLmNvbS9DUFMwCAYGZ4EMAQIBMEwGA1UdHwRFMEMwQaA/oD2GO2h0dHA6Ly9j
- | cmwuY29tb2RvY2EuY29tL2NQYW5lbEluY0NlcnRpZmljYXRpb25BdXRob3JpdHku
- | Y3JsMH0GCCsGAQUFBwEBBHEwbzBHBggrBgEFBQcwAoY7aHR0cDovL2NydC5jb21v
- | ZG9jYS5jb20vY1BhbmVsSW5jQ2VydGlmaWNhdGlvbkF1dGhvcml0eS5jcnQwJAYI
- | KwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmNvbW9kb2NhLmNvbTAzBgNVHREELDAqghFu
- | czgubWF6aW5ob3N0Lm5ldIIVd3d3Lm5zOC5tYXppbmhvc3QubmV0MIIBBQYKKwYB
- | BAHWeQIEAgSB9gSB8wDxAHcA7ku9t3XOYLrhQmkfq+GeZqMPfl+wctiDAMR7iXqo
- | /csAAAFjeKxlDAAABAMASDBGAiEAqXtMvgZ9tg9Q3gTvmCDrPrOjfLlSZlPENlBl
- | Q8oWEjwCIQCvubT7Fgh4tR2a64m0ff+Qfmgln5G85eo0R/A7JtdHxwB2AHR+2oMx
- | rTMQkSGcziVPQnDCv/1eQiAIxjc1eeYQe8xWAAABY3isZxQAAAQDAEcwRQIgMhVw
- | fjcqeSqm6O64dSjRtzhuJWnOBH927oo6bn2Dx+oCIQCgJarwU54PMCFEWdzhqOHV
- | lmYmuA7X1pBAvPqBUblgiTANBgkqhkiG9w0BAQsFAAOCAQEAKB3KYSjdcG9GfCV1
- | CjHAYbUhvQCZFl2HdUrDVdWGVDjKwlQu6dJpWtsbWjeW7th7D0lpTRcK3kD1011F
- | MVG2EDhwzy+Cg2hiGrpgHG+regMKK4LYdXdayypzF3uGcgs1bjc5l3j1Nd+vVO6Q
- | 4++bqrsRz+TfoDcuMfKh2jO8/IiJrVRykOJYp+TSvzdy5eI/JNW3KDkMC7v/klVo
- | s7JU46rxZSURXjX8a4PonnBxYpJZf+eyuLa9vduB575jIeLAHE8wLjU1ItDLBSBB
- | MAxhbvNLZ2v7qvGs5FWd38xJ0cenlst0WMVXqK/ZDBwfW42EvZveqek2KNo/lKHH
- | Az7cAg==
- |_-----END CERTIFICATE-----
- |_ssl-date: 2019-04-23T11:21:00+00:00; -5s from scanner time.
- 2095/tcp open nbx-ser? syn-ack
- | fingerprint-strings:
- | SIPOptions:
- | HTTP/1.0 401 Access Denied
- | Connection: close
- | Content-Type: text/html; charset="utf-8"
- | Date: Tue, 23 Apr 2019 11:19:53 GMT
- | Cache-Control: no-cache, no-store, must-revalidate, private
- | Pragma: no-cache
- | WWW-Authenticate: Basic realm="WebMail"
- | Set-Cookie: webmailrelogin=no; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2095
- | Set-Cookie: webmailsession=%3a6BsQnTTAQthEBooz%2cc00209fae915dd5925ada0de198c6aa1; HttpOnly; path=/; port=2095
- | Set-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2095
- | Set-Cookie: roundcube_sessauth=expired; HttpOnly; domain=ns8.mazinhost.net; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2095
- | Set-Cookie: Horde=expired; HttpOnly; domain=.ns8.mazinhost.net; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2095
- |_ Set-Cookie: horde_secret_key=expired; HttpOnly; domain=.ns8.mazinhost.net; expire
- 2096/tcp open ssl/nbx-dir? syn-ack
- | fingerprint-strings:
- | GetRequest:
- | HTTP/1.0 401 Access Denied
- | Connection: close
- | Content-Type: text/html; charset="utf-8"
- | Date: Tue, 23 Apr 2019 11:18:45 GMT
- | Cache-Control: no-cache, no-store, must-revalidate, private
- | Pragma: no-cache
- | WWW-Authenticate: Basic realm="WebMail"
- | Set-Cookie: webmailrelogin=no; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2096; secure
- | Set-Cookie: webmailsession=%3aOlsEefWvomVPQwH3%2cf8ec47567b7719589f5553206ea05a9a; HttpOnly; path=/; port=2096; secure
- | Set-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2096; secure
- | Set-Cookie: roundcube_sessauth=expired; HttpOnly; domain=ns8.mazinhost.net; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2096; secure
- | Set-Cookie: Horde=expired; HttpOnly; domain=.ns8.mazinhost.net; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2096; secure
- | Set-Cookie: horde_secret_key=expired; Htt
- | HTTPOptions:
- | HTTP/1.0 401 Access Denied
- | Connection: close
- | Content-Type: text/html; charset="utf-8"
- | Date: Tue, 23 Apr 2019 11:18:46 GMT
- | Cache-Control: no-cache, no-store, must-revalidate, private
- | Pragma: no-cache
- | WWW-Authenticate: Basic realm="WebMail"
- | Set-Cookie: webmailrelogin=no; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2096; secure
- | Set-Cookie: webmailsession=%3avl5HQIzhK8D46szZ%2cb5abf756778552a64816ed2ef45c0ee1; HttpOnly; path=/; port=2096; secure
- | Set-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2096; secure
- | Set-Cookie: roundcube_sessauth=expired; HttpOnly; domain=ns8.mazinhost.net; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2096; secure
- | Set-Cookie: Horde=expired; HttpOnly; domain=.ns8.mazinhost.net; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2096; secure
- |_ Set-Cookie: horde_secret_key=expired; Htt
- | ssl-cert: Subject: commonName=ns8.mazinhost.net/organizationalUnitName=PositiveSSL
- | Subject Alternative Name: DNS:ns8.mazinhost.net, DNS:www.ns8.mazinhost.net
- | Issuer: commonName=cPanel, Inc. Certification Authority/organizationName=cPanel, Inc./stateOrProvinceName=TX/countryName=US/localityName=Houston
- | Public Key type: rsa
- | Public Key bits: 2048
- | Signature Algorithm: sha256WithRSAEncryption
- | Not valid before: 2018-05-19T00:00:00
- | Not valid after: 2019-05-19T23:59:59
- | MD5: ebe8 f669 2a41 00c3 49f7 f4d6 605d b865
- | SHA-1: 42f1 0588 6bff d05d 2be7 f17f ec1d f54d 10ca 9a97
- | -----BEGIN CERTIFICATE-----
- | MIIGMDCCBRigAwIBAgIQA20Akq/R8L9AhfPMDTevZzANBgkqhkiG9w0BAQsFADBy
- | MQswCQYDVQQGEwJVUzELMAkGA1UECBMCVFgxEDAOBgNVBAcTB0hvdXN0b24xFTAT
- | BgNVBAoTDGNQYW5lbCwgSW5jLjEtMCsGA1UEAxMkY1BhbmVsLCBJbmMuIENlcnRp
- | ZmljYXRpb24gQXV0aG9yaXR5MB4XDTE4MDUxOTAwMDAwMFoXDTE5MDUxOTIzNTk1
- | OVowVTEhMB8GA1UECxMYRG9tYWluIENvbnRyb2wgVmFsaWRhdGVkMRQwEgYDVQQL
- | EwtQb3NpdGl2ZVNTTDEaMBgGA1UEAxMRbnM4Lm1hemluaG9zdC5uZXQwggEiMA0G
- | CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTqGFb4g3zsnUiltRO7hvcqefawU/E
- | kbZDDRzv+fC7o9CtmVwnHn4JMBcZccLFkwq33DGK5wP1gHLuU1LHHmxIqjsKCvfT
- | L5iPNqq2QJWVB6VX+0ABIVUqEq1Qk8rX9xnoVw4Vrcf261aHcaMlSKxAqyekay4p
- | azkjinolw0jUEOlM6iEqF62+hBnivrW/NoNxDq7/rRu5HDvHsVa2BOIz9btr3WQN
- | S0vg6hWn9doMX/IRWUx6Ka2aq6w9lv14WXjfxAjDFx8EgmomwpVWbonn3IfPY4rl
- | BdNmiajIk0lmoYoJoOg8s7GHw3pSXmmLnUy4y4v+gjag6g/F7m9Z0MNfAgMBAAGj
- | ggLdMIIC2TAfBgNVHSMEGDAWgBR+A1plQWunfgrhuJ0I6h2OHWrHZTAdBgNVHQ4E
- | FgQUC6DptCTqii1lrU89VEly8dWbjgowDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB
- | /wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCME8GA1UdIARIMEYw
- | OgYLKwYBBAGyMQECAjQwKzApBggrBgEFBQcCARYdaHR0cHM6Ly9zZWN1cmUuY29t
- | b2RvLmNvbS9DUFMwCAYGZ4EMAQIBMEwGA1UdHwRFMEMwQaA/oD2GO2h0dHA6Ly9j
- | cmwuY29tb2RvY2EuY29tL2NQYW5lbEluY0NlcnRpZmljYXRpb25BdXRob3JpdHku
- | Y3JsMH0GCCsGAQUFBwEBBHEwbzBHBggrBgEFBQcwAoY7aHR0cDovL2NydC5jb21v
- | ZG9jYS5jb20vY1BhbmVsSW5jQ2VydGlmaWNhdGlvbkF1dGhvcml0eS5jcnQwJAYI
- | KwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmNvbW9kb2NhLmNvbTAzBgNVHREELDAqghFu
- | czgubWF6aW5ob3N0Lm5ldIIVd3d3Lm5zOC5tYXppbmhvc3QubmV0MIIBBQYKKwYB
- | BAHWeQIEAgSB9gSB8wDxAHcA7ku9t3XOYLrhQmkfq+GeZqMPfl+wctiDAMR7iXqo
- | /csAAAFjeKxlDAAABAMASDBGAiEAqXtMvgZ9tg9Q3gTvmCDrPrOjfLlSZlPENlBl
- | Q8oWEjwCIQCvubT7Fgh4tR2a64m0ff+Qfmgln5G85eo0R/A7JtdHxwB2AHR+2oMx
- | rTMQkSGcziVPQnDCv/1eQiAIxjc1eeYQe8xWAAABY3isZxQAAAQDAEcwRQIgMhVw
- | fjcqeSqm6O64dSjRtzhuJWnOBH927oo6bn2Dx+oCIQCgJarwU54PMCFEWdzhqOHV
- | lmYmuA7X1pBAvPqBUblgiTANBgkqhkiG9w0BAQsFAAOCAQEAKB3KYSjdcG9GfCV1
- | CjHAYbUhvQCZFl2HdUrDVdWGVDjKwlQu6dJpWtsbWjeW7th7D0lpTRcK3kD1011F
- | MVG2EDhwzy+Cg2hiGrpgHG+regMKK4LYdXdayypzF3uGcgs1bjc5l3j1Nd+vVO6Q
- | 4++bqrsRz+TfoDcuMfKh2jO8/IiJrVRykOJYp+TSvzdy5eI/JNW3KDkMC7v/klVo
- | s7JU46rxZSURXjX8a4PonnBxYpJZf+eyuLa9vduB575jIeLAHE8wLjU1ItDLBSBB
- | MAxhbvNLZ2v7qvGs5FWd38xJ0cenlst0WMVXqK/ZDBwfW42EvZveqek2KNo/lKHH
- | Az7cAg==
- |_-----END CERTIFICATE-----
- |_ssl-date: 2019-04-23T11:20:57+00:00; -5s from scanner time.
- 6 services unrecognized despite returning data. If you know the service/version, please submit the following fingerprints at https://nmap.org/cgi-bin/submit.cgi?new-service :
- ==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)==============
- SF-Port2077-TCP:V=7.70%I=7%D=4/23%Time=5CBEF4E5%P=x86_64-pc-linux-gnu%r(SI
- SF:POptions,1E2,"HTTP/1\.1\x20200\x20OK\r\nDate:\x20Tue,\x2023\x20Apr\x202
- SF:019\x2011:19:53\x20GMT\r\nServer:\x20cPanel\r\nPersistent-Auth:\x20fals
- SF:e\r\nHost:\x20ns8\.mazinhost\.net:2077\r\nCache-Control:\x20no-cache,\x
- SF:20no-store,\x20must-revalidate,\x20private\r\nConnection:\x20Keep-Alive
- SF:\r\nVary:\x20Accept-Encoding\r\nAllow:\x20GET,\x20PUT,\x20DELETE,\x20PR
- SF:OPPATCH,\x20COPY,\x20PROPFIND,\x20LOCK,\x20OPTIONS,\x20MKCOL,\x20HEAD,\
- SF:x20UNLOCK,\x20POST,\x20MOVE\r\nContent-Length:\x200\r\nContent-Type:\x2
- SF:0text/plain\r\nExpires:\x20Fri,\x2001\x20Jan\x201990\x2000:00:00\x20GMT
- SF:\r\nDAV:\x201,\x202\r\nKeep-Alive:\x20timeout=15,\x20max=96\r\nMS-Autho
- SF:r-Via:\x20DAV\r\n\r\n");
- ==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)==============
- SF-Port2082-TCP:V=7.70%I=7%D=4/23%Time=5CBEF4DE%P=x86_64-pc-linux-gnu%r(SI
- SF:POptions,2A9E,"HTTP/1\.0\x20401\x20Access\x20Denied\r\nConnection:\x20c
- SF:lose\r\nContent-Type:\x20text/html;\x20charset=\"utf-8\"\r\nDate:\x20Tu
- SF:e,\x2023\x20Apr\x202019\x2011:19:53\x20GMT\r\nCache-Control:\x20no-cach
- SF:e,\x20no-store,\x20must-revalidate,\x20private\r\nPragma:\x20no-cache\r
- SF:\nWWW-Authenticate:\x20Basic\x20realm=\"cPanel\"\r\nSet-Cookie:\x20cpre
- SF:login=no;\x20HttpOnly;\x20expires=Thu,\x2001-Jan-1970\x2000:00:01\x20GM
- SF:T;\x20path=/;\x20port=2082\r\nSet-Cookie:\x20cpsession=%3aM3T9cwg9l8gih
- SF:kOD%2cf903463095077d06f6c76b06c1f2f6d1;\x20HttpOnly;\x20path=/;\x20port
- SF:=2082\r\nSet-Cookie:\x20roundcube_sessid=expired;\x20HttpOnly;\x20expir
- SF:es=Thu,\x2001-Jan-1970\x2000:00:01\x20GMT;\x20path=/;\x20port=2082\r\nS
- SF:et-Cookie:\x20roundcube_sessauth=expired;\x20HttpOnly;\x20domain=ns8\.m
- SF:azinhost\.net;\x20expires=Thu,\x2001-Jan-1970\x2000:00:01\x20GMT;\x20pa
- SF:th=/;\x20port=2082\r\nSet-Cookie:\x20Horde=expired;\x20HttpOnly;\x20dom
- SF:ain=\.ns8\.mazinhost\.net;\x20expires=Thu,\x2001-Jan-1970\x2000:00:01\x
- SF:20GMT;\x20path=/;\x20port=2082\r\nSet-Cookie:\x20horde_secret_key=expir
- SF:ed;\x20HttpOnly;\x20domain=\.ns8\.mazinhost\.net;\x20expires=Thu,\x2001
- SF:-J");
- ==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)==============
- SF-Port2083-TCP:V=7.70%T=SSL%I=7%D=4/23%Time=5CBEF49A%P=x86_64-pc-linux-gn
- SF:u%r(GetRequest,4000,"HTTP/1\.0\x20401\x20Access\x20Denied\r\nConnection
- SF::\x20close\r\nContent-Type:\x20text/html;\x20charset=\"utf-8\"\r\nDate:
- SF:\x20Tue,\x2023\x20Apr\x202019\x2011:18:45\x20GMT\r\nCache-Control:\x20n
- SF:o-cache,\x20no-store,\x20must-revalidate,\x20private\r\nPragma:\x20no-c
- SF:ache\r\nWWW-Authenticate:\x20Basic\x20realm=\"cPanel\"\r\nSet-Cookie:\x
- SF:20cprelogin=no;\x20HttpOnly;\x20expires=Thu,\x2001-Jan-1970\x2000:00:01
- SF:\x20GMT;\x20path=/;\x20port=2083;\x20secure\r\nSet-Cookie:\x20cpsession
- SF:=%3aZtlIwIbfjGuzk_np%2cf7b3043fe5c7b5f94c4a652512b7d89f;\x20HttpOnly;\x
- SF:20path=/;\x20port=2083;\x20secure\r\nSet-Cookie:\x20roundcube_sessid=ex
- SF:pired;\x20HttpOnly;\x20expires=Thu,\x2001-Jan-1970\x2000:00:01\x20GMT;\
- SF:x20path=/;\x20port=2083;\x20secure\r\nSet-Cookie:\x20roundcube_sessauth
- SF:=expired;\x20HttpOnly;\x20domain=ns8\.mazinhost\.net;\x20expires=Thu,\x
- SF:2001-Jan-1970\x2000:00:01\x20GMT;\x20path=/;\x20port=2083;\x20secure\r\
- SF:nSet-Cookie:\x20Horde=expired;\x20HttpOnly;\x20domain=\.ns8\.mazinhost\
- SF:.net;\x20expires=Thu,\x2001-Jan-1970\x2000:00:01\x20GMT;\x20path=/;\x20
- SF:port=2083;\x20secure\r\nSet-Cookie:\x20horde_secret_key=expired;\x20Htt
- SF:pOnly;\x20doma")%r(HTTPOptions,4000,"HTTP/1\.0\x20401\x20Access\x20Deni
- SF:ed\r\nConnection:\x20close\r\nContent-Type:\x20text/html;\x20charset=\"
- SF:utf-8\"\r\nDate:\x20Tue,\x2023\x20Apr\x202019\x2011:18:46\x20GMT\r\nCac
- SF:he-Control:\x20no-cache,\x20no-store,\x20must-revalidate,\x20private\r\
- SF:nPragma:\x20no-cache\r\nWWW-Authenticate:\x20Basic\x20realm=\"cPanel\"\
- SF:r\nSet-Cookie:\x20cprelogin=no;\x20HttpOnly;\x20expires=Thu,\x2001-Jan-
- SF:1970\x2000:00:01\x20GMT;\x20path=/;\x20port=2083;\x20secure\r\nSet-Cook
- SF:ie:\x20cpsession=%3aO7q17tD6XYxuSOVr%2c67d1bf02408f4fe4b1a9be18c9e4a2c9
- SF:;\x20HttpOnly;\x20path=/;\x20port=2083;\x20secure\r\nSet-Cookie:\x20rou
- SF:ndcube_sessid=expired;\x20HttpOnly;\x20expires=Thu,\x2001-Jan-1970\x200
- SF:0:00:01\x20GMT;\x20path=/;\x20port=2083;\x20secure\r\nSet-Cookie:\x20ro
- SF:undcube_sessauth=expired;\x20HttpOnly;\x20domain=ns8\.mazinhost\.net;\x
- SF:20expires=Thu,\x2001-Jan-1970\x2000:00:01\x20GMT;\x20path=/;\x20port=20
- SF:83;\x20secure\r\nSet-Cookie:\x20Horde=expired;\x20HttpOnly;\x20domain=\
- SF:.ns8\.mazinhost\.net;\x20expires=Thu,\x2001-Jan-1970\x2000:00:01\x20GMT
- SF:;\x20path=/;\x20port=2083;\x20secure\r\nSet-Cookie:\x20horde_secret_key
- SF:=expired;\x20HttpOnly;\x20doma");
- ==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)==============
- SF-Port2087-TCP:V=7.70%T=SSL%I=7%D=4/23%Time=5CBEF49A%P=x86_64-pc-linux-gn
- SF:u%r(GetRequest,4000,"HTTP/1\.0\x20401\x20Access\x20Denied\r\nConnection
- SF::\x20close\r\nContent-Type:\x20text/html;\x20charset=\"utf-8\"\r\nDate:
- SF:\x20Tue,\x2023\x20Apr\x202019\x2011:18:45\x20GMT\r\nCache-Control:\x20n
- SF:o-cache,\x20no-store,\x20must-revalidate,\x20private\r\nPragma:\x20no-c
- SF:ache\r\nWWW-Authenticate:\x20Basic\x20realm=\"Web\x20Host\x20Manager\"\
- SF:r\nSet-Cookie:\x20whostmgrrelogin=no;\x20HttpOnly;\x20expires=Thu,\x200
- SF:1-Jan-1970\x2000:00:01\x20GMT;\x20path=/;\x20port=2087;\x20secure\r\nSe
- SF:t-Cookie:\x20whostmgrsession=%3aU3OAHj5GowCtSXss%2c3570e2bb40fb00ba4920
- SF:1bc325d4280f;\x20HttpOnly;\x20path=/;\x20port=2087;\x20secure\r\nSet-Co
- SF:okie:\x20roundcube_sessid=expired;\x20HttpOnly;\x20expires=Thu,\x2001-J
- SF:an-1970\x2000:00:01\x20GMT;\x20path=/;\x20port=2087;\x20secure\r\nSet-C
- SF:ookie:\x20roundcube_sessauth=expired;\x20HttpOnly;\x20domain=ns8\.mazin
- SF:host\.net;\x20expires=Thu,\x2001-Jan-1970\x2000:00:01\x20GMT;\x20path=/
- SF:;\x20port=2087;\x20secure\r\nSet-Cookie:\x20Horde=expired;\x20HttpOnly;
- SF:\x20domain=\.ns8\.mazinhost\.net;\x20expires=Thu,\x2001-Jan-1970\x2000:
- SF:00:01\x20GMT;\x20path=/;\x20port=2087;\x20secure\r\nSet-Cookie:\x20hord
- SF:e_secret_key=e")%r(HTTPOptions,4000,"HTTP/1\.0\x20401\x20Access\x20Deni
- SF:ed\r\nConnection:\x20close\r\nContent-Type:\x20text/html;\x20charset=\"
- SF:utf-8\"\r\nDate:\x20Tue,\x2023\x20Apr\x202019\x2011:18:46\x20GMT\r\nCac
- SF:he-Control:\x20no-cache,\x20no-store,\x20must-revalidate,\x20private\r\
- SF:nPragma:\x20no-cache\r\nWWW-Authenticate:\x20Basic\x20realm=\"Web\x20Ho
- SF:st\x20Manager\"\r\nSet-Cookie:\x20whostmgrrelogin=no;\x20HttpOnly;\x20e
- SF:xpires=Thu,\x2001-Jan-1970\x2000:00:01\x20GMT;\x20path=/;\x20port=2087;
- SF:\x20secure\r\nSet-Cookie:\x20whostmgrsession=%3aVvWYjMt5zOAddbhV%2c7261
- SF:bee0be4d37621fffc0bbe9d91dfa;\x20HttpOnly;\x20path=/;\x20port=2087;\x20
- SF:secure\r\nSet-Cookie:\x20roundcube_sessid=expired;\x20HttpOnly;\x20expi
- SF:res=Thu,\x2001-Jan-1970\x2000:00:01\x20GMT;\x20path=/;\x20port=2087;\x2
- SF:0secure\r\nSet-Cookie:\x20roundcube_sessauth=expired;\x20HttpOnly;\x20d
- SF:omain=ns8\.mazinhost\.net;\x20expires=Thu,\x2001-Jan-1970\x2000:00:01\x
- SF:20GMT;\x20path=/;\x20port=2087;\x20secure\r\nSet-Cookie:\x20Horde=expir
- SF:ed;\x20HttpOnly;\x20domain=\.ns8\.mazinhost\.net;\x20expires=Thu,\x2001
- SF:-Jan-1970\x2000:00:01\x20GMT;\x20path=/;\x20port=2087;\x20secure\r\nSet
- SF:-Cookie:\x20horde_secret_key=e");
- ==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)==============
- SF-Port2095-TCP:V=7.70%I=7%D=4/23%Time=5CBEF4DE%P=x86_64-pc-linux-gnu%r(SI
- SF:POptions,2A9E,"HTTP/1\.0\x20401\x20Access\x20Denied\r\nConnection:\x20c
- SF:lose\r\nContent-Type:\x20text/html;\x20charset=\"utf-8\"\r\nDate:\x20Tu
- SF:e,\x2023\x20Apr\x202019\x2011:19:53\x20GMT\r\nCache-Control:\x20no-cach
- SF:e,\x20no-store,\x20must-revalidate,\x20private\r\nPragma:\x20no-cache\r
- SF:\nWWW-Authenticate:\x20Basic\x20realm=\"WebMail\"\r\nSet-Cookie:\x20web
- SF:mailrelogin=no;\x20HttpOnly;\x20expires=Thu,\x2001-Jan-1970\x2000:00:01
- SF:\x20GMT;\x20path=/;\x20port=2095\r\nSet-Cookie:\x20webmailsession=%3a6B
- SF:sQnTTAQthEBooz%2cc00209fae915dd5925ada0de198c6aa1;\x20HttpOnly;\x20path
- SF:=/;\x20port=2095\r\nSet-Cookie:\x20roundcube_sessid=expired;\x20HttpOnl
- SF:y;\x20expires=Thu,\x2001-Jan-1970\x2000:00:01\x20GMT;\x20path=/;\x20por
- SF:t=2095\r\nSet-Cookie:\x20roundcube_sessauth=expired;\x20HttpOnly;\x20do
- SF:main=ns8\.mazinhost\.net;\x20expires=Thu,\x2001-Jan-1970\x2000:00:01\x2
- SF:0GMT;\x20path=/;\x20port=2095\r\nSet-Cookie:\x20Horde=expired;\x20HttpO
- SF:nly;\x20domain=\.ns8\.mazinhost\.net;\x20expires=Thu,\x2001-Jan-1970\x2
- SF:000:00:01\x20GMT;\x20path=/;\x20port=2095\r\nSet-Cookie:\x20horde_secre
- SF:t_key=expired;\x20HttpOnly;\x20domain=\.ns8\.mazinhost\.net;\x20expire"
- SF:);
- ==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)==============
- SF-Port2096-TCP:V=7.70%T=SSL%I=7%D=4/23%Time=5CBEF49A%P=x86_64-pc-linux-gn
- SF:u%r(GetRequest,4000,"HTTP/1\.0\x20401\x20Access\x20Denied\r\nConnection
- SF::\x20close\r\nContent-Type:\x20text/html;\x20charset=\"utf-8\"\r\nDate:
- SF:\x20Tue,\x2023\x20Apr\x202019\x2011:18:45\x20GMT\r\nCache-Control:\x20n
- SF:o-cache,\x20no-store,\x20must-revalidate,\x20private\r\nPragma:\x20no-c
- SF:ache\r\nWWW-Authenticate:\x20Basic\x20realm=\"WebMail\"\r\nSet-Cookie:\
- SF:x20webmailrelogin=no;\x20HttpOnly;\x20expires=Thu,\x2001-Jan-1970\x2000
- SF::00:01\x20GMT;\x20path=/;\x20port=2096;\x20secure\r\nSet-Cookie:\x20web
- SF:mailsession=%3aOlsEefWvomVPQwH3%2cf8ec47567b7719589f5553206ea05a9a;\x20
- SF:HttpOnly;\x20path=/;\x20port=2096;\x20secure\r\nSet-Cookie:\x20roundcub
- SF:e_sessid=expired;\x20HttpOnly;\x20expires=Thu,\x2001-Jan-1970\x2000:00:
- SF:01\x20GMT;\x20path=/;\x20port=2096;\x20secure\r\nSet-Cookie:\x20roundcu
- SF:be_sessauth=expired;\x20HttpOnly;\x20domain=ns8\.mazinhost\.net;\x20exp
- SF:ires=Thu,\x2001-Jan-1970\x2000:00:01\x20GMT;\x20path=/;\x20port=2096;\x
- SF:20secure\r\nSet-Cookie:\x20Horde=expired;\x20HttpOnly;\x20domain=\.ns8\
- SF:.mazinhost\.net;\x20expires=Thu,\x2001-Jan-1970\x2000:00:01\x20GMT;\x20
- SF:path=/;\x20port=2096;\x20secure\r\nSet-Cookie:\x20horde_secret_key=expi
- SF:red;\x20Htt")%r(HTTPOptions,4000,"HTTP/1\.0\x20401\x20Access\x20Denied\
- SF:r\nConnection:\x20close\r\nContent-Type:\x20text/html;\x20charset=\"utf
- SF:-8\"\r\nDate:\x20Tue,\x2023\x20Apr\x202019\x2011:18:46\x20GMT\r\nCache-
- SF:Control:\x20no-cache,\x20no-store,\x20must-revalidate,\x20private\r\nPr
- SF:agma:\x20no-cache\r\nWWW-Authenticate:\x20Basic\x20realm=\"WebMail\"\r\
- SF:nSet-Cookie:\x20webmailrelogin=no;\x20HttpOnly;\x20expires=Thu,\x2001-J
- SF:an-1970\x2000:00:01\x20GMT;\x20path=/;\x20port=2096;\x20secure\r\nSet-C
- SF:ookie:\x20webmailsession=%3avl5HQIzhK8D46szZ%2cb5abf756778552a64816ed2e
- SF:f45c0ee1;\x20HttpOnly;\x20path=/;\x20port=2096;\x20secure\r\nSet-Cookie
- SF::\x20roundcube_sessid=expired;\x20HttpOnly;\x20expires=Thu,\x2001-Jan-1
- SF:970\x2000:00:01\x20GMT;\x20path=/;\x20port=2096;\x20secure\r\nSet-Cooki
- SF:e:\x20roundcube_sessauth=expired;\x20HttpOnly;\x20domain=ns8\.mazinhost
- SF:\.net;\x20expires=Thu,\x2001-Jan-1970\x2000:00:01\x20GMT;\x20path=/;\x2
- SF:0port=2096;\x20secure\r\nSet-Cookie:\x20Horde=expired;\x20HttpOnly;\x20
- SF:domain=\.ns8\.mazinhost\.net;\x20expires=Thu,\x2001-Jan-1970\x2000:00:0
- SF:1\x20GMT;\x20path=/;\x20port=2096;\x20secure\r\nSet-Cookie:\x20horde_se
- SF:cret_key=expired;\x20Htt");
- OS fingerprint not ideal because: Didn't receive UDP response. Please try again with -sSU
- Aggressive OS guesses: Linux 2.6.32 (93%), Linux 2.6.32 or 3.10 (93%), Synology DiskStation Manager 5.1 (92%), WatchGuard Fireware 11.8 (92%), Linux 3.10 (91%), Linux 2.6.39 (90%), Linux 3.4 (90%), Linux 2.6.32 - 2.6.39 (90%), Linux 3.1 - 3.2 (89%), Linux 3.2 - 3.8 (88%)
- No exact OS matches for host (test conditions non-ideal).
- TCP/IP fingerprint:
- SCAN(V=7.70%E=4%D=4/23%OT=21%CT=20%CU=%PV=N%DS=11%DC=T%G=N%TM=5CBEF605%P=x86_64-pc-linux-gnu)
- SEQ(SP=FA%GCD=1%ISR=107%TI=Z%II=I%TS=A)
- OPS(O1=M44FST11NW7%O2=M44FST11NW7%O3=M44FNNT11NW7%O4=M44FST11NW7%O5=M44FST11NW7%O6=M44FST11)
- WIN(W1=3890%W2=3890%W3=3890%W4=3890%W5=3890%W6=3890)
- ECN(R=Y%DF=Y%TG=40%W=3908%O=M44FNNSNW7%CC=Y%Q=)
- T1(R=Y%DF=Y%TG=40%S=O%A=S+%F=AS%RD=0%Q=)
- T2(R=N)
- T3(R=N)
- T4(R=N)
- T5(R=Y%DF=Y%TG=40%W=0%S=Z%A=S+%F=AR%O=%RD=0%Q=)
- T6(R=N)
- T7(R=N)
- U1(R=N)
- IE(R=Y%DFI=N%TG=40%CD=S)
- Uptime guess: 0.427 days (since Mon Apr 22 21:10:13 2019)
- Network Distance: 11 hops
- TCP Sequence Prediction: Difficulty=250 (Good luck!)
- IP ID Sequence Generation: All zeros
- Service Info: OS: Linux; CPE: cpe:/o:redhat:enterprise_linux:6
- Host script results:
- |_clock-skew: mean: -4s, deviation: 0s, median: -5s
- TRACEROUTE (using proto 1/icmp)
- HOP RTT ADDRESS
- 1 114.21 ms 10.252.200.1
- 2 117.49 ms vlan200.bb1.par1.fr.m247.com (185.94.189.129)
- 3 123.82 ms te-2-13-0.bb1.par1.fr.m247.com (212.103.51.189)
- 4 123.85 ms te-1-2-2-0.bb1.ams2.nl.m247.com (82.102.29.40)
- 5 123.78 ms 176.10.83.5
- 6 124.22 ms amsix-gw.hetzner.de (80.249.209.55)
- 7 121.20 ms core4.fra.hetzner.com (213.239.252.45)
- 8 127.99 ms core24.fsn1.hetzner.com (213.239.203.150)
- 9 125.59 ms ex9k1.dc10.fsn1.hetzner.com (213.239.229.54)
- 10 125.71 ms static.234.149.9.5.clients.your-server.de (5.9.149.234)
- 11 125.84 ms ns8.mazinhost.net (5.9.149.251)
- NSE: Script Post-scanning.
- NSE: Starting runlevel 1 (of 2) scan.
- Initiating NSE at 07:24
- Completed NSE at 07:24, 0.00s elapsed
- NSE: Starting runlevel 2 (of 2) scan.
- Initiating NSE at 07:24
- Completed NSE at 07:24, 0.00s elapsed
- Read data files from: /usr/bin/../share/nmap
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 5808.25 seconds
- Raw packets sent: 92 (7.316KB) | Rcvd: 36 (2.906KB)
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-04-23 07:24 EDT
- NSE: Loaded 148 scripts for scanning.
- NSE: Script Pre-scanning.
- Initiating NSE at 07:24
- Completed NSE at 07:24, 0.00s elapsed
- Initiating NSE at 07:24
- Completed NSE at 07:24, 0.00s elapsed
- Initiating Parallel DNS resolution of 1 host. at 07:24
- Completed Parallel DNS resolution of 1 host. at 07:24, 0.03s elapsed
- Initiating UDP Scan at 07:24
- Scanning ns8.mazinhost.net (5.9.149.251) [14 ports]
- Discovered open port 53/udp on 5.9.149.251
- Completed UDP Scan at 07:24, 1.96s elapsed (14 total ports)
- Initiating Service scan at 07:24
- Scanning 12 services on ns8.mazinhost.net (5.9.149.251)
- Service scan Timing: About 16.67% done; ETC: 07:34 (0:08:05 remaining)
- Completed Service scan at 07:26, 102.58s elapsed (12 services on 1 host)
- Initiating OS detection (try #1) against ns8.mazinhost.net (5.9.149.251)
- Retrying OS detection (try #2) against ns8.mazinhost.net (5.9.149.251)
- Initiating Traceroute at 07:26
- Completed Traceroute at 07:26, 7.15s elapsed
- Initiating Parallel DNS resolution of 1 host. at 07:26
- Completed Parallel DNS resolution of 1 host. at 07:26, 0.01s elapsed
- NSE: Script scanning 5.9.149.251.
- Initiating NSE at 07:26
- Completed NSE at 07:27, 20.30s elapsed
- Initiating NSE at 07:27
- Completed NSE at 07:27, 1.03s elapsed
- Nmap scan report for ns8.mazinhost.net (5.9.149.251)
- Host is up (0.12s latency).
- PORT STATE SERVICE VERSION
- 53/udp open domain ISC BIND 9.8.2rc1 (RedHat Enterprise Linux 6)
- | dns-nsid:
- |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.5
- 67/udp open|filtered dhcps
- 68/udp open|filtered dhcpc
- 69/udp open|filtered tftp
- 88/udp open|filtered kerberos-sec
- 123/udp open|filtered ntp
- 137/udp filtered netbios-ns
- 138/udp filtered netbios-dgm
- 139/udp open|filtered netbios-ssn
- 161/udp open|filtered snmp
- 162/udp open|filtered snmptrap
- 389/udp open|filtered ldap
- 520/udp open|filtered route
- 2049/udp open|filtered nfs
- Too many fingerprints match this host to give specific OS details
- Service Info: OS: Linux; CPE: cpe:/o:redhat:enterprise_linux:6
- TRACEROUTE (using port 137/udp)
- HOP RTT ADDRESS
- 1 108.15 ms 10.252.200.1
- 2 ... 3
- 4 108.14 ms 10.252.200.1
- 5 109.95 ms 10.252.200.1
- 6 109.94 ms 10.252.200.1
- 7 109.92 ms 10.252.200.1
- 8 109.91 ms 10.252.200.1
- 9 109.90 ms 10.252.200.1
- 10 109.92 ms 10.252.200.1
- 11 ... 18
- 19 109.12 ms 10.252.200.1
- 20 109.35 ms 10.252.200.1
- 21 ... 28
- 29 109.68 ms 10.252.200.1
- 30 108.04 ms 10.252.200.1
- NSE: Script Post-scanning.
- Initiating NSE at 07:27
- Completed NSE at 07:27, 0.00s elapsed
- Initiating NSE at 07:27
- Completed NSE at 07:27, 0.00s elapsed
- Read data files from: /usr/bin/../share/nmap
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 136.92 seconds
- Raw packets sent: 131 (11.438KB) | Rcvd: 43 (4.422KB)
- #######################################################################################################################################
- [+] URL: http://vtckosti.gov.sd/
- [+] Started: Tue Apr 23 02:39:22 2019
- Interesting Finding(s):
- [+] http://vtckosti.gov.sd/
- | Interesting Entries:
- | - X-Powered-By: PHP/7.3.1
- | - X-UA-Compatible: IE=edge
- | Found By: Headers (Passive Detection)
- | Confidence: 100%
- [+] http://vtckosti.gov.sd/xmlrpc.php
- | Found By: Link Tag (Passive Detection)
- | Confidence: 100%
- | Confirmed By: Direct Access (Aggressive Detection), 100% confidence
- | References:
- | - http://codex.wordpress.org/XML-RPC_Pingback_API
- | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_ghost_scanner
- | - https://www.rapid7.com/db/modules/auxiliary/dos/http/wordpress_xmlrpc_dos
- | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_xmlrpc_login
- | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_pingback_access
- [+] http://vtckosti.gov.sd/readme.html
- | Found By: Direct Access (Aggressive Detection)
- | Confidence: 100%
- [+] Registration is enabled: http://vtckosti.gov.sd/wp-login.php?action=register
- | Found By: Direct Access (Aggressive Detection)
- | Confidence: 100%
- [+] http://vtckosti.gov.sd/wp-cron.php
- | Found By: Direct Access (Aggressive Detection)
- | Confidence: 60%
- | References:
- | - https://www.iplocation.net/defend-wordpress-from-ddos
- | - https://github.com/wpscanteam/wpscan/issues/1299
- [+] WordPress version 5.1.1 identified (Latest, released on 2019-03-13).
- | Detected By: Rss Generator (Passive Detection)
- | - http://vtckosti.gov.sd/?feed=rss2, <generator>https://wordpress.org/?v=5.1.1</generator>
- | - http://vtckosti.gov.sd/?feed=comments-rss2, <generator>https://wordpress.org/?v=5.1.1</generator>
- [+] WordPress theme in use: jannah
- | Location: http://vtckosti.gov.sd/wp-content/themes/jannah/
- | Style URL: http://vtckosti.gov.sd/wp-content/themes/jannah/style.css
- | Style Name: Jannah
- | Style URI: http://jannah.tielabs.com/
- | Description: Beautiful, Powerful & Flexible WordPress Theme for News, Magazine and Blog websites....
- | Author: TieLabs
- | Author URI: https://tielabs.com/
- |
- | Detected By: Urls In Homepage (Passive Detection)
- |
- | Version: 2.0.4 (80% confidence)
- | Detected By: Style (Passive Detection)
- | - http://vtckosti.gov.sd/wp-content/themes/jannah/style.css, Match: 'Version: 2.0.4'
- [+] Enumerating All Plugins (via Passive Methods)
- [+] Checking Plugin Versions (via Passive and Aggressive Methods)
- [i] Plugin(s) Identified:
- [+] contact-form-7
- | Location: http://vtckosti.gov.sd/wp-content/plugins/contact-form-7/
- | Latest Version: 5.1.1 (up to date)
- | Last Updated: 2018-12-18T18:05:00.000Z
- |
- | Detected By: Urls In Homepage (Passive Detection)
- |
- | Version: 5.1.1 (100% confidence)
- | Detected By: Readme - Stable Tag (Aggressive Detection)
- | - http://vtckosti.gov.sd/wp-content/plugins/contact-form-7/readme.txt
- | Confirmed By: Readme - ChangeLog Section (Aggressive Detection)
- | - http://vtckosti.gov.sd/wp-content/plugins/contact-form-7/readme.txt
- [+] gtranslate
- | Location: http://vtckosti.gov.sd/wp-content/plugins/gtranslate/
- | Latest Version: 2.8.46 (up to date)
- | Last Updated: 2019-03-02T09:44:00.000Z
- |
- | Detected By: Urls In Homepage (Passive Detection)
- |
- | Version: 2.8.46 (100% confidence)
- | Detected By: Readme - Stable Tag (Aggressive Detection)
- | - http://vtckosti.gov.sd/wp-content/plugins/gtranslate/readme.txt
- | Confirmed By: Readme - ChangeLog Section (Aggressive Detection)
- | - http://vtckosti.gov.sd/wp-content/plugins/gtranslate/readme.txt
- [+] instanow
- | Location: http://vtckosti.gov.sd/wp-content/plugins/instanow/
- |
- | Detected By: Urls In Homepage (Passive Detection)
- |
- | The version could not be determined.
- [+] js_composer
- | Location: http://vtckosti.gov.sd/wp-content/plugins/js_composer/
- |
- | Detected By: Urls In Homepage (Passive Detection)
- | Confirmed By: Body Tag (Passive Detection)
- |
- | Version: 5.7 (60% confidence)
- | Detected By: Body Tag (Passive Detection)
- | - http://vtckosti.gov.sd/, Match: 'js-comp-ver-5.7'
- [+] mailpoet
- | Location: http://vtckosti.gov.sd/wp-content/plugins/mailpoet/
- | Last Updated: 2019-04-16T07:53:00.000Z
- | [!] The version is out of date, the latest version is 3.23.2
- |
- | Detected By: Urls In Homepage (Passive Detection)
- |
- | Version: 3.22.0 (80% confidence)
- | Detected By: Readme - Stable Tag (Aggressive Detection)
- | - http://vtckosti.gov.sd/wp-content/plugins/mailpoet/readme.txt
- [+] mechanic-visitor-counter
- | Location: http://vtckosti.gov.sd/wp-content/plugins/mechanic-visitor-counter/
- | Last Updated: 2016-12-28T11:49:00.000Z
- | [!] The version is out of date, the latest version is 3.2.2
- |
- | Detected By: Urls In Homepage (Passive Detection)
- |
- | Version: 3.1 (80% confidence)
- | Detected By: Readme - Stable Tag (Aggressive Detection)
- | - http://vtckosti.gov.sd/wp-content/plugins/mechanic-visitor-counter/readme.txt
- [+] photo-gallery
- | Location: http://vtckosti.gov.sd/wp-content/plugins/photo-gallery/
- | Last Updated: 2019-04-22T13:24:00.000Z
- | [!] The version is out of date, the latest version is 1.5.21
- |
- | Detected By: Urls In Homepage (Passive Detection)
- |
- | Version: 1.5.20 (100% confidence)
- | Detected By: Readme - Stable Tag (Aggressive Detection)
- | - http://vtckosti.gov.sd/wp-content/plugins/photo-gallery/readme.txt
- | Confirmed By: Readme - ChangeLog Section (Aggressive Detection)
- | - http://vtckosti.gov.sd/wp-content/plugins/photo-gallery/readme.txt
- [+] taqyeem-buttons
- | Location: http://vtckosti.gov.sd/wp-content/plugins/taqyeem-buttons/
- |
- | Detected By: Urls In Homepage (Passive Detection)
- |
- | The version could not be determined.
- [+] traffic-counter-widget
- | Location: http://vtckosti.gov.sd/wp-content/plugins/traffic-counter-widget/
- | Latest Version: 2.1.2 (up to date)
- | Last Updated: 2012-12-15T18:41:00.000Z
- |
- | Detected By: Urls In Homepage (Passive Detection)
- |
- | Version: 2.1.2 (80% confidence)
- | Detected By: Readme - Stable Tag (Aggressive Detection)
- | - http://vtckosti.gov.sd/wp-content/plugins/traffic-counter-widget/readme.txt
- [+] wp-statistics
- | Location: http://vtckosti.gov.sd/wp-content/plugins/wp-statistics/
- | Last Updated: 2019-04-13T12:28:00.000Z
- | [!] The version is out of date, the latest version is 12.6.3
- |
- | Detected By: Comment (Passive Detection)
- |
- | Version: 12.6.1 (100% confidence)
- | Detected By: Comment (Passive Detection)
- | - http://vtckosti.gov.sd/, Match: 'Analytics by WP-Statistics v12.6.1'
- | Confirmed By:
- | Readme - Stable Tag (Aggressive Detection)
- | - http://vtckosti.gov.sd/wp-content/plugins/wp-statistics/readme.txt
- | Readme - ChangeLog Section (Aggressive Detection)
- | - http://vtckosti.gov.sd/wp-content/plugins/wp-statistics/readme.txt
- [+] Enumerating Config Backups (via Passive and Aggressive Methods)
- Checking Config Backups - Time: 00:00:01 <===> (21 / 21) 100.00% Time: 00:00:01
- [i] No Config Backups Found.
- [+] Finished: Tue Apr 23 02:40:38 2019
- [+] Requests Done: 81
- [+] Cached Requests: 5
- [+] Data Sent: 23.907 KB
- [+] Data Received: 645.756 KB
- [+] Memory used: 192.227 MB
- [+] Elapsed time: 00:01:15
- #######################################################################################################################################
- --------------------------------------------------------------------------------------------------------------------------------------
- + Target IP: 5.9.149.251
- + Target Hostname: vtckosti.gov.sd
- + Target Port: 80
- + Start Time: 2019-04-23 03:23:39 (GMT-4)
- ---------------------------------------------------------------------------------------------------------------------------------------
- + Server: No banner retrieved
- + The anti-clickjacking X-Frame-Options header is not present.
- + The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
- + The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type
- + ERROR: Error limit (20) reached for host, giving up. Last error: error reading HTTP response
- + Scan terminated: 20 error(s) and 3 item(s) reported on remote host
- + End Time: 2019-04-23 03:30:26 (GMT-4) (407 seconds)
- ---------------------------------------------------------------------------------------------------------------------------------------
- ######################################################################################################################################
- ---------------------------------------------------------------------------------------------------------------------------------------
- + Target IP: 5.9.149.251
- + Target Hostname: 5.9.149.251
- + Target Port: 443
- ---------------------------------------------------------------------------------------------------------------------------------------
- + SSL Info: Subject: /CN=aau.edu.sd
- Ciphers: ECDHE-RSA-AES256-GCM-SHA384
- Issuer: /CN=aau.edu.sd
- + Start Time: 2019-04-23 03:24:35 (GMT-4)
- ---------------------------------------------------------------------------------------------------------------------------------------
- + Server: Apache
- + The anti-clickjacking X-Frame-Options header is not present.
- + The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
- + The site uses SSL and the Strict-Transport-Security HTTP header is not defined.
- + The site uses SSL and Expect-CT header is not present.
- + The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type
- + ERROR: Error limit (20) reached for host, giving up. Last error: opening stream: can't connect: Connect failed: ; Connection timed out at /var/lib/nikto/plugins/LW2.pm line 5157.
- : Connection timed out
- + Scan terminated: 20 error(s) and 5 item(s) reported on remote host
- + End Time: 2019-04-23 03:31:21 (GMT-4) (406 seconds)
- ---------------------------------------------------------------------------------------------------------------------------------------
- #######################################################################################################################################
- Anonymous JTSEC #OpSudan Full Recon #59
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement