Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #######################################################################################################################################
- =======================================================================================================================================
- Hostname www.glmmg.org.br ISP CLARO S.A.
- Continent South America Flag
- BR
- Country Brazil Country Code BR
- Region Rio de Janeiro Local time 9 Sep 2019 03:15
- City Niterói Postal Code 24000
- IP Address 189.3.58.120 Latitude -22.922
- Longitude -43.103
- =======================================================================================================================================
- #######################################################################################################################################
- > www.glmmg.org.br
- Server: 185.93.180.131
- Address: 185.93.180.131#53
- Non-authoritative answer:
- Name: www.glmmg.org.br
- Address: 189.3.58.120
- >
- #######################################################################################################################################
- domain: glmmg.org.br
- owner: GRANDE LOJA MACONICA DE MINAS GERAIS
- ownerid: 17.416.355/0001-69
- responsible: Edilson de Oliveira
- country: BR
- owner-c: GLMMG
- admin-c: GLMMG
- tech-c: GLMMG
- billing-c: GLMMG
- nserver: ns.embratel.net.br
- nsstat: 20190907 AA
- nslastaa: 20190907
- nserver: ns2.embratel.net.br
- nsstat: 20190907 AA
- nslastaa: 20190907
- created: 19970714 #47237
- changed: 20180622
- expires: 20210714
- status: published
- nic-hdl-br: GLMMG
- person: Grande Loja Maçonica MG
- e-mail: cpd@glmmg.org.br
- country: BR
- created: 20080926
- changed: 20190225
- ######################################################################################################################################
- [+] Target : www.glmmg.org.br
- [+] IP Address : 189.3.58.120
- [+] Headers :
- [+] Date : Mon, 09 Sep 2019 06:22:29 GMT
- [+] Server : Apache
- [+] X-Powered-By : PHP/5.4.36
- [+] Content-Length : 63
- [+] Keep-Alive : timeout=5, max=100
- [+] Connection : Keep-Alive
- [+] Content-Type : text/html
- [+] SSL Certificate Information :
- [-] SSL is not Present on Target URL...Skipping...
- [+] Whois Lookup :
- [+] NIR : None
- [+] ASN Registry : lacnic
- [+] ASN : 4230
- [+] ASN CIDR : 189.3.0.0/16
- [+] ASN Country Code : BR
- [+] ASN Date : 2006-09-06
- [+] ASN Description : CLARO S.A., BR
- [+] cidr : 189.3.58.112/28
- [+] name : None
- [+] handle : None
- [+] range : 189.3.58.112 - 189.3.58.127
- [+] description : GRANDE LOJA MACONICA DE MINAS GERAIS
- [+] country : BR
- [+] state : None
- [+] city : None
- [+] address : None
- [+] postal_code : None
- [+] emails : ['cpd@glmmg.org.br', 'abuse@embratel.net.br', 'cert@cert.br']
- [+] created : 20100415
- [+] updated : 20100415
- [+] Crawling Target...
- [+] Looking for robots.txt........[ Found ]
- [+] Extracting robots Links.......[ 11 ]
- [+] Looking for sitemap.xml.......[ Not Found ]
- [+] Extracting CSS Links..........[ 0 ]
- [+] Extracting Javascript Links...[ 0 ]
- [+] Extracting Internal Links.....[ 0 ]
- [+] Extracting External Links.....[ 0 ]
- [+] Extracting Images.............[ 0 ]
- [+] Total Links Extracted : 11
- [+] Dumping Links in /opt/FinalRecon/dumps/www.glmmg.org.br.dump
- [+] Completed!
- #######################################################################################################################################
- [+] Starting At 2019-09-09 02:23:21.576737
- [+] Collecting Information On: http://www.glmmg.org.br/novo/
- [#] Status: 200
- --------------------------------------------------
- [#] Web Server Detected: Apache
- [#] X-Powered-By: PHP/5.4.36
- [!] X-Frame-Options Headers not detect! target might be vulnerable Click Jacking
- - Date: Mon, 09 Sep 2019 06:23:20 GMT
- - Server: Apache
- - X-Powered-By: PHP/5.4.36
- - Set-Cookie: PHPSESSID=1epd7qkkmbfe9rmmie5m8up007; path=/
- - Expires: Thu, 19 Nov 1981 08:52:00 GMT
- - Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
- - Pragma: no-cache
- - Keep-Alive: timeout=5, max=100
- - Connection: Keep-Alive
- - Transfer-Encoding: chunked
- - Content-Type: text/html
- --------------------------------------------------
- [#] Finding Location..!
- [#] as: AS4230 Latin American and Caribbean IP address Regional Registry
- [#] city: Santa Efigênia
- [#] country: Brazil
- [#] countryCode: BR
- [#] isp: Claro S.A
- [#] lat: -19.9254
- [#] lon: -43.9246
- [#] org: Grande Loja Maconica De Minas Gerais
- [#] query: 189.3.58.120
- [#] region: MG
- [#] regionName: Minas Gerais
- [#] status: success
- [#] timezone: America/Cuiaba
- [#] zip:
- --------------------------------------------------
- [x] Didn't Detect WAF Presence on: http://www.glmmg.org.br/novo/
- --------------------------------------------------
- [#] Starting Reverse DNS
- [-] Failed ! Fail
- --------------------------------------------------
- [!] Scanning Open Port
- [#] 21/tcp open ftp
- [#] 80/tcp open http
- [#] 110/tcp open pop3
- [#] 143/tcp open imap
- [#] 366/tcp open odmr
- [#] 587/tcp open submission
- [#] 1000/tcp open cadlock
- [#] 3000/tcp open ppp
- [#] 8080/tcp open http-proxy
- --------------------------------------------------
- [+] Collecting Information Disclosure!
- [#] Detecting sitemap.xml file
- [!] sitemap.xml File Found: http://www.glmmg.org.br/novo//sitemap.xml
- [#] Detecting robots.txt file
- [!] robots.txt File Found: http://www.glmmg.org.br/novo//robots.txt
- [#] Detecting GNU Mailman
- [-] GNU Mailman App Not Detected!?
- --------------------------------------------------
- [+] Crawling Url Parameter On: http://www.glmmg.org.br/novo/
- --------------------------------------------------
- [#] Searching Html Form !
- [+] Html Form Discovered
- [#] action: http://www.glmmg.org.br:3000/WorldClient.dll?View=Main
- [#] class: ['form-horizontal']
- [#] id: None
- [#] method: post
- --------------------------------------------------
- [!] Found 14 dom parameter
- [#] http://www.glmmg.org.br/novo/#
- [#] http://www.glmmg.org.br/novo//#ccr-slide-main
- [#] http://www.glmmg.org.br/novo//#ccr-slide-main
- [#] http://www.glmmg.org.br/novo//#
- [#] http://www.glmmg.org.br/novo//#
- [#] http://www.glmmg.org.br/novo//#
- [#] http://www.glmmg.org.br/novo//#
- [#] http://www.glmmg.org.br/novo//#
- [#] http://www.glmmg.org.br/novo//#
- [#] http://www.glmmg.org.br/novo//#
- [#] http://www.glmmg.org.br/novo//#
- [#] http://www.glmmg.org.br/novo//#
- [#] http://www.glmmg.org.br/novo//#
- [#] http://www.glmmg.org.br/novo//#
- --------------------------------------------------
- [-] No internal Dynamic Parameter Found!?
- --------------------------------------------------
- [!] 2 External Dynamic Parameter Discovered
- [#] https://www.instagram.com/glmmg_oficial/?hl=pt-br
- [#] https://www.instagram.com/glmmg_oficial/?hl=pt-br
- --------------------------------------------------
- [!] 52 Internal links Discovered
- [+] http://www.glmmg.org.br/novo/css/bootstrap.min.css
- [+] http://www.glmmg.org.br/novo/css/bootstrap-theme.min.css
- [+] http://www.glmmg.org.br/novo/css/font-awesome.min.css
- [+] http://www.glmmg.org.br/novo/css/style.css
- [+] http://www.glmmg.org.br/novo/principal/
- [+] http://www.glmmg.org.br/novo/faleConosco
- [+] http://www.glmmg.org.br/novo//principal
- [+] http://www.glmmg.org.br/novo//principal
- [+] http://www.glmmg.org.br/novo/faleConosco
- [+] http://www.glmmg.org.br/novo/noticias/nome/Desfile-CÃvico-Militar-de-7-de-Setembro-em-Belo-Horizonte/id/2779
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/Quem-somos
- [+] http://www.glmmg.org.br/novo/noticias/nome/Desfile-CÃvico-Militar-de-7-de-Setembro-em-Belo-Horizonte/id/2779
- [+] http://www.glmmg.org.br/novo/noticias/nome/Programação-para-a-Investidura-â-Grau-33/id/2778
- [+] http://www.glmmg.org.br/novo/noticias/nome/Convite---Desfile-7-de-Setembro---GLMMG/id/2777
- [+] http://www.glmmg.org.br/novo/noticias/nome/Sessão-Solene-do-Congresso-Nacional---Vice-presidente-da-República,-Hamilton-Mourão/id/2776
- [+] http://www.glmmg.org.br/novo/noticias/nome/21-08-19---Reunião-Especial-alusiva-ao-Dia-do-Maçom---Câmara-Municipal-de-Belo-Horizonte/id/2775
- [+] http://www.glmmg.org.br/novo/noticias/nome/Sessão-Solene-do-Congresso-Nacional/id/2774
- [+] http://www.glmmg.org.br/novo/noticias/nome/Desfile-CÃvico-Militar-de-7-de-Setembro-em-Belo-Horizonte/id/2779
- [+] http://www.glmmg.org.br/novo/noticias/nome/Programação-para-a-Investidura-â-Grau-33/id/2778
- [+] http://www.glmmg.org.br/novo/noticias/nome/Convite---Desfile-7-de-Setembro---GLMMG/id/2777
- [+] http://www.glmmg.org.br/novo/noticias/nome/21-08-19---Reunião-Especial-alusiva-ao-Dia-do-Maçom---Câmara-Municipal-de-Belo-Horizonte/id/2775
- [+] http://www.glmmg.org.br/novo/index.html
- [+] http://glmmg.org.br
- --------------------------------------------------
- [!] 7 External links Discovered
- [#] https://www.youtube.com/channel/UC1qmjh2BUc2-ZhNKm041VhQ
- [#] https://twitter.com/glmmg
- [#] https://www.facebook.com/GLMMG/
- [#] https://www.facebook.com/GLMMG
- [#] https://www.youtube.com/channel/UC1qmjh2BUc2-ZhNKm041VhQ
- [#] https://twitter.com/glmmg
- [#] https://www.facebook.com/GLMMG/
- --------------------------------------------------
- [#] Mapping Subdomain..
- [!] Found 7 Subdomain
- - acacia3.glmmg.org.br
- - mail.glmmg.org.br
- - financeiro.glmmg.org.br
- - lojas.glmmg.org.br
- - obreiros.glmmg.org.br
- - news.glmmg.org.br
- - www.glmmg.org.br
- --------------------------------------------------
- [!] Done At 2019-09-09 02:24:39.341216
- #######################################################################################################################################
- [i] Scanning Site: http://www.glmmg.org.br
- B A S I C I N F O
- ====================
- [+] Site Title:
- [+] IP address: 189.3.58.120
- [+] Web Server: Apache
- [+] CMS: Could Not Detect
- [+] Cloudflare: Not Detected
- [+] Robots File: Found
- -------------[ contents ]----------------
- User-agent: Googlebot
- Disallow: /
- User-agent: Slurp
- Disallow: /
- User-agent: MSNBot
- Disallow: /
- User-agent: Googlebot-Image
- Disallow: /
- User-agent: yahoo-mmcrawler
- Disallow: /
- User-agent: psbot
- Disallow: /
- User-agent: *
- Disallow: /
- Disallow: /app/files
- Disallow: /app/imagens
- Disallow: /app/
- Disallow: /lojas
- Disallow: /admin
- Disallow: /files
- Disallow: /Gestao.Cadastro
- Disallow: /Gestao.Financeiro
- Disallow: /Gestao.News
- Disallow: /Gestao.Revista
- -----------[end of contents]-------------
- W H O I S L O O K U P
- ========================
- % Copyright (c) Nic.br
- % The use of the data below is only permitted as described in
- % full by the terms of use at https://registro.br/termo/en.html ,
- % being prohibited its distribution, commercialization or
- % reproduction, in particular, to use it for advertising or
- % any similar purpose.
- % 2019-09-09T03:23:16-03:00
- domain: glmmg.org.br
- owner: GRANDE LOJA MACONICA DE MINAS GERAIS
- ownerid: 17.416.355/0001-69
- responsible: Edilson de Oliveira
- country: BR
- owner-c: GLMMG
- admin-c: GLMMG
- tech-c: GLMMG
- billing-c: GLMMG
- nserver: ns.embratel.net.br
- nsstat: 20190907 AA
- nslastaa: 20190907
- nserver: ns2.embratel.net.br
- nsstat: 20190907 AA
- nslastaa: 20190907
- created: 19970714 #47237
- changed: 20180622
- expires: 20210714
- status: published
- nic-hdl-br: GLMMG
- person: Grande Loja Maçonica MG
- e-mail: cpd@glmmg.org.br
- country: BR
- created: 20080926
- changed: 20190225
- % Security and mail abuse issues should also be addressed to
- % cert.br, http://www.cert.br/ , respectivelly to cert@cert.br
- % and mail-abuse@cert.br
- %
- % whois.registro.br accepts only direct match queries. Types
- % of queries are: domain (.br), registrant (tax ID), ticket,
- % provider, contact handle (ID), CIDR block, IP and ASN.
- G E O I P L O O K U P
- =========================
- [i] IP Address: 189.3.58.120
- [i] Country: Brazil
- [i] State:
- [i] City:
- [i] Latitude: -22.8305
- [i] Longitude: -43.2192
- H T T P H E A D E R S
- =======================
- [i] HTTP/1.1 200 OK
- [i] Date: Mon, 09 Sep 2019 06:23:18 GMT
- [i] Server: Apache
- [i] X-Powered-By: PHP/5.4.36
- [i] Content-Length: 63
- [i] Connection: close
- [i] Content-Type: text/html
- D N S L O O K U P
- ===================
- glmmg.org.br. 3599 IN SOA ns.embratel.net.br. admin.embratel.net.br. 2018090301 3600 900 604800 86400
- glmmg.org.br. 3599 IN NS ns.embratel.net.br.
- glmmg.org.br. 3599 IN NS ns2.embratel.net.br.
- glmmg.org.br. 3599 IN A 189.3.58.120
- glmmg.org.br. 3599 IN MX 5 mail.glmmg.org.br.
- S U B N E T C A L C U L A T I O N
- ====================================
- Address = 189.3.58.120
- Network = 189.3.58.120 / 32
- Netmask = 255.255.255.255
- Broadcast = not needed on Point-to-Point links
- Wildcard Mask = 0.0.0.0
- Hosts Bits = 0
- Max. Hosts = 1 (2^0 - 0)
- Host Range = { 189.3.58.120 - 189.3.58.120 }
- N M A P P O R T S C A N
- ============================
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-09-09 06:23 UTC
- Nmap scan report for glmmg.org.br (189.3.58.120)
- Host is up (0.14s latency).
- rDNS record for 189.3.58.120: mail.glmmg.org.br
- PORT STATE SERVICE
- 21/tcp open ftp
- 22/tcp filtered ssh
- 23/tcp filtered telnet
- 80/tcp open http
- 110/tcp open pop3
- 143/tcp open imap
- 443/tcp filtered https
- 3389/tcp filtered ms-wbt-server
- Nmap done: 1 IP address (1 host up) scanned in 2.72 seconds
- S U B - D O M A I N F I N D E R
- ==================================
- [i] Total Subdomains Found : 6
- [+] Subdomain: mail.glmmg.org.br
- [-] IP: 189.3.58.120
- [+] Subdomain: financeiro.glmmg.org.br
- [-] IP: 189.3.58.120
- [+] Subdomain: lojas.glmmg.org.br
- [-] IP: 189.3.58.120
- [+] Subdomain: obreiros.glmmg.org.br
- [-] IP: 189.3.58.120
- [+] Subdomain: news.glmmg.org.br
- [-] IP: 189.3.58.120
- [+] Subdomain: www.glmmg.org.br
- [-] IP: 189.3.58.120
- #######################################################################################################################################
- [INFO] ------TARGET info------
- [*] TARGET: http://www.glmmg.org.br/novo/
- [*] TARGET IP: 189.3.58.120
- [INFO] NO load balancer detected for www.glmmg.org.br...
- [*] DNS servers: ns.embratel.net.br.
- [*] TARGET server: Apache
- [*] CC: BR
- [*] Country: Brazil
- [*] RegionCode: MG
- [*] RegionName: Minas Gerais
- [*] City: Santa Efigênia
- [*] ASN: AS4230
- [*] BGP_PREFIX: 189.3.0.0/16
- [*] ISP: CLARO S.A., BR
- [INFO] DNS enumeration:
- [*] mail.glmmg.org.br 189.3.58.120
- [*] news.glmmg.org.br 189.3.58.120
- [INFO] Possible abuse mails are:
- [*] abuse@glmmg.org.br
- [*] abuse@www.glmmg.org.br
- [*] amartins@embratel.net.br
- [*] mail-abuse@cert.br
- [*] postmaster@embratel.net.br
- [INFO] NO PAC (Proxy Auto Configuration) file FOUND
- [ALERT] robots.txt file FOUND in http://www.glmmg.org.br/robots.txt
- [INFO] Checking for HTTP status codes recursively from http://www.glmmg.org.br/robots.txt
- [INFO] Status code Folders
- [*] 200 http://www.glmmg.org.br/Gestao.Revista
- [INFO] Starting FUZZing in http://www.glmmg.org.br/FUzZzZzZzZz...
- [INFO] Status code Folders
- [ALERT] Look in the source code. It may contain passwords
- [INFO] SAME content in http://www.glmmg.org.br/ AND http://189.3.58.120/
- [INFO] Links found from http://www.glmmg.org.br/novo/:
- [*] http://glmmg.org.br/
- [*] https://twitter.com/glmmg
- [*] https://www.facebook.com/GLMMG/
- [*] https://www.instagram.com/glmmg_oficial/?hl=pt-br
- [*] https://www.youtube.com/channel/UC1qmjh2BUc2-ZhNKm041VhQ
- [*] http://www.glmmg.org.br/novo/
- [*] http://www.glmmg.org.br/novo/Administração/
- [*] http://www.glmmg.org.br/novo/Câmaras-da-GLMMG/
- [*] http://www.glmmg.org.br/novo/Casa-de-Apoio/
- [*] http://www.glmmg.org.br/novo/#ccr-slide-main
- [*] http://www.glmmg.org.br/novo/Clube-Pelicanos
- [*] http://www.glmmg.org.br/novo/Como-tornar-me-um-maçom-/
- [*] http://www.glmmg.org.br/novo/Definição/
- [*] http://www.glmmg.org.br/novo/Escola-Maçônica/
- [*] http://www.glmmg.org.br/novo/faleConosco
- [*] http://www.glmmg.org.br/novo/Fotos/
- [*] http://www.glmmg.org.br/novo/GLMMG
- [*] http://www.glmmg.org.br/novo/Grandes-Lojas-do-Brasil/
- [*] http://www.glmmg.org.br/novo/Grandes-Lojas-do-Mundo/
- [*] http://www.glmmg.org.br/novo/Graus-Filosóficos/
- [*] http://www.glmmg.org.br/novo/História/
- [*] http://www.glmmg.org.br/novo/Histórico/
- [*] http://www.glmmg.org.br/novo/index.html
- [*] http://www.glmmg.org.br/novo/Links
- [*] http://www.glmmg.org.br/novo/Localização-dos-Apartamentos/
- [*] http://www.glmmg.org.br/novo/Loja-de-Pesquisas/
- [*] http://www.glmmg.org.br/novo/Lojas-Filiadas
- [*] http://www.glmmg.org.br/novo/Maçonaria
- [*] http://www.glmmg.org.br/novo/Maçonaria-em-Destaque/
- [*] http://www.glmmg.org.br/novo/Normas-de-Utilização/
- [*] http://www.glmmg.org.br/novo/Notícias
- [*] http://www.glmmg.org.br/novo/noticias/nome/21-08-19---Reunião-Especial-alusiva-ao-Dia-do-Maçom---Câmara-Municipal-de-Belo-Horizonte/id/2775
- [*] http://www.glmmg.org.br/novo/noticias/nome/Convite---Desfile-7-de-Setembro---GLMMG/id/2777
- [*] http://www.glmmg.org.br/novo/noticias/nome/Desfile-Cívico-Militar-de-7-de-Setembro-em-Belo-Horizonte/id/2779
- [*] http://www.glmmg.org.br/novo/noticias/nome/GLMMG-lança-o-"PROGRAMA-FRAT"/id/2754
- [*] http://www.glmmg.org.br/novo/noticias/nome/Programação-para-a-Investidura-–-Grau-33/id/2778
- [*] http://www.glmmg.org.br/novo/noticias/nome/Projeto-“Cidadania-Efetiva”/id/2753
- [*] http://www.glmmg.org.br/novo/noticias/nome/Sessão-Solene-do-Congresso-Nacional/id/2774
- [*] http://www.glmmg.org.br/novo/noticias/nome/Sessão-Solene-do-Congresso-Nacional---Vice-presidente-da-República,-Hamilton-Mourão/id/2776
- [*] http://www.glmmg.org.br/novo/Onde-Fica/
- [*] http://www.glmmg.org.br/novo/Paramaçônicas
- [*] http://www.glmmg.org.br/novo/Potências
- [*] http://www.glmmg.org.br/novo//principal
- [*] http://www.glmmg.org.br/novo/principal/
- [*] http://www.glmmg.org.br/novo/Princípios/
- [*] http://www.glmmg.org.br/novo/Projetos
- [*] http://www.glmmg.org.br/novo/Quem-somos
- [*] http://www.glmmg.org.br/novo/Reservas/
- [*] http://www.glmmg.org.br/novo/Revista-Arte-Real/
- [*] http://www.glmmg.org.br/novo/Revistas
- [*] http://www.glmmg.org.br/novo/Secretarias-da-GLMMG/
- [*] http://www.glmmg.org.br/novo/Ser-Maçom/
- [INFO] GOOGLE has 29,300 results (0.19 seconds) about http://www.glmmg.org.br/
- [INFO] Shodan detected the following opened ports on 189.3.58.120:
- [*] 1
- [*] 110
- [*] 13
- [*] 143
- [*] 21
- [*] 214
- [*] 25
- [*] 3000
- [*] 4
- [*] 5
- [*] 50
- [*] 587
- [*] 80
- [*] 8080
- [INFO] ------VirusTotal SECTION------
- [INFO] VirusTotal passive DNS only stores address records. The following domains resolved to the given IP address:
- [INFO] Latest URLs hosted in this IP address detected by at least one URL scanner or malicious URL dataset:
- [INFO] Latest files that are not detected by any antivirus solution and were downloaded by VirusTotal from the IP address provided:
- [INFO] ------Alexa Rank SECTION------
- [INFO] Percent of Visitors Rank in Country:
- [INFO] Percent of Search Traffic:
- [INFO] Percent of Unique Visits:
- [INFO] Total Sites Linking In:
- [*] Total Sites
- [INFO] Useful links related to www.glmmg.org.br - 189.3.58.120:
- [*] https://www.virustotal.com/pt/ip-address/189.3.58.120/information/
- [*] https://www.hybrid-analysis.com/search?host=189.3.58.120
- [*] https://www.shodan.io/host/189.3.58.120
- [*] https://www.senderbase.org/lookup/?search_string=189.3.58.120
- [*] https://www.alienvault.com/open-threat-exchange/ip/189.3.58.120
- [*] http://pastebin.com/search?q=189.3.58.120
- [*] http://urlquery.net/search.php?q=189.3.58.120
- [*] http://www.alexa.com/siteinfo/www.glmmg.org.br
- [*] http://www.google.com/safebrowsing/diagnostic?site=www.glmmg.org.br
- [*] https://censys.io/ipv4/189.3.58.120
- [*] https://www.abuseipdb.com/check/189.3.58.120
- [*] https://urlscan.io/search/#189.3.58.120
- [*] https://github.com/search?q=189.3.58.120&type=Code
- [INFO] Useful links related to AS4230 - 189.3.0.0/16:
- [*] http://www.google.com/safebrowsing/diagnostic?site=AS:4230
- [*] https://www.senderbase.org/lookup/?search_string=189.3.0.0/16
- [*] http://bgp.he.net/AS4230
- [*] https://stat.ripe.net/AS4230
- [INFO] Date: 09/09/19 | Time: 02:25:54
- [INFO] Total time: 2 minute(s) and 29 second(s)
- #######################################################################################################################################
- [*] Load target domain: glmmg.org.br
- - starting scanning @ 2019-09-09 02:29:43
- [+] Running & Checking source to be used
- ---------------------------------------------
- ⍥ Shodan [ ✕ ]
- ⍥ Webarchive [ ✔ ]
- ⍥ Dnsdumpster [ ✔ ]
- ⍥ Certspotter [ ✔ ]
- ⍥ Entrust [ ✔ ]
- ⍥ Riddler [ ✔ ]
- ⍥ Bufferover [ ✔ ]
- ⍥ Hackertarget [ ✔ ]
- ⍥ Threatcrowd [ ✔ ]
- ⍥ Censys [ ✕ ]
- ⍥ Securitytrails [ ✕ ]
- ⍥ Binaryedge [ ✕ ]
- ⍥ Virustotal [ ✕ ]
- ⍥ Threatminer [ ✔ ]
- ⍥ Certsh [ ✔ ]
- ⍥ Findsubdomain [ ✔ ]
- [+] Get & Count subdomain total From source
- ---------------------------------------------
- ⍥ Hackertarget: Total Subdomain (7)
- ⍥ Findsubdomain: Total Subdomain (1)
- ⍥ Certspotter: Total Subdomain (2)
- ⍥ Threatminer: Total Subdomain (0)
- ⍥ Certsh: Total Subdomain (1)
- ⍥ BufferOver: Total Subdomain (7)
- ⍥ Entrust: Total Subdomain (1)
- ⍥ Threatcrowd: Total Subdomain (0)
- ⍥ Dnsdumpster: Total Subdomain (10)
- ⍥ Riddler: Total Subdomain (1)
- ⍥ Webarchive: Total Subdomain (1)
- [+] Parsing & Sorting list Domain
- ---------------------------------------------
- ⍥ Total [9]
- - 5 mail.glmmg.org.br.
- - acacia3.glmmg.org.br
- - financeiro.glmmg.org.br
- - glmmg.org.br
- - lojas.glmmg.org.br
- - mail.glmmg.org.br
- - news.glmmg.org.br
- - obreiros.glmmg.org.br
- - www.glmmg.org.br
- ⍥ Total [9]
- [+] Probe subdomain for working on http/https
- ---------------------------------------------
- - http://www.glmmg.org.br
- - http://glmmg.org.br
- - http://news.glmmg.org.br
- - http://financeiro.glmmg.org.br
- - http://acacia3.glmmg.org.br
- - http://lojas.glmmg.org.br
- - http://obreiros.glmmg.org.br
- - http://mail.glmmg.org.br
- ⍥ Total [8]
- [+] Check Live Host: Ping Sweep - ICMP PING
- ---------------------------------------------
- ⍥ [DEAD] 5
- ⍥ [LIVE] mail.glmmg.org.br.
- ⍥ [LIVE] acacia3.glmmg.org.br
- ⍥ [LIVE] financeiro.glmmg.org.br
- ⍥ [LIVE] glmmg.org.br
- ⍥ [LIVE] lojas.glmmg.org.br
- ⍥ [LIVE] mail.glmmg.org.br
- ⍥ [LIVE] news.glmmg.org.br
- ⍥ [LIVE] obreiros.glmmg.org.br
- ⍥ [LIVE] www.glmmg.org.br
- [+] Check Resolving: Subdomains & Domains
- ---------------------------------------------
- ⍥ Resolving domains to: RESOLVE ERROR
- ⍥ Resolving domains to: 189.3.58.120
- ⍥ Resolving domains to: 189.3.58.120
- ⍥ Resolving domains to: 189.3.58.120
- ⍥ Resolving domains to: 189.3.58.120
- ⍥ Resolving domains to: 189.3.58.120
- ⍥ Resolving domains to: 189.3.58.120
- ⍥ Resolving domains to: 189.3.58.120
- ⍥ Resolving domains to: 189.3.58.120
- ⍥ Resolving domains to: 189.3.58.120
- [+] Subdomain TakeOver - Check Possible Vulns
- ---------------------------------------------
- ⍥ [FAILS] En: Unknown http://acacia3.glmmg.org.br
- ⍥ [FAILS] En: Unknown http://lojas.glmmg.org.br
- ⍥ [FAILS] En: Unknown http://www.glmmg.org.br
- ⍥ [FAILS] En: Unknown http://news.glmmg.org.br
- ⍥ [FAILS] En: Unknown http://glmmg.org.br
- ⍥ [FAILS] En: Unknown http://financeiro.glmmg.org.br
- ⍥ [FAILS] En: Unknown http://obreiros.glmmg.org.br
- ⍥ [FAILS] En: Unknown http://mail.glmmg.org.br
- [+] Checks status code on port 80 and 443
- ---------------------------------------------
- ⍥ [200] http://acacia3.glmmg.org.br
- ⍥ [200] http://lojas.glmmg.org.br
- ⍥ [200] http://www.glmmg.org.br
- ⍥ [200] http://news.glmmg.org.br
- ⍥ [200] http://glmmg.org.br
- ⍥ [200] http://financeiro.glmmg.org.br
- ⍥ [200] http://obreiros.glmmg.org.br
- ⍥ [200] http://mail.glmmg.org.br
- [+] Web Screenshots: from domain list
- ---------------------------------------------
- [+] 8 URLs to be screenshot
- [+] 8 actual URLs screenshot
- [+] 0 error(s)
- [+] Sud⍥my has been sucessfully completed
- ---------------------------------------------
- ⍥ Location output:
- - output/09-09-2019/glmmg.org.br
- - output/09-09-2019/glmmg.org.br/report
- - output/09-09-2019/glmmg.org.br/screenshots
- #######################################################################################################################################
- Trying "glmmg.org.br"
- ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 39695
- ;; flags: qr rd ra; QUERY: 1, ANSWER: 5, AUTHORITY: 2, ADDITIONAL: 2
- ;; QUESTION SECTION:
- ;glmmg.org.br. IN ANY
- ;; ANSWER SECTION:
- glmmg.org.br. 3600 IN MX 5 mail.glmmg.org.br.
- glmmg.org.br. 3600 IN A 189.3.58.120
- glmmg.org.br. 3600 IN SOA ns.embratel.net.br. admin.embratel.net.br. 2018090301 3600 900 604800 86400
- glmmg.org.br. 3600 IN NS ns.embratel.net.br.
- glmmg.org.br. 3600 IN NS ns2.embratel.net.br.
- ;; AUTHORITY SECTION:
- glmmg.org.br. 3600 IN NS ns2.embratel.net.br.
- glmmg.org.br. 3600 IN NS ns.embratel.net.br.
- ;; ADDITIONAL SECTION:
- ns2.embratel.net.br. 580 IN A 200.245.255.33
- ns.embratel.net.br. 580 IN A 200.255.253.241
- Received 217 bytes from 2001:18c0:121:6900:724f:b8ff:fefd:5b6a#53 in 281 ms
- #######################################################################################################################################
- ; <<>> DiG 9.11.5-P4-5.1+b1-Debian <<>> +trace glmmg.org.br
- ;; global options: +cmd
- . 84852 IN NS g.root-servers.net.
- . 84852 IN NS d.root-servers.net.
- . 84852 IN NS m.root-servers.net.
- . 84852 IN NS l.root-servers.net.
- . 84852 IN NS f.root-servers.net.
- . 84852 IN NS j.root-servers.net.
- . 84852 IN NS e.root-servers.net.
- . 84852 IN NS k.root-servers.net.
- . 84852 IN NS c.root-servers.net.
- . 84852 IN NS b.root-servers.net.
- . 84852 IN NS h.root-servers.net.
- . 84852 IN NS a.root-servers.net.
- . 84852 IN NS i.root-servers.net.
- . 84852 IN RRSIG NS 8 0 518400 20190922050000 20190909040000 59944 . UdevRT5xRd+xLrIiCOgOJvCQyYg+GtsS+27xyFTrdzuu147InV6Z3rJG 588jQ6Qkv54DO2olI94IRTo+7rGpvBg3QR3uPNAI2CXyL3RtADrjQ1Eh AhvGuq3VAjGoLh4upughjB5Vz3ZFnj8hv+KeEodYDXEk58uAHnWM+fVt EI660UE2Lsm20pjkt6DC7ePkdad9c4tSboSCWUtqWJASkWDMJ27Jn4ww EWGx/QqfPV+gnd/dvB1iGbuk9KeUR7ZSVktrfsgAf3MWVx2yL9irmqf3 8haedccQxutc8B19xH9jUrW3BdLV0/BzINhBjmG1DVRi5P69ZonS5f/G PVh+Zg==
- ;; Received 525 bytes from 185.93.180.131#53(185.93.180.131) in 162 ms
- br. 172800 IN NS a.dns.br.
- br. 172800 IN NS b.dns.br.
- br. 172800 IN NS c.dns.br.
- br. 172800 IN NS d.dns.br.
- br. 172800 IN NS e.dns.br.
- br. 172800 IN NS f.dns.br.
- br. 86400 IN DS 2471 13 2 5E4F35998B8F909557FA119C4CBFDCA2D660A26F069EF006B403758A 07D1A2E4
- br. 86400 IN RRSIG DS 8 1 86400 20190922050000 20190909040000 59944 . eathNtSWCMFofqyFnBqLlcsVVKDFAlK+PamhkBp3lhY4m7S4PvLLwgkn //H85vSB0LAn38S0rDACEJKfhIVXapb6BQXMkHAcY9ULvb30tckH7J2k q+ivqz/dvBpyFIpRcmIf1M6ugMvlSxeU16gRvUPcCodj5iX3rzwa+vU6 xp+DD8GKOf6uNe5F3Si/1yB51c59JAa9V2IIH+aYQRziP8VKt9zQtMQR v2qGYOEnKHBdpt+Slv1uIwFNL5o941DtR7OQl/IZ9LRPq7zuQtHDirPA /+4LeVKOYEFyy61xg5KBq+17yMAYk59mCl3OQc+KjMbdK1iZat1ucnbn F4poUQ==
- ;; Received 740 bytes from 199.7.83.42#53(l.root-servers.net) in 435 ms
- glmmg.org.br. 3600 IN NS ns.embratel.net.br.
- glmmg.org.br. 3600 IN NS ns2.embratel.net.br.
- 8ibcveen5720n44l12on35ti99p48dfq.org.br. 900 IN NSEC3 1 1 10 1ED197E8FB8CAF6322BC 8ICM44EE54CNOQDKEDVKHHOQFOIQG8RR NS SOA RRSIG DNSKEY NSEC3PARAM
- 8ibcveen5720n44l12on35ti99p48dfq.org.br. 900 IN RRSIG NSEC3 13 3 900 20190923063007 20190909053007 50774 org.br. 6Iej9vt1EnEy2boJOXo7RRIic1oxpNxBvPEEksLdapvNBmKIjmCy6uZ5 ZYdPPOX/yg3Pyi0z9ZrNShBpKmaf0Q==
- asks2h5ctbmgsq815p1b554uj3ee3kc8.org.br. 900 IN NSEC3 1 1 10 1ED197E8FB8CAF6322BC AT3V26E6OMLBE2AO6O3KVDMS20RG27B0 NS DS RRSIG
- asks2h5ctbmgsq815p1b554uj3ee3kc8.org.br. 900 IN RRSIG NSEC3 13 3 900 20190919202508 20190905192508 50774 org.br. GxkJllUI9YKSjT/+py3GfoKg1T1tp4lrwaGHlWbdH2dyMiW0Ow3jMs80 hqpb6S345mj8fdLauAIHYTvo5L7f8Q==
- ;; Received 500 bytes from 200.229.248.10#53(e.dns.br) in 222 ms
- glmmg.org.br. 3600 IN A 189.3.58.120
- glmmg.org.br. 3600 IN NS ns2.embratel.net.br.
- glmmg.org.br. 3600 IN NS ns.embratel.net.br.
- ;; Received 137 bytes from 200.245.255.33#53(ns2.embratel.net.br) in 399 ms
- #######################################################################################################################################
- [*] Processing domain glmmg.org.br
- [*] Using system resolvers ['185.93.180.131', '194.187.251.67', '38.132.106.139', '192.168.0.1', '2001:18c0:121:6900:724f:b8ff:fefd:5b6a']
- [+] Getting nameservers
- 200.245.255.33 - ns2.embratel.net.br
- 200.255.253.241 - ns.embratel.net.br
- [-] Zone transfer failed
- [+] MX records found, added to target list
- 5 mail.glmmg.org.br.
- [*] Scanning glmmg.org.br for A records
- 189.3.58.120 - glmmg.org.br
- 189.3.58.120 - mail.glmmg.org.br
- 189.3.58.120 - news.glmmg.org.br
- 189.3.58.120 - www.glmmg.org.br
- #######################################################################################################################################
- Parsero scan report for www.glmmg.org.br
- http://www.glmmg.org.br/ 200 OK
- http://www.glmmg.org.br/Gestao.Financeiro 301 Moved Permanently
- http://www.glmmg.org.br/files 301 Moved Permanently
- http://www.glmmg.org.br/Gestao.News 301 Moved Permanently
- http://www.glmmg.org.br/Gestao.Revista 301 Moved Permanently
- http://www.glmmg.org.br/app/ 403 Forbidden
- http://www.glmmg.org.br/lojas 404 Not Found
- http://www.glmmg.org.br/admin 301 Moved Permanently
- http://www.glmmg.org.br/Gestao.Cadastro 403 Forbidden
- http://www.glmmg.org.br/app/files 301 Moved Permanently
- http://www.glmmg.org.br/app/imagens 301 Moved Permanently
- #######################################################################################################################################
- Domains still to check: 1
- Checking if the hostname glmmg.org.br. given is in fact a domain...
- Analyzing domain: glmmg.org.br.
- Checking NameServers using system default resolver...
- IP: 200.245.255.33 (Brazil)
- HostName: ns2.embratel.net.br Type: NS
- HostName: wks01.rjoen.embratel.net.br Type: PTR
- IP: 200.255.253.241 (Brazil)
- HostName: ns.embratel.net.br Type: NS
- HostName: wks01.rjo.embratel.net.br Type: PTR
- Checking MailServers using system default resolver...
- IP: 189.3.58.120 (Brazil)
- HostName: mail.glmmg.org.br Type: MX
- HostName: mail.glmmg.org.br Type: PTR
- Checking the zone transfer for each NS... (if this takes more than 10 seconds, just hit CTRL-C and it will continue. Bug in the libs)
- No zone transfer found on nameserver 200.255.253.241
- No zone transfer found on nameserver 200.245.255.33
- Checking SPF record...
- No SPF record
- Checking 192 most common hostnames using system default resolver...
- IP: 189.3.58.120 (Brazil)
- HostName: mail.glmmg.org.br Type: MX
- HostName: mail.glmmg.org.br Type: PTR
- HostName: www.glmmg.org.br. Type: A
- IP: 189.3.58.120 (Brazil)
- HostName: mail.glmmg.org.br Type: MX
- HostName: mail.glmmg.org.br Type: PTR
- HostName: www.glmmg.org.br. Type: A
- HostName: mail.glmmg.org.br. Type: A
- Checking with nmap the reverse DNS hostnames of every <ip>/24 netblock using system default resolver...
- Checking netblock 200.255.253.0
- Checking netblock 189.3.58.0
- Checking netblock 200.245.255.0
- Searching for glmmg.org.br. emails in Google
- obreirosdobem@glmmg.org.br.
- gerencia@glmmg.org.br.
- macons@glmmg.org.br.
- tataco@glmmg.org.br.
- teatrodamaconaria@glmmg.org.br.
- cpd@glmmg.org.br.
- rodrigo@glmmg.org.br.
- macons@glmmg.org.br&
- grao.mestre@glmmg.org.br.
- marlos@glmmg.org.brb
- grao-mestre@glmmg.org.br
- quirino@glmmg.org.br
- Checking 3 active hosts using nmap... (nmap -sn -n -v -PP -PM -PS80,25 -PA -PY -PU53,40125 -PE --reason <ip> -oA <output_directory>/nmap/<ip>.sn)
- Host 200.255.253.241 is up (reset ttl 64)
- Host 189.3.58.120 is up (reset ttl 64)
- Host 200.245.255.33 is up (reset ttl 64)
- Checking ports on every active host using nmap... (nmap -O --reason --webxml --traceroute -sS -sV -sC -Pn -n -v -F <ip> -oA <output_directory>/nmap/<ip>)
- Scanning ip 200.255.253.241 (wks01.rjo.embratel.net.br (PTR)):
- Scanning ip 189.3.58.120 (mail.glmmg.org.br.):
- 21/tcp open ftp syn-ack ttl 117 Microsoft ftpd
- | ftp-syst:
- |_ SYST: Windows_NT
- 80/tcp open http syn-ack ttl 117 Apache httpd (PHP 5.4.36)
- |_http-favicon: Unknown favicon MD5: DC73893A813A0BBAED9C9AB13B110D43
- | http-methods:
- |_ Supported Methods: GET HEAD POST OPTIONS
- | http-robots.txt: 11 disallowed entries
- | / /app/files /app/imagens /app/ /lojas /admin /files
- |_/Gestao.Cadastro /Gestao.Financeiro /Gestao.News /Gestao.Revista
- |_http-server-header: Apache
- |_http-title: Site doesn't have a title (text/html).
- 110/tcp open pop3 syn-ack ttl 117 MDaemon pop3d 13.5.1
- |_pop3-capabilities: USER UIDL TOP APOP STLS
- |_ssl-date: 2019-09-09T06:40:34+00:00; -5s from scanner time.
- 143/tcp open imap syn-ack ttl 117 Alt-N MDaemon imapd 13.5.1
- |_imap-capabilities: COMPRESS=DEFLATE ACL AUTH=LOGIN XLISTA0001 STARTTLS CAPABILITY IDLE AUTH=CRAM-MD5 UNSELECT UIDPLUS OK BINARY QUOTA NAMESPACE completed IMAP4rev1 AUTH=PLAIN
- |_ssl-date: 2019-09-09T06:40:35+00:00; -4s from scanner time.
- 587/tcp open smtp syn-ack ttl 117 MDaemon smtpd 13.5.1 (Unregistered)
- | smtp-commands: mail.glmmg.org.br Hello nmap.scanme.org, pleased to meet you, AUTH LOGIN CRAM-MD5 PLAIN, 8BITMIME, STARTTLS, SIZE,
- |_ Help system currently inactive
- |_ssl-date: 2019-09-09T06:40:35+00:00; -4s from scanner time.
- 3000/tcp open http syn-ack ttl 117 World Client WDaemon httpd 4.0 (Alt-N MDaemon webmail)
- |_http-favicon: Unknown favicon MD5: C20D6ACF6F2EF7662FF5EA83DEE4B4CE
- | http-methods:
- |_ Supported Methods: GET HEAD POST OPTIONS
- | http-robots.txt: 19 disallowed entries (15 shown)
- | /.WML/ /.XHTML/ /All/ /apple-touch-icon.png /BES/
- | /ckeditor/ /ComAgentInstall.exe /Debug/ /favicon.ico /Help/
- | /LookOut/ /MDAirSync.dll /MDAutoDiscover.dll /MDBis.dll
- |_/MDSyncML.dll
- |_http-title: WorldClient
- 8080/tcp open http syn-ack ttl 117 Microsoft IIS httpd 8.5
- | http-methods:
- | Supported Methods: OPTIONS TRACE GET HEAD POST
- |_ Potentially risky methods: TRACE
- |_http-server-header: Microsoft-IIS/8.5
- | http-title: G2L. Gestor Grande Loja.
- |_Requested resource was http://189.3.58.120:8080/g2lAccessCredential.aspx
- Device type: general purpose|WAP
- Running (JUST GUESSING): Linux 2.6.X|2.4.X (88%)
- OS Info: Service Info: Host: mail.glmmg.org.br; OS: Windows; CPE: cpe:/o:microsoft:windows
- |_clock-skew: mean: -4s, deviation: 0s, median: -4s
- Scanning ip 200.245.255.33 (wks01.rjoen.embratel.net.br (PTR)):
- 21/tcp open ftp syn-ack ttl 56 vsftpd 2.0.8 or later
- | ftp-anon: Anonymous FTP login allowed (FTP code 230)
- | drwxr-xr-x 3 0 0 4096 Oct 18 2017 incoming
- |_dr-xr-xr-x 5 0 1 4096 Aug 18 2010 pub
- | ftp-syst:
- | STAT:
- | FTP server status:
- | Connected to 45.131.4.19
- | Logged in as ftp
- | TYPE: ASCII
- | No session bandwidth limit
- | Session timeout in seconds is 60
- | Control connection is plain text
- | Data connections will be plain text
- | At session startup, client count was 3
- | vsFTPd 2.0.5 - secure, fast, stable
- |_End of status
- 53/tcp open domain syn-ack ttl 56 ISC BIND
- WebCrawling domain's web servers... up to 50 max links.
- + URL to crawl: http://www.glmmg.org.br.
- + Date: 2019-09-09
- + Crawling URL: http://www.glmmg.org.br.:
- + Links:
- + Crawling http://www.glmmg.org.br.
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: http://mail.glmmg.org.br.
- + Date: 2019-09-09
- + Crawling URL: http://mail.glmmg.org.br.:
- + Links:
- + Crawling http://mail.glmmg.org.br.
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: http://mail.glmmg.org.br
- + Date: 2019-09-09
- + Crawling URL: http://mail.glmmg.org.br:
- + Links:
- + Crawling http://mail.glmmg.org.br
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: http://www.glmmg.org.br.:3000
- + Date: 2019-09-09
- + Crawling URL: http://www.glmmg.org.br.:3000:
- + Links:
- + Crawling http://www.glmmg.org.br.:3000
- + Crawling http://www.glmmg.org.br.:3000/favicon.ico?v=13.5.1c
- + Crawling http://www.glmmg.org.br.:3000/LookOut/pages/logon.css?v=13.5.1 (File! Not crawling it.)
- + Crawling http://www.glmmg.org.br.:3000/LookOut/globals.min.js?v=13.5.1 (File! Not crawling it.)
- + Crawling http://www.glmmg.org.br.:3000/All/JavaScript/jquery-latest.js?v=13.5.1 (File! Not crawling it.)
- + Searching for directories...
- - Found: http://www.glmmg.org.br.:3000/All/
- - Found: http://www.glmmg.org.br.:3000/All/Images/
- - Found: http://www.glmmg.org.br.:3000/LookOut/
- - Found: http://www.glmmg.org.br.:3000/LookOut/pages/
- - Found: http://www.glmmg.org.br.:3000/All/JavaScript/
- + Searching open folders...
- - http://www.glmmg.org.br.:3000/All/ (403 Forbidden)
- - http://www.glmmg.org.br.:3000/All/Images/ (403 Forbidden)
- - http://www.glmmg.org.br.:3000/LookOut/ (403 Forbidden)
- - http://www.glmmg.org.br.:3000/LookOut/pages/ (403 Forbidden)
- - http://www.glmmg.org.br.:3000/All/JavaScript/ (403 Forbidden)
- + URL to crawl: http://mail.glmmg.org.br.:3000
- + Date: 2019-09-09
- + Crawling URL: http://mail.glmmg.org.br.:3000:
- + Links:
- + Crawling http://mail.glmmg.org.br.:3000
- + Crawling http://mail.glmmg.org.br.:3000/favicon.ico?v=13.5.1c
- + Crawling http://mail.glmmg.org.br.:3000/LookOut/pages/logon.css?v=13.5.1 (File! Not crawling it.)
- + Crawling http://mail.glmmg.org.br.:3000/LookOut/globals.min.js?v=13.5.1 (File! Not crawling it.)
- + Crawling http://mail.glmmg.org.br.:3000/All/JavaScript/jquery-latest.js?v=13.5.1 (File! Not crawling it.)
- + Searching for directories...
- - Found: http://mail.glmmg.org.br.:3000/All/
- - Found: http://mail.glmmg.org.br.:3000/All/Images/
- - Found: http://mail.glmmg.org.br.:3000/LookOut/
- - Found: http://mail.glmmg.org.br.:3000/LookOut/pages/
- - Found: http://mail.glmmg.org.br.:3000/All/JavaScript/
- + Searching open folders...
- - http://mail.glmmg.org.br.:3000/All/ (403 Forbidden)
- - http://mail.glmmg.org.br.:3000/All/Images/ (403 Forbidden)
- - http://mail.glmmg.org.br.:3000/LookOut/ (403 Forbidden)
- - http://mail.glmmg.org.br.:3000/LookOut/pages/ (403 Forbidden)
- - http://mail.glmmg.org.br.:3000/All/JavaScript/ (403 Forbidden)
- + URL to crawl: http://mail.glmmg.org.br:3000
- + Date: 2019-09-09
- + Crawling URL: http://mail.glmmg.org.br:3000:
- + Links:
- + Crawling http://mail.glmmg.org.br:3000
- + Crawling http://mail.glmmg.org.br:3000/favicon.ico?v=13.5.1c
- + Crawling http://mail.glmmg.org.br:3000/LookOut/pages/logon.css?v=13.5.1 (File! Not crawling it.)
- + Crawling http://mail.glmmg.org.br:3000/LookOut/globals.min.js?v=13.5.1 (File! Not crawling it.)
- + Crawling http://mail.glmmg.org.br:3000/All/JavaScript/jquery-latest.js?v=13.5.1 (File! Not crawling it.)
- + Searching for directories...
- - Found: http://mail.glmmg.org.br:3000/All/
- - Found: http://mail.glmmg.org.br:3000/All/Images/
- - Found: http://mail.glmmg.org.br:3000/LookOut/
- - Found: http://mail.glmmg.org.br:3000/LookOut/pages/
- - Found: http://mail.glmmg.org.br:3000/All/JavaScript/
- + Searching open folders...
- - http://mail.glmmg.org.br:3000/All/ (403 Forbidden)
- - http://mail.glmmg.org.br:3000/All/Images/ (403 Forbidden)
- - http://mail.glmmg.org.br:3000/LookOut/ (403 Forbidden)
- - http://mail.glmmg.org.br:3000/LookOut/pages/ (403 Forbidden)
- - http://mail.glmmg.org.br:3000/All/JavaScript/ (403 Forbidden)
- + URL to crawl: http://www.glmmg.org.br.:8080
- + Date: 2019-09-09
- + Crawling URL: http://www.glmmg.org.br.:8080:
- + Links:
- + Crawling http://www.glmmg.org.br.:8080 (400 Bad Request)
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: http://mail.glmmg.org.br.:8080
- + Date: 2019-09-09
- + Crawling URL: http://mail.glmmg.org.br.:8080:
- + Links:
- + Crawling http://mail.glmmg.org.br.:8080 (400 Bad Request)
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: http://mail.glmmg.org.br:8080
- + Date: 2019-09-09
- + Crawling URL: http://mail.glmmg.org.br:8080:
- + Links:
- + Crawling http://mail.glmmg.org.br:8080
- + Crawling http://mail.glmmg.org.br:8080/extjs/resources/css/ext-all-embedded-css/ext.axd?v=24026 (File! Not crawling it.)
- + Crawling http://mail.glmmg.org.br:8080/extjs/resources/css/xtheme-slate-embedded-css/ext.axd?v=24026 (File! Not crawling it.)
- + Crawling http://mail.glmmg.org.br:8080/extjs/adapter/ext/ext-base-js/ext.axd?v=24026 (File! Not crawling it.)
- + Crawling http://mail.glmmg.org.br:8080/extjs/ext-all-js/ext.axd?v=24026 (File! Not crawling it.)
- + Crawling http://mail.glmmg.org.br:8080/extnet/extnet-core-js/ext.axd?v=24026 (File! Not crawling it.)
- + Crawling http://mail.glmmg.org.br:8080/extnet/locale/ext-lang-pt-BR-js/ext.axd?v=24026 (File! Not crawling it.)
- + Searching for directories...
- - Found: http://mail.glmmg.org.br:8080/Resources/
- - Found: http://mail.glmmg.org.br:8080/Resources/CSS/
- - Found: http://mail.glmmg.org.br:8080/Resources/Icon/
- - Found: http://mail.glmmg.org.br:8080/extjs/
- - Found: http://mail.glmmg.org.br:8080/extjs/resources/
- - Found: http://mail.glmmg.org.br:8080/extjs/resources/css/
- - Found: http://mail.glmmg.org.br:8080/extjs/resources/css/ext-all-embedded-css/
- - Found: http://mail.glmmg.org.br:8080/extjs/resources/css/xtheme-slate-embedded-css/
- - Found: http://mail.glmmg.org.br:8080/extjs/adapter/
- - Found: http://mail.glmmg.org.br:8080/extjs/adapter/ext/
- - Found: http://mail.glmmg.org.br:8080/extjs/adapter/ext/ext-base-js/
- - Found: http://mail.glmmg.org.br:8080/extjs/ext-all-js/
- - Found: http://mail.glmmg.org.br:8080/extnet/
- - Found: http://mail.glmmg.org.br:8080/extnet/extnet-core-js/
- - Found: http://mail.glmmg.org.br:8080/extnet/locale/
- - Found: http://mail.glmmg.org.br:8080/extnet/locale/ext-lang-pt-BR-js/
- + Searching open folders...
- - http://mail.glmmg.org.br:8080/Resources/ (403 Forbidden)
- - http://mail.glmmg.org.br:8080/Resources/CSS/ (403 Forbidden)
- - http://mail.glmmg.org.br:8080/Resources/Icon/ (403 Forbidden)
- - http://mail.glmmg.org.br:8080/extjs/ (404 Not Found)
- - http://mail.glmmg.org.br:8080/extjs/resources/ (404 Not Found)
- - http://mail.glmmg.org.br:8080/extjs/resources/css/ (404 Not Found)
- - http://mail.glmmg.org.br:8080/extjs/resources/css/ext-all-embedded-css/ (404 Not Found)
- - http://mail.glmmg.org.br:8080/extjs/resources/css/xtheme-slate-embedded-css/ (404 Not Found)
- - http://mail.glmmg.org.br:8080/extjs/adapter/ (404 Not Found)
- - http://mail.glmmg.org.br:8080/extjs/adapter/ext/ (404 Not Found)
- - http://mail.glmmg.org.br:8080/extjs/adapter/ext/ext-base-js/ (404 Not Found)
- - http://mail.glmmg.org.br:8080/extjs/ext-all-js/ (404 Not Found)
- - http://mail.glmmg.org.br:8080/extnet/ (404 Not Found)
- - http://mail.glmmg.org.br:8080/extnet/extnet-core-js/ (404 Not Found)
- - http://mail.glmmg.org.br:8080/extnet/locale/ (404 Not Found)
- - http://mail.glmmg.org.br:8080/extnet/locale/ext-lang-pt-BR-js/ (404 Not Found)
- --Finished--
- Summary information for domain glmmg.org.br.
- -----------------------------------------
- Domain Specific Information:
- Email: obreirosdobem@glmmg.org.br.
- Email: gerencia@glmmg.org.br.
- Email: macons@glmmg.org.br.
- Email: tataco@glmmg.org.br.
- Email: teatrodamaconaria@glmmg.org.br.
- Email: cpd@glmmg.org.br.
- Email: rodrigo@glmmg.org.br.
- Email: macons@glmmg.org.br&
- Email: grao.mestre@glmmg.org.br.
- Email: marlos@glmmg.org.brb
- Email: grao-mestre@glmmg.org.br
- Email: quirino@glmmg.org.br
- Domain Ips Information:
- IP: 200.255.253.241
- HostName: ns.embratel.net.br Type: NS
- HostName: wks01.rjo.embratel.net.br Type: PTR
- Country: Brazil
- Is Active: True (reset ttl 64)
- IP: 189.3.58.120
- HostName: mail.glmmg.org.br Type: MX
- HostName: mail.glmmg.org.br Type: PTR
- HostName: www.glmmg.org.br. Type: A
- HostName: mail.glmmg.org.br. Type: A
- Country: Brazil
- Is Active: True (reset ttl 64)
- Port: 21/tcp open ftp syn-ack ttl 117 Microsoft ftpd
- Script Info: | ftp-syst:
- Script Info: |_ SYST: Windows_NT
- Port: 80/tcp open http syn-ack ttl 117 Apache httpd (PHP 5.4.36)
- Script Info: |_http-favicon: Unknown favicon MD5: DC73893A813A0BBAED9C9AB13B110D43
- Script Info: | http-methods:
- Script Info: |_ Supported Methods: GET HEAD POST OPTIONS
- Script Info: | http-robots.txt: 11 disallowed entries
- Script Info: | / /app/files /app/imagens /app/ /lojas /admin /files
- Script Info: |_/Gestao.Cadastro /Gestao.Financeiro /Gestao.News /Gestao.Revista
- Script Info: |_http-server-header: Apache
- Script Info: |_http-title: Site doesn't have a title (text/html).
- Port: 110/tcp open pop3 syn-ack ttl 117 MDaemon pop3d 13.5.1
- Script Info: |_pop3-capabilities: USER UIDL TOP APOP STLS
- Script Info: |_ssl-date: 2019-09-09T06:40:34+00:00; -5s from scanner time.
- Port: 143/tcp open imap syn-ack ttl 117 Alt-N MDaemon imapd 13.5.1
- Script Info: |_imap-capabilities: COMPRESS=DEFLATE ACL AUTH=LOGIN XLISTA0001 STARTTLS CAPABILITY IDLE AUTH=CRAM-MD5 UNSELECT UIDPLUS OK BINARY QUOTA NAMESPACE completed IMAP4rev1 AUTH=PLAIN
- Script Info: |_ssl-date: 2019-09-09T06:40:35+00:00; -4s from scanner time.
- Port: 587/tcp open smtp syn-ack ttl 117 MDaemon smtpd 13.5.1 (Unregistered)
- Script Info: | smtp-commands: mail.glmmg.org.br Hello nmap.scanme.org, pleased to meet you, AUTH LOGIN CRAM-MD5 PLAIN, 8BITMIME, STARTTLS, SIZE,
- Script Info: |_ Help system currently inactive
- Script Info: |_ssl-date: 2019-09-09T06:40:35+00:00; -4s from scanner time.
- Port: 3000/tcp open http syn-ack ttl 117 World Client WDaemon httpd 4.0 (Alt-N MDaemon webmail)
- Script Info: |_http-favicon: Unknown favicon MD5: C20D6ACF6F2EF7662FF5EA83DEE4B4CE
- Script Info: | http-methods:
- Script Info: |_ Supported Methods: GET HEAD POST OPTIONS
- Script Info: | http-robots.txt: 19 disallowed entries (15 shown)
- Script Info: | /.WML/ /.XHTML/ /All/ /apple-touch-icon.png /BES/
- Script Info: | /ckeditor/ /ComAgentInstall.exe /Debug/ /favicon.ico /Help/
- Script Info: | /LookOut/ /MDAirSync.dll /MDAutoDiscover.dll /MDBis.dll
- Script Info: |_/MDSyncML.dll
- Script Info: |_http-title: WorldClient
- Port: 8080/tcp open http syn-ack ttl 117 Microsoft IIS httpd 8.5
- Script Info: | http-methods:
- Script Info: | Supported Methods: OPTIONS TRACE GET HEAD POST
- Script Info: |_ Potentially risky methods: TRACE
- Script Info: |_http-server-header: Microsoft-IIS/8.5
- Script Info: | http-title: G2L. Gestor Grande Loja.
- Script Info: |_Requested resource was http://189.3.58.120:8080/g2lAccessCredential.aspx
- Script Info: Device type: general purpose|WAP
- Script Info: Running (JUST GUESSING): Linux 2.6.X|2.4.X (88%)
- Os Info: Host: mail.glmmg.org.br; OS: Windows; CPE: cpe:/o:microsoft:windows
- Script Info: |_clock-skew: mean: -4s, deviation: 0s, median: -4s
- IP: 200.245.255.33
- HostName: ns2.embratel.net.br Type: NS
- HostName: wks01.rjoen.embratel.net.br Type: PTR
- Country: Brazil
- Is Active: True (reset ttl 64)
- Port: 21/tcp open ftp syn-ack ttl 56 vsftpd 2.0.8 or later
- Script Info: | ftp-anon: Anonymous FTP login allowed (FTP code 230)
- Script Info: | drwxr-xr-x 3 0 0 4096 Oct 18 2017 incoming
- Script Info: |_dr-xr-xr-x 5 0 1 4096 Aug 18 2010 pub
- Script Info: | ftp-syst:
- Script Info: | STAT:
- Script Info: | FTP server status:
- Script Info: | Connected to 45.131.4.19
- Script Info: | Logged in as ftp
- Script Info: | TYPE: ASCII
- Script Info: | No session bandwidth limit
- Script Info: | Session timeout in seconds is 60
- Script Info: | Control connection is plain text
- Script Info: | Data connections will be plain text
- Script Info: | At session startup, client count was 3
- Script Info: | vsFTPd 2.0.5 - secure, fast, stable
- Script Info: |_End of status
- Port: 53/tcp open domain syn-ack ttl 56 ISC BIND
- #######################################################################################################################################
- [+] www.glmmg.org.br has no SPF record!
- [*] No DMARC record found. Looking for organizational record
- [+] No organizational DMARC record
- [+] Spoofing possible for www.glmmg.org.br!
- #######################################################################################################################################
- Starting Nmap 7.80 ( https://nmap.org ) at 2019-09-09 02:57 EDT
- Warning: 189.3.58.120 giving up on port because retransmission cap hit (2).
- Nmap scan report for www.glmmg.org.br (189.3.58.120)
- Host is up (0.41s latency).
- rDNS record for 189.3.58.120: mail.glmmg.org.br
- Not shown: 468 filtered ports, 7 closed ports
- Some closed ports may be reported as filtered due to --defeat-rst-ratelimit
- PORT STATE SERVICE
- 21/tcp open ftp
- 80/tcp open http
- 110/tcp open pop3
- 143/tcp open imap
- 587/tcp open submission
- 1000/tcp open cadlock
- 3000/tcp open ppp
- 8080/tcp open http-proxy
- Nmap done: 1 IP address (1 host up) scanned in 97.52 seconds
- #######################################################################################################################################
- Starting Nmap 7.80 ( https://nmap.org ) at 2019-09-09 02:59 EDT
- Nmap scan report for www.glmmg.org.br (189.3.58.120)
- Host is up (0.24s latency).
- rDNS record for 189.3.58.120: mail.glmmg.org.br
- Not shown: 3 closed ports, 2 filtered ports
- PORT STATE SERVICE
- 67/udp open|filtered dhcps
- 69/udp open|filtered tftp
- 88/udp open|filtered kerberos-sec
- 123/udp open|filtered ntp
- 139/udp open|filtered netbios-ssn
- 161/udp open|filtered snmp
- 162/udp open|filtered snmptrap
- 500/udp open|filtered isakmp
- 520/udp open|filtered route
- 2049/udp open|filtered nfs
- Nmap done: 1 IP address (1 host up) scanned in 6.18 seconds
- #######################################################################################################################################
- Starting Nmap 7.80 ( https://nmap.org ) at 2019-09-09 02:59 EDT
- NSE: [ftp-brute] usernames: Time limit 3m00s exceeded.
- NSE: [ftp-brute] usernames: Time limit 3m00s exceeded.
- NSE: [ftp-brute] passwords: Time limit 3m00s exceeded.
- Nmap scan report for www.glmmg.org.br (189.3.58.120)
- Host is up (0.32s latency).
- rDNS record for 189.3.58.120: mail.glmmg.org.br
- PORT STATE SERVICE VERSION
- 21/tcp open ftp Microsoft ftpd
- | ftp-brute:
- | Accounts: No valid accounts found
- |_ Statistics: Performed 1788 guesses in 181 seconds, average tps: 9.3
- | ftp-syst:
- |_ SYST: Windows_NT
- |_vulscan: ERROR: Script execution failed (use -d to debug)
- Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- OS fingerprint not ideal because: Timing level 5 (Insane) used
- No OS matches for host
- Network Distance: 13 hops
- Service Info: OS: Windows; CPE: cpe:/o:microsoft:windows
- TRACEROUTE (using port 21/tcp)
- HOP RTT ADDRESS
- 1 140.17 ms 10.240.204.1
- 2 251.62 ms 45.131.4.3
- 3 251.59 ms 109.236.95.228
- 4 251.65 ms hu0-1-0-7.rcr21.ams06.atlas.cogentco.com (149.14.93.73)
- 5 251.67 ms be3458.ccr42.ams03.atlas.cogentco.com (154.54.39.185)
- 6 251.69 ms be2317.ccr41.jfk02.atlas.cogentco.com (154.54.30.185)
- 7 251.74 ms be3627.ccr41.jfk02.atlas.cogentco.com (66.28.4.197)
- 8 251.73 ms 38.88.194.106
- 9 251.78 ms 38.88.194.106
- 10 356.51 ms ebt-Plag-111-core01.bhe.embratel.net.br (200.230.220.93)
- 11 530.29 ms 200.244.22.149
- 12 418.82 ms ebt-P3-2-1-agg02.bhe.embratel.net.br (200.244.24.42)
- 13 418.81 ms mail.glmmg.org.br (189.3.58.120)
- #######################################################################################################################################
- wig - WebApp Information Gatherer
- Scanning http://www.glmmg.org.br...
- _____________________ SITE INFO _____________________
- IP Title
- 189.3.58.120
- ______________________ VERSION ______________________
- Name Versions Type
- Apache Platform
- PHP 5.4.36 Platform
- ____________________ INTERESTING ____________________
- URL Note Type
- /robots.txt robots.txt index Interesting
- _____________________________________________________
- Time: 17.1 sec Urls: 598 Fingerprints: 40401
- #######################################################################################################################################
- HTTP/1.1 200 OK
- Date: Mon, 09 Sep 2019 07:04:36 GMT
- Server: Apache
- X-Powered-By: PHP/5.4.36
- Content-Type: text/html
- HTTP/1.1 200 OK
- Date: Mon, 09 Sep 2019 07:04:37 GMT
- Server: Apache
- X-Powered-By: PHP/5.4.36
- Content-Type: text/html
- ######################################################################################################################################
- Starting Nmap 7.80 ( https://nmap.org ) at 2019-09-09 03:05 EDT
- Nmap scan report for www.glmmg.org.br (189.3.58.120)
- Host is up (0.36s latency).
- rDNS record for 189.3.58.120: mail.glmmg.org.br
- PORT STATE SERVICE VERSION
- 110/tcp open pop3 MDaemon pop3d 13.5.1
- | pop3-brute:
- | Accounts: No valid accounts found
- | Statistics: Performed 15 guesses in 3 seconds, average tps: 5.0
- |_ ERROR: Failed to make a pop-connection.
- |_pop3-capabilities: UIDL USER TOP APOP STLS
- |_vulscan: ERROR: Script execution failed (use -d to debug)
- Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- Device type: general purpose|WAP
- Running (JUST GUESSING): Microsoft Windows 2008|7 (86%), AirSpan embedded (85%)
- OS CPE: cpe:/o:microsoft:windows_server_2008::beta3 cpe:/o:microsoft:windows_server_2008 cpe:/o:microsoft:windows_8 cpe:/o:microsoft:windows_7::sp1
- Aggressive OS guesses: Microsoft Windows Server 2008 or 2008 Beta 3 (86%), Microsoft Windows Server 2008 R2 SP1 (86%), AirSpan ProST WiMAX access point (85%), Microsoft Windows Server 2008 (85%), Microsoft Windows Server 2008 R2 or Windows 8 (85%), Microsoft Windows 7 SP1 (85%)
- No exact OS matches for host (test conditions non-ideal).
- Network Distance: 15 hops
- Service Info: OS: Windows; CPE: cpe:/o:microsoft:windows
- TRACEROUTE (using port 110/tcp)
- HOP RTT ADDRESS
- 1 192.42 ms 10.240.204.1
- 2 192.49 ms 45.131.4.2
- 3 192.49 ms 109.236.95.228
- 4 192.52 ms hu0-1-0-7.rcr21.ams06.atlas.cogentco.com (149.14.93.73)
- 5 192.54 ms be3383.ccr42.lon13.atlas.cogentco.com (154.54.57.253)
- 6 297.57 ms be12265.ccr41.par01.atlas.cogentco.com (130.117.2.142)
- 7 297.60 ms be2490.ccr42.jfk02.atlas.cogentco.com (154.54.42.85)
- 8 297.53 ms be3472.ccr42.jfk02.atlas.cogentco.com (154.54.46.34)
- 9 297.64 ms 38.88.194.106
- 10 402.65 ms ebt-P7-2-1-agg02.bhe.embratel.net.br (200.244.24.6)
- 11 408.77 ms ebt-Plag-10-core01.cem.embratel.net.br (200.244.24.8)
- 12 408.73 ms grdeloja-M102232-gacc06.bhe.embratel.net.br (200.254.243.210)
- 13 408.75 ms ebt-P3-2-1-agg02.bhe.embratel.net.br (200.244.24.42)
- 14 408.65 ms 200.244.22.149
- 15 408.69 ms mail.glmmg.org.br (189.3.58.120)
- #######################################################################################################################################
- Starting Nmap 7.80 ( https://nmap.org ) at 2019-09-09 02:31 EDT
- Warning: 189.3.58.120 giving up on port because retransmission cap hit (2).
- Nmap scan report for www.glmmg.org.br (189.3.58.120)
- Host is up (0.38s latency).
- rDNS record for 189.3.58.120: mail.glmmg.org.br
- Not shown: 468 filtered ports, 7 closed ports
- Some closed ports may be reported as filtered due to --defeat-rst-ratelimit
- PORT STATE SERVICE
- 21/tcp open ftp
- 80/tcp open http
- 110/tcp open pop3
- 143/tcp open imap
- 587/tcp open submission
- 1000/tcp open cadlock
- 3000/tcp open ppp
- 8080/tcp open http-proxy
- Nmap done: 1 IP address (1 host up) scanned in 89.92 seconds
- ######################################################################################################################################
- Starting Nmap 7.80 ( https://nmap.org ) at 2019-09-09 02:33 EDT
- Nmap scan report for www.glmmg.org.br (189.3.58.120)
- Host is up (0.22s latency).
- rDNS record for 189.3.58.120: mail.glmmg.org.br
- Not shown: 3 closed ports, 2 filtered ports
- PORT STATE SERVICE
- 67/udp open|filtered dhcps
- 69/udp open|filtered tftp
- 88/udp open|filtered kerberos-sec
- 123/udp open|filtered ntp
- 139/udp open|filtered netbios-ssn
- 161/udp open|filtered snmp
- 162/udp open|filtered snmptrap
- 500/udp open|filtered isakmp
- 520/udp open|filtered route
- 2049/udp open|filtered nfs
- Nmap done: 1 IP address (1 host up) scanned in 6.86 seconds
- #######################################################################################################################################
- Starting Nmap 7.80 ( https://nmap.org ) at 2019-09-09 02:33 EDT
- NSE: [ftp-brute] usernames: Time limit 3m00s exceeded.
- NSE: [ftp-brute] usernames: Time limit 3m00s exceeded.
- NSE: [ftp-brute] passwords: Time limit 3m00s exceeded.
- Nmap scan report for www.glmmg.org.br (189.3.58.120)
- Host is up (0.31s latency).
- rDNS record for 189.3.58.120: mail.glmmg.org.br
- PORT STATE SERVICE VERSION
- 21/tcp open ftp Microsoft ftpd
- | ftp-brute:
- | Accounts: No valid accounts found
- |_ Statistics: Performed 1895 guesses in 184 seconds, average tps: 10.4
- | ftp-syst:
- |_ SYST: Windows_NT
- |_vulscan: ERROR: Script execution failed (use -d to debug)
- Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- OS fingerprint not ideal because: Timing level 5 (Insane) used
- No OS matches for host
- Network Distance: 14 hops
- Service Info: OS: Windows; CPE: cpe:/o:microsoft:windows
- TRACEROUTE (using port 21/tcp)
- HOP RTT ADDRESS
- 1 210.81 ms 10.240.204.1
- 2 314.66 ms 45.131.4.3
- 3 314.63 ms 109.236.95.228
- 4 314.70 ms be4380.rcr21.rtm01.atlas.cogentco.com (149.6.110.73)
- 5 314.73 ms be3433.ccr41.ams03.atlas.cogentco.com (154.54.58.201)
- 6 314.78 ms be2490.ccr42.jfk02.atlas.cogentco.com (154.54.42.85)
- 7 314.76 ms be3362.ccr31.jfk04.atlas.cogentco.com (154.54.3.10)
- 8 314.79 ms be3363.ccr31.jfk04.atlas.cogentco.com (154.54.3.126)
- 9 424.43 ms ebt-Plag-102-core01.cem.embratel.net.br (200.230.220.97)
- 10 424.45 ms ebt-P3-2-1-agg02.bhe.embratel.net.br (200.244.24.42)
- 11 316.21 ms ebt-Plag-10-core01.cem.embratel.net.br (200.244.24.8)
- 12 450.95 ms ebt-P7-2-1-agg02.bhe.embratel.net.br (200.244.24.6)
- 13 450.98 ms grdeloja-M102232-gacc06.bhe.embratel.net.br (200.254.243.210)
- 14 450.94 ms mail.glmmg.org.br (189.3.58.120)
- #######################################################################################################################################
- Starting Nmap 7.80 ( https://nmap.org ) at 2019-09-09 02:37 EDT
- NSE: Loaded 164 scripts for scanning.
- NSE: Script Pre-scanning.
- Initiating NSE at 02:37
- Completed NSE at 02:37, 0.00s elapsed
- Initiating NSE at 02:37
- Completed NSE at 02:37, 0.00s elapsed
- Initiating Parallel DNS resolution of 1 host. at 02:37
- Completed Parallel DNS resolution of 1 host. at 02:37, 0.03s elapsed
- Initiating SYN Stealth Scan at 02:37
- Scanning www.glmmg.org.br (189.3.58.120) [1 port]
- Discovered open port 80/tcp on 189.3.58.120
- Completed SYN Stealth Scan at 02:37, 0.60s elapsed (1 total ports)
- Initiating Service scan at 02:37
- Scanning 1 service on www.glmmg.org.br (189.3.58.120)
- Completed Service scan at 02:37, 6.72s elapsed (1 service on 1 host)
- Initiating OS detection (try #1) against www.glmmg.org.br (189.3.58.120)
- Retrying OS detection (try #2) against www.glmmg.org.br (189.3.58.120)
- Initiating Traceroute at 02:38
- Completed Traceroute at 02:38, 0.83s elapsed
- Initiating Parallel DNS resolution of 13 hosts. at 02:38
- Completed Parallel DNS resolution of 13 hosts. at 02:38, 0.44s elapsed
- NSE: Script scanning 189.3.58.120.
- Initiating NSE at 02:38
- NSE: [http-wordpress-enum 189.3.58.120:80] got no answers from pipelined queries
- Completed NSE at 02:40, 133.64s elapsed
- Initiating NSE at 02:40
- Completed NSE at 02:40, 1.56s elapsed
- Nmap scan report for www.glmmg.org.br (189.3.58.120)
- Host is up (0.36s latency).
- rDNS record for 189.3.58.120: mail.glmmg.org.br
- PORT STATE SERVICE VERSION
- 80/tcp open http Apache httpd (PHP 5.4.36)
- | http-brute:
- |_ Path "/" does not require authentication
- |_http-chrono: Request times for /; avg: 5944.33ms; min: 1099.13ms; max: 23227.00ms
- |_http-csrf: Couldn't find any CSRF vulnerabilities.
- |_http-date: Mon, 09 Sep 2019 06:38:04 GMT; -19s from local time.
- |_http-devframework: Couldn't determine the underlying framework or CMS. Try increasing 'httpspider.maxpagecount' value to spider more pages.
- |_http-dombased-xss: Couldn't find any DOM based XSS.
- |_http-drupal-enum: Nothing found amongst the top 100 resources,use --script-args number=<number|all> for deeper analysis)
- |_http-errors: Couldn't find any error pages.
- |_http-feed: Couldn't find any feeds.
- |_http-fetch: Please enter the complete path of the directory to save data in.
- | http-headers:
- | Date: Mon, 09 Sep 2019 06:38:24 GMT
- | Server: Apache
- | X-Powered-By: PHP/5.4.36
- | Content-Length: 63
- | Connection: close
- | Content-Type: text/html
- |
- |_ (Request type: GET)
- |_http-jsonp-detection: Couldn't find any JSONP endpoints.
- | http-methods:
- |_ Supported Methods: HEAD POST OPTIONS
- |_http-mobileversion-checker: No mobile version detected.
- | http-php-version: Versions from logo query (less accurate): 5.3.0 - 5.3.29, 5.4.0 - 5.4.45
- | Versions from credits query (more accurate): 5.4.15 - 5.4.45
- |_Version from header x-powered-by: PHP/5.4.36
- | http-robots.txt: 11 disallowed entries
- | / /app/files /app/imagens /app/ /lojas /admin /files
- |_/Gestao.Cadastro /Gestao.Financeiro /Gestao.News /Gestao.Revista
- |_http-security-headers:
- |_http-server-header: Apache
- | http-sitemap-generator:
- | Directory structure:
- | /
- | Other: 1
- | Longest directory structure:
- | Depth: 0
- | Dir: /
- | Total files found (by extension):
- |_ Other: 1
- |_http-stored-xss: Couldn't find any stored XSS vulnerabilities.
- |_http-title: Site doesn't have a title (text/html).
- | http-trace: TRACE is enabled
- | Headers:
- | Date: Mon, 09 Sep 2019 06:38:02 GMT
- | Server: Apache
- | Connection: close
- | Transfer-Encoding: chunked
- |_Content-Type: message/http
- | http-vhosts:
- | 115 names had status 200
- |_12 names had status ERROR
- |_http-vuln-cve2017-1001000: ERROR: Script execution failed (use -d to debug)
- |_http-wordpress-users: [Error] Wordpress installation was not found. We couldn't find wp-login.php
- |_http-xssed: No previously reported XSS vuln.
- |_vulscan: ERROR: Script execution failed (use -d to debug)
- Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- OS fingerprint not ideal because: Timing level 5 (Insane) used
- No OS matches for host
- Uptime guess: 39.485 days (since Wed Jul 31 15:02:12 2019)
- Network Distance: 13 hops
- TCP Sequence Prediction: Difficulty=261 (Good luck!)
- IP ID Sequence Generation: Incremental
- TRACEROUTE (using port 80/tcp)
- HOP RTT ADDRESS
- 1 257.73 ms 10.240.204.1
- 2 363.39 ms 45.131.4.2
- 3 363.38 ms 109.236.95.230
- 4 363.42 ms be4381.rcr21.rtm01.atlas.cogentco.com (149.6.110.89)
- 5 363.43 ms be3457.ccr41.ams03.atlas.cogentco.com (130.117.1.9)
- 6 363.47 ms be12194.ccr41.lon13.atlas.cogentco.com (154.54.56.93)
- 7 363.47 ms be3362.ccr31.jfk04.atlas.cogentco.com (154.54.3.10)
- 8 363.50 ms 38.88.194.106
- 9 363.51 ms 38.88.194.106
- 10 363.52 ms ebt-Plag-102-core01.cem.embratel.net.br (200.230.220.97)
- 11 353.86 ms ebt-Plag-111-core01.bhe.embratel.net.br (200.230.220.93)
- 12 461.17 ms ebt-Plag-10-core01.cem.embratel.net.br (200.244.24.8)
- 13 461.16 ms mail.glmmg.org.br (189.3.58.120)
- NSE: Script Post-scanning.
- Initiating NSE at 02:40
- Completed NSE at 02:40, 0.00s elapsed
- Initiating NSE at 02:40
- Completed NSE at 02:40, 0.00s elapsed
- #######################################################################################################################################
- HTTP/1.1 200 OK
- Date: Mon, 09 Sep 2019 06:47:27 GMT
- Server: Apache
- X-Powered-By: PHP/5.4.36
- Content-Type: text/html
- HTTP/1.1 200 OK
- Date: Mon, 09 Sep 2019 06:47:28 GMT
- Server: Apache
- X-Powered-By: PHP/5.4.36
- Content-Type: text/html
- #######################################################################################################################################
- Starting Nmap 7.80 ( https://nmap.org ) at 2019-09-09 02:47 EDT
- Nmap scan report for www.glmmg.org.br (189.3.58.120)
- Host is up (0.38s latency).
- rDNS record for 189.3.58.120: mail.glmmg.org.br
- PORT STATE SERVICE VERSION
- 110/tcp open pop3 MDaemon pop3d 13.5.1
- | pop3-brute:
- | Accounts: No valid accounts found
- | Statistics: Performed 25 guesses in 4 seconds, average tps: 6.2
- |_ ERROR: Failed to make a pop-connection.
- |_pop3-capabilities: USER UIDL TOP STLS APOP
- |_vulscan: ERROR: Script execution failed (use -d to debug)
- Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- Device type: general purpose|WAP
- Running (JUST GUESSING): Microsoft Windows 2008|7 (87%), AirSpan embedded (85%)
- OS CPE: cpe:/o:microsoft:windows_server_2008::beta3 cpe:/o:microsoft:windows_server_2008 cpe:/o:microsoft:windows_8 cpe:/o:microsoft:windows_7::sp1
- Aggressive OS guesses: Microsoft Windows Server 2008 or 2008 Beta 3 (87%), Microsoft Windows Server 2008 (86%), Microsoft Windows Server 2008 R2 (86%), Microsoft Windows Server 2008 R2 or Windows 8 (86%), Microsoft Windows 7 SP1 (86%), AirSpan ProST WiMAX access point (85%)
- No exact OS matches for host (test conditions non-ideal).
- Network Distance: 14 hops
- Service Info: OS: Windows; CPE: cpe:/o:microsoft:windows
- TRACEROUTE (using port 110/tcp)
- HOP RTT ADDRESS
- 1 160.33 ms 10.240.204.1
- 2 160.38 ms 45.131.4.3
- 3 160.40 ms 109.236.95.230
- 4 160.42 ms be4380.rcr21.rtm01.atlas.cogentco.com (149.6.110.73)
- 5 160.45 ms be3433.ccr41.ams03.atlas.cogentco.com (154.54.58.201)
- 6 264.38 ms be2490.ccr42.jfk02.atlas.cogentco.com (154.54.42.85)
- 7 264.31 ms be3362.ccr31.jfk04.atlas.cogentco.com (154.54.3.10)
- 8 264.39 ms 38.88.194.106
- 9 368.54 ms ebt-Plag-102-core01.cem.embratel.net.br (200.230.220.97)
- 10 264.45 ms 38.88.194.106
- 11 546.27 ms ebt-Plag-10-core01.cem.embratel.net.br (200.244.24.8)
- 12 546.25 ms ebt-P3-2-1-agg02.bhe.embratel.net.br (200.244.24.42)
- 13 399.47 ms 200.244.22.149
- 14 546.23 ms mail.glmmg.org.br (189.3.58.120)
- #######################################################################################################################################
- Starting Nmap 7.80 ( https://nmap.org ) at 2019-09-09 02:58 EDT
- NSE: Loaded 47 scripts for scanning.
- NSE: Script Pre-scanning.
- Initiating NSE at 02:58
- Completed NSE at 02:58, 0.00s elapsed
- Initiating NSE at 02:58
- Completed NSE at 02:58, 0.00s elapsed
- Initiating Ping Scan at 02:58
- Scanning www.glmmg.org.br (189.3.58.120) [4 ports]
- Completed Ping Scan at 02:58, 0.42s elapsed (1 total hosts)
- Initiating Parallel DNS resolution of 1 host. at 02:58
- Completed Parallel DNS resolution of 1 host. at 02:58, 0.02s elapsed
- Initiating SYN Stealth Scan at 02:58
- Scanning www.glmmg.org.br (189.3.58.120) [65535 ports]
- Discovered open port 80/tcp on 189.3.58.120
- Discovered open port 587/tcp on 189.3.58.120
- Discovered open port 8080/tcp on 189.3.58.120
- Discovered open port 21/tcp on 189.3.58.120
- Discovered open port 143/tcp on 189.3.58.120
- Discovered open port 110/tcp on 189.3.58.120
- Discovered open port 366/tcp on 189.3.58.120
- SYN Stealth Scan Timing: About 1.67% done; ETC: 03:29 (0:30:22 remaining)
- SYN Stealth Scan Timing: About 5.25% done; ETC: 03:18 (0:18:20 remaining)
- SYN Stealth Scan Timing: About 8.29% done; ETC: 03:17 (0:16:47 remaining)
- SYN Stealth Scan Timing: About 9.00% done; ETC: 03:21 (0:20:24 remaining)
- SYN Stealth Scan Timing: About 9.82% done; ETC: 03:24 (0:23:06 remaining)
- SYN Stealth Scan Timing: About 13.25% done; ETC: 03:21 (0:19:45 remaining)
- SYN Stealth Scan Timing: About 17.90% done; ETC: 03:18 (0:16:08 remaining)
- SYN Stealth Scan Timing: About 21.85% done; ETC: 03:17 (0:14:22 remaining)
- SYN Stealth Scan Timing: About 26.09% done; ETC: 03:16 (0:12:48 remaining)
- SYN Stealth Scan Timing: About 32.40% done; ETC: 03:14 (0:10:28 remaining)
- Discovered open port 1000/tcp on 189.3.58.120
- SYN Stealth Scan Timing: About 39.20% done; ETC: 03:12 (0:08:33 remaining)
- Discovered open port 1306/tcp on 189.3.58.120
- SYN Stealth Scan Timing: About 46.60% done; ETC: 03:11 (0:06:54 remaining)
- Discovered open port 3000/tcp on 189.3.58.120
- SYN Stealth Scan Timing: About 48.77% done; ETC: 03:13 (0:07:34 remaining)
- Discovered open port 1357/tcp on 189.3.58.120
- SYN Stealth Scan Timing: About 55.97% done; ETC: 03:14 (0:06:46 remaining)
- SYN Stealth Scan Timing: About 60.93% done; ETC: 03:13 (0:05:50 remaining)
- SYN Stealth Scan Timing: About 66.97% done; ETC: 03:13 (0:04:44 remaining)
- SYN Stealth Scan Timing: About 74.19% done; ETC: 03:12 (0:03:31 remaining)
- Discovered open port 1307/tcp on 189.3.58.120
- SYN Stealth Scan Timing: About 81.88% done; ETC: 03:11 (0:02:21 remaining)
- SYN Stealth Scan Timing: About 89.42% done; ETC: 03:11 (0:01:19 remaining)
- Completed SYN Stealth Scan at 03:10, 705.54s elapsed (65535 total ports)
- Initiating Service scan at 03:10
- Scanning 12 services on www.glmmg.org.br (189.3.58.120)
- Completed Service scan at 03:11, 31.16s elapsed (12 services on 1 host)
- Initiating OS detection (try #1) against www.glmmg.org.br (189.3.58.120)
- Retrying OS detection (try #2) against www.glmmg.org.br (189.3.58.120)
- Initiating Traceroute at 03:11
- Completed Traceroute at 03:11, 0.82s elapsed
- Initiating Parallel DNS resolution of 12 hosts. at 03:11
- Completed Parallel DNS resolution of 12 hosts. at 03:11, 0.31s elapsed
- NSE: Script scanning 189.3.58.120.
- Initiating NSE at 03:11
- ######################################################################################################################################
- Starting Nmap 7.80 ( https://nmap.org ) at 2019-09-09 03:11 EDT
- NSE: Loaded 47 scripts for scanning.
- NSE: Script Pre-scanning.
- Initiating NSE at 03:11
- Completed NSE at 03:11, 0.00s elapsed
- Initiating NSE at 03:11
- Completed NSE at 03:11, 0.00s elapsed
- Initiating Parallel DNS resolution of 1 host. at 03:11
- Completed Parallel DNS resolution of 1 host. at 03:11, 0.03s elapsed
- Initiating UDP Scan at 03:11
- Scanning www.glmmg.org.br (189.3.58.120) [15 ports]
- Completed UDP Scan at 03:11, 6.01s elapsed (15 total ports)
- Initiating Service scan at 03:11
- Scanning 10 services on www.glmmg.org.br (189.3.58.120)
- Service scan Timing: About 10.00% done; ETC: 03:27 (0:14:42 remaining)
- Completed Service scan at 03:13, 102.60s elapsed (10 services on 1 host)
- Initiating OS detection (try #1) against www.glmmg.org.br (189.3.58.120)
- Retrying OS detection (try #2) against www.glmmg.org.br (189.3.58.120)
- Initiating Traceroute at 03:13
- Completed Traceroute at 03:13, 7.52s elapsed
- Initiating Parallel DNS resolution of 1 host. at 03:13
- Completed Parallel DNS resolution of 1 host. at 03:13, 0.00s elapsed
- NSE: Script scanning 189.3.58.120.
- Initiating NSE at 03:13
- Completed NSE at 03:13, 7.85s elapsed
- Initiating NSE at 03:13
- Completed NSE at 03:13, 2.00s elapsed
- Nmap scan report for www.glmmg.org.br (189.3.58.120)
- Host is up (0.35s latency).
- rDNS record for 189.3.58.120: mail.glmmg.org.br
- PORT STATE SERVICE VERSION
- 53/udp closed domain
- 67/udp open|filtered dhcps
- 68/udp closed dhcpc
- 69/udp open|filtered tftp
- 88/udp open|filtered kerberos-sec
- 123/udp open|filtered ntp
- 137/udp filtered netbios-ns
- 138/udp filtered netbios-dgm
- 139/udp open|filtered netbios-ssn
- 161/udp open|filtered snmp
- 162/udp open|filtered snmptrap
- 389/udp closed ldap
- 500/udp open|filtered isakmp
- |_ike-version: ERROR: Script execution failed (use -d to debug)
- 520/udp open|filtered route
- 2049/udp open|filtered nfs
- Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- Aggressive OS guesses: Linux 2.6.18 (92%), Linux 2.6.30 (92%), Linux 2.6.28 (92%), Check Point NGX R65 firewall (IPSO 4.2) (86%), Check Point VPN-1 firewall (IPSO 4.1) (86%), Compaq Tru64 UNIX 5.1 or HP OpenVMS 7.3-2 (86%), Compaq Tru64 UNIX 5.1B or HP OpenVMS 8.2 - 8.3 (86%), DEC OSF/1 V5.1 (86%), HP OpenVMS 6 (86%), HP OpenVMS 7.3-1 (86%)
- No exact OS matches for host (test conditions non-ideal).
- Network Distance: 17 hops
- TRACEROUTE (using port 137/udp)
- HOP RTT ADDRESS
- 1 151.73 ms 10.240.204.1
- 2 ... 8
- 9 251.74 ms 10.240.204.1
- 10 ... 11
- 12 303.60 ms 10.240.204.1
- 13 303.58 ms 10.240.204.1
- 14 303.57 ms 10.240.204.1
- 15 303.56 ms 10.240.204.1
- 16 303.55 ms 10.240.204.1
- 17 303.54 ms 10.240.204.1
- 18 ... 21
- 22 104.72 ms 10.240.204.1
- 23 181.53 ms 10.240.204.1
- 24 ... 26
- 27 196.65 ms 10.240.204.1
- 28 ... 29
- 30 169.62 ms 10.240.204.1
- NSE: Script Post-scanning.
- Initiating NSE at 03:13
- Completed NSE at 03:13, 0.00s elapsed
- Initiating NSE at 03:13
- Completed NSE at 03:13, 0.00s elapsed
- #######################################################################################################################################
- Hosts
- =====
- address mac name os_name os_flavor os_sp purpose info comments
- ------- --- ---- ------- --------- ----- ------- ---- --------
- 189.3.58.120 mail.glmmg.org.br Linux 2.6.X server
- Services
- ========
- host port proto name state info
- ---- ---- ----- ---- ----- ----
- 189.3.58.120 53 udp domain closed
- 189.3.58.120 67 udp dhcps unknown
- 189.3.58.120 68 udp dhcpc closed
- 189.3.58.120 69 udp tftp unknown
- 189.3.58.120 88 udp kerberos-sec unknown
- 189.3.58.120 123 udp ntp unknown
- 189.3.58.120 137 udp netbios-ns filtered
- 189.3.58.120 138 udp netbios-dgm filtered
- 189.3.58.120 139 udp netbios-ssn unknown
- 189.3.58.120 161 udp snmp unknown
- 189.3.58.120 162 udp snmptrap unknown
- 189.3.58.120 389 udp ldap closed
- 189.3.58.120 500 udp isakmp unknown
- 189.3.58.120 520 udp route unknown
- 189.3.58.120 2049 udp nfs unknown
- #######################################################################################################################################
- Anonymous JTSEC #OpAmazonia Full Recon #21
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement