· 7 years ago · Jan 26, 2019, 01:16 AM
1######################################################################################################################################
2Hostname www.orgil.co.il ISP Bezeq International
3Continent Asia Flag
4IL
5Country Israel Country Code IL
6Region Unknown Local time 24 Jan 2019 17:25 IST
7City Unknown Postal Code Unknown
8IP Address 62.219.78.222 Latitude 31.5
9 Longitude 34.75
10
11######################################################################################################################################
12> www.orgil.co.il
13Server: 194.187.251.67
14Address: 194.187.251.67#53
15
16Non-authoritative answer:
17Name: www.orgil.co.il
18Address: 62.219.78.222
19>
20######################################################################################################################################
21HostIP:62.219.78.222
22HostName:www.orgil.co.il
23
24Gathered Inet-whois information for 62.219.78.222
25--------------------------------------------------------------------------------------------------------------------------------------
26
27
28inetnum: 62.219.78.0 - 62.219.78.255
29netname: LIVE-DNS
30descr: LIVE-DNS
31country: IL
32admin-c: BNT1-RIPE
33tech-c: BHT2-RIPE
34status: ASSIGNED PA
35remarks: please send ABUSE complains to abuse@bezeqint.net
36remarks: We are more than NO. 1
37mnt-by: AS8551-MNT
38mnt-lower: AS8551-MNT
39created: 2005-12-04T13:41:09Z
40last-modified: 2010-10-12T14:22:00Z
41source: RIPE
42
43role: BEZEQINT HOSTMASTERS TEAM
44address: Bezeq International
45address: 40 hashacham st.
46address: Petach Tikva 49170 Israel
47phone: +972 1 800014014
48fax-no: +972 3 9257674
49admin-c: MR916-RIPE
50tech-c: LBHM-RIPE
51tech-c: HMSB-RIPE
52nic-hdl: BHT2-RIPE
53remarks: Please Send Spam and Abuse ONLY to abuse@bezeqint.net
54mnt-by: AS8551-MNT
55created: 2002-10-29T10:01:49Z
56last-modified: 2009-02-15T12:35:43Z
57source: RIPE # Filtered
58
59role: BEZEQINT NETWORKING TEAM
60address: Bezeq International
61address: 40 hashacham st.
62address: Petach Tikva 49170 Israel
63phone: +972 1 800014014
64fax-no: +972 3 9257674
65admin-c: MR916-RIPE
66tech-c: MR916-RIPE
67tech-c: RD1278-RIPE
68nic-hdl: BNT1-RIPE
69remarks: Please Send Spam and Abuse ONLY to abuse@bezeqint.net
70mnt-by: AS8551-MNT
71created: 2005-09-27T12:31:29Z
72last-modified: 2018-12-05T14:57:44Z
73source: RIPE # Filtered
74
75% Information related to '62.219.64.0/19AS8551'
76
77route: 62.219.64.0/19
78descr: BEZEQ-INTERNATIONAL
79origin: AS8551
80mnt-by: AS8551-MNT
81created: 2002-09-09T08:13:29Z
82last-modified: 2017-04-05T11:15:09Z
83source: RIPE # Filtered
84
85% This query was served by the RIPE Database Query Service version 1.92.6 (ANGUS)
86
87
88
89Gathered Inic-whois information for orgil.co.il
90---------------------------------------------------------------------------------------------------------------------------------------
91domain: orgil.co.il
92
93descr: naor brachel
94descr: achi meir 5
95descr: ramat gan
96descr: 52587
97descr: Israel
98fax-no: +972 73 3211288
99e-mail: naor1964 AT gmail.com
100admin-c: LD-NB5813-IL
101tech-c: LD-NB5813-IL
102zone-c: LD-NB5813-IL
103nserver: park1.livedns.co.il
104nserver: park2.livedns.co.il
105validity: 21-08-2019
106DNSSEC: unsigned
107status: Transfer Locked
108changed: domain-registrar AT isoc.org.il 20170821 (Assigned)
109
110person: naor brachel
111address achi meir 5
112address ramat gan
113address 52587
114address Israel
115phone: +972 3 7554488
116fax-no: +972 73 3211288
117e-mail: naor1964 AT gmail.com
118nic-hdl: LD-NB5813-IL
119changed: Managing Registrar 20170821
120
121registrar name: LiveDns Ltd
122registrar info: http://domains.livedns.co.il
123
124% Rights to the data above are restricted by copyright.
125
126Gathered Netcraft information for www.orgil.co.il
127--------------------------------------------------------------------------------------------------------------------------------------
128
129Retrieving Netcraft.com information for www.orgil.co.il
130Netcraft.com Information gathered
131
132Gathered Subdomain information for orgil.co.il
133--------------------------------------------------------------------------------------------------------------------------------------
134Searching Google.com:80...
135Searching Altavista.com:80...
136Found 0 possible subdomain(s) for host orgil.co.il, Searched 0 pages containing 0 results
137
138Gathered E-Mail information for orgil.co.il
139---------------------------------------------------------------------------------------------------------------------------------------
140Searching Google.com:80...
141Searching Altavista.com:80...
142Found 0 E-Mail(s) for host orgil.co.il, Searched 0 pages containing 0 results
143
144Gathered TCP Port information for 62.219.78.222
145---------------------------------------------------------------------------------------------------------------------------------------
146
147 Port State
148
14980/tcp open
150
151Portscan Finished: Scanned 150 ports, 3 ports were in state closed
152#######################################################################################################################################
153[i] Scanning Site: http://www.orgil.co.il
154
155
156
157B A S I C I N F O
158=======================================================================================================================================
159
160
161[+] Site Title: דומיין|×“×•×ž×™×™× ×™×|×יחסון ×תרי×|×חסון ×תרי×|×¨×™×©×•× ×“×•×ž×™×™×Ÿ|×¨×™×©×•× ×“×•×ž×™×™× ×™×|×יחסון
162[+] IP address: 62.219.78.222
163[+] Web Server: Could Not Detect
164[+] CMS: Joomla
165[+] Cloudflare: Not Detected
166[+] Robots File: Found
167
168-------------[ contents ]----------------
169User-agent: *
170Disallow: /
171-----------[end of contents]-------------
172
173
174
175W H O I S L O O K U P
176=======================================================================================================================================
177
178
179% The data in the WHOIS database of the .il registry is provided
180% by ISOC-IL for information purposes, and to assist persons in
181% obtaining information about or related to a domain name
182% registration record. ISOC-IL does not guarantee its accuracy.
183% By submitting a WHOIS query, you agree that you will use this
184% Data only for lawful purposes and that, under no circumstances
185% will you use this Data to: (1) allow, enable, or otherwise
186% support the transmission of mass unsolicited, commercial
187% advertising or solicitations via e-mail (spam);
188% or (2) enable high volume, automated, electronic processes that
189% apply to ISOC-IL (or its systems).
190% ISOC-IL reserves the right to modify these terms at any time.
191% By submitting this query, you agree to abide by this policy.
192
193query: orgil.co.il
194
195reg-name: orgil
196domain: orgil.co.il
197
198descr: naor brachel
199descr: achi meir 5
200descr: ramat gan
201descr: 52587
202descr: Israel
203fax-no: +972 73 3211288
204e-mail: naor1964 AT gmail.com
205admin-c: LD-NB5813-IL
206tech-c: LD-NB5813-IL
207zone-c: LD-NB5813-IL
208nserver: park1.livedns.co.il
209nserver: park2.livedns.co.il
210validity: 21-08-2019
211DNSSEC: unsigned
212status: Transfer Locked
213changed: domain-registrar AT isoc.org.il 20170821 (Assigned)
214
215person: naor brachel
216address achi meir 5
217address ramat gan
218address 52587
219address Israel
220phone: +972 3 7554488
221fax-no: +972 73 3211288
222e-mail: naor1964 AT gmail.com
223nic-hdl: LD-NB5813-IL
224changed: Managing Registrar 20170821
225
226registrar name: LiveDns Ltd
227registrar info: http://domains.livedns.co.il
228
229% Rights to the data above are restricted by copyright.
230
231
232
233
234G E O I P L O O K U P
235=======================================================================================================================================
236
237[i] IP Address: 62.219.78.222
238[i] Country: Israel
239[i] State:
240[i] City:
241[i] Latitude: 31.5
242[i] Longitude: 34.75
243
244
245
246
247H T T P H E A D E R S
248=======================================================================================================================================
249
250
251[i] HTTP/1.1 200 OK
252[i] Cache-Control: private
253[i] Content-Length: 100096
254[i] Content-Type: text/html; charset=utf-8
255[i] X-AspNet-Version: 2.0.50727
256[i] X-Powered-By: ASP.NET
257[i] Date: Thu, 24 Jan 2019 15:32:24 GMT
258[i] Connection: close
259
260
261
262
263D N S L O O K U P
264======================================================================================================================================
265
266orgil.co.il. 14399 IN A 62.219.78.222
267orgil.co.il. 14399 IN NS park1.livedns.co.il.
268orgil.co.il. 14399 IN NS park2.livedns.co.il.
269orgil.co.il. 3599 IN MX 0 orgil-co-il.mail.protection.outlook.com.
270orgil.co.il. 14399 IN SOA park1.livedns.co.il. hostmaster.orgil.co.il. 2017090502 3600 600 1209600 14400
271orgil.co.il. 3599 IN TXT "v=spf1 include:spf.protection.outlook.com -all"
272orgil.co.il. 3599 IN TXT "MS=ms92420837"
273
274
275
276
277S U B N E T C A L C U L A T I O N
278=======================================================================================================================================
279
280Address = 62.219.78.222
281Network = 62.219.78.222 / 32
282Netmask = 255.255.255.255
283Broadcast = not needed on Point-to-Point links
284Wildcard Mask = 0.0.0.0
285Hosts Bits = 0
286Max. Hosts = 1 (2^0 - 0)
287Host Range = { 62.219.78.222 - 62.219.78.222 }
288
289
290
291N M A P P O R T S C A N
292=======================================================================================================================================
293
294
295Starting Nmap 7.40 ( https://nmap.org ) at 2019-01-24 15:32 UTC
296Nmap scan report for orgil.co.il (62.219.78.222)
297Host is up (0.14s latency).
298rDNS record for 62.219.78.222: bzq-78-222.red.bezeqint.net
299PORT STATE SERVICE
30021/tcp filtered ftp
30122/tcp filtered ssh
30223/tcp filtered telnet
30380/tcp open http
304110/tcp filtered pop3
305143/tcp filtered imap
306443/tcp filtered https
3073389/tcp filtered ms-wbt-server
308
309Nmap done: 1 IP address (1 host up) scanned in 2.93 seconds
310#######################################################################################################################################
311[?] Enter the target: example( http://domain.com )
312http://www.orgil.co.il
313[!] IP Address : 62.219.78.222
314[+] Operating System : Windows
315[!] www.orgil.co.il doesn't seem to use a CMS
316[+] Honeypot Probabilty: 0%
317---------------------------------------------------------------------------------------------------------------------------------------
318[~] Trying to gather whois information for www.orgil.co.il
319[+] Whois information found
320[-] Unable to build response, visit https://who.is/whois/www.orgil.co.il
321---------------------------------------------------------------------------------------------------------------------------------------
322PORT STATE SERVICE
32321/tcp filtered ftp
32422/tcp filtered ssh
32523/tcp filtered telnet
32680/tcp open http
327110/tcp filtered pop3
328143/tcp filtered imap
329443/tcp filtered https
3303389/tcp filtered ms-wbt-server
331Nmap done: 1 IP address (1 host up) scanned in 2.70 seconds
332---------------------------------------------------------------------------------------------------------------------------------------
333There was an error getting results
334
335[-] DNS Records
336[>] Initiating 3 intel modules
337[>] Loading Alpha module (1/3)
338[>] Beta module deployed (2/3)
339[>] Gamma module initiated (3/3)
340[+] Emails found:
341---------------------------------------------------------------------------------------------------------------------------------------
342pixel-1548344029239903-web-@www.orgil.co.il
343pixel-1548344032609324-web-@www.orgil.co.il
344No hosts found
345[+] Virtual hosts:
346---------------------------------------------------------------------------------------------------------------------------------------
347#######################################################################################################################################
348=======================================================================================================================================
349| E-mails:
350| [+] E-mail Found: renew@livedns.co.il
351| [+] E-mail Found: sales@livedns.co.il
352=======================================================================================================================================
353| External hosts:
354| [+] External Host Found: http://www.livedns.co.il
355=======================================================================================================================================
356######################################################################################################################################
357; <<>> DiG 9.11.5-P1-1-Debian <<>> orgil.co.il
358;; global options: +cmd
359;; Got answer:
360;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 63255
361;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
362
363;; OPT PSEUDOSECTION:
364; EDNS: version: 0, flags:; udp: 4096
365;; QUESTION SECTION:
366;orgil.co.il. IN A
367
368;; ANSWER SECTION:
369orgil.co.il. 14400 IN A 62.219.78.222
370
371;; Query time: 263 msec
372;; SERVER: 194.187.251.67#53(194.187.251.67)
373;; WHEN: jeu jan 24 10:44:49 EST 2019
374;; MSG SIZE rcvd: 56
375#######################################################################################################################################
376 <<>> DiG 9.11.5-P1-1-Debian <<>> +trace orgil.co.il
377;; global options: +cmd
378. 86000 IN NS e.root-servers.net.
379. 86000 IN NS k.root-servers.net.
380. 86000 IN NS g.root-servers.net.
381. 86000 IN NS l.root-servers.net.
382. 86000 IN NS a.root-servers.net.
383. 86000 IN NS d.root-servers.net.
384. 86000 IN NS m.root-servers.net.
385. 86000 IN NS b.root-servers.net.
386. 86000 IN NS i.root-servers.net.
387. 86000 IN NS c.root-servers.net.
388. 86000 IN NS h.root-servers.net.
389. 86000 IN NS j.root-servers.net.
390. 86000 IN NS f.root-servers.net.
391. 86000 IN RRSIG NS 8 0 518400 20190206050000 20190124040000 16749 . GyLUryAEdEDmlxR3SnGPcH6fODRTKJ1u2E7KNSL5fK19NqTRX53ho9fE j8N3GFfMd7cXOteZ2yoaNjtfE5KV3EKNolOCfsXMt0zgx82B8PEsTZxp Oiukfa3LQKtv/e6gp281TnxuIyjM8kQ6yL1nLtYkWGCv50GMNTUQzQ2v bmcgwYrFsGPA+Ud7YOI8WHf80h8btErLaWu37gk/74rw9Ds45G0O77Ir 0V+PfJfRK0hX3LopzWutnfXWjSXt+La4+Mt0kASMupzoYtO9ZHU3lrnE zWEwWQv7Tti/Iklp+pKWQ0BEgqJmpNS+86BW4cq+vnb6oSJQNkKaaxu+ S/kD0w==
392;; Received 525 bytes from 194.187.251.67#53(194.187.251.67) in 192 ms
393
394il. 172800 IN NS nse.ns.il.
395il. 172800 IN NS lookup.iucc.ac.il.
396il. 172800 IN NS nsa.ns.il.
397il. 172800 IN NS nsb.ns.il.
398il. 172800 IN NS sns-pb.isc.org.
399il. 172800 IN NS ns2.ns.il.
400il. 172800 IN NS ns1.ns.il.
401il. 172800 IN NS ns3.ns.il.
402il. 172800 IN NS ilns.ilan.net.il.
403il. 86400 IN DS 44729 8 2 7FA5A2FD091C340D4A01864B4F82D66D0769F3D3A0A1C48F8ABD2A64 B1689921
404il. 86400 IN RRSIG DS 8 1 86400 20190206050000 20190124040000 16749 . U5YNelBol0QzzsFgB3b0QoBPN5Ws2c5kVh8+W3LZcXDAdUC/fgmE0MeO 6lK5GxSsR4IGO87RPPQGjw3Wn0nITRmRcgC52GbUVtHCeYrlkA61hJed RR17wQqruIyHd1AJKoeAnqoJWswigko/zDw9KYO4ZnmZzVtCH5Res6ch Y4KY7aSP7HWuvCaKAYTPGdHwrFDoCTF9qaM7+qlrUhmMFUcJ6Xk6i1T5 SnZjXVrisUADw/+AiJa4vuEAKLsvVTpBuxuXNLuwUCCxtl6lfgS4nqjr gkVauZGj+3x8AcIUt4tq3zpIz7UIrbd9OfR06Y9jb6s3ZqSk4DJBRGte Eimf/A==
405;; Received 855 bytes from 2001:503:ba3e::2:30#53(a.root-servers.net) in 43 ms
406
407orgil.co.il. 86400 IN NS park2.livedns.co.il.
408orgil.co.il. 86400 IN NS park1.livedns.co.il.
409i4ng30e6ho1oogjus9gnuf4ho8qjr729.co.il. 86400 IN NSEC3 1 1 10 7CE12AF346933CF2 I808NA34LO7Q55K3FAOBFSHSVU39TF9J NS SOA RRSIG DNSKEY NSEC3PARAM
410i4ng30e6ho1oogjus9gnuf4ho8qjr729.co.il. 86400 IN RRSIG NSEC3 8 3 86400 20190224140907 20190124130907 7233 co.il. JvGonWN408TUbaiAJpLQF7yAM1GiyfvqqlkdmuCn74zWyffBVUsz/BoW FPFozDRHS7vt3Z30mk2gVu86rCHOUHOTmGijcF9Uk8zY3dS2P6He4o2R HwIa74trRRX8fjd1VyPVyPK8ZPMzrCTlV8Rd3IHgTi9zbrkw+KbMwu70 RQ61zKKi4CWZ0fQxwJtMPOljj3Y2yzemAOXFloCAHJlM5/jzwmVR6c56 IKtiNjCy5nPjnwPSOB9EAe9iBpWBPw72Ui090/lJsTGfHB5wvTZ0Ups3 4qZTgjQsyWsEFjskgkDC8eQNZbHQ+MIC4pPMVMcDyEtnc2K5NvwFTldW o5f/yg==
411c2fulibva4ggam91k16pht5ca62mjpf3.co.il. 86400 IN NSEC3 1 1 10 7CE12AF346933CF2 DPV5RPOSFL03GR9JRS43LBJ02MAV4NC7 NS DS RRSIG
412c2fulibva4ggam91k16pht5ca62mjpf3.co.il. 86400 IN RRSIG NSEC3 8 3 86400 20190224140907 20190124130907 7233 co.il. KqMdeBBp6tFqpeygldvUHT3y90x6NWmlW8CkzMqMfLuNnrHXPjL8W8ll JkJJNWhE2tP8Up/3bz4c7EZF059Ji4k7i/qKB4Y1/f6PZiGBo+LYl8Vw uTkzoTJzEjU6IuHAI+ZmhBcYaBPkygEkgnrnVI6ZZKfRksStf/WwLYq/ UB7XQTWWplwssMkKxatlTWVSOdr66aTSl7HLza/17Js6xYZv6twokNZf P8rle5UiVVAxGyqC6NIRyplO5A9Dc3D80/YKokiRexaXXQzyLS/PBe+k EQrjSRsVnxRSlJ34CR/FhbOy3qJQ6ntqcMAngeMF8lGqI6Mslp4y/z/1 iYNUUQ==
413;; Received 877 bytes from 2001:678:e:103::53#53(ns3.ns.il) in 86 ms
414
415orgil.co.il. 14400 IN A 62.219.78.222
416orgil.co.il. 14400 IN NS park1.livedns.co.il.
417orgil.co.il. 14400 IN NS park2.livedns.co.il.
418;; Received 136 bytes from 62.219.78.217#53(park1.livedns.co.il) in 224 ms
419#######################################################################################################################################
420[*] Performing General Enumeration of Domain: orgil.co.il
421[-] DNSSEC is not configured for orgil.co.il
422[*] SOA park1.livedns.co.il 62.219.78.217
423[*] NS park2.livedns.co.il 185.60.169.2
424[*] Bind Version for 185.60.169.2 Livedns
425[*] NS park1.livedns.co.il 62.219.78.217
426[*] Bind Version for 62.219.78.217 9.7.0
427[*] MX orgil-co-il.mail.protection.outlook.com 104.47.4.36
428[*] MX orgil-co-il.mail.protection.outlook.com 104.47.6.36
429[*] A orgil.co.il 62.219.78.222
430[*] TXT orgil.co.il v=spf1 include:spf.protection.outlook.com -all
431[*] TXT orgil.co.il MS=ms92420837
432[*] Enumerating SRV Records
433[*] SRV _sipfederationtls._tcp.orgil.co.il sipfed.online.lync.com 52.113.66.144 5061 1
434[*] SRV _sipfederationtls._tcp.orgil.co.il sipfed.online.lync.com 2603:1047:0:1::b 5061 1
435[*] SRV _sipfederationtls._tcp.orgil.co.il sipfed.online.lync.com 2603:1047:0:b::f 5061 1
436[*] SRV _sipfederationtls._tcp.orgil.co.il sipfed.online.lync.com 2603:1047:0:8::f 5061 1
437[*] SRV _sipfederationtls._tcp.orgil.co.il sipfed.online.lync.com 2603:1047:0:9::f 5061 1
438[*] SRV _sipfederationtls._tcp.orgil.co.il sipfed.online.lync.com 2603:1047:0:2::b 5061 1
439[*] SRV _sipfederationtls._tcp.orgil.co.il sipfed.online.lync.com 2603:1047:0:a::f 5061 1
440[*] SRV _sipfederationtls._tcp.orgil.co.il sipfed.online.lync.com 2603:1047:0:5::b 5061 1
441[*] SRV _sip._tls.orgil.co.il sipdir.online.lync.com 52.113.66.144 443 1
442[*] SRV _sip._tls.orgil.co.il sipdir.online.lync.com 2603:1047:0:9::f 443 1
443[*] SRV _sip._tls.orgil.co.il sipdir.online.lync.com 2603:1047:0:b::f 443 1
444[*] SRV _sip._tls.orgil.co.il sipdir.online.lync.com 2603:1047:0:a::f 443 1
445[*] SRV _sip._tls.orgil.co.il sipdir.online.lync.com 2603:1047:0:2::b 443 1
446[*] SRV _sip._tls.orgil.co.il sipdir.online.lync.com 2603:1047:0:8::f 443 1
447[*] SRV _sip._tls.orgil.co.il sipdir.online.lync.com 2603:1047:0:1::b 443 1
448[*] SRV _sip._tls.orgil.co.il sipdir.online.lync.com 2603:1047:0:5::b 443 1
449[+] 16 Records Found
450#######################################################################################################################################
451*] Processing domain orgil.co.il
452[*] Using system resolvers ['27.50.70.139', '38.132.106.139', '185.93.180.131', '205.151.67.6', '205.151.67.34', '205.151.67.2', '2001:18c0:ffe0:2::2', '2001:18c0:ffe0:3::2', '2001:18c0:ffe0:1::2']
453[+] Getting nameservers
454185.60.169.2 - park2.livedns.co.il
45562.219.78.217 - park1.livedns.co.il
456[-] Zone transfer failed
457
458[+] TXT records found
459"v=spf1 include:spf.protection.outlook.com -all"
460"MS=ms92420837"
461
462[+] MX records found, added to target list
4630 orgil-co-il.mail.protection.outlook.com.
464
465[*] Scanning orgil.co.il for A records
46662.219.78.222 - orgil.co.il
46752.98.2.200 - autodiscover.orgil.co.il
46852.98.0.168 - autodiscover.orgil.co.il
46940.100.145.168 - autodiscover.orgil.co.il
47052.98.1.232 - autodiscover.orgil.co.il
47113.76.177.110 - enterpriseenrollment.orgil.co.il
47240.69.218.132 - enterpriseregistration.orgil.co.il
47352.113.66.206 - lyncdiscover.orgil.co.il
47440.126.14.102 - msoid.orgil.co.il
47552.113.66.144 - sip.orgil.co.il
47662.219.78.222 - www.orgil.co.il
477######################################################################################################################################
478[+] Testing domain
479 www.orgil.co.il 62.219.78.222
480[+] Dns resolving
481 Domain name Ip address Name server
482 orgil.co.il 62.219.78.222 bzq-78-222.red.bezeqint.net
483Found 1 host(s) for orgil.co.il
484[+] Testing wildcard
485 Ok, no wildcard found.
486
487[+] Scanning for subdomain on orgil.co.il
488[!] Wordlist not specified. I scannig with my internal wordlist...
489 Estimated time about 330.31 seconds
490
491 Subdomain Ip address Name server
492
493 www.orgil.co.il 62.219.78.222 bzq-78-222.red.bezeqint.net
494#######################################################################################################################################
495dnsenum VERSION:1.2.4
496
497----- www.orgil.co.il -----
498
499
500Host's addresses:
501__________________
502
503www.orgil.co.il. 14398 IN A 62.219.78.222
504
505
506Name Servers:
507______________
508#######################################################################################################################################
509
510Running Source: Ask
511Running Source: Archive.is
512Running Source: Baidu
513Running Source: Bing
514Running Source: CertDB
515Running Source: CertificateTransparency
516Running Source: Certspotter
517Running Source: Commoncrawl
518Running Source: Crt.sh
519Running Source: Dnsdb
520Running Source: DNSDumpster
521Running Source: DNSTable
522Running Source: Dogpile
523Running Source: Exalead
524Running Source: Findsubdomains
525Running Source: Googleter
526Running Source: Hackertarget
527Running Source: Ipv4Info
528Running Source: PTRArchive
529Running Source: Sitedossier
530Running Source: Threatcrowd
531Running Source: ThreatMiner
532Running Source: WaybackArchive
533Running Source: Yahoo
534
535Running enumeration on www.orgil.co.il
536
537dnsdb: Unexpected return status 503
538
539crtsh: json: cannot unmarshal array into Go value of type crtsh.crtshObject
540
541waybackarchive: strconv.Atoi: parsing "org.archive.util.io.RuntimeIOException: org.archive.wayback.exception.RobotAccessControlException: Blocked By Robots": invalid syntax
542
543ipv4info: <nil>
544
545
546Starting Bruteforcing of www.orgil.co.il with 9985 words
547
548Total 1 Unique subdomains found for www.orgil.co.il
549
550.www.orgil.co.il
551#######################################################################################################################################
552[+] www.orgil.co.il has no SPF record!
553[*] No DMARC record found. Looking for organizational record
554[+] No organizational DMARC record
555[+] Spoofing possible for www.orgil.co.il!
556#######################################################################################################################################
557Starting Nmap 7.70 ( https://nmap.org ) at 2019-01-25 19:02 EST
558Nmap scan report for www.orgil.co.il (62.219.78.222)
559Host is up (0.28s latency).
560rDNS record for 62.219.78.222: bzq-78-222.red.bezeqint.net
561Not shown: 471 filtered ports, 4 closed ports
562Some closed ports may be reported as filtered due to --defeat-rst-ratelimit
563PORT STATE SERVICE
56480/tcp open http
565#######################################################################################################################################
566Starting Nmap 7.70 ( https://nmap.org ) at 2019-01-25 19:02 EST
567Nmap scan report for www.orgil.co.il (62.219.78.222)
568Host is up (0.24s latency).
569rDNS record for 62.219.78.222: bzq-78-222.red.bezeqint.net
570Not shown: 2 filtered ports
571PORT STATE SERVICE
57253/udp open|filtered domain
57367/udp open|filtered dhcps
57468/udp open|filtered dhcpc
57569/udp open|filtered tftp
57688/udp open|filtered kerberos-sec
577123/udp open|filtered ntp
578139/udp open|filtered netbios-ssn
579161/udp open|filtered snmp
580162/udp open|filtered snmptrap
581389/udp open|filtered ldap
582520/udp open|filtered route
5832049/udp open|filtered nfs
584#######################################################################################################################################
585 ^ ^
586 _ __ _ ____ _ __ _ _ ____
587 ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
588 | V V // o // _/ | V V // 0 // 0 // _/
589 |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
590 <
591 ...'
592
593 WAFW00F - Web Application Firewall Detection Tool
594
595 By Sandro Gauci && Wendel G. Henrique
596
597Checking http://www.orgil.co.il
598Generic Detection results:
599The site http://www.orgil.co.il seems to be behind a WAF or some sort of security solution
600Reason: Blocking is being done at connection/packet level.
601Number of requests: 11
602#######################################################################################################################################
603http://www.orgil.co.il [200 OK] ASP_NET[2.0.50727], Country[ISRAEL][IL], Email[sales@livedns.co.il], IP[62.219.78.222], JQuery, Meta-Author[LiveDns Ltd - Web Development Department], Script[application/ld+json,text/javascript], Title[דומיין|×“×•×ž×™×™× ×™×|×יחסון ×תרי×|×חסון ×תרי×|×¨×™×©×•× ×“×•×ž×™×™×Ÿ|×¨×™×©×•× ×“×•×ž×™×™× ×™×|×יחסון], X-Powered-By[ASP.NET], X-UA-Compatible[IE=EmulateIE8]
604######################################################################################################################################
605wig - WebApp Information Gatherer
606
607
608Scanning http://www.orgil.co.il...
609_____________________ SITE INFO ______________________
610IP Title
61162.219.78.222 דומיין|×“×•×ž×™×™× ×™×|×יחסון ×תרי×|×חסון
612
613______________________ VERSION _______________________
614Name Versions Type
615ASP.NET 2.0.50727 Platform
616
617____________________ INTERESTING _____________________
618URL Note Type
619/robots.txt robots.txt index Interesting
620
621______________________________________________________
622Time: 248.7 sec Urls: 646 Fingerprints: 40401
623#######################################################################################################################################
624HTTP/1.1 200 OK
625Cache-Control: private
626Content-Length: 100096
627Content-Type: text/html; charset=utf-8
628X-AspNet-Version: 2.0.50727
629X-Powered-By: ASP.NET
630Date: Sat, 26 Jan 2019 00:07:16 GMT
631Connection: keep-alive
632
633HTTP/1.1 200 OK
634Cache-Control: private
635Content-Length: 100096
636Content-Type: text/html; charset=utf-8
637X-AspNet-Version: 2.0.50727
638X-Powered-By: ASP.NET
639Date: Sat, 26 Jan 2019 00:07:18 GMT
640Connection: keep-alive
641######################################################################################################################################
642+-------------------+--------------------------------------+-----------------------------------------------------+----------+----------+
643| App Name | URL to Application | Potential Exploit | Username | Password |
644+-------------------+--------------------------------------+-----------------------------------------------------+----------+----------+
645| JBoss jmx-console | http://62.219.78.222:80/jmx-console/ | ./exploit/multi/http/jboss_deploymentfilerepository | None | None |
646+-------------------+--------------------------------------+-----------------------------------------------------+----------+----------+
647#######################################################################################################################################
648Starting Nmap 7.70 ( https://nmap.org ) at 2019-01-25 18:53 EST
649Nmap scan report for bzq-78-222.red.bezeqint.net (62.219.78.222)
650Host is up (0.27s latency).
651Not shown: 471 filtered ports, 4 closed ports
652Some closed ports may be reported as filtered due to --defeat-rst-ratelimit
653PORT STATE SERVICE
65480/tcp open http
655#######################################################################################################################################
656Starting Nmap 7.70 ( https://nmap.org ) at 2019-01-25 18:53 EST
657Nmap scan report for bzq-78-222.red.bezeqint.net (62.219.78.222)
658Host is up (0.23s latency).
659Not shown: 2 filtered ports
660PORT STATE SERVICE
66153/udp open|filtered domain
66267/udp open|filtered dhcps
66368/udp open|filtered dhcpc
66469/udp open|filtered tftp
66588/udp open|filtered kerberos-sec
666123/udp open|filtered ntp
667139/udp open|filtered netbios-ssn
668161/udp open|filtered snmp
669162/udp open|filtered snmptrap
670389/udp open|filtered ldap
671520/udp open|filtered route
6722049/udp open|filtered nfs
673######################################################################################################################################
674Starting Nmap 7.70 ( https://nmap.org ) at 2019-01-25 18:53 EST
675Nmap scan report for bzq-78-222.red.bezeqint.net (62.219.78.222)
676Host is up.
677
678PORT STATE SERVICE VERSION
67967/udp open|filtered dhcps
680|_dhcp-discover: ERROR: Script execution failed (use -d to debug)
681Too many fingerprints match this host to give specific OS details
682
683TRACEROUTE (using proto 1/icmp)
684HOP RTT ADDRESS
6851 229.34 ms 10.251.200.1
6862 229.37 ms v106.ce01.hkg-10.hk.leaseweb.net (43.249.36.188)
6873 229.96 ms te-0-0-0-0.br02.hkg-10.hk.leaseweb.net (43.249.36.10)
6884 230.76 ms xe-5-1-0.br01.hkg-12.hk.leaseweb.net (64.120.119.226)
6895 233.16 ms ix-et-7.hcore1.h71-hong-kong.as6453.net (180.87.160.197)
6906 487.85 ms if-ae-38-2.tcore1.hk2-hong-kong.as6453.net (116.0.67.86)
6917 299.61 ms if-et-17-2.hcore1.kv8-chiba.as6453.net (116.0.67.62)
6928 491.50 ms if-ae-5-2.tcore2.sv1-santa-clara.as6453.net (209.58.86.142)
6939 491.53 ms 63.243.205.12
69410 482.92 ms if-ae-12-2.tcore1.nto-new-york.as6453.net (63.243.128.28)
69511 493.52 ms if-ae-8-2.tcore2.nto-new-york.as6453.net (63.243.128.70)
69612 484.91 ms if-ae-32-2.tcore2.ldn-london.as6453.net (63.243.216.23)
69713 483.41 ms if-ae-3-2.thar1.lrt-london.as6453.net (80.231.62.74)
69814 482.47 ms 195.219.100.130
69915 514.22 ms bzq-179-72-241.cust.bezeqint.net (212.179.72.241)
70016 514.26 ms bzq-219-189-9.dsl.bezeqint.net (62.219.189.9)
70117 512.14 ms bzq-179-124-85.cust.bezeqint.net (212.179.124.85)
70218 513.37 ms bzq-179-124-81.cust.bezeqint.net (212.179.124.81)
70319 510.90 ms bzq-179-124-158.cust.bezeqint.net (212.179.124.158)
70420 512.16 ms bzq-218-2-197.cablep.bezeqint.net (81.218.2.197)
70521 ... 30
706#######################################################################################################################################
707Starting Nmap 7.70 ( https://nmap.org ) at 2019-01-25 18:55 EST
708Nmap scan report for bzq-78-222.red.bezeqint.net (62.219.78.222)
709Host is up.
710
711PORT STATE SERVICE VERSION
71268/udp open|filtered dhcpc
713Too many fingerprints match this host to give specific OS details
714
715TRACEROUTE (using proto 1/icmp)
716HOP RTT ADDRESS
7171 237.51 ms 10.251.200.1
7182 237.55 ms v106.ce01.hkg-10.hk.leaseweb.net (43.249.36.188)
7193 238.31 ms te-0-0-0-0.br02.hkg-10.hk.leaseweb.net (43.249.36.10)
7204 239.35 ms xe-5-1-0.br01.hkg-12.hk.leaseweb.net (64.120.119.226)
7215 240.30 ms ix-et-7.hcore1.h71-hong-kong.as6453.net (180.87.160.197)
7226 492.00 ms if-ae-38-2.tcore1.hk2-hong-kong.as6453.net (116.0.67.86)
7237 306.82 ms if-et-17-2.hcore1.kv8-chiba.as6453.net (116.0.67.62)
7248 500.04 ms if-ae-5-2.tcore2.sv1-santa-clara.as6453.net (209.58.86.142)
7259 500.07 ms 63.243.205.12
72610 491.27 ms if-ae-12-2.tcore1.nto-new-york.as6453.net (63.243.128.28)
72711 499.06 ms if-ae-8-2.tcore2.nto-new-york.as6453.net (63.243.128.70)
72812 489.82 ms if-ae-32-2.tcore2.ldn-london.as6453.net (63.243.216.23)
72913 488.98 ms if-ae-3-2.thar1.lrt-london.as6453.net (80.231.62.74)
73014 487.80 ms 195.219.100.130
73115 518.83 ms bzq-179-72-241.cust.bezeqint.net (212.179.72.241)
73216 524.86 ms bzq-219-189-9.cablep.bezeqint.net (62.219.189.9)
73317 520.68 ms bzq-179-124-85.cust.bezeqint.net (212.179.124.85)
73418 522.86 ms bzq-179-124-81.cust.bezeqint.net (212.179.124.81)
73519 516.96 ms bzq-179-124-158.cust.bezeqint.net (212.179.124.158)
73620 516.73 ms bzq-218-2-197.cablep.bezeqint.net (81.218.2.197)
73721 ... 30
738#######################################################################################################################################
739Starting Nmap 7.70 ( https://nmap.org ) at 2019-01-25 18:57 EST
740Nmap scan report for bzq-78-222.red.bezeqint.net (62.219.78.222)
741Host is up.
742
743PORT STATE SERVICE VERSION
74469/udp open|filtered tftp
745Too many fingerprints match this host to give specific OS details
746
747TRACEROUTE (using proto 1/icmp)
748HOP RTT ADDRESS
7491 235.05 ms 10.251.200.1
7502 235.26 ms v106.ce01.hkg-10.hk.leaseweb.net (43.249.36.188)
7513 235.84 ms te-0-0-0-0.br02.hkg-10.hk.leaseweb.net (43.249.36.10)
7524 236.89 ms xe-5-1-0.br01.hkg-12.hk.leaseweb.net (64.120.119.226)
7535 238.53 ms ix-et-7.hcore1.h71-hong-kong.as6453.net (180.87.160.197)
7546 490.88 ms if-ae-38-2.tcore1.hk2-hong-kong.as6453.net (116.0.67.86)
7557 303.85 ms if-et-17-2.hcore1.kv8-chiba.as6453.net (116.0.67.62)
7568 497.29 ms if-ae-5-2.tcore2.sv1-santa-clara.as6453.net (209.58.86.142)
7579 497.33 ms 63.243.205.12
75810 488.91 ms if-ae-12-2.tcore1.nto-new-york.as6453.net (63.243.128.28)
75911 499.68 ms if-ae-8-2.tcore2.nto-new-york.as6453.net (63.243.128.70)
76012 490.41 ms if-ae-32-2.tcore2.ldn-london.as6453.net (63.243.216.23)
76113 489.64 ms if-ae-3-2.thar1.lrt-london.as6453.net (80.231.62.74)
76214 488.79 ms 195.219.100.130
76315 519.19 ms bzq-179-72-241.cust.bezeqint.net (212.179.72.241)
76416 517.05 ms bzq-219-189-9.cablep.bezeqint.net (62.219.189.9)
76517 517.68 ms bzq-179-124-85.cust.bezeqint.net (212.179.124.85)
76618 520.04 ms bzq-179-124-81.cust.bezeqint.net (212.179.124.81)
76719 517.30 ms bzq-179-124-158.cust.bezeqint.net (212.179.124.158)
76820 517.82 ms bzq-218-2-197.cablep.bezeqint.net (81.218.2.197)
76921 ... 30
770#######################################################################################################################################
771 ^ ^
772 _ __ _ ____ _ __ _ _ ____
773 ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
774 | V V // o // _/ | V V // 0 // 0 // _/
775 |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
776 <
777 ...'
778
779 WAFW00F - Web Application Firewall Detection Tool
780
781 By Sandro Gauci && Wendel G. Henrique
782
783Checking http://62.219.78.222
784Generic Detection results:
785The site http://62.219.78.222 seems to be behind a WAF or some sort of security solution
786Reason: Blocking is being done at connection/packet level.
787Number of requests: 11
788#######################################################################################################################################
789http://62.219.78.222 [200 OK] ASP_NET[2.0.50727], Country[ISRAEL][IL], Email[sales@livedns.co.il], IP[62.219.78.222], JQuery, Meta-Author[LiveDns Ltd - Web Development Department], Script[application/ld+json,text/javascript], Title[דומיין|×“×•×ž×™×™× ×™×|×יחסון ×תרי×|×חסון ×תרי×|×¨×™×©×•× ×“×•×ž×™×™×Ÿ|×¨×™×©×•× ×“×•×ž×™×™× ×™×|×יחסון], X-Powered-By[ASP.NET], X-UA-Compatible[IE=EmulateIE8]
790#######################################################################################################################################
791wig - WebApp Information Gatherer
792
793
794Scanning http://62.219.78.222...
795_____________________ SITE INFO ______________________
796IP Title
79762.219.78.222 דומיין|×“×•×ž×™×™× ×™×|×יחסון ×תרי×|×חסון
798
799______________________ VERSION _______________________
800Name Versions Type
801ASP.NET 2.0.50727 Platform
802
803____________________ INTERESTING _____________________
804URL Note Type
805/robots.txt robots.txt index Interesting
806
807______________________________________________________
808Time: 193.2 sec Urls: 646 Fingerprints: 40401
809#######################################################################################################################################
810HTTP/1.1 200 OK
811Cache-Control: private
812Content-Length: 100242
813Content-Type: text/html; charset=utf-8
814X-AspNet-Version: 2.0.50727
815X-Powered-By: ASP.NET
816Date: Sat, 26 Jan 2019 00:03:49 GMT
817Connection: keep-alive
818
819HTTP/1.1 200 OK
820Cache-Control: private
821Content-Length: 100242
822Content-Type: text/html; charset=utf-8
823X-AspNet-Version: 2.0.50727
824X-Powered-By: ASP.NET
825Date: Sat, 26 Jan 2019 00:03:50 GMT
826Connection: keep-alive
827#######################################################################################################################################
828Starting Nmap 7.70 ( https://nmap.org ) at 2019-01-25 19:04 EST
829Nmap scan report for bzq-78-222.red.bezeqint.net (62.219.78.222)
830Host is up.
831
832PORT STATE SERVICE VERSION
833123/udp open|filtered ntp
834Too many fingerprints match this host to give specific OS details
835
836TRACEROUTE (using proto 1/icmp)
837HOP RTT ADDRESS
8381 229.06 ms 10.251.200.1
8392 229.29 ms v106.ce01.hkg-10.hk.leaseweb.net (43.249.36.188)
8403 229.91 ms te-0-0-0-0.br02.hkg-10.hk.leaseweb.net (43.249.36.10)
8414 230.70 ms xe-5-1-0.br01.hkg-12.hk.leaseweb.net (64.120.119.226)
8425 232.12 ms ix-et-7.hcore1.h71-hong-kong.as6453.net (180.87.160.197)
8436 483.16 ms if-ae-38-2.tcore1.hk2-hong-kong.as6453.net (116.0.67.86)
8447 299.37 ms if-et-17-2.hcore1.kv8-chiba.as6453.net (116.0.67.62)
8458 491.37 ms if-ae-5-2.tcore2.sv1-santa-clara.as6453.net (209.58.86.142)
8469 491.38 ms 63.243.205.12
84710 482.64 ms if-ae-12-2.tcore1.nto-new-york.as6453.net (63.243.128.28)
84811 493.78 ms if-ae-8-2.tcore2.nto-new-york.as6453.net (63.243.128.70)
84912 484.58 ms if-ae-32-2.tcore2.ldn-london.as6453.net (63.243.216.23)
85013 483.92 ms if-ae-3-2.thar1.lrt-london.as6453.net (80.231.62.74)
85114 482.55 ms 195.219.100.130
85215 513.60 ms bzq-179-72-241.cust.bezeqint.net (212.179.72.241)
85316 511.44 ms bzq-219-189-9.dsl.bezeqint.net (62.219.189.9)
85417 510.66 ms bzq-179-124-85.cust.bezeqint.net (212.179.124.85)
85518 512.87 ms bzq-179-124-81.cust.bezeqint.net (212.179.124.81)
85619 510.14 ms bzq-179-124-158.cust.bezeqint.net (212.179.124.158)
85720 517.74 ms bzq-218-2-197.cablep.bezeqint.net (81.218.2.197)
85821 ... 30
859#######################################################################################################################################
860Starting Nmap 7.70 ( https://nmap.org ) at 2019-01-25 19:06 EST
861Nmap scan report for bzq-78-222.red.bezeqint.net (62.219.78.222)
862Host is up (0.23s latency).
863
864PORT STATE SERVICE VERSION
865161/tcp filtered snmp
866161/udp open|filtered snmp
867Too many fingerprints match this host to give specific OS details
868
869TRACEROUTE (using proto 1/icmp)
870HOP RTT ADDRESS
8711 227.80 ms 10.251.200.1
8722 227.82 ms v106.ce01.hkg-10.hk.leaseweb.net (43.249.36.188)
8733 228.38 ms te-0-0-0-0.br02.hkg-10.hk.leaseweb.net (43.249.36.10)
8744 229.59 ms xe-5-1-0.br01.hkg-12.hk.leaseweb.net (64.120.119.226)
8755 230.93 ms ix-et-7.hcore1.h71-hong-kong.as6453.net (180.87.160.197)
8766 542.97 ms if-ae-38-2.tcore1.hk2-hong-kong.as6453.net (116.0.67.86)
8777 542.79 ms if-et-17-2.hcore1.kv8-chiba.as6453.net (116.0.67.62)
8788 543.00 ms if-ae-5-2.tcore2.sv1-santa-clara.as6453.net (209.58.86.142)
8799 543.02 ms 63.243.205.12
88010 543.01 ms if-ae-12-2.tcore1.nto-new-york.as6453.net (63.243.128.28)
88111 768.55 ms if-ae-8-2.tcore2.nto-new-york.as6453.net (63.243.128.70)
88212 768.52 ms if-ae-32-2.tcore2.ldn-london.as6453.net (63.243.216.23)
88313 768.51 ms if-ae-3-2.thar1.lrt-london.as6453.net (80.231.62.74)
88414 768.49 ms 195.219.100.130
88515 768.52 ms bzq-179-72-241.cust.bezeqint.net (212.179.72.241)
88616 738.75 ms bzq-219-189-9.dsl.bezeqint.net (62.219.189.9)
88717 737.75 ms bzq-179-124-85.cust.bezeqint.net (212.179.124.85)
88818 740.02 ms bzq-179-124-81.cust.bezeqint.net (212.179.124.81)
88919 738.26 ms bzq-179-124-158.cust.bezeqint.net (212.179.124.158)
89020 738.22 ms bzq-218-2-197.cablep.bezeqint.net (81.218.2.197)
89121 ... 30
892######################################################################################################################################
893+-------------------+--------------------------------------+-----------------------------------------------------+----------+----------+
894| App Name | URL to Application | Potential Exploit | Username | Password |
895+-------------------+--------------------------------------+-----------------------------------------------------+----------+----------+
896| JBoss jmx-console | http://62.219.78.222:80/jmx-console/ | ./exploit/multi/http/jboss_deploymentfilerepository | None | None |
897+-------------------+--------------------------------------+-----------------------------------------------------+----------+----------+
898#######################################################################################################################################
899Starting Nmap 7.70 ( https://nmap.org ) at 2019-01-25 19:10 EST
900NSE: Loaded 148 scripts for scanning.
901NSE: Script Pre-scanning.
902NSE: Starting runlevel 1 (of 2) scan.
903Initiating NSE at 19:10
904Completed NSE at 19:10, 0.00s elapsed
905NSE: Starting runlevel 2 (of 2) scan.
906Initiating NSE at 19:10
907Completed NSE at 19:10, 0.00s elapsed
908Initiating Ping Scan at 19:10
909Scanning 62.219.78.222 [4 ports]
910Completed Ping Scan at 19:10, 0.26s elapsed (1 total hosts)
911Initiating Parallel DNS resolution of 1 host. at 19:10
912Completed Parallel DNS resolution of 1 host. at 19:10, 0.02s elapsed
913Initiating Connect Scan at 19:10
914Scanning bzq-78-222.red.bezeqint.net (62.219.78.222) [1000 ports]
915Discovered open port 80/tcp on 62.219.78.222
916Completed Connect Scan at 19:10, 12.06s elapsed (1000 total ports)
917Initiating Service scan at 19:10
918Scanning 1 service on bzq-78-222.red.bezeqint.net (62.219.78.222)
919Completed Service scan at 19:11, 38.54s elapsed (1 service on 1 host)
920Initiating OS detection (try #1) against bzq-78-222.red.bezeqint.net (62.219.78.222)
921Retrying OS detection (try #2) against bzq-78-222.red.bezeqint.net (62.219.78.222)
922Initiating Traceroute at 19:11
923Completed Traceroute at 19:11, 4.01s elapsed
924Initiating Parallel DNS resolution of 20 hosts. at 19:11
925Completed Parallel DNS resolution of 20 hosts. at 19:11, 16.50s elapsed
926NSE: Script scanning 62.219.78.222.
927NSE: Starting runlevel 1 (of 2) scan.
928Initiating NSE at 19:11
929NSE Timing: About 95.14% done; ETC: 19:12 (0:00:02 remaining)
930NSE Timing: About 99.31% done; ETC: 19:12 (0:00:00 remaining)
931Completed NSE at 19:13, 74.81s elapsed
932NSE: Starting runlevel 2 (of 2) scan.
933Initiating NSE at 19:13
934Completed NSE at 19:13, 0.00s elapsed
935Nmap scan report for bzq-78-222.red.bezeqint.net (62.219.78.222)
936Host is up, received reset ttl 64 (0.23s latency).
937Scanned at 2019-01-25 19:10:41 EST for 151s
938Not shown: 996 filtered ports
939Reason: 996 no-responses
940PORT STATE SERVICE REASON VERSION
94125/tcp closed smtp conn-refused
94280/tcp open http-proxy syn-ack Squid http proxy
943|_http-open-proxy: Proxy might be redirecting requests
944139/tcp closed netbios-ssn conn-refused
945445/tcp closed microsoft-ds conn-refused
946Device type: general purpose|storage-misc|broadband router|WAP
947Running (JUST GUESSING): Linux 3.X|4.X|2.6.X (93%), HP embedded (90%), Asus embedded (87%)
948OS CPE: cpe:/o:linux:linux_kernel:3.18 cpe:/o:linux:linux_kernel:4 cpe:/h:hp:p2000_g3 cpe:/o:linux:linux_kernel:3 cpe:/o:linux:linux_kernel:2.6 cpe:/o:linux:linux_kernel cpe:/h:asus:rt-ac66u
949OS fingerprint not ideal because: Didn't receive UDP response. Please try again with -sSU
950Aggressive OS guesses: Linux 3.18 (93%), Linux 3.16 - 4.6 (93%), Linux 3.10 - 4.11 (91%), Linux 3.13 (91%), Linux 3.13 or 4.2 (91%), Linux 4.2 (91%), Linux 4.4 (91%), HP P2000 G3 NAS device (90%), Linux 3.2 - 4.9 (90%), Linux 3.16 (89%)
951No exact OS matches for host (test conditions non-ideal).
952TCP/IP fingerprint:
953SCAN(V=7.70%E=4%D=1/25%OT=80%CT=25%CU=%PV=N%G=N%TM=5C4BA618%P=x86_64-pc-linux-gnu)
954SEQ(SP=107%GCD=1%ISR=10C%TI=Z%CI=Z%TS=8)
955OPS(O1=M4B3ST11NW7%O2=M4B3ST11NW7%O3=M4B3NNT11NW7%O4=M4B3ST11NW7%O5=M4B3ST11NW7%O6=M4B3ST11)
956WIN(W1=7120%W2=7120%W3=7120%W4=7120%W5=7120%W6=7120)
957ECN(R=Y%DF=Y%TG=40%W=7210%O=M4B3NNSNW7%CC=Y%Q=)
958T1(R=Y%DF=Y%TG=40%S=O%A=S+%F=AS%RD=0%Q=)
959T2(R=N)
960T3(R=N)
961T4(R=Y%DF=Y%TG=40%W=0%S=A%A=Z%F=R%O=%RD=0%Q=)
962T5(R=Y%DF=Y%TG=40%W=0%S=Z%A=S+%F=AR%O=%RD=0%Q=)
963T6(R=Y%DF=Y%TG=40%W=0%S=A%A=Z%F=R%O=%RD=0%Q=)
964T7(R=N)
965U1(R=N)
966IE(R=N)
967
968Uptime guess: 42.340 days (since Fri Dec 14 11:03:56 2018)
969TCP Sequence Prediction: Difficulty=263 (Good luck!)
970IP ID Sequence Generation: All zeros
971
972TRACEROUTE (using proto 1/icmp)
973HOP RTT ADDRESS
9741 227.65 ms 10.251.200.1
9752 228.01 ms v106.ce01.hkg-10.hk.leaseweb.net (43.249.36.188)
9763 228.26 ms te-0-0-0-0.br02.hkg-10.hk.leaseweb.net (43.249.36.10)
9774 229.43 ms xe-5-1-0.br01.hkg-12.hk.leaseweb.net (64.120.119.226)
9785 231.05 ms ix-et-7.hcore1.h71-hong-kong.as6453.net (180.87.160.197)
9796 481.92 ms if-ae-38-2.tcore1.hk2-hong-kong.as6453.net (116.0.67.86)
9807 296.94 ms if-et-17-2.hcore1.kv8-chiba.as6453.net (116.0.67.62)
9818 490.37 ms if-ae-5-2.tcore2.sv1-santa-clara.as6453.net (209.58.86.142)
9829 490.42 ms 63.243.205.12
98310 481.39 ms if-ae-12-2.tcore1.nto-new-york.as6453.net (63.243.128.28)
98411 493.98 ms if-ae-8-2.tcore2.nto-new-york.as6453.net (63.243.128.70)
98512 485.11 ms if-ae-32-2.tcore2.ldn-london.as6453.net (63.243.216.23)
98613 484.08 ms if-ae-3-2.thar1.lrt-london.as6453.net (80.231.62.74)
98714 482.70 ms 195.219.100.130
98815 513.43 ms bzq-179-72-241.cust.bezeqint.net (212.179.72.241)
98916 511.63 ms bzq-219-189-9.cablep.bezeqint.net (62.219.189.9)
99017 510.11 ms bzq-179-124-85.cust.bezeqint.net (212.179.124.85)
99118 513.07 ms bzq-179-124-81.cust.bezeqint.net (212.179.124.81)
99219 509.33 ms bzq-179-124-158.cust.bezeqint.net (212.179.124.158)
99320 510.26 ms bzq-218-2-197.cablep.bezeqint.net (81.218.2.197)
99421 ... 30
995
996NSE: Script Post-scanning.
997NSE: Starting runlevel 1 (of 2) scan.
998Initiating NSE at 19:13
999Completed NSE at 19:13, 0.00s elapsed
1000NSE: Starting runlevel 2 (of 2) scan.
1001Initiating NSE at 19:13
1002Completed NSE at 19:13, 0.00s elapsed
1003Read data files from: /usr/bin/../share/nmap
1004OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
1005Nmap done: 1 IP address (1 host up) scanned in 152.04 seconds
1006 Raw packets sent: 122 (9.392KB) | Rcvd: 59 (4.787KB)
1007#######################################################################################################################################
1008Starting Nmap 7.70 ( https://nmap.org ) at 2019-01-25 19:13 EST
1009NSE: Loaded 148 scripts for scanning.
1010NSE: Script Pre-scanning.
1011Initiating NSE at 19:13
1012Completed NSE at 19:13, 0.00s elapsed
1013Initiating NSE at 19:13
1014Completed NSE at 19:13, 0.00s elapsed
1015Initiating Parallel DNS resolution of 1 host. at 19:13
1016Completed Parallel DNS resolution of 1 host. at 19:13, 0.02s elapsed
1017Initiating UDP Scan at 19:13
1018Scanning bzq-78-222.red.bezeqint.net (62.219.78.222) [14 ports]
1019Completed UDP Scan at 19:13, 3.11s elapsed (14 total ports)
1020Initiating Service scan at 19:13
1021Scanning 12 services on bzq-78-222.red.bezeqint.net (62.219.78.222)
1022Service scan Timing: About 8.33% done; ETC: 19:32 (0:17:58 remaining)
1023Completed Service scan at 19:14, 102.57s elapsed (12 services on 1 host)
1024Initiating OS detection (try #1) against bzq-78-222.red.bezeqint.net (62.219.78.222)
1025Retrying OS detection (try #2) against bzq-78-222.red.bezeqint.net (62.219.78.222)
1026Initiating Traceroute at 19:15
1027Completed Traceroute at 19:15, 7.27s elapsed
1028Initiating Parallel DNS resolution of 1 host. at 19:15
1029Completed Parallel DNS resolution of 1 host. at 19:15, 0.02s elapsed
1030NSE: Script scanning 62.219.78.222.
1031Initiating NSE at 19:15
1032Completed NSE at 19:15, 20.32s elapsed
1033Initiating NSE at 19:15
1034Completed NSE at 19:15, 1.72s elapsed
1035Nmap scan report for bzq-78-222.red.bezeqint.net (62.219.78.222)
1036Host is up (0.23s latency).
1037
1038PORT STATE SERVICE VERSION
103953/udp open|filtered domain
104067/udp open|filtered dhcps
104168/udp open|filtered dhcpc
104269/udp open|filtered tftp
104388/udp open|filtered kerberos-sec
1044123/udp open|filtered ntp
1045137/udp filtered netbios-ns
1046138/udp filtered netbios-dgm
1047139/udp open|filtered netbios-ssn
1048161/udp open|filtered snmp
1049162/udp open|filtered snmptrap
1050389/udp open|filtered ldap
1051520/udp open|filtered route
10522049/udp open|filtered nfs
1053Too many fingerprints match this host to give specific OS details
1054
1055TRACEROUTE (using port 137/udp)
1056HOP RTT ADDRESS
10571 227.56 ms 10.251.200.1
10582 ... 3
10594 230.15 ms 10.251.200.1
10605 229.22 ms 10.251.200.1
10616 229.22 ms 10.251.200.1
10627 229.21 ms 10.251.200.1
10638 229.21 ms 10.251.200.1
10649 229.20 ms 10.251.200.1
106510 229.22 ms 10.251.200.1
106611 ... 18
106719 231.80 ms 10.251.200.1
106820 227.42 ms 10.251.200.1
106921 ... 28
107029 228.88 ms 10.251.200.1
107130 228.25 ms 10.251.200.1
1072
1073NSE: Script Post-scanning.
1074Initiating NSE at 19:15
1075Completed NSE at 19:15, 0.00s elapsed
1076Initiating NSE at 19:15
1077Completed NSE at 19:15, 0.00s elapsed
1078Read data files from: /usr/bin/../share/nmap
1079OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
1080Nmap done: 1 IP address (1 host up) scanned in 143.06 seconds
1081 Raw packets sent: 147 (13.614KB) | Rcvd: 55 (4.891KB)
1082#######################################################################################################################################
1083 Anonymous JTSEC #OpIsraël Full Recon #4