· 6 years ago · Feb 10, 2020, 12:46 AM
1#######################################################################################################################################
2======================================================================================================================================
3Hostname childsexstories.com ISP New Dream Network, LLC
4Continent North America Flag
5US
6Country United States Country Code US
7Region California Local time 09 Feb 2020 15:17 PST
8City Brea Postal Code 92821
9IP Address 208.113.220.218 Latitude 33.934
10 Longitude -117.885
11======================================================================================================================================
12#######################################################################################################################################
13> childsexstories.com
14Server: 38.132.106.139
15Address: 38.132.106.139#53
16
17Non-authoritative answer:
18Name: childsexstories.com
19Address: 208.113.220.218
20>
21#####################################################################################################################################
22 Domain Name: CHILDSEXSTORIES.COM
23 Registry Domain ID: 1577329956_DOMAIN_COM-VRSN
24 Registrar WHOIS Server: whois.namesilo.com
25 Registrar URL: http://www.namesilo.com
26 Updated Date: 2020-01-04T03:00:43Z
27 Creation Date: 2009-11-29T06:31:10Z
28 Registry Expiry Date: 2029-11-29T06:31:10Z
29 Registrar: NameSilo, LLC
30 Registrar IANA ID: 1479
31 Registrar Abuse Contact Email: abuse@namesilo.com
32 Registrar Abuse Contact Phone: +1.4805240066
33 Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
34 Name Server: NS1.DREAMHOST.COM
35 Name Server: NS2.DREAMHOST.COM
36 Name Server: NS3.DREAMHOST.COM
37 DNSSEC: unsigned
38#####################################################################################################################################
39The Registry database contains ONLY .COM, .NET, .EDU domains and
40Registrars.
41Domain Name: childsexstories.com
42Registry Domain ID: 1577329956_DOMAIN_COM-VRSN
43Registrar WHOIS Server: whois.namesilo.com
44Registrar URL: https://www.namesilo.com/
45Updated Date: 2020-02-04T07:00:00Z
46Creation Date: 2009-11-28T07:00:00Z
47Registrar Registration Expiration Date: 2029-11-28T07:00:00Z
48Registrar: NameSilo, LLC
49Registrar IANA ID: 1479
50Registrar Abuse Contact Email: abuse@namesilo.com
51Registrar Abuse Contact Phone: +1.4805240066
52Domain Status: clientTransferProhibited https://www.icann.org/epp#clientTransferProhibited
53Registry Registrant ID:
54Registrant Name: Domain Administrator
55Registrant Organization: See PrivacyGuardian.org
56Registrant Street: 1928 E. Highland Ave. Ste F104 PMB# 255
57Registrant City: Phoenix
58Registrant State/Province: AZ
59Registrant Postal Code: 85016
60Registrant Country: US
61Registrant Phone: +1.3478717726
62Registrant Phone Ext:
63Registrant Fax:
64Registrant Fax Ext:
65Registrant Email: pw-8616cc6b11b16625aa5386e14ccc9621@privacyguardian.org
66Registry Admin ID:
67Admin Name: Domain Administrator
68Admin Organization: See PrivacyGuardian.org
69Admin Street: 1928 E. Highland Ave. Ste F104 PMB# 255
70Admin City: Phoenix
71Admin State/Province: AZ
72Admin Postal Code: 85016
73Admin Country: US
74Admin Phone: +1.3478717726
75Admin Phone Ext:
76Admin Fax:
77Admin Fax Ext:
78Admin Email: pw-8616cc6b11b16625aa5386e14ccc9621@privacyguardian.org
79Registry Tech ID:
80Tech Name: Domain Administrator
81Tech Organization: See PrivacyGuardian.org
82Tech Street: 1928 E. Highland Ave. Ste F104 PMB# 255
83Tech City: Phoenix
84Tech State/Province: AZ
85Tech Postal Code: 85016
86Tech Country: US
87Tech Phone: +1.3478717726
88Tech Phone Ext:
89Tech Fax:
90Tech Fax Ext:
91Tech Email: pw-8616cc6b11b16625aa5386e14ccc9621@privacyguardian.org
92Name Server: ns3.dreamhost.com
93Name Server: ns2.dreamhost.com
94Name Server: ns1.dreamhost.com
95DNSSEC: unsigned
96URL of the ICANN WHO
97#####################################################################################################################################
98[+] Target : childsexstories.com
99
100[+] IP Address : 208.113.220.218
101
102[+] Headers :
103
104[+] Date : Sun, 09 Feb 2020 23:44:03 GMT
105[+] Server : Apache
106[+] Link : <https://childsexstories.com/wp-json/>; rel="https://api.w.org/"
107[+] Upgrade : h2
108[+] Connection : Upgrade, Keep-Alive
109[+] Content-Length : 29299
110[+] Keep-Alive : timeout=2, max=100
111[+] Content-Type : text/html; charset=UTF-8
112
113[+] SSL Certificate Information :
114
115[+] commonName : childsexstories.com
116[+] countryName : US
117[+] organizationName : Let's Encrypt
118[+] commonName : Let's Encrypt Authority X3
119[+] Version : 3
120[+] Serial Number : 04E201DA884233B565B0BD070A7BE54C0A5E
121[+] Not Before : Dec 20 11:51:24 2019 GMT
122[+] Not After : Mar 19 11:51:24 2020 GMT
123[+] OCSP : ('http://ocsp.int-x3.letsencrypt.org',)
124[+] subject Alt Name : (('DNS', 'childsexstories.com'), ('DNS', 'www.childsexstories.com'))
125[+] CA Issuers : ('http://cert.int-x3.letsencrypt.org/',)
126
127[+] Whois Lookup :
128
129[+] NIR : None
130[+] ASN Registry : arin
131[+] ASN : 26347
132[+] ASN CIDR : 208.113.128.0/17
133[+] ASN Country Code : US
134[+] ASN Date : 2006-04-12
135[+] ASN Description : DREAMHOST-AS, US
136[+] cidr : 208.113.128.0/17
137[+] name : DREAMHOST-BLK6
138[+] handle : NET-208-113-128-0-1
139[+] range : 208.113.128.0 - 208.113.255.255
140[+] description : New Dream Network, LLC
141[+] country : US
142[+] state : CA
143[+] city : Brea
144[+] address : 417 Associated Rd.
145PMB #257
146[+] postal_code : 92821
147[+] emails : ['netops@dreamhost.com', 'abuse@dreamhost.com']
148[+] created : 2006-04-12
149[+] updated : 2012-03-02
150
151[+] Crawling Target...
152
153[+] Looking for robots.txt........[ Found ]
154[+] Extracting robots Links.......[ 8 ]
155[+] Looking for sitemap.xml.......[ Found ]
156[+] Extracting sitemap Links......[ 45 ]
157[+] Extracting CSS Links..........[ 4 ]
158[+] Extracting Javascript Links...[ 5 ]
159[+] Extracting Internal Links.....[ 32 ]
160[+] Extracting External Links.....[ 3 ]
161[+] Extracting Images.............[ 8 ]
162
163[+] Total Links Extracted : 105
164
165[+] Dumping Links in /opt/FinalRecon/dumps/childsexstories.com.dump
166[+] Completed!
167#####################################################################################################################################
168[i] Scanning Site: https://childsexstories.com
169
170
171
172B A S I C I N F O
173====================
174
175
176[+] Site Title: Child Sex Stories | Little girl and little boy sex stories
177[+] IP address: 208.113.220.218
178[+] Web Server: Apache
179[+] CMS: WordPress
180[+] Cloudflare: Not Detected
181[+] Robots File: Found
182
183-------------[ contents ]----------------
184# Sitemap link (CHANGE for every site!!)
185
186
187
188Sitemap: http://www.childsexstories.com/sitemap.xml.gz
189
190
191
192# All crawling bots
193
194
195User-agent: *
196
197
198
199# Disallow Wordpress admin directories crawling
200
201
202Disallow: /cgi-bin/
203
204Disallow: /wp-admin/
205
206Disallow: /wp-content/plugins/
207
208Disallow: /wp-content/themes/
209
210Disallow: /wp-content/upgrade/
211
212Disallow: /wp-includes/
213
214
215
216# Allow Wordpress image crawling
217
218
219
220Allow: /wp-content/uploads/
221
222
223
224# Disallow wget
225
226
227User-agent: wget
228Disallow: /
229
230
231
232# Disallow automatic downloaders
233
234
235
236User-agent: Teleport
237
238Disallow: /
239
240
241User-agent: TeleportPro
242
243Disallow: /
244
245
246User-agent: EmailCollector
247
248Disallow: /
249
250
251User-agent: EmailSiphon
252
253Disallow: /
254
255
256User-agent: WebBandit
257
258Disallow: /
259
260
261User-agent: WebZIP
262
263Disallow: /
264
265
266User-agent: WebReaper
267
268Disallow: /
269
270
271User-agent: WebStripper
272
273Disallow: /
274
275
276User-agent: Web Downloader
277
278Disallow: /
279
280
281User-agent: WebCopier
282
283Disallow: /
284
285
286User-agent: Offline Explorer Pro
287
288Disallow: /
289
290
291User-agent: HTTrack Website Copier
292
293Disallow: /
294
295
296User-agent: Offline Commander
297
298Disallow: /
299
300
301User-agent: Leech
302
303Disallow: /
304
305
306User-agent: WebSnake
307
308Disallow: /
309
310
311User-agent: BlackWidow
312
313Disallow: /
314
315
316User-agent: HTTP Weazel
317
318Disallow: /
319-----------[end of contents]-------------
320
321
322
323W H O I S L O O K U P
324========================
325
326 Domain Name: CHILDSEXSTORIES.COM
327 Registry Domain ID: 1577329956_DOMAIN_COM-VRSN
328 Registrar WHOIS Server: whois.namesilo.com
329 Registrar URL: http://www.namesilo.com
330 Updated Date: 2020-01-04T03:00:43Z
331 Creation Date: 2009-11-29T06:31:10Z
332 Registry Expiry Date: 2029-11-29T06:31:10Z
333 Registrar: NameSilo, LLC
334 Registrar IANA ID: 1479
335 Registrar Abuse Contact Email: abuse@namesilo.com
336 Registrar Abuse Contact Phone: +1.4805240066
337 Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
338 Name Server: NS1.DREAMHOST.COM
339 Name Server: NS2.DREAMHOST.COM
340 Name Server: NS3.DREAMHOST.COM
341 DNSSEC: unsigned
342 URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/
343>>> Last update of whois database: 2020-02-09T23:43:56Z <<<
344
345For more information on Whois status codes, please visit https://icann.org/epp
346
347
348
349The Registry database contains ONLY .COM, .NET, .EDU domains and
350Registrars.
351
352
353
354
355G E O I P L O O K U P
356=========================
357
358[i] IP Address: 208.113.220.218
359[i] Country: United States
360[i] State: California
361[i] City: Brea
362[i] Latitude: 33.9339
363[i] Longitude: -117.8854
364
365
366
367
368H T T P H E A D E R S
369=======================
370
371
372[i] HTTP/1.1 200 OK
373[i] Date: Sun, 09 Feb 2020 23:44:17 GMT
374[i] Server: Apache
375[i] Link: <https://childsexstories.com/wp-json/>; rel="https://api.w.org/"
376[i] Upgrade: h2
377[i] Connection: Upgrade, close
378[i] Content-Length: 29299
379[i] Content-Type: text/html; charset=UTF-8
380
381
382
383
384D N S L O O K U P
385===================
386
387childsexstories.com. 14399 IN NS ns3.dreamhost.com.
388childsexstories.com. 14399 IN A 208.113.220.218
389childsexstories.com. 14399 IN NS ns1.dreamhost.com.
390childsexstories.com. 14399 IN NS ns2.dreamhost.com.
391childsexstories.com. 14399 IN SOA ns1.dreamhost.com. hostmaster.dreamhost.com. 2019122003 15887 1800 1814400 14400
392
393
394
395
396S U B N E T C A L C U L A T I O N
397====================================
398
399Address = 208.113.220.218
400Network = 208.113.220.218 / 32
401Netmask = 255.255.255.255
402Broadcast = not needed on Point-to-Point links
403Wildcard Mask = 0.0.0.0
404Hosts Bits = 0
405Max. Hosts = 1 (2^0 - 0)
406Host Range = { 208.113.220.218 - 208.113.220.218 }
407
408
409
410N M A P P O R T S C A N
411============================
412
413Starting Nmap 7.70 ( https://nmap.org ) at 2020-02-09 23:44 UTC
414Nmap scan report for childsexstories.com (208.113.220.218)
415Host is up (0.0087s latency).
416rDNS record for 208.113.220.218: apache2-xenon.accomack.dreamhost.com
417
418PORT STATE SERVICE
41921/tcp open ftp
42022/tcp open ssh
42123/tcp filtered telnet
42280/tcp open http
423110/tcp filtered pop3
424143/tcp filtered imap
425443/tcp open https
4263389/tcp filtered ms-wbt-server
427
428Nmap done: 1 IP address (1 host up) scanned in 1.37 seconds
429
430
431
432S U B - D O M A I N F I N D E R
433==================================
434
435
436[i] Total Subdomains Found : 1
437
438[+] Subdomain: www.childsexstories.com
439[-] IP: 208.113.220.218
440######################################################################################################################################
441[+] Starting At 2020-02-09 18:45:04.566080
442[+] Collecting Information On: https://childsexstories.com/
443[#] Status: 200
444--------------------------------------------------
445[#] Web Server Detected: Apache
446[!] X-Frame-Options Headers not detect! target might be vulnerable Click Jacking
447- Date: Sun, 09 Feb 2020 23:44:54 GMT
448- Server: Apache
449- Link: <https://childsexstories.com/wp-json/>; rel="https://api.w.org/"
450- Upgrade: h2
451- Connection: Upgrade, Keep-Alive
452- Content-Length: 29299
453- Keep-Alive: timeout=2, max=100
454- Content-Type: text/html; charset=UTF-8
455--------------------------------------------------
456[#] Finding Location..!
457[#] status: success
458[#] country: United States
459[#] countryCode: US
460[#] region: CA
461[#] regionName: California
462[#] city: Brea
463[#] zip: 92821
464[#] lat: 33.9167
465[#] lon: -117.9
466[#] timezone: America/Los_Angeles
467[#] isp: New Dream Network, LLC
468[#] org: New Dream Network, LLC
469[#] as: AS26347 New Dream Network, LLC
470[#] query: 208.113.220.218
471--------------------------------------------------
472[x] Didn't Detect WAF Presence on: https://childsexstories.com/
473--------------------------------------------------
474[#] Starting Reverse DNS
475[!] Found 5 any Domain
476- addictivehumor.com
477- blog.rivalsnfriends.com
478- brieflyme.com
479- childsexstories.com
480- sundaymorninghair.com
481--------------------------------------------------
482[!] Scanning Open Port
483[#] 21/tcp open ftp
484[#] 22/tcp open ssh
485[#] 80/tcp open http
486[#] 443/tcp open https
487[#] 587/tcp open submission
488[#] 5222/tcp open xmpp-client
489[#] 5269/tcp open xmpp-server
490--------------------------------------------------
491[+] Getting SSL Info
492{'OCSP': ('http://ocsp.int-x3.letsencrypt.org',),
493 'caIssuers': ('http://cert.int-x3.letsencrypt.org/',),
494 'issuer': ((('countryName', 'US'),),
495 (('organizationName', "Let's Encrypt"),),
496 (('commonName', "Let's Encrypt Authority X3"),)),
497 'notAfter': 'Mar 19 11:51:24 2020 GMT',
498 'notBefore': 'Dec 20 11:51:24 2019 GMT',
499 'serialNumber': '04E201DA884233B565B0BD070A7BE54C0A5E',
500 'subject': ((('commonName', 'childsexstories.com'),),),
501 'subjectAltName': (('DNS', 'childsexstories.com'),
502 ('DNS', 'www.childsexstories.com')),
503 'version': 3}
504-----BEGIN CERTIFICATE-----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523-----END CERTIFICATE-----
524
525--------------------------------------------------
526[+] Collecting Information Disclosure!
527[#] Detecting sitemap.xml file
528[!] sitemap.xml File Found: https://childsexstories.com//sitemap.xml
529[#] Detecting robots.txt file
530[!] robots.txt File Found: https://childsexstories.com//robots.txt
531[#] Detecting GNU Mailman
532[-] GNU Mailman App Not Detected!?
533--------------------------------------------------
534[+] Crawling Url Parameter On: https://childsexstories.com/
535--------------------------------------------------
536[#] Searching Html Form !
537[+] Html Form Discovered
538[#] action: https://childsexstories.com
539[#] class: ['search-form']
540[#] id: searchform
541[#] method: get
542--------------------------------------------------
543[!] Found 8 dom parameter
544[#] https://childsexstories.com//#
545[#] https://childsexstories.com/kids-sex/aileens-sleepover-m-g-oral-anal-1st-ws/#respond
546[#] https://childsexstories.com/little-girl/the-love-street-mg/#respond
547[#] https://childsexstories.com/little-girl/robin-and-her-daddy-m-g-incest/#respond
548[#] https://childsexstories.com/little-girl/little-sister-mgg-gg-oral-nc-incest/#comments
549[#] https://childsexstories.com/kids-sex/flirting-on-the-school-bus-goes-to-farmg/#comments
550[#] https://childsexstories.com/kids-sex/fist-time-with-no-sitter-bbbgincest/#comments
551[#] https://childsexstories.com//#top
552--------------------------------------------------
553[!] 2 Internal Dynamic Parameter Discovered
554[+] https://childsexstories.com/xmlrpc.php?rsd
555[+] https://childsexstories.com////fonts.googleapis.com/css?family=Dosis:700|Droid+Sans:normal&subset=latin
556--------------------------------------------------
557[-] No external Dynamic Paramter Found!?
558--------------------------------------------------
559[!] 56 Internal links Discovered
560[+] https://childsexstories.com/wp-content/themes/spike/apple-touch-icon.png
561[+] https://childsexstories.com/xmlrpc.php
562[+] https://childsexstories.com/feed/
563[+] https://childsexstories.com/comments/feed/
564[+] https://childsexstories.com/wp-includes/wlwmanifest.xml
565[+] https://childsexstories.com
566[+] https://childsexstories.com/category/jailbait/
567[+] https://childsexstories.com/category/kids-sex/
568[+] https://childsexstories.com/category/little-boy/
569[+] https://childsexstories.com/category/little-girl/
570[+] https://childsexstories.com/category/lone-dog-pedo-stories/
571[+] https://childsexstories.com/category/other-pedo/
572[+] https://childsexstories.com/category/spanish-espanol/
573[+] https://childsexstories.com/kids-sex/aileens-sleepover-m-g-oral-anal-1st-ws/
574[+] https://childsexstories.com/kids-sex/aileens-sleepover-m-g-oral-anal-1st-ws/
575[+] https://childsexstories.com/author/ed1torcss/
576[+] https://childsexstories.com/category/kids-sex/
577[+] https://childsexstories.com/kids-sex/aileens-sleepover-m-g-oral-anal-1st-ws/
578[+] https://childsexstories.com/little-girl/the-love-street-mg/
579[+] https://childsexstories.com/little-girl/the-love-street-mg/
580[+] https://childsexstories.com/author/ed1torcss/
581[+] https://childsexstories.com/category/little-girl/
582[+] https://childsexstories.com/little-girl/the-love-street-mg/
583[+] https://childsexstories.com/little-girl/robin-and-her-daddy-m-g-incest/
584[+] https://childsexstories.com/little-girl/robin-and-her-daddy-m-g-incest/
585[+] https://childsexstories.com/author/ed1torcss/
586[+] https://childsexstories.com/category/little-girl/
587[+] https://childsexstories.com/little-girl/robin-and-her-daddy-m-g-incest/
588[+] https://childsexstories.com/little-girl/little-sister-mgg-gg-oral-nc-incest/
589[+] https://childsexstories.com/little-girl/little-sister-mgg-gg-oral-nc-incest/
590[+] https://childsexstories.com/author/hgcollins/
591[+] https://childsexstories.com/category/little-girl/
592[+] https://childsexstories.com/little-girl/little-sister-mgg-gg-oral-nc-incest/
593[+] https://childsexstories.com/kids-sex/flirting-on-the-school-bus-goes-to-farmg/
594[+] https://childsexstories.com/kids-sex/flirting-on-the-school-bus-goes-to-farmg/
595[+] https://childsexstories.com/author/ed1torcss/
596[+] https://childsexstories.com/category/kids-sex/
597[+] https://childsexstories.com/kids-sex/flirting-on-the-school-bus-goes-to-farmg/
598[+] https://childsexstories.com/kids-sex/fist-time-with-no-sitter-bbbgincest/
599[+] https://childsexstories.com/kids-sex/fist-time-with-no-sitter-bbbgincest/
600[+] https://childsexstories.com/author/ed1torcss/
601[+] https://childsexstories.com/category/kids-sex/
602[+] https://childsexstories.com/kids-sex/fist-time-with-no-sitter-bbbgincest/
603[+] https://childsexstories.com/about/
604[+] https://childsexstories.com/books/
605[+] https://childsexstories.com/girlloverboylover/
606[+] https://childsexstories.com/links/
607[+] https://childsexstories.com/privacy/
608[+] https://childsexstories.com/
609[+] https://childsexstories.com/category/jailbait/
610[+] https://childsexstories.com/category/kids-sex/
611[+] https://childsexstories.com/category/little-boy/
612[+] https://childsexstories.com/category/little-girl/
613[+] https://childsexstories.com/category/lone-dog-pedo-stories/
614[+] https://childsexstories.com/category/other-pedo/
615[+] https://childsexstories.com/category/spanish-espanol/
616--------------------------------------------------
617[!] 6 External links Discovered
618[#] http://gmpg.org/xfn/11
619[#] https://realanon.com/
620[#] https://realanon.com/
621[#] https://realanon.com/
622[#] http://www.bleachbit.org/
623[#] https://statcounter.com/
624--------------------------------------------------
625[#] Mapping Subdomain..
626[-] No Any Subdomain Found
627[!] Found 0 Subdomain
628--------------------------------------------------
629[!] Done At 2020-02-09 18:45:34.742684
630######################################################################################################################################
631Trying "childsexstories.com"
632;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 40106
633;; flags: qr rd ra; QUERY: 1, ANSWER: 5, AUTHORITY: 0, ADDITIONAL: 3
634
635;; QUESTION SECTION:
636;childsexstories.com. IN ANY
637
638;; ANSWER SECTION:
639childsexstories.com. 14400 IN SOA ns1.dreamhost.com. hostmaster.dreamhost.com. 2019122003 15887 1800 1814400 14400
640childsexstories.com. 14400 IN A 208.113.220.218
641childsexstories.com. 14400 IN NS ns2.dreamhost.com.
642childsexstories.com. 14400 IN NS ns1.dreamhost.com.
643childsexstories.com. 14400 IN NS ns3.dreamhost.com.
644
645;; ADDITIONAL SECTION:
646ns3.dreamhost.com. 25239 IN A 66.33.205.230
647ns1.dreamhost.com. 34621 IN A 64.90.62.230
648ns2.dreamhost.com. 25239 IN A 208.97.182.10
649
650Received 212 bytes from 2001:18c0:121:6900:724f:b8ff:fefd:5b6a#53 in 80 ms
651#####################################################################################################################################
652; <<>> DiG 9.11.14-3-Debian <<>> +trace childsexstories.com any
653;; global options: +cmd
654. 84772 IN NS j.root-servers.net.
655. 84772 IN NS i.root-servers.net.
656. 84772 IN NS k.root-servers.net.
657. 84772 IN NS f.root-servers.net.
658. 84772 IN NS a.root-servers.net.
659. 84772 IN NS m.root-servers.net.
660. 84772 IN NS e.root-servers.net.
661. 84772 IN NS g.root-servers.net.
662. 84772 IN NS l.root-servers.net.
663. 84772 IN NS h.root-servers.net.
664. 84772 IN NS b.root-servers.net.
665. 84772 IN NS d.root-servers.net.
666. 84772 IN NS c.root-servers.net.
667. 84772 IN RRSIG NS 8 0 518400 20200222170000 20200209160000 33853 . kvTWx2TW/FGVJ3mHOUSypsdNwk5pCr5xW5CpRx07sl+WV850+5v9rRW9 ouo0+sb8GXuWIhQTF+7FkOYIOjYHe14xzb0N1O3lGbpx03jTsB+y8M9o 157y7MRONL1ki04SvZUou1Hj13MqgqG39+RmWIEzGL+X7M5/zn/fp9i9 TxczFvrrL9L8c+aR8/9bi13s5fVRznWIpiKv9BgxaGCeuqMYc5ZxvpKT HQn+nsciTPxxP5cUS3kmBxpBhHDRkkmqvb0EOMtcx26CzPOpaRydGnnN THmbFz7iQjddZjPXPTh9iFqaIy+0c0W7Nx/fqxDDfUaotRu5/AH5ct4y UkSyNw==
668;; Received 525 bytes from 38.132.106.139#53(38.132.106.139) in 161 ms
669
670com. 172800 IN NS a.gtld-servers.net.
671com. 172800 IN NS b.gtld-servers.net.
672com. 172800 IN NS c.gtld-servers.net.
673com. 172800 IN NS d.gtld-servers.net.
674com. 172800 IN NS e.gtld-servers.net.
675com. 172800 IN NS f.gtld-servers.net.
676com. 172800 IN NS g.gtld-servers.net.
677com. 172800 IN NS h.gtld-servers.net.
678com. 172800 IN NS i.gtld-servers.net.
679com. 172800 IN NS j.gtld-servers.net.
680com. 172800 IN NS k.gtld-servers.net.
681com. 172800 IN NS l.gtld-servers.net.
682com. 172800 IN NS m.gtld-servers.net.
683com. 86400 IN DS 30909 8 2 E2D3C916F6DEEAC73294E8268FB5885044A833FC5459588F4A9184CF C41A5766
684com. 86400 IN RRSIG DS 8 1 86400 20200222170000 20200209160000 33853 . Y4lLC3ibJxEvs1n9OaE/Kkx9Fe05UGFKW2Ct6K2xtRsBzMvill/PokXY b8qZmYYhr+bvC5KqbWN/dTOuBk93pGo41oRy4mywgIcpqgNj0Qv7Icmx IWnezbvUhd5xh+hT+mKmpCiVB/RSILIm3rZpK8B6cMIThTbA6nHoeHq8 IHSSXWHFkBnflY+0cVW0rPaTvfrFB5UlylhNy0k54jBK8CBYc0ScqD3L mGYk7mQeuiuwOfkE2nCkjaTbG78VKtUouSccMcHg5xm/ECvM9DqENaBf 3HSBUnvQLhznbLxulo5e12CSW413A5H6m3ExL6dDDN6gTKNGl8WWRhGr uBReCg==
685;; Received 1179 bytes from 2001:503:ba3e::2:30#53(a.root-servers.net) in 50 ms
686
687childsexstories.com. 172800 IN NS ns1.dreamhost.com.
688childsexstories.com. 172800 IN NS ns2.dreamhost.com.
689childsexstories.com. 172800 IN NS ns3.dreamhost.com.
690CK0POJMG874LJREF7EFN8430QVIT8BSM.com. 86400 IN NSEC3 1 1 0 - CK0Q1GIN43N1ARRC9OSM6QPQR81H5M9A NS SOA RRSIG DNSKEY NSEC3PARAM
691CK0POJMG874LJREF7EFN8430QVIT8BSM.com. 86400 IN RRSIG NSEC3 8 2 86400 20200215054817 20200208043817 56311 com. xe9g9xpfm5me3nPoh8UBmt50pWF9oGbO2ZGDV7k/6yp108FaBkHd52n8 w1SIPKwBAjVKH1GzsDRWhgMaV1bq97LkdJWYdSrAE+H3eJR376HBGe6L u8swByJn2uvtfCd8eK6XNvqD9ckKuMvb9Xt4epzQ++dR5VEHBNGMW4Gd aP3PYtlvoAhaPaXyKs0jzJx4kbMonLY67d9IyGyxlGj0jw==
692FGIT0D15RD3GSSGGSQPQOV6PF1Q62CH0.com. 86400 IN NSEC3 1 1 0 - FGIU778NC8BGVKFLRKB88F19VIMVCP9A NS DS RRSIG
693FGIT0D15RD3GSSGGSQPQOV6PF1Q62CH0.com. 86400 IN RRSIG NSEC3 8 2 86400 20200216064112 20200209053112 56311 com. Ufb+K6GjdWZjeEs4c2d7cchqJDNwrg5yGoe5lKsJ/4orERXIgS8RQfP3 eG/X/qQudaJKk4FAsdZkO/0dETWc5S76eZ9AU1oKeqrEk7OCoBwVf7ik 3yBSKN0bgsmf5CbVy9tqwfMjhRKJdbmKJOgqiRNQtE8ZqZF0g/DBz1Oh Mhqlpb+baxvwbYH/nxU8CE1OQt9AgZbU2Y9Mn7+whKnIpw==
694;; Received 709 bytes from 2001:500:d937::30#53(l.gtld-servers.net) in 73 ms
695
696childsexstories.com. 14400 IN A 208.113.220.218
697childsexstories.com. 14400 IN NS ns1.dreamhost.com.
698childsexstories.com. 14400 IN NS ns2.dreamhost.com.
699childsexstories.com. 14400 IN NS ns3.dreamhost.com.
700childsexstories.com. 14400 IN SOA ns1.dreamhost.com. hostmaster.dreamhost.com. 2019122003 15887 1800 1814400 14400
701;; Received 223 bytes from 208.97.182.10#53(ns2.dreamhost.com) in 263 ms
702######################################################################################################################################
703[*] Processing domain childsexstories.com
704[*] Using system resolvers ['38.132.106.139', '194.187.251.67', '185.93.180.131', '2001:18c0:121:6900:724f:b8ff:fefd:5b6a', '192.168.0.1']
705[+] Getting nameservers
706208.97.182.10 - ns2.dreamhost.com
70766.33.205.230 - ns3.dreamhost.com
70864.90.62.230 - ns1.dreamhost.com
709[-] Zone transfer failed
710
711[*] Scanning childsexstories.com for A records
712208.113.220.218 - childsexstories.com
713208.113.220.218 - ftp.childsexstories.com
714208.113.220.218 - ssh.childsexstories.com
715208.113.220.218 - www.childsexstories.com
716#####################################################################################################################################
717
718 AVAILABLE PLUGINS
719 -----------------
720
721 SessionResumptionPlugin
722 FallbackScsvPlugin
723 SessionRenegotiationPlugin
724 HeartbleedPlugin
725 CertificateInfoPlugin
726 OpenSslCcsInjectionPlugin
727 EarlyDataPlugin
728 HttpHeadersPlugin
729 CompressionPlugin
730 RobotPlugin
731 OpenSslCipherSuitesPlugin
732
733
734
735 CHECKING HOST(S) AVAILABILITY
736 -----------------------------
737
738 208.113.220.218:443 => 208.113.220.218
739
740
741
742
743 SCAN RESULTS FOR 208.113.220.218:443 - 208.113.220.218
744 ------------------------------------------------------
745
746 * OpenSSL CCS Injection:
747 OK - Not vulnerable to OpenSSL CCS injection
748
749 * TLS 1.2 Session Resumption Support:
750 With Session IDs: OK - Supported (5 successful, 0 failed, 0 errors, 5 total attempts).
751 With TLS Tickets: NOT SUPPORTED - TLS ticket not assigned.
752
753 * ROBOT Attack:
754 OK - Not vulnerable, RSA cipher suites not supported
755
756 * Downgrade Attacks:
757 TLS_FALLBACK_SCSV: OK - Supported
758
759 * TLSV1 Cipher Suites:
760 Server rejected all cipher suites.
761
762 * TLSV1_1 Cipher Suites:
763 Server rejected all cipher suites.
764
765 * OpenSSL Heartbleed:
766 OK - Not vulnerable to Heartbleed
767
768 * SSLV2 Cipher Suites:
769 Server rejected all cipher suites.
770
771 * Session Renegotiation:
772 Client-initiated Renegotiation: OK - Rejected
773 Secure Renegotiation: OK - Supported
774
775 * Deflate Compression:
776 OK - Compression disabled
777
778 * TLSV1_3 Cipher Suites:
779 Server rejected all cipher suites.
780
781 * Certificate Information:
782 Content
783 SHA1 Fingerprint: 8b96693327a26e1e520f894476c5e7a6de0c16f4
784 Common Name: sni.dreamhost.com
785 Issuer: sni.dreamhost.com
786 Serial Number: 50159747054
787 Not Before: 2015-08-11 18:24:23
788 Not After: 2025-08-08 18:24:23
789 Signature Algorithm: sha256
790 Public Key Algorithm: RSA
791 Key Size: 2048
792 Exponent: 65537 (0x10001)
793 DNS Subject Alternative Names: []
794
795 Trust
796 Hostname Validation: FAILED - Certificate does NOT match 208.113.220.218
797 Android CA Store (9.0.0_r9): FAILED - Certificate is NOT Trusted: self signed certificate
798 Apple CA Store (iOS 12, macOS 10.14, watchOS 5, and tvOS 12):FAILED - Certificate is NOT Trusted: self signed certificate
799 Java CA Store (jdk-12.0.1): FAILED - Certificate is NOT Trusted: self signed certificate
800 Mozilla CA Store (2019-03-14): FAILED - Certificate is NOT Trusted: self signed certificate
801 Windows CA Store (2019-05-27): FAILED - Certificate is NOT Trusted: self signed certificate
802 Symantec 2018 Deprecation: OK - Not a Symantec-issued certificate
803 Received Chain: sni.dreamhost.com
804 Verified Chain: ERROR - Could not build verified chain (certificate untrusted?)
805 Received Chain Contains Anchor: ERROR - Could not build verified chain (certificate untrusted?)
806 Received Chain Order: OK - Order is valid
807 Verified Chain contains SHA1: ERROR - Could not build verified chain (certificate untrusted?)
808
809 Extensions
810 OCSP Must-Staple: NOT SUPPORTED - Extension not found
811 Certificate Transparency: NOT SUPPORTED - Extension not found
812
813 OCSP Stapling
814 NOT SUPPORTED - Server did not send back an OCSP response
815
816 * SSLV3 Cipher Suites:
817 Server rejected all cipher suites.
818
819 * TLSV1_2 Cipher Suites:
820 Forward Secrecy OK - Supported
821 RC4 OK - Not Supported
822
823 Preferred:
824 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 256 bits HTTP 200 OK
825 Accepted:
826 TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 256 bits HTTP 200 OK
827 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 256 bits HTTP 200 OK
828 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 256 bits HTTP 200 OK
829 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 128 bits HTTP 200 OK
830 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 128 bits HTTP 200 OK
831
832
833 SCAN COMPLETED IN 9.15 S
834 ------------------------
835#####################################################################################################################################
836Domains still to check: 1
837 Checking if the hostname childsexstories.com. given is in fact a domain...
838
839Analyzing domain: childsexstories.com.
840 Checking NameServers using system default resolver...
841 IP: 208.97.182.10 (United States)
842 HostName: ns2.dreamhost.com Type: NS
843 HostName: ns2.dreamhost.com Type: PTR
844 IP: 66.33.205.230 (United States)
845 HostName: ns3.dreamhost.com Type: NS
846 HostName: ns3.dreamhost.com Type: PTR
847 IP: 64.90.62.230 (United States)
848 HostName: ns1.dreamhost.com Type: NS
849 HostName: ns1.dreamhost.com Type: PTR
850
851 Checking MailServers using system default resolver...
852 WARNING!! There are no MX records for this domain
853
854 Checking the zone transfer for each NS... (if this takes more than 10 seconds, just hit CTRL-C and it will continue. Bug in the libs)
855 No zone transfer found on nameserver 66.33.205.230
856 No zone transfer found on nameserver 64.90.62.230
857 No zone transfer found on nameserver 208.97.182.10
858
859 Checking SPF record...
860 No SPF record
861
862 Checking 192 most common hostnames using system default resolver...
863 IP: 208.113.220.218 (United States)
864 HostName: www.childsexstories.com. Type: A
865 IP: 208.113.220.218 (United States)
866 HostName: www.childsexstories.com. Type: A
867 HostName: ftp.childsexstories.com. Type: A
868 HostName: apache2-xenon.accomack.dreamhost.com Type: PTR
869 IP: 208.113.220.218 (United States)
870 HostName: www.childsexstories.com. Type: A
871 HostName: ftp.childsexstories.com. Type: A
872 HostName: apache2-xenon.accomack.dreamhost.com Type: PTR
873 HostName: ssh.childsexstories.com. Type: A
874
875 Checking with nmap the reverse DNS hostnames of every <ip>/24 netblock using system default resolver...
876 Checking netblock 66.33.205.0
877 Checking netblock 64.90.62.0
878 Checking netblock 208.97.182.0
879 Checking netblock 208.113.220.0
880
881 Searching for childsexstories.com. emails in Google
882
883 Checking 4 active hosts using nmap... (nmap -sn -n -v -PP -PM -PS80,25 -PA -PY -PU53,40125 -PE --reason <ip> -oA <output_directory>/nmap/<ip>.sn)
884 Host 66.33.205.230 is up (echo-reply ttl 52)
885 Host 64.90.62.230 is up (echo-reply ttl 51)
886 Host 208.97.182.10 is up (reset ttl 64)
887 Host 208.113.220.218 is up (echo-reply ttl 54)
888
889 Checking ports on every active host using nmap... (nmap -O --reason --webxml --traceroute -sS -sV -sC -Pn -n -v -F <ip> -oA <output_directory>/nmap/<ip>)
890 Scanning ip 66.33.205.230 (ns3.dreamhost.com (PTR)):
891 53/tcp open tcpwrapped syn-ack ttl 52
892 Device type: general purpose|WAP|storage-misc
893 Running (JUST GUESSING): Linux 2.6.X|4.X|2.4.X|3.X (92%), HP embedded (85%)
894 Scanning ip 64.90.62.230 (ns1.dreamhost.com (PTR)):
895 53/tcp open domain? syn-ack ttl 52
896 | fingerprint-strings:
897 | DNSVersionBindReqTCP:
898 | version
899 |_ bind
900 Scanning ip 208.97.182.10 (ns2.dreamhost.com (PTR)):
901 53/tcp open domain? syn-ack ttl 54
902 | fingerprint-strings:
903 | DNSVersionBindReqTCP:
904 | version
905 |_ bind
906 Scanning ip 208.113.220.218 (ssh.childsexstories.com.):
907 WebCrawling domain's web servers... up to 50 max links.
908--Finished--
909Summary information for domain childsexstories.com.
910-----------------------------------------
911
912 Domain Ips Information:
913 IP: 66.33.205.230
914 HostName: ns3.dreamhost.com Type: NS
915 HostName: ns3.dreamhost.com Type: PTR
916 Country: United States
917 Is Active: True (echo-reply ttl 52)
918 Port: 53/tcp open tcpwrapped syn-ack ttl 52
919 Script Info: Device type: general purpose|WAP|storage-misc
920 Script Info: Running (JUST GUESSING): Linux 2.6.X|4.X|2.4.X|3.X (92%), HP embedded (85%)
921 IP: 64.90.62.230
922 HostName: ns1.dreamhost.com Type: NS
923 HostName: ns1.dreamhost.com Type: PTR
924 Country: United States
925 Is Active: True (echo-reply ttl 51)
926 Port: 53/tcp open domain? syn-ack ttl 52
927 Script Info: | fingerprint-strings:
928 Script Info: | DNSVersionBindReqTCP:
929 Script Info: | version
930 Script Info: |_ bind
931 IP: 208.97.182.10
932 HostName: ns2.dreamhost.com Type: NS
933 HostName: ns2.dreamhost.com Type: PTR
934 Country: United States
935 Is Active: True (reset ttl 64)
936 Port: 53/tcp open domain? syn-ack ttl 54
937 Script Info: | fingerprint-strings:
938 Script Info: | DNSVersionBindReqTCP:
939 Script Info: | version
940 Script Info: |_ bind
941 IP: 208.113.220.218
942 HostName: www.childsexstories.com. Type: A
943 HostName: ftp.childsexstories.com. Type: A
944 HostName: apache2-xenon.accomack.dreamhost.com Type: PTR
945 HostName: ssh.childsexstories.com. Type: A
946 Country: United States
947 Is Active: True (echo-reply ttl 54)
948
949--------------End Summary --------------
950-----------------------------------------
951#####################################################################################################################################
952traceroute to childsexstories.com (208.113.220.218), 30 hops max, 60 byte packets
953 1 10.248.204.1 (10.248.204.1) 92.236 ms 92.228 ms 92.217 ms
954 2 R43.static.amanah.com (104.245.144.129) 92.220 ms 92.209 ms 92.195 ms
955 3 te0-1-1-9.219.ccr32.yyz02.atlas.cogentco.com (38.104.158.113) 92.128 ms 92.187 ms 92.151 ms
956 4 te0-0-0-1.agr13.yyz02.atlas.cogentco.com (154.24.54.37) 92.152 ms be2994.ccr22.cle04.atlas.cogentco.com (154.54.31.233) 92.140 ms 124.482 ms
957 5 te0-9-1-9.ccr32.yyz02.atlas.cogentco.com (154.54.43.169) 92.033 ms be2892.ccr42.dca01.atlas.cogentco.com (154.54.82.254) 124.481 ms 124.472 ms
958 6 be2994.ccr22.cle04.atlas.cogentco.com (154.54.31.233) 124.335 ms be2676.ccr22.iad02.atlas.cogentco.com (154.54.47.166) 73.246 ms be2993.ccr21.cle04.atlas.cogentco.com (154.54.31.225) 162.316 ms
959 7 be2891.ccr41.dca01.atlas.cogentco.com (154.54.82.250) 162.317 ms be3562.rcr51.b037327-0.iad02.atlas.cogentco.com (154.54.24.234) 162.380 ms be2891.ccr41.dca01.atlas.cogentco.com (154.54.82.250) 162.276 ms
960 8 38.122.62.254 (38.122.62.254) 162.293 ms be2658.ccr22.iad02.atlas.cogentco.com (154.54.47.138) 162.281 ms be3084.ccr41.iad02.atlas.cogentco.com (154.54.30.66) 162.276 ms
961 9 ip-208-113-156-8.dreamhost.com (208.113.156.8) 162.186 ms be3562.rcr51.b037327-0.iad02.atlas.cogentco.com (154.54.24.234) 162.228 ms ip-208-113-156-8.dreamhost.com (208.113.156.8) 162.108 ms
96210 ip-208-113-156-14.dreamhost.com (208.113.156.14) 162.179 ms 68.862 ms ip-208-113-156-49.dreamhost.com (208.113.156.49) 102.285 ms
96311 * iad1-cr-2.sd.dreamhost.com (208.113.156.58) 102.244 ms ip-208-113-156-8.dreamhost.com (208.113.156.8) 57.518 ms
96412 * ip-208-113-156-14.dreamhost.com (208.113.156.14) 110.659 ms *
965#####################################################################################################################################
966----- childsexstories.com -----
967
968
969Host's addresses:
970__________________
971
972childsexstories.com. 10920 IN A 208.113.220.218
973
974
975Name Servers:
976______________
977
978ns3.dreamhost.com. 85922 IN A 66.33.205.230
979ns2.dreamhost.com. 83204 IN A 208.97.182.10
980ns1.dreamhost.com. 84920 IN A 64.90.62.230
981
982
983Mail (MX) Servers:
984___________________
985
986
987
988Brute forcing with /usr/share/dnsenum/dns.txt:
989_______________________________________________
990
991ftp.childsexstories.com. 13312 IN A 208.113.220.218
992ssh.childsexstories.com. 13943 IN A 208.113.220.218
993www.childsexstories.com. 10866 IN A 208.113.220.218
994
995
996Launching Whois Queries:
997_________________________
998
999 whois ip result: 208.113.220.0 -> 208.113.128.0/17
1000
1001
1002childsexstories.com___________________
1003
1004 208.113.128.0/17
1005######################################################################################################################################
1006dnsenum VERSION:1.2.6
1007
1008----- childsexstories.com -----
1009
1010
1011Host's addresses:
1012__________________
1013
1014childsexstories.com. 11338 IN A 208.113.220.218
1015
1016
1017Name Servers:
1018______________
1019
1020ns3.dreamhost.com. 86340 IN A 66.33.205.230
1021ns2.dreamhost.com. 83622 IN A 208.97.182.10
1022ns1.dreamhost.com. 85338 IN A 64.90.62.230
1023
1024
1025Mail (MX) Servers:
1026___________________
1027
1028
1029
1030Trying Zone Transfers and getting Bind Versions:
1031_________________________________________________
1032
1033
1034Trying Zone Transfer for childsexstories.com on ns3.dreamhost.com ...
1035
1036Trying Zone Transfer for childsexstories.com on ns2.dreamhost.com ...
1037
1038Trying Zone Transfer for childsexstories.com on ns1.dreamhost.com ...
1039
1040
1041Brute forcing with /usr/share/sniper/wordlists/vhosts.txt:
1042___________________________________________________________
1043
1044ftp.childsexstories.com. 13748 IN A 208.113.220.218
1045ssh.childsexstories.com. 14400 IN A 208.113.220.218
1046www.childsexstories.com. 11324 IN A 208.113.220.218
1047
1048
1049childsexstories.com class C netranges:
1050_______________________________________
1051
1052 208.113.220.0/24
1053
1054
1055childsexstories.com ip blocks:
1056_______________________________
1057
1058 208.113.220.218/32
1059
1060done.
1061#####################################################################################################################################
1062Source:
1063whois.arin.net
1064IP Address:
1065208.113.220.218
1066Name:
1067DREAMHOST-BLK6
1068Handle:
1069NET-208-113-128-0-1
1070Registration Date:
10714/12/06
1072Range:
1073208.113.128.0-208.113.255.255
1074Org:
1075New Dream Network, LLC
1076Org Handle:
1077NDN
1078Address:
1079417 Associated Rd.
1080City:
1081Brea
1082State/Province:
1083CA
1084Postal Code:
108592821
1086Country:
1087United States
1088Name Servers:
1089####################################################################################################################################
1090SSL Certificates: childsexstories.com<BR>www.childsexstories.com
1091SSL Certificates: www.childsexstories.com
1092Virustotal: www.childsexstories.com
1093[-] Saving results to file: /usr/share/sniper/loot/workspace/childsexstories.com/domains/domains-childsexstories.com.txt
1094[-] Total Unique Subdomains Found: 2
1095www.childsexstories.com
1096childsexstories.com<BR>www.childsexstories.com
1097#####################################################################################################################################
1098[*] Processing domain childsexstories.com
1099[*] Using system resolvers ['38.132.106.139', '194.187.251.67', '185.93.180.131', '2001:18c0:121:6900:724f:b8ff:fefd:5b6a', '192.168.0.1']
1100[+] Getting nameservers
1101208.97.182.10 - ns2.dreamhost.com
110266.33.205.230 - ns3.dreamhost.com
110364.90.62.230 - ns1.dreamhost.com
1104[-] Zone transfer failed
1105
1106[*] Scanning childsexstories.com for A records
1107208.113.220.218 - childsexstories.com
1108208.113.220.218 - ftp.childsexstories.com
1109208.113.220.218 - ssh.childsexstories.com
1110208.113.220.218 - www.childsexstories.com
1111#####################################################################################################################################
1112www.childsexstories.com
1113www.childsexstories.com
1114childsexstories.com<BR>www.childsexstories.com
1115childsexstories.com
1116domain
1117ftp.childsexstories.com
1118ssh.childsexstories.com
1119www.childsexstories.com
1120#####################################################################################################################################
1121[+] childsexstories.com has no SPF record!
1122[*] No DMARC record found. Looking for organizational record
1123[+] No organizational DMARC record
1124[+] Spoofing possible for childsexstories.com!
1125#####################################################################################################################################
1126WARNING: Duplicate port number(s) specified. Are you alert enough to be using Nmap? Have some coffee or Jolt(tm).
1127Starting Nmap 7.80 ( https://nmap.org ) at 2020-02-09 18:56 EST
1128Nmap scan report for childsexstories.com (208.113.220.218)
1129Host is up (0.079s latency).
1130rDNS record for 208.113.220.218: apache2-xenon.accomack.dreamhost.com
1131Not shown: 489 filtered ports, 3 closed ports
1132Some closed ports may be reported as filtered due to --defeat-rst-ratelimit
1133PORT STATE SERVICE
113421/tcp open ftp
113580/tcp open http
1136443/tcp open https
1137587/tcp open submission
1138
1139Nmap done: 1 IP address (1 host up) scanned in 4.91 seconds
1140#####################################################################################################################################
1141Starting Nmap 7.80 ( https://nmap.org ) at 2020-02-09 18:56 EST
1142Nmap scan report for childsexstories.com (208.113.220.218)
1143Host is up (0.078s latency).
1144rDNS record for 208.113.220.218: apache2-xenon.accomack.dreamhost.com
1145Not shown: 2 filtered ports
1146PORT STATE SERVICE
114753/udp open|filtered domain
114867/udp open|filtered dhcps
114968/udp open|filtered dhcpc
115069/udp open|filtered tftp
115188/udp open|filtered kerberos-sec
1152123/udp open|filtered ntp
1153139/udp open|filtered netbios-ssn
1154161/udp open|filtered snmp
1155162/udp open|filtered snmptrap
1156389/udp open|filtered ldap
1157500/udp open|filtered isakmp
1158520/udp open|filtered route
11592049/udp open|filtered nfs
1160
1161Nmap done: 1 IP address (1 host up) scanned in 2.52 seconds
1162#####################################################################################################################################
1163Starting Nmap 7.80 ( https://nmap.org ) at 2020-02-09 18:56 EST
1164NSE: Loaded 54 scripts for scanning.
1165NSE: Script Pre-scanning.
1166Initiating NSE at 18:56
1167Completed NSE at 18:56, 0.00s elapsed
1168Initiating NSE at 18:56
1169Completed NSE at 18:56, 0.00s elapsed
1170Initiating Parallel DNS resolution of 1 host. at 18:56
1171Completed Parallel DNS resolution of 1 host. at 18:56, 0.02s elapsed
1172Initiating SYN Stealth Scan at 18:56
1173Scanning childsexstories.com (208.113.220.218) [1 port]
1174Discovered open port 21/tcp on 208.113.220.218
1175Completed SYN Stealth Scan at 18:56, 0.14s elapsed (1 total ports)
1176Initiating Service scan at 18:56
1177Scanning 1 service on childsexstories.com (208.113.220.218)
1178Completed Service scan at 18:56, 11.37s elapsed (1 service on 1 host)
1179Initiating OS detection (try #1) against childsexstories.com (208.113.220.218)
1180Retrying OS detection (try #2) against childsexstories.com (208.113.220.218)
1181Initiating Traceroute at 18:56
1182Completed Traceroute at 18:56, 0.21s elapsed
1183Initiating Parallel DNS resolution of 10 hosts. at 18:56
1184Completed Parallel DNS resolution of 10 hosts. at 18:56, 0.27s elapsed
1185NSE: Script scanning 208.113.220.218.
1186Initiating NSE at 18:56
1187NSE Timing: About 73.42% done; ETC: 18:58 (0:00:30 remaining)
1188Completed NSE at 18:58, 90.39s elapsed
1189Initiating NSE at 18:58
1190Completed NSE at 18:58, 0.05s elapsed
1191Nmap scan report for childsexstories.com (208.113.220.218)
1192Host is up (0.095s latency).
1193rDNS record for 208.113.220.218: apache2-xenon.accomack.dreamhost.com
1194
1195PORT STATE SERVICE VERSION
119621/tcp open ftp ProFTPD
1197Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
1198Device type: general purpose|firewall|media device|broadband router|security-misc
1199Running (JUST GUESSING): Linux 4.X|3.X|2.6.X (98%), IPCop 2.X|1.X (97%), Tiandy embedded (97%), D-Link embedded (94%), Draytek embedded (94%)
1200OS CPE: cpe:/o:linux:linux_kernel:4.9 cpe:/o:linux:linux_kernel:3.18 cpe:/o:linux:linux_kernel:2.6.32 cpe:/o:ipcop:ipcop:2.0 cpe:/h:dlink:dsl-2890al cpe:/h:draytek:vigor_2960 cpe:/o:linux:linux_kernel:2.6.25.20 cpe:/o:ipcop:ipcop:1.9.19
1201Aggressive OS guesses: Linux 4.9 (98%), Linux 3.18 (98%), IPCop 2.0 (Linux 2.6.32) (97%), Linux 2.6.32 (97%), Linux 3.2 (97%), Tiandy NVR (97%), D-Link DSL-2890AL ADSL router (94%), Draytek Vigor 2960 VPN firewall (94%), OpenWrt Kamikaze 8.09 (Linux 2.6.25.20) (94%), IPCop 1.9.19 or IPFire 2.9 firewall (Linux 2.6.32) (94%)
1202No exact OS matches for host (test conditions non-ideal).
1203Network Distance: 13 hops
1204TCP Sequence Prediction: Difficulty=260 (Good luck!)
1205IP ID Sequence Generation: All zeros
1206
1207TRACEROUTE (using port 21/tcp)
1208HOP RTT ADDRESS
12091 87.54 ms 10.248.204.1
12102 87.60 ms R43.static.amanah.com (104.245.144.129)
12113 87.64 ms te0-0-2-1.225.nr11.b010988-1.yyz02.atlas.cogentco.com (38.104.156.9)
12124 87.64 ms te0-0-0-1.agr14.yyz02.atlas.cogentco.com (154.24.54.41)
12135 87.72 ms be2892.ccr42.dca01.atlas.cogentco.com (154.54.82.254)
12146 87.80 ms be2676.ccr22.iad02.atlas.cogentco.com (154.54.47.166)
12157 87.79 ms be3563.rcr51.b037327-0.iad02.atlas.cogentco.com (154.54.25.226)
12168 87.78 ms be2676.ccr22.iad02.atlas.cogentco.com (154.54.47.166)
12179 87.78 ms ip-208-113-156-8.dreamhost.com (208.113.156.8)
121810 87.89 ms ip-208-113-156-14.dreamhost.com (208.113.156.14)
121911 112.45 ms ip-208-113-156-8.dreamhost.com (208.113.156.8)
122012 112.41 ms ip-208-113-156-14.dreamhost.com (208.113.156.14)
122113 112.27 ms apache2-xenon.accomack.dreamhost.com (208.113.220.218)
1222
1223NSE: Script Post-scanning.
1224Initiating NSE at 18:58
1225Completed NSE at 18:58, 0.00s elapsed
1226Initiating NSE at 18:58
1227Completed NSE at 18:58, 0.00s elapsed
1228#####################################################################################################################################
1229Starting Nmap 7.80 ( https://nmap.org ) at 2020-02-09 18:58 EST
1230NSE: Loaded 161 scripts for scanning.
1231NSE: Script Pre-scanning.
1232Initiating NSE at 18:58
1233Completed NSE at 18:58, 0.00s elapsed
1234Initiating NSE at 18:58
1235Completed NSE at 18:58, 0.00s elapsed
1236Initiating Parallel DNS resolution of 1 host. at 18:58
1237Completed Parallel DNS resolution of 1 host. at 18:58, 0.02s elapsed
1238Initiating SYN Stealth Scan at 18:58
1239Scanning childsexstories.com (208.113.220.218) [1 port]
1240Completed SYN Stealth Scan at 18:58, 0.14s elapsed (1 total ports)
1241Initiating Service scan at 18:58
1242Initiating OS detection (try #1) against childsexstories.com (208.113.220.218)
1243Retrying OS detection (try #2) against childsexstories.com (208.113.220.218)
1244Initiating Traceroute at 18:58
1245Completed Traceroute at 18:58, 0.20s elapsed
1246Initiating Parallel DNS resolution of 11 hosts. at 18:58
1247Completed Parallel DNS resolution of 11 hosts. at 18:58, 0.29s elapsed
1248NSE: Script scanning 208.113.220.218.
1249Initiating NSE at 18:58
1250Completed NSE at 18:58, 0.25s elapsed
1251Initiating NSE at 18:58
1252Completed NSE at 18:58, 0.00s elapsed
1253Nmap scan report for childsexstories.com (208.113.220.218)
1254Host is up (0.10s latency).
1255rDNS record for 208.113.220.218: apache2-xenon.accomack.dreamhost.com
1256
1257PORT STATE SERVICE VERSION
125880/tcp filtered http
1259Too many fingerprints match this host to give specific OS details
1260Network Distance: 11 hops
1261
1262TRACEROUTE (using proto 1/icmp)
1263HOP RTT ADDRESS
12641 83.11 ms 10.248.204.1
12652 83.13 ms R43.static.amanah.com (104.245.144.129)
12663 83.15 ms te0-1-1-9.219.ccr32.yyz02.atlas.cogentco.com (38.104.158.113)
12674 83.17 ms be2994.ccr22.cle04.atlas.cogentco.com (154.54.31.233)
12685 83.18 ms be2892.ccr42.dca01.atlas.cogentco.com (154.54.82.254)
12696 83.22 ms be3084.ccr41.iad02.atlas.cogentco.com (154.54.30.66)
12707 83.24 ms be3562.rcr51.b037327-0.iad02.atlas.cogentco.com (154.54.24.234)
12718 83.24 ms 38.122.62.254
12729 83.24 ms ip-208-113-156-8.dreamhost.com (208.113.156.8)
127310 83.32 ms ip-208-113-156-14.dreamhost.com (208.113.156.14)
127411 110.75 ms apache2-xenon.accomack.dreamhost.com (208.113.220.218)
1275
1276NSE: Script Post-scanning.
1277Initiating NSE at 18:58
1278Completed NSE at 18:58, 0.00s elapsed
1279Initiating NSE at 18:58
1280Completed NSE at 18:58, 0.00s elapsed
1281####################################################################################################################################
1282tee: /usr/share/sniper/loot/workspace/childsexstories.com/output/nmap-childsexstories.com-port443: Aucun fichier ou dossier de ce type
1283Starting Nmap 7.80 ( https://nmap.org ) at 2020-02-09 18:59 EST
1284NSE: Loaded 161 scripts for scanning.
1285NSE: Script Pre-scanning.
1286Initiating NSE at 18:59
1287Completed NSE at 18:59, 0.00s elapsed
1288Initiating NSE at 18:59
1289Completed NSE at 18:59, 0.00s elapsed
1290Initiating Parallel DNS resolution of 1 host. at 18:59
1291Completed Parallel DNS resolution of 1 host. at 18:59, 0.02s elapsed
1292Initiating SYN Stealth Scan at 18:59
1293Scanning childsexstories.com (208.113.220.218) [1 port]
1294Completed SYN Stealth Scan at 18:59, 0.12s elapsed (1 total ports)
1295Initiating Service scan at 18:59
1296Initiating OS detection (try #1) against childsexstories.com (208.113.220.218)
1297Retrying OS detection (try #2) against childsexstories.com (208.113.220.218)
1298Initiating Traceroute at 18:59
1299Completed Traceroute at 18:59, 0.19s elapsed
1300Initiating Parallel DNS resolution of 11 hosts. at 18:59
1301Completed Parallel DNS resolution of 11 hosts. at 18:59, 0.19s elapsed
1302NSE: Script scanning 208.113.220.218.
1303Initiating NSE at 18:59
1304Completed NSE at 18:59, 0.18s elapsed
1305Initiating NSE at 18:59
1306Completed NSE at 18:59, 0.00s elapsed
1307Nmap scan report for childsexstories.com (208.113.220.218)
1308Host is up (0.088s latency).
1309rDNS record for 208.113.220.218: apache2-xenon.accomack.dreamhost.com
1310
1311PORT STATE SERVICE VERSION
1312443/tcp filtered https
1313Too many fingerprints match this host to give specific OS details
1314Network Distance: 11 hops
1315
1316TRACEROUTE (using proto 1/icmp)
1317HOP RTT ADDRESS
13181 95.41 ms 10.248.204.1
13192 95.48 ms R43.static.amanah.com (104.245.144.129)
13203 95.51 ms te0-1-1-9.219.ccr32.yyz02.atlas.cogentco.com (38.104.158.113)
13214 95.55 ms be2994.ccr22.cle04.atlas.cogentco.com (154.54.31.233)
13225 95.58 ms be2892.ccr42.dca01.atlas.cogentco.com (154.54.82.254)
13236 95.63 ms be3084.ccr41.iad02.atlas.cogentco.com (154.54.30.66)
13247 95.68 ms be3562.rcr51.b037327-0.iad02.atlas.cogentco.com (154.54.24.234)
13258 95.67 ms 38.122.62.254
13269 95.64 ms ip-208-113-156-8.dreamhost.com (208.113.156.8)
132710 95.75 ms ip-208-113-156-14.dreamhost.com (208.113.156.14)
132811 89.55 ms apache2-xenon.accomack.dreamhost.com (208.113.220.218)
1329
1330NSE: Script Post-scanning.
1331Initiating NSE at 18:59
1332Completed NSE at 18:59, 0.00s elapsed
1333Initiating NSE at 18:59
1334Completed NSE at 18:59, 0.00s elapsed
1335#####################################################################################################################################
1336Starting Nmap 7.80 ( https://nmap.org ) at 2020-02-09 18:53 EST
1337Nmap scan report for apache2-xenon.accomack.dreamhost.com (208.113.220.218)
1338Host is up (0.095s latency).
1339Not shown: 468 filtered ports, 3 closed ports
1340Some closed ports may be reported as filtered due to --defeat-rst-ratelimit
1341PORT STATE SERVICE VERSION
134221/tcp open ftp ProFTPD
134322/tcp open ssh OpenSSH 7.6p1 Ubuntu 4ubuntu0.3 (Ubuntu Linux; protocol 2.0)
1344| ssh-hostkey:
1345| 2048 53:91:77:a9:94:ff:f7:fe:67:33:5f:40:0a:9c:4c:44 (RSA)
1346|_ 256 53:ab:aa:91:07:8f:43:24:25:8e:ce:44:d8:48:ef:21 (ECDSA)
134780/tcp open http Apache httpd
1348|_http-server-header: Apache
1349|_http-title: Site not found · DreamHost
1350443/tcp open ssl/http Apache httpd
1351|_http-server-header: Apache
1352|_http-title: Site not found · DreamHost
1353| ssl-cert: Subject: commonName=sni.dreamhost.com/organizationName=DreamHost/stateOrProvinceName=California/countryName=US
1354| Not valid before: 2015-08-11T18:24:23
1355|_Not valid after: 2025-08-08T18:24:23
1356587/tcp open smtp Postfix smtpd
1357|_smtp-commands: accomack.dreamhost.com, PIPELINING, SIZE 40960000, ETRN, ENHANCEDSTATUSCODES, 8BITMIME, DSN,
1358Device type: general purpose|media device|firewall|broadband router
1359Running (JUST GUESSING): Linux 2.6.X|3.X|4.X|2.4.X (93%), IPCop 2.X (92%), Tiandy embedded (92%), D-Link embedded (90%)
1360OS CPE: cpe:/o:linux:linux_kernel:2.6.32 cpe:/o:linux:linux_kernel:2.6 cpe:/o:linux:linux_kernel:3.0 cpe:/o:ipcop:ipcop:2.0 cpe:/o:linux:linux_kernel:3.2 cpe:/o:linux:linux_kernel:4.9 cpe:/o:linux:linux_kernel:2.4.35.4 cpe:/h:dlink:dsl-2890al
1361Aggressive OS guesses: Linux 2.6.32 (93%), ProVision-ISR security DVR (93%), Linux 3.0 (93%), IPCop 2.0 (Linux 2.6.32) (92%), Linux 3.2 (92%), Linux 2.6.18 - 2.6.22 (92%), Tiandy NVR (92%), Linux 4.9 (92%), Linux 3.18 (91%), OpenWrt Kamikaze 8.09 (Linux 2.4.35.4) (91%)
1362No exact OS matches for host (test conditions non-ideal).
1363Network Distance: 11 hops
1364Service Info: Host: accomack.dreamhost.com; OS: Linux; CPE: cpe:/o:linux:linux_kernel
1365
1366TRACEROUTE (using port 443/tcp)
1367HOP RTT ADDRESS
13681 80.51 ms 10.248.204.1
13692 80.56 ms R43.static.amanah.com (104.245.144.129)
13703 80.61 ms te0-0-2-1.225.nr11.b010988-1.yyz02.atlas.cogentco.com (38.104.156.9)
13714 80.63 ms be2994.ccr22.cle04.atlas.cogentco.com (154.54.31.233)
13725 80.61 ms te0-9-0-9.ccr32.yyz02.atlas.cogentco.com (154.54.43.153)
13736 80.74 ms be3084.ccr41.iad02.atlas.cogentco.com (154.54.30.66)
13747 80.76 ms be3562.rcr51.b037327-0.iad02.atlas.cogentco.com (154.54.24.234)
13758 80.74 ms be2658.ccr22.iad02.atlas.cogentco.com (154.54.47.138)
13769 80.70 ms ip-208-113-156-8.dreamhost.com (208.113.156.8)
137710 80.77 ms ip-208-113-156-49.dreamhost.com (208.113.156.49)
137811 101.57 ms apache2-xenon.accomack.dreamhost.com (208.113.220.218)
1379#####################################################################################################################################
1380Starting Nmap 7.80 ( https://nmap.org ) at 2020-02-09 18:54 EST
1381Nmap scan report for apache2-xenon.accomack.dreamhost.com (208.113.220.218)
1382Host is up (0.098s latency).
1383Not shown: 15 filtered ports, 1 closed port
1384Some closed ports may be reported as filtered due to --defeat-rst-ratelimit
1385PORT STATE SERVICE VERSION
138653/udp open|filtered domain
138767/udp open|filtered dhcps
138868/udp open|filtered dhcpc
138969/udp open|filtered tftp
139088/udp open|filtered kerberos-sec
1391123/udp open|filtered ntp
1392139/udp open|filtered netbios-ssn
1393161/udp open|filtered snmp
1394162/udp open|filtered snmptrap
1395389/udp open|filtered ldap
1396520/udp open|filtered route
13972049/udp open|filtered nfs
1398Too many fingerprints match this host to give specific OS details
1399
1400TRACEROUTE (using port 137/udp)
1401HOP RTT ADDRESS
14021 ... 4
14035 86.62 ms 10.248.204.1
14046 86.61 ms 10.248.204.1
14057 86.61 ms 10.248.204.1
14068 86.60 ms 10.248.204.1
14079 86.60 ms 10.248.204.1
140810 86.60 ms 10.248.204.1
140911 71.77 ms 10.248.204.1
141012 ... 15
141116 68.05 ms 10.248.204.1
141217 ... 18
141319 82.07 ms 10.248.204.1
141420 ... 22
141523 87.88 ms 10.248.204.1
141624 ... 26
141727 82.45 ms 10.248.204.1
141828 72.80 ms 10.248.204.1
141929 ...
142030 65.66 ms 10.248.204.1
1421#####################################################################################################################################
1422Starting Nmap 7.80 ( https://nmap.org ) at 2020-02-09 18:59 EST
1423Nmap scan report for apache2-xenon.accomack.dreamhost.com (208.113.220.218)
1424Host is up (0.090s latency).
1425
1426PORT STATE SERVICE VERSION
142721/tcp filtered ftp
1428Too many fingerprints match this host to give specific OS details
1429Network Distance: 11 hops
1430
1431TRACEROUTE (using proto 1/icmp)
1432HOP RTT ADDRESS
14331 88.56 ms 10.248.204.1
14342 88.62 ms R43.static.amanah.com (104.245.144.129)
14353 88.65 ms te0-1-1-9.219.ccr32.yyz02.atlas.cogentco.com (38.104.158.113)
14364 88.68 ms be2994.ccr22.cle04.atlas.cogentco.com (154.54.31.233)
14375 88.70 ms be2892.ccr42.dca01.atlas.cogentco.com (154.54.82.254)
14386 88.76 ms be3084.ccr41.iad02.atlas.cogentco.com (154.54.30.66)
14397 88.79 ms be3562.rcr51.b037327-0.iad02.atlas.cogentco.com (154.54.24.234)
14408 88.76 ms 38.122.62.254
14419 88.83 ms ip-208-113-156-8.dreamhost.com (208.113.156.8)
144210 88.91 ms ip-208-113-156-14.dreamhost.com (208.113.156.14)
144311 115.60 ms apache2-xenon.accomack.dreamhost.com (208.113.220.218)
1444######################################################################################################################################
1445Starting Nmap 7.80 ( https://nmap.org ) at 2020-02-09 19:00 EST
1446Nmap scan report for apache2-xenon.accomack.dreamhost.com (208.113.220.218)
1447Host is up (0.058s latency).
1448
1449PORT STATE SERVICE VERSION
145022/tcp filtered ssh
1451Too many fingerprints match this host to give specific OS details
1452Network Distance: 11 hops
1453
1454TRACEROUTE (using proto 1/icmp)
1455HOP RTT ADDRESS
14561 49.63 ms 10.248.204.1
14572 49.67 ms R43.static.amanah.com (104.245.144.129)
14583 49.69 ms te0-1-1-9.219.ccr32.yyz02.atlas.cogentco.com (38.104.158.113)
14594 49.72 ms be2994.ccr22.cle04.atlas.cogentco.com (154.54.31.233)
14605 82.45 ms be2892.ccr42.dca01.atlas.cogentco.com (154.54.82.254)
14616 82.55 ms be3084.ccr41.iad02.atlas.cogentco.com (154.54.30.66)
14627 82.55 ms be3562.rcr51.b037327-0.iad02.atlas.cogentco.com (154.54.24.234)
14638 82.54 ms 38.122.62.254
14649 82.60 ms ip-208-113-156-8.dreamhost.com (208.113.156.8)
146510 69.14 ms ip-208-113-156-14.dreamhost.com (208.113.156.14)
146611 67.31 ms apache2-xenon.accomack.dreamhost.com (208.113.220.218)
1467#####################################################################################################################################
1468USER_FILE => /usr/share/brutex/wordlists/simple-users.txt
1469RHOSTS => 208.113.220.218
1470RHOST => 208.113.220.218
1471[*] 208.113.220.218:22 - SSH - Using malformed packet technique
1472[*] 208.113.220.218:22 - SSH - Starting scan
1473[-] 208.113.220.218:22 - SSH - User 'admin' on could not connect
1474[-] 208.113.220.218:22 - SSH - User 'administrator' on could not connect
1475[-] 208.113.220.218:22 - SSH - User 'anonymous' on could not connect
1476[-] 208.113.220.218:22 - SSH - User 'backup' on could not connect
1477[-] 208.113.220.218:22 - SSH - User 'bee' on could not connect
1478[-] 208.113.220.218:22 - SSH - User 'ftp' on could not connect
1479[-] 208.113.220.218:22 - SSH - User 'guest' on could not connect
1480[-] 208.113.220.218:22 - SSH - User 'GUEST' on could not connect
1481[-] 208.113.220.218:22 - SSH - User 'info' on could not connect
1482[-] 208.113.220.218:22 - SSH - User 'mail' on could not connect
1483[-] 208.113.220.218:22 - SSH - User 'mailadmin' on could not connect
1484[-] 208.113.220.218:22 - SSH - User 'msfadmin' on could not connect
1485[-] 208.113.220.218:22 - SSH - User 'mysql' on could not connect
1486[-] 208.113.220.218:22 - SSH - User 'nobody' on could not connect
1487[-] 208.113.220.218:22 - SSH - User 'oracle' on could not connect
1488[-] 208.113.220.218:22 - SSH - User 'owaspbwa' on could not connect
1489[-] 208.113.220.218:22 - SSH - User 'postfix' on could not connect
1490[-] 208.113.220.218:22 - SSH - User 'postgres' on could not connect
1491[-] 208.113.220.218:22 - SSH - User 'private' on could not connect
1492[-] 208.113.220.218:22 - SSH - User 'proftpd' on could not connect
1493[-] 208.113.220.218:22 - SSH - User 'public' on could not connect
1494[-] 208.113.220.218:22 - SSH - User 'root' on could not connect
1495[-] 208.113.220.218:22 - SSH - User 'superadmin' on could not connect
1496[-] 208.113.220.218:22 - SSH - User 'support' on could not connect
1497[-] 208.113.220.218:22 - SSH - User 'sys' on could not connect
1498[-] 208.113.220.218:22 - SSH - User 'system' on could not connect
1499[-] 208.113.220.218:22 - SSH - User 'systemadmin' on could not connect
1500[-] 208.113.220.218:22 - SSH - User 'systemadministrator' on could not connect
1501[-] 208.113.220.218:22 - SSH - User 'test' on could not connect
1502[-] 208.113.220.218:22 - SSH - User 'tomcat' on could not connect
1503[-] 208.113.220.218:22 - SSH - User 'user' on could not connect
1504[-] 208.113.220.218:22 - SSH - User 'webmaster' on could not connect
1505[-] 208.113.220.218:22 - SSH - User 'www-data' on could not connect
1506[-] 208.113.220.218:22 - SSH - User 'Fortimanager_Access' on could not connect
1507[*] Scanned 1 of 1 hosts (100% complete)
1508[*] Auxiliary module execution completed
1509#####################################################################################################################################
1510Starting Nmap 7.80 ( https://nmap.org ) at 2020-02-09 19:08 EST
1511Nmap scan report for apache2-xenon.accomack.dreamhost.com (208.113.220.218)
1512Host is up (0.15s latency).
1513
1514PORT STATE SERVICE VERSION
151567/tcp filtered dhcps
151667/udp open|filtered dhcps
1517|_dhcp-discover: ERROR: Script execution failed (use -d to debug)
1518Too many fingerprints match this host to give specific OS details
1519Network Distance: 11 hops
1520
1521TRACEROUTE (using proto 1/icmp)
1522HOP RTT ADDRESS
15231 116.32 ms 10.248.204.1
15242 191.56 ms R43.static.amanah.com (104.245.144.129)
15253 191.59 ms te0-1-1-9.219.ccr32.yyz02.atlas.cogentco.com (38.104.158.113)
15264 191.60 ms be2994.ccr22.cle04.atlas.cogentco.com (154.54.31.233)
15275 191.62 ms be2892.ccr42.dca01.atlas.cogentco.com (154.54.82.254)
15286 191.63 ms be3084.ccr41.iad02.atlas.cogentco.com (154.54.30.66)
15297 191.65 ms be3562.rcr51.b037327-0.iad02.atlas.cogentco.com (154.54.24.234)
15308 191.66 ms 38.122.62.254
15319 191.66 ms ip-208-113-156-8.dreamhost.com (208.113.156.8)
153210 191.74 ms ip-208-113-156-14.dreamhost.com (208.113.156.14)
153311 217.65 ms apache2-xenon.accomack.dreamhost.com (208.113.220.218)
1534######################################################################################################################################
1535Starting Nmap 7.80 ( https://nmap.org ) at 2020-02-09 19:10 EST
1536Nmap scan report for apache2-xenon.accomack.dreamhost.com (208.113.220.218)
1537Host is up (0.12s latency).
1538
1539PORT STATE SERVICE VERSION
154068/tcp filtered dhcpc
154168/udp open|filtered dhcpc
1542Too many fingerprints match this host to give specific OS details
1543Network Distance: 11 hops
1544
1545TRACEROUTE (using proto 1/icmp)
1546HOP RTT ADDRESS
15471 199.81 ms 10.248.204.1
15482 199.85 ms R43.static.amanah.com (104.245.144.129)
15493 199.88 ms te0-1-1-9.219.ccr32.yyz02.atlas.cogentco.com (38.104.158.113)
15504 199.90 ms be2994.ccr22.cle04.atlas.cogentco.com (154.54.31.233)
15515 199.92 ms be2892.ccr42.dca01.atlas.cogentco.com (154.54.82.254)
15526 199.95 ms be3084.ccr41.iad02.atlas.cogentco.com (154.54.30.66)
15537 199.99 ms be3562.rcr51.b037327-0.iad02.atlas.cogentco.com (154.54.24.234)
15548 199.98 ms 38.122.62.254
15559 200.03 ms ip-208-113-156-8.dreamhost.com (208.113.156.8)
155610 89.29 ms ip-208-113-156-14.dreamhost.com (208.113.156.14)
155711 175.84 ms apache2-xenon.accomack.dreamhost.com (208.113.220.218)
1558######################################################################################################################################
1559Starting Nmap 7.80 ( https://nmap.org ) at 2020-02-09 19:12 EST
1560Nmap scan report for apache2-xenon.accomack.dreamhost.com (208.113.220.218)
1561Host is up (0.11s latency).
1562
1563PORT STATE SERVICE VERSION
156469/tcp filtered tftp
156569/udp open|filtered tftp
1566Too many fingerprints match this host to give specific OS details
1567Network Distance: 11 hops
1568
1569TRACEROUTE (using proto 1/icmp)
1570HOP RTT ADDRESS
15711 161.79 ms 10.248.204.1
15722 223.89 ms R43.static.amanah.com (104.245.144.129)
15733 161.86 ms te0-1-1-9.219.ccr32.yyz02.atlas.cogentco.com (38.104.158.113)
15744 161.89 ms be2994.ccr22.cle04.atlas.cogentco.com (154.54.31.233)
15755 161.92 ms be2892.ccr42.dca01.atlas.cogentco.com (154.54.82.254)
15766 161.99 ms be3084.ccr41.iad02.atlas.cogentco.com (154.54.30.66)
15777 161.98 ms be3562.rcr51.b037327-0.iad02.atlas.cogentco.com (154.54.24.234)
15788 161.97 ms 38.122.62.254
15799 162.05 ms ip-208-113-156-8.dreamhost.com (208.113.156.8)
158010 97.17 ms ip-208-113-156-14.dreamhost.com (208.113.156.14)
158111 189.28 ms apache2-xenon.accomack.dreamhost.com (208.113.220.218)
1582#####################################################################################################################################
1583Starting Nmap 7.80 ( https://nmap.org ) at 2020-02-09 19:14 EST
1584Nmap scan report for apache2-xenon.accomack.dreamhost.com (208.113.220.218)
1585Host is up (0.11s latency).
1586
1587PORT STATE SERVICE VERSION
1588123/tcp filtered ntp
1589123/udp open|filtered ntp
1590Too many fingerprints match this host to give specific OS details
1591Network Distance: 11 hops
1592
1593TRACEROUTE (using proto 1/icmp)
1594HOP RTT ADDRESS
15951 124.80 ms 10.248.204.1
15962 124.86 ms R43.static.amanah.com (104.245.144.129)
15973 124.89 ms te0-1-1-9.219.ccr32.yyz02.atlas.cogentco.com (38.104.158.113)
15984 124.92 ms be2994.ccr22.cle04.atlas.cogentco.com (154.54.31.233)
15995 124.94 ms be2892.ccr42.dca01.atlas.cogentco.com (154.54.82.254)
16006 125.03 ms be3084.ccr41.iad02.atlas.cogentco.com (154.54.30.66)
16017 125.02 ms be3562.rcr51.b037327-0.iad02.atlas.cogentco.com (154.54.24.234)
16028 125.01 ms 38.122.62.254
16039 125.01 ms ip-208-113-156-8.dreamhost.com (208.113.156.8)
160410 73.52 ms ip-208-113-156-14.dreamhost.com (208.113.156.14)
160511 114.30 ms apache2-xenon.accomack.dreamhost.com (208.113.220.218)
1606#####################################################################################################################################
1607Starting Nmap 7.80 ( https://nmap.org ) at 2020-02-09 19:17 EST
1608Nmap scan report for apache2-xenon.accomack.dreamhost.com (208.113.220.218)
1609Host is up (0.16s latency).
1610Not shown: 65532 filtered ports
1611PORT STATE SERVICE VERSION
161225/tcp closed smtp
1613139/tcp closed netbios-ssn
1614445/tcp closed microsoft-ds
1615Too many fingerprints match this host to give specific OS details
1616Network Distance: 2 hops
1617
1618TRACEROUTE (using port 25/tcp)
1619HOP RTT ADDRESS
16201 185.36 ms 10.248.204.1
16212 185.36 ms apache2-xenon.accomack.dreamhost.com (208.113.220.218)
1622#####################################################################################################################################
1623Starting Nmap 7.80 ( https://nmap.org ) at 2020-02-09 19:20 EST
1624Nmap scan report for apache2-xenon.accomack.dreamhost.com (208.113.220.218)
1625Host is up (0.13s latency).
1626
1627PORT STATE SERVICE VERSION
162853/tcp filtered domain
162967/tcp filtered dhcps
163068/tcp filtered dhcpc
163169/tcp filtered tftp
163288/tcp filtered kerberos-sec
1633123/tcp filtered ntp
1634137/tcp filtered netbios-ns
1635138/tcp filtered netbios-dgm
1636139/tcp closed netbios-ssn
1637161/tcp filtered snmp
1638162/tcp filtered snmptrap
1639389/tcp filtered ldap
1640520/tcp filtered efs
16412049/tcp filtered nfs
164253/udp open|filtered domain
164367/udp open|filtered dhcps
164468/udp open|filtered dhcpc
164569/udp open|filtered tftp
164688/udp open|filtered kerberos-sec
1647123/udp open|filtered ntp
1648137/udp filtered netbios-ns
1649138/udp filtered netbios-dgm
1650139/udp open|filtered netbios-ssn
1651161/udp open|filtered snmp
1652162/udp open|filtered snmptrap
1653389/udp open|filtered ldap
1654520/udp open|filtered route
16552049/udp open|filtered nfs
1656Too many fingerprints match this host to give specific OS details
1657Network Distance: 2 hops
1658
1659TRACEROUTE (using port 139/tcp)
1660HOP RTT ADDRESS
16611 114.95 ms 10.248.204.1
16622 114.94 ms apache2-xenon.accomack.dreamhost.com (208.113.220.218)
1663######################################################################################################################################
1664Hosts
1665=====
1666
1667address mac name os_name os_flavor os_sp purpose info comments
1668------- --- ---- ------- --------- ----- ------- ---- --------
166923.194.8.156 a23-194-8-156.deploy.static.akamaitechnologies.com Unknown device
167023.201.103.9 a23-201-103-9.deploy.static.akamaitechnologies.com embedded 6.X device
167134.66.191.217 217.191.66.34.bc.googleusercontent.com Linux 2.4.X server
167234.210.57.231 ec2-34-210-57-231.us-west-2.compute.amazonaws.com Linux 3.X server
167345.60.80.235 Linux 3.X server
167452.11.234.150 ec2-52-11-234-150.us-west-2.compute.amazonaws.com Linux 3.X server
167552.35.54.14 ec2-52-35-54-14.us-west-2.compute.amazonaws.com Unknown device
167652.198.183.13 ec2-52-198-183-13.ap-northeast-1.compute.amazonaws.co embedded device
167754.73.84.17 ec2-54-73-84-17.eu-west-1.compute.amazonaws.com Unknown device
167872.47.224.85 agaacqmame.c03.gridserver.com embedded device
167980.82.79.116 no-reverse-dns-configured.com Linux 7.0 server
168080.209.242.81 muhajeer.com Linux 3.X server
168182.221.136.4 hekla.orangewebsite.com Unknown device
168282.221.139.217 Unknown device
168384.235.91.252 84-235-91-252.saudi.net.sa Unknown device
168487.247.240.207 crayford.servers.prgn.misp.co.uk Android 5.X device
168589.221.213.22 hc1-wd12.wedos.net Linux 2.6.X server
168689.248.172.200 89-248-172-200.constellationservers.net Linux 8.0 server
168793.89.20.20 Unknown device
168893.95.228.158 vps-93-95-228-158.1984.is Linux 18.04 server
168993.113.37.250 adsla250.ch-clienti.ro Linux 2.6.X server
169093.174.93.84 Linux 3.X server
169193.191.156.197 Unknown device
169294.102.51.33 full-dark.net Linux 2.6.X server
1693104.154.60.12 12.60.154.104.bc.googleusercontent.com Linux 2.6.X server
1694104.218.232.66 Linux 3.X server
1695107.154.130.27 107.154.130.27.ip.incapdns.net Linux 3.X server
1696107.154.248.27 107.154.248.27.ip.incapdns.net Linux 3.X server
1697141.105.65.111 Linux 2.6.X server
1698147.237.0.206 embedded device
1699150.95.250.133 embedded device
1700151.139.243.11 Linux 4.X server
1701154.73.84.17 Unknown device
1702157.7.107.254 157-7-107-254.virt.lolipop.jp embedded device
1703159.89.0.72 Linux 16.04 server
1704160.153.72.166 ip-160-153-72-166.ip.secureserver.net Linux 3.X server
1705163.247.52.17 www.mtt.cl Linux 2.6.X server
1706163.247.96.10 Linux 2.6.X server
1707170.246.172.178 host-170-246-172-178.anacondaweb.com Linux 2.6.X server
1708180.222.81.193 bvdeuy193.secure.ne.jp Linux 2.6.X server
1709184.72.111.210 ec2-184-72-111-210.compute-1.amazonaws.com Linux 2.6.X server
1710185.2.4.98 lhcp1098.webapps.net embedded device
1711185.68.93.22 verbatim1981.example.com Unknown device
1712185.119.173.237 Linux 2.6.X server
1713186.67.91.110 ipj10-110.poderjudicial.cl Linux 2.6.X server
1714192.0.78.12 Linux 2.4.X server
1715192.0.78.13 Linux 2.6.X server
1716194.18.73.2 www.sakerhetspolisen.se Linux 2.6.X server
1717194.39.164.140 194.39.164.140.srvlist.ukfast.net Linux 3.X server
1718200.14.67.43 senado.cl Linux 2.6.X server
1719200.14.67.65 Linux 2.6.X server
1720200.35.157.77 srv77.talcaguia.cl Unknown device
1721201.131.38.40 Linux 2.6.X server
1722201.238.246.43 Unknown device
1723202.214.194.138 Linux 2.6.X server
1724202.238.130.103 Linux 2.6.X server
1725203.137.110.66 Unknown device
1726203.180.216.224 embedded device
1727203.183.218.244 Unknown device
1728208.113.216.185 apache2-rank.thomas-mckean.dreamhost.com Unknown device
1729208.113.220.218 apache2-xenon.accomack.dreamhost.com Unknown device
1730209.59.165.178 rabbit.ceilingsky.com Linux 2.6.X server
1731210.149.141.34 Unknown device
1732210.152.243.182 Unknown device
1733210.160.220.105 h105.sk3.estore.co.jp embedded device
1734210.160.220.113 h113.sk3.estore.co.jp embedded device
1735210.226.36.2 210-226-36-2.df.nttcomcloud.com Linux 2.6.X server
1736217.160.131.142 s18161039.onlinehome-server.info Linux 2.6.X server
1737#####################################################################################################################################
1738Services
1739========
1740
1741host port proto name state info
1742---- ---- ----- ---- ----- ----
174323.194.8.156 53 tcp domain filtered
174423.194.8.156 53 udp domain unknown
174523.194.8.156 67 tcp dhcps filtered
174623.194.8.156 67 udp dhcps unknown
174723.194.8.156 68 tcp dhcpc filtered
174823.194.8.156 68 udp dhcpc unknown
174923.194.8.156 69 tcp tftp filtered
175023.194.8.156 69 udp tftp unknown
175123.194.8.156 88 tcp kerberos-sec filtered
175223.194.8.156 88 udp kerberos-sec unknown
175323.194.8.156 123 tcp ntp filtered
175423.194.8.156 123 udp ntp unknown
175523.194.8.156 137 tcp netbios-ns filtered
175623.194.8.156 137 udp netbios-ns filtered
175723.194.8.156 138 tcp netbios-dgm filtered
175823.194.8.156 138 udp netbios-dgm filtered
175923.194.8.156 139 tcp netbios-ssn closed
176023.194.8.156 139 udp netbios-ssn unknown
176123.194.8.156 161 tcp snmp filtered
176223.194.8.156 161 udp snmp unknown
176323.194.8.156 162 tcp snmptrap filtered
176423.194.8.156 162 udp snmptrap unknown
176523.194.8.156 389 tcp ldap filtered
176623.194.8.156 389 udp ldap unknown
176723.194.8.156 520 tcp efs filtered
176823.194.8.156 520 udp route unknown
176923.194.8.156 2049 tcp nfs filtered
177023.194.8.156 2049 udp nfs unknown
177123.201.103.9 25 tcp smtp closed
177223.201.103.9 53 tcp domain filtered
177323.201.103.9 53 udp domain unknown
177423.201.103.9 67 tcp dhcps filtered
177523.201.103.9 67 udp dhcps unknown
177623.201.103.9 68 tcp dhcpc filtered
177723.201.103.9 68 udp dhcpc unknown
177823.201.103.9 69 tcp tftp filtered
177923.201.103.9 69 udp tftp unknown
178023.201.103.9 80 tcp http open AkamaiGHost Akamai's HTTP Acceleration/Mirror service
178123.201.103.9 88 tcp kerberos-sec filtered
178223.201.103.9 88 udp kerberos-sec unknown
178323.201.103.9 123 tcp ntp filtered
178423.201.103.9 123 udp ntp unknown
178523.201.103.9 137 tcp netbios-ns filtered
178623.201.103.9 137 udp netbios-ns filtered
178723.201.103.9 138 tcp netbios-dgm filtered
178823.201.103.9 138 udp netbios-dgm filtered
178923.201.103.9 139 tcp netbios-ssn closed
179023.201.103.9 139 udp netbios-ssn unknown
179123.201.103.9 161 tcp snmp filtered
179223.201.103.9 161 udp snmp unknown
179323.201.103.9 162 tcp snmptrap filtered
179423.201.103.9 162 udp snmptrap unknown
179523.201.103.9 389 tcp ldap filtered
179623.201.103.9 389 udp ldap unknown
179723.201.103.9 443 tcp ssl/http open AkamaiGHost Akamai's HTTP Acceleration/Mirror service
179823.201.103.9 445 tcp microsoft-ds closed
179923.201.103.9 520 tcp efs filtered
180023.201.103.9 520 udp route unknown
180123.201.103.9 2049 tcp nfs filtered
180223.201.103.9 2049 udp nfs unknown
180323.201.103.9 8883 tcp secure-mqtt open
180434.66.191.217 25 tcp smtp closed
180534.66.191.217 53 tcp domain filtered
180634.66.191.217 53 udp domain unknown
180734.66.191.217 67 tcp dhcps filtered
180834.66.191.217 67 udp dhcps unknown
180934.66.191.217 68 tcp dhcpc filtered
181034.66.191.217 68 udp dhcpc unknown
181134.66.191.217 69 tcp tftp filtered
181234.66.191.217 69 udp tftp unknown
181334.66.191.217 80 tcp http open nginx
181434.66.191.217 88 tcp kerberos-sec filtered
181534.66.191.217 88 udp kerberos-sec unknown
181634.66.191.217 123 tcp ntp filtered
181734.66.191.217 123 udp ntp unknown
181834.66.191.217 137 tcp netbios-ns filtered
181934.66.191.217 137 udp netbios-ns filtered
182034.66.191.217 138 tcp netbios-dgm filtered
182134.66.191.217 138 udp netbios-dgm filtered
182234.66.191.217 139 tcp netbios-ssn closed
182334.66.191.217 139 udp netbios-ssn unknown
182434.66.191.217 161 tcp snmp filtered
182534.66.191.217 161 udp snmp unknown
182634.66.191.217 162 tcp snmptrap filtered
182734.66.191.217 162 udp snmptrap unknown
182834.66.191.217 389 tcp ldap filtered
182934.66.191.217 389 udp ldap unknown
183034.66.191.217 443 tcp ssl/http open nginx
183134.66.191.217 445 tcp microsoft-ds closed
183234.66.191.217 520 tcp efs filtered
183334.66.191.217 520 udp route unknown
183434.66.191.217 2049 tcp nfs filtered
183534.66.191.217 2049 udp nfs unknown
183634.66.191.217 2222 tcp ssh open ProFTPD mod_sftp 0.9.9 protocol 2.0
183734.210.57.231 25 tcp smtp closed
183834.210.57.231 53 tcp domain filtered
183934.210.57.231 53 udp domain unknown
184034.210.57.231 67 tcp dhcps filtered
184134.210.57.231 67 udp dhcps unknown
184234.210.57.231 68 tcp dhcpc filtered
184334.210.57.231 68 udp dhcpc unknown
184434.210.57.231 69 tcp tftp filtered
184534.210.57.231 69 udp tftp unknown
184634.210.57.231 80 tcp http open awselb/2.0
184734.210.57.231 88 tcp kerberos-sec filtered
184834.210.57.231 88 udp kerberos-sec unknown
184934.210.57.231 123 tcp ntp filtered
185034.210.57.231 123 udp ntp unknown
185134.210.57.231 137 tcp netbios-ns filtered
185234.210.57.231 137 udp netbios-ns filtered
185334.210.57.231 138 tcp netbios-dgm filtered
185434.210.57.231 138 udp netbios-dgm filtered
185534.210.57.231 139 tcp netbios-ssn closed
185634.210.57.231 139 udp netbios-ssn unknown
185734.210.57.231 161 tcp snmp filtered
185834.210.57.231 161 udp snmp unknown
185934.210.57.231 162 tcp snmptrap filtered
186034.210.57.231 162 udp snmptrap unknown
186134.210.57.231 389 tcp ldap filtered
186234.210.57.231 389 udp ldap unknown
186334.210.57.231 443 tcp ssl/http open nginx 1.10.3
186434.210.57.231 445 tcp microsoft-ds closed
186534.210.57.231 520 tcp efs filtered
186634.210.57.231 520 udp route unknown
186734.210.57.231 2049 tcp nfs filtered
186834.210.57.231 2049 udp nfs unknown
186945.60.80.235 53 tcp domain open
187045.60.80.235 53 udp domain open
187145.60.80.235 67 udp dhcps unknown
187245.60.80.235 68 udp dhcpc unknown
187345.60.80.235 69 udp tftp unknown
187445.60.80.235 80 tcp http open Incapsula CDN httpd
187545.60.80.235 81 tcp http open Incapsula CDN httpd
187645.60.80.235 85 tcp http open Incapsula CDN httpd
187745.60.80.235 88 tcp http open Incapsula CDN httpd
187845.60.80.235 88 udp kerberos-sec unknown
187945.60.80.235 123 udp ntp unknown
188045.60.80.235 139 udp netbios-ssn unknown
188145.60.80.235 161 udp snmp unknown
188245.60.80.235 162 udp snmptrap unknown
188345.60.80.235 389 tcp ssl/http open Incapsula CDN httpd
188445.60.80.235 389 udp ldap unknown
188545.60.80.235 443 tcp ssl/http open Incapsula CDN httpd
188645.60.80.235 444 tcp ssl/http open Incapsula CDN httpd
188745.60.80.235 446 tcp http open Incapsula CDN httpd
188845.60.80.235 520 udp route unknown
188945.60.80.235 587 tcp http open Incapsula CDN httpd
189045.60.80.235 631 tcp http open Incapsula CDN httpd
189145.60.80.235 888 tcp http open Incapsula CDN httpd
189245.60.80.235 995 tcp ssl/http open Incapsula CDN httpd
189345.60.80.235 998 tcp ssl/http open Incapsula CDN httpd
189445.60.80.235 999 tcp http open Incapsula CDN httpd
189545.60.80.235 1000 tcp http open Incapsula CDN httpd
189645.60.80.235 1024 tcp http open Incapsula CDN httpd
189745.60.80.235 1103 tcp http open Incapsula CDN httpd
189845.60.80.235 1234 tcp http open Incapsula CDN httpd
189945.60.80.235 1433 tcp http open Incapsula CDN httpd
190045.60.80.235 1494 tcp http open Incapsula CDN httpd
190145.60.80.235 2000 tcp ssl/http open Incapsula CDN httpd
190245.60.80.235 2001 tcp http open Incapsula CDN httpd
190345.60.80.235 2049 tcp http open Incapsula CDN httpd
190445.60.80.235 2049 udp nfs unknown
190545.60.80.235 2067 tcp http open Incapsula CDN httpd
190645.60.80.235 2100 tcp ssl/http open Incapsula CDN httpd
190745.60.80.235 2222 tcp http open Incapsula CDN httpd
190845.60.80.235 2598 tcp http open Incapsula CDN httpd
190945.60.80.235 3000 tcp http open Incapsula CDN httpd
191045.60.80.235 3050 tcp http open Incapsula CDN httpd
191145.60.80.235 3057 tcp http open Incapsula CDN httpd
191245.60.80.235 3299 tcp http open Incapsula CDN httpd
191345.60.80.235 3306 tcp ssl/http open Incapsula CDN httpd
191445.60.80.235 3333 tcp http open Incapsula CDN httpd
191545.60.80.235 3389 tcp ssl/http open Incapsula CDN httpd
191645.60.80.235 3500 tcp http open Incapsula CDN httpd
191745.60.80.235 3790 tcp http open Incapsula CDN httpd
191845.60.80.235 4000 tcp http open Incapsula CDN httpd
191945.60.80.235 4444 tcp ssl/http open Incapsula CDN httpd
192045.60.80.235 4445 tcp ssl/http open Incapsula CDN httpd
192145.60.80.235 5000 tcp http open Incapsula CDN httpd
192245.60.80.235 5009 tcp http open Incapsula CDN httpd
192345.60.80.235 5060 tcp ssl/http open Incapsula CDN httpd
192445.60.80.235 5061 tcp ssl/http open Incapsula CDN httpd
192545.60.80.235 5227 tcp ssl/http open Incapsula CDN httpd
192645.60.80.235 5247 tcp ssl/http open Incapsula CDN httpd
192745.60.80.235 5250 tcp ssl/http open Incapsula CDN httpd
192845.60.80.235 5555 tcp http open Incapsula CDN httpd
192945.60.80.235 5900 tcp http open Incapsula CDN httpd
193045.60.80.235 5901 tcp ssl/http open Incapsula CDN httpd
193145.60.80.235 5902 tcp ssl/http open Incapsula CDN httpd
193245.60.80.235 5903 tcp ssl/http open Incapsula CDN httpd
193345.60.80.235 5904 tcp ssl/http open Incapsula CDN httpd
193445.60.80.235 5905 tcp ssl/http open Incapsula CDN httpd
193545.60.80.235 5906 tcp ssl/http open Incapsula CDN httpd
193645.60.80.235 5907 tcp ssl/http open Incapsula CDN httpd
193745.60.80.235 5908 tcp ssl/http open Incapsula CDN httpd
193845.60.80.235 5909 tcp ssl/http open Incapsula CDN httpd
193945.60.80.235 5910 tcp ssl/http open Incapsula CDN httpd
194045.60.80.235 5920 tcp ssl/http open Incapsula CDN httpd
194145.60.80.235 5984 tcp ssl/http open Incapsula CDN httpd
194245.60.80.235 5985 tcp http open Incapsula CDN httpd
194345.60.80.235 5986 tcp ssl/http open Incapsula CDN httpd
194445.60.80.235 5999 tcp ssl/http open Incapsula CDN httpd
194545.60.80.235 6000 tcp http open Incapsula CDN httpd
194645.60.80.235 6060 tcp http open Incapsula CDN httpd
194745.60.80.235 6161 tcp http open Incapsula CDN httpd
194845.60.80.235 6379 tcp http open Incapsula CDN httpd
194945.60.80.235 6661 tcp ssl/http open Incapsula CDN httpd
195045.60.80.235 6789 tcp http open Incapsula CDN httpd
195145.60.80.235 7001 tcp http open Incapsula CDN httpd
195245.60.80.235 7021 tcp http open Incapsula CDN httpd
195345.60.80.235 7071 tcp ssl/http open Incapsula CDN httpd
195445.60.80.235 7080 tcp http open Incapsula CDN httpd
195545.60.80.235 7272 tcp ssl/http open Incapsula CDN httpd
195645.60.80.235 7443 tcp ssl/http open Incapsula CDN httpd
195745.60.80.235 7700 tcp http open Incapsula CDN httpd
195845.60.80.235 7777 tcp http open Incapsula CDN httpd
195945.60.80.235 7778 tcp http open Incapsula CDN httpd
196045.60.80.235 8000 tcp http open Incapsula CDN httpd
196145.60.80.235 8001 tcp http open Incapsula CDN httpd
196245.60.80.235 8008 tcp http open Incapsula CDN httpd
196345.60.80.235 8014 tcp http open Incapsula CDN httpd
196445.60.80.235 8020 tcp http open Incapsula CDN httpd
196545.60.80.235 8023 tcp http open Incapsula CDN httpd
196645.60.80.235 8028 tcp http open Incapsula CDN httpd
196745.60.80.235 8030 tcp http open Incapsula CDN httpd
196845.60.80.235 8050 tcp http open Incapsula CDN httpd
196945.60.80.235 8051 tcp http open Incapsula CDN httpd
197045.60.80.235 8080 tcp http open Incapsula CDN httpd
197145.60.80.235 8081 tcp http open Incapsula CDN httpd
197245.60.80.235 8082 tcp http open Incapsula CDN httpd
197345.60.80.235 8085 tcp http open Incapsula CDN httpd
197445.60.80.235 8086 tcp http open Incapsula CDN httpd
197545.60.80.235 8087 tcp http open Incapsula CDN httpd
197645.60.80.235 8088 tcp http open Incapsula CDN httpd
197745.60.80.235 8090 tcp http open Incapsula CDN httpd
197845.60.80.235 8091 tcp http open Incapsula CDN httpd
197945.60.80.235 8095 tcp http open Incapsula CDN httpd
198045.60.80.235 8101 tcp http open Incapsula CDN httpd
198145.60.80.235 8161 tcp http open Incapsula CDN httpd
198245.60.80.235 8180 tcp http open Incapsula CDN httpd
198345.60.80.235 8222 tcp http open Incapsula CDN httpd
198445.60.80.235 8333 tcp http open Incapsula CDN httpd
198545.60.80.235 8443 tcp ssl/http open Incapsula CDN httpd
198645.60.80.235 8444 tcp http open Incapsula CDN httpd
198745.60.80.235 8445 tcp http open Incapsula CDN httpd
198845.60.80.235 8503 tcp ssl/http open Incapsula CDN httpd
198945.60.80.235 8686 tcp http open Incapsula CDN httpd
199045.60.80.235 8787 tcp http open Incapsula CDN httpd
199145.60.80.235 8800 tcp http open Incapsula CDN httpd
199245.60.80.235 8812 tcp http open Incapsula CDN httpd
199345.60.80.235 8834 tcp http open Incapsula CDN httpd
199445.60.80.235 8880 tcp http open Incapsula CDN httpd
199545.60.80.235 8888 tcp http open Incapsula CDN httpd
199645.60.80.235 8890 tcp http open Incapsula CDN httpd
199745.60.80.235 8899 tcp http open Incapsula CDN httpd
199845.60.80.235 8901 tcp http open Incapsula CDN httpd
199945.60.80.235 8902 tcp http open Incapsula CDN httpd
200045.60.80.235 8999 tcp http open Incapsula CDN httpd
200145.60.80.235 9000 tcp http open Incapsula CDN httpd
200245.60.80.235 9001 tcp http open Incapsula CDN httpd
200345.60.80.235 9002 tcp http open Incapsula CDN httpd
200445.60.80.235 9003 tcp http open Incapsula CDN httpd
200545.60.80.235 9004 tcp http open Incapsula CDN httpd
200645.60.80.235 9005 tcp http open Incapsula CDN httpd
200745.60.80.235 9010 tcp http open Incapsula CDN httpd
200845.60.80.235 9050 tcp http open Incapsula CDN httpd
200945.60.80.235 9080 tcp http open Incapsula CDN httpd
201045.60.80.235 9081 tcp ssl/http open Incapsula CDN httpd
201145.60.80.235 9084 tcp http open Incapsula CDN httpd
201245.60.80.235 9090 tcp http open Incapsula CDN httpd
201345.60.80.235 9099 tcp http open Incapsula CDN httpd
201445.60.80.235 9100 tcp jetdirect open
201545.60.80.235 9111 tcp http open Incapsula CDN httpd
201645.60.80.235 9200 tcp http open Incapsula CDN httpd
201745.60.80.235 9300 tcp http open Incapsula CDN httpd
201845.60.80.235 9500 tcp http open Incapsula CDN httpd
201945.60.80.235 9711 tcp ssl/http open Incapsula CDN httpd
202045.60.80.235 9991 tcp http open Incapsula CDN httpd
202145.60.80.235 9999 tcp http open Incapsula CDN httpd
202245.60.80.235 10000 tcp http open Incapsula CDN httpd
202352.11.234.150 25 tcp smtp closed
202452.11.234.150 53 tcp domain filtered
202552.11.234.150 53 udp domain unknown
202652.11.234.150 67 tcp dhcps filtered
202752.11.234.150 67 udp dhcps unknown
202852.11.234.150 68 tcp dhcpc filtered
202952.11.234.150 68 udp dhcpc unknown
203052.11.234.150 69 tcp tftp filtered
203152.11.234.150 69 udp tftp unknown
203252.11.234.150 80 tcp http open awselb/2.0
203352.11.234.150 88 tcp kerberos-sec filtered
203452.11.234.150 88 udp kerberos-sec unknown
203552.11.234.150 123 tcp ntp filtered
203652.11.234.150 123 udp ntp unknown
203752.11.234.150 137 tcp netbios-ns filtered
203852.11.234.150 137 udp netbios-ns filtered
203952.11.234.150 138 tcp netbios-dgm filtered
204052.11.234.150 138 udp netbios-dgm filtered
204152.11.234.150 139 tcp netbios-ssn closed
204252.11.234.150 139 udp netbios-ssn unknown
204352.11.234.150 161 tcp snmp filtered
204452.11.234.150 161 udp snmp unknown
204552.11.234.150 162 tcp snmptrap filtered
204652.11.234.150 162 udp snmptrap unknown
204752.11.234.150 389 tcp ldap filtered
204852.11.234.150 389 udp ldap unknown
204952.11.234.150 443 tcp ssl/http open nginx 1.10.3
205052.11.234.150 445 tcp microsoft-ds closed
205152.11.234.150 520 tcp efs filtered
205252.11.234.150 520 udp route unknown
205352.11.234.150 2049 tcp nfs filtered
205452.11.234.150 2049 udp nfs unknown
205552.35.54.14 53 tcp domain filtered
205652.35.54.14 53 udp domain unknown
205752.35.54.14 67 tcp dhcps filtered
205852.35.54.14 67 udp dhcps unknown
205952.35.54.14 68 tcp dhcpc filtered
206052.35.54.14 68 udp dhcpc unknown
206152.35.54.14 69 tcp tftp filtered
206252.35.54.14 69 udp tftp unknown
206352.35.54.14 88 tcp kerberos-sec filtered
206452.35.54.14 88 udp kerberos-sec unknown
206552.35.54.14 123 tcp ntp filtered
206652.35.54.14 123 udp ntp unknown
206752.35.54.14 137 tcp netbios-ns filtered
206852.35.54.14 137 udp netbios-ns filtered
206952.35.54.14 138 tcp netbios-dgm filtered
207052.35.54.14 138 udp netbios-dgm filtered
207152.35.54.14 139 tcp netbios-ssn closed
207252.35.54.14 139 udp netbios-ssn unknown
207352.35.54.14 161 tcp snmp filtered
207452.35.54.14 161 udp snmp unknown
207552.35.54.14 162 tcp snmptrap filtered
207652.35.54.14 162 udp snmptrap unknown
207752.35.54.14 389 tcp ldap filtered
207852.35.54.14 389 udp ldap unknown
207952.35.54.14 520 tcp efs filtered
208052.35.54.14 520 udp route unknown
208152.35.54.14 2049 tcp nfs filtered
208252.35.54.14 2049 udp nfs unknown
208352.198.183.13 25 tcp smtp closed
208452.198.183.13 53 tcp domain filtered
208552.198.183.13 53 udp domain unknown
208652.198.183.13 67 tcp dhcps filtered
208752.198.183.13 67 udp dhcps unknown
208852.198.183.13 68 tcp dhcpc filtered
208952.198.183.13 68 udp dhcpc unknown
209052.198.183.13 69 tcp tftp filtered
209152.198.183.13 69 udp tftp unknown
209252.198.183.13 80 tcp http open nginx
209352.198.183.13 88 tcp kerberos-sec filtered
209452.198.183.13 88 udp kerberos-sec unknown
209552.198.183.13 123 tcp ntp filtered
209652.198.183.13 123 udp ntp unknown
209752.198.183.13 137 tcp netbios-ns filtered
209852.198.183.13 137 udp netbios-ns filtered
209952.198.183.13 138 tcp netbios-dgm filtered
210052.198.183.13 138 udp netbios-dgm filtered
210152.198.183.13 139 tcp netbios-ssn closed
210252.198.183.13 139 udp netbios-ssn unknown
210352.198.183.13 161 tcp snmp filtered
210452.198.183.13 161 udp snmp unknown
210552.198.183.13 162 tcp snmptrap filtered
210652.198.183.13 162 udp snmptrap unknown
210752.198.183.13 389 tcp ldap filtered
210852.198.183.13 389 udp ldap unknown
210952.198.183.13 443 tcp ssl/http open nginx
211052.198.183.13 445 tcp microsoft-ds closed
211152.198.183.13 520 tcp efs filtered
211252.198.183.13 520 udp route unknown
211352.198.183.13 2049 tcp nfs filtered
211452.198.183.13 2049 udp nfs unknown
211554.73.84.17 25 tcp smtp closed
211654.73.84.17 53 tcp domain filtered
211754.73.84.17 53 udp domain unknown
211854.73.84.17 67 tcp dhcps filtered
211954.73.84.17 67 udp dhcps unknown
212054.73.84.17 68 tcp dhcpc filtered
212154.73.84.17 68 udp dhcpc unknown
212254.73.84.17 69 tcp tftp filtered
212354.73.84.17 69 udp tftp unknown
212454.73.84.17 88 tcp kerberos-sec filtered
212554.73.84.17 88 udp kerberos-sec unknown
212654.73.84.17 123 tcp ntp filtered
212754.73.84.17 123 udp ntp unknown
212854.73.84.17 137 tcp netbios-ns filtered
212954.73.84.17 137 udp netbios-ns filtered
213054.73.84.17 138 tcp netbios-dgm filtered
213154.73.84.17 138 udp netbios-dgm filtered
213254.73.84.17 139 tcp netbios-ssn closed
213354.73.84.17 139 udp netbios-ssn unknown
213454.73.84.17 161 tcp snmp filtered
213554.73.84.17 161 udp snmp unknown
213654.73.84.17 162 tcp snmptrap filtered
213754.73.84.17 162 udp snmptrap unknown
213854.73.84.17 389 tcp ldap filtered
213954.73.84.17 389 udp ldap unknown
214054.73.84.17 445 tcp microsoft-ds closed
214154.73.84.17 520 tcp efs filtered
214254.73.84.17 520 udp route unknown
214354.73.84.17 2049 tcp nfs filtered
214454.73.84.17 2049 udp nfs unknown
214572.47.224.85 25 tcp smtp closed
214672.47.224.85 53 tcp domain filtered
214772.47.224.85 53 udp domain unknown
214872.47.224.85 67 tcp dhcps filtered
214972.47.224.85 67 udp dhcps unknown
215072.47.224.85 68 tcp dhcpc filtered
215172.47.224.85 68 udp dhcpc unknown
215272.47.224.85 69 tcp tftp filtered
215372.47.224.85 69 udp tftp unknown
215472.47.224.85 80 tcp http open Apache httpd 2.4.39
215572.47.224.85 88 tcp kerberos-sec filtered
215672.47.224.85 88 udp kerberos-sec unknown
215772.47.224.85 110 tcp pop3 open Dovecot pop3d
215872.47.224.85 123 tcp ntp filtered
215972.47.224.85 123 udp ntp unknown
216072.47.224.85 137 tcp netbios-ns filtered
216172.47.224.85 137 udp netbios-ns filtered
216272.47.224.85 138 tcp netbios-dgm filtered
216372.47.224.85 138 udp netbios-dgm filtered
216472.47.224.85 139 tcp netbios-ssn closed
216572.47.224.85 139 udp netbios-ssn unknown
216672.47.224.85 143 tcp imap open Dovecot imapd
216772.47.224.85 161 tcp snmp filtered
216872.47.224.85 161 udp snmp unknown
216972.47.224.85 162 tcp snmptrap filtered
217072.47.224.85 162 udp snmptrap unknown
217172.47.224.85 389 tcp ldap filtered
217272.47.224.85 389 udp ldap unknown
217372.47.224.85 443 tcp ssl/http open nginx 1.16.1
217472.47.224.85 445 tcp microsoft-ds closed
217572.47.224.85 465 tcp ssl/smtp open Exim smtpd 4.84_2
217672.47.224.85 520 tcp efs filtered
217772.47.224.85 520 udp route unknown
217872.47.224.85 587 tcp smtp open Exim smtpd 4.84_2
217972.47.224.85 993 tcp ssl/imaps open
218072.47.224.85 995 tcp ssl/pop3s open
218172.47.224.85 2049 tcp nfs filtered
218272.47.224.85 2049 udp nfs unknown
218380.82.79.116 21 tcp ftp open 220 (vsFTPd 3.0.2)\x0d\x0a
218480.82.79.116 22 tcp ssh open SSH-2.0-OpenSSH_6.0p1 Debian-4+deb7u6
218580.82.79.116 53 tcp domain open ISC BIND 9.8.4-rpz2+rl005.12-P1
218680.82.79.116 53 udp domain open ISC BIND 9.8.4-rpz2+rl005.12-P1
218780.82.79.116 67 tcp dhcps closed
218880.82.79.116 67 udp dhcps closed
218980.82.79.116 68 tcp dhcpc closed
219080.82.79.116 68 udp dhcpc closed
219180.82.79.116 69 tcp tftp closed
219280.82.79.116 69 udp tftp unknown
219380.82.79.116 88 tcp kerberos-sec closed
219480.82.79.116 88 udp kerberos-sec unknown
219580.82.79.116 123 tcp ntp closed
219680.82.79.116 123 udp ntp unknown
219780.82.79.116 137 tcp netbios-ns closed
219880.82.79.116 137 udp netbios-ns filtered
219980.82.79.116 138 tcp netbios-dgm closed
220080.82.79.116 138 udp netbios-dgm filtered
220180.82.79.116 139 tcp netbios-ssn closed
220280.82.79.116 139 udp netbios-ssn unknown
220380.82.79.116 161 tcp snmp closed
220480.82.79.116 161 udp snmp closed
220580.82.79.116 162 tcp snmptrap closed
220680.82.79.116 162 udp snmptrap closed
220780.82.79.116 389 tcp ldap closed
220880.82.79.116 389 udp ldap closed
220980.82.79.116 520 tcp efs closed
221080.82.79.116 520 udp route closed
221180.82.79.116 2049 tcp nfs closed
221280.82.79.116 2049 udp nfs unknown
221380.209.242.81 21 tcp ftp open 220 FTP Server ready.\x0d\x0a
221480.209.242.81 22 tcp ssh open SSH-2.0-OpenSSH_7.4
221580.209.242.81 53 tcp domain open ISC BIND 9.11.4-P2 RedHat Enterprise Linux 7
221680.209.242.81 53 udp domain open ISC BIND 9.11.4-P2 RedHat Enterprise Linux 7
221780.209.242.81 67 tcp dhcps filtered
221880.209.242.81 67 udp dhcps unknown
221980.209.242.81 68 tcp dhcpc filtered
222080.209.242.81 68 udp dhcpc unknown
222180.209.242.81 69 tcp tftp filtered
222280.209.242.81 69 udp tftp unknown
222380.209.242.81 88 tcp kerberos-sec filtered
222480.209.242.81 88 udp kerberos-sec unknown
222580.209.242.81 123 tcp ntp filtered
222680.209.242.81 123 udp ntp unknown
222780.209.242.81 137 tcp netbios-ns filtered
222880.209.242.81 137 udp netbios-ns filtered
222980.209.242.81 138 tcp netbios-dgm filtered
223080.209.242.81 138 udp netbios-dgm filtered
223180.209.242.81 139 tcp netbios-ssn closed
223280.209.242.81 139 udp netbios-ssn unknown
223380.209.242.81 161 tcp snmp filtered
223480.209.242.81 161 udp snmp unknown
223580.209.242.81 162 tcp snmptrap filtered
223680.209.242.81 162 udp snmptrap unknown
223780.209.242.81 389 tcp ldap filtered
223880.209.242.81 389 udp ldap filtered
223980.209.242.81 520 tcp efs filtered
224080.209.242.81 520 udp route unknown
224180.209.242.81 2049 tcp nfs filtered
224280.209.242.81 2049 udp nfs unknown
224382.221.136.4 21 tcp ftp open Your connection to this server has been blocked in this server's firewall.\x0d\x0aYou need to contact the server owner for further information.\x0d\x0a
224482.221.136.4 53 tcp domain filtered
224582.221.136.4 53 udp domain unknown
224682.221.136.4 67 tcp dhcps filtered
224782.221.136.4 67 udp dhcps unknown
224882.221.136.4 68 tcp dhcpc filtered
224982.221.136.4 68 udp dhcpc unknown
225082.221.136.4 69 tcp tftp filtered
225182.221.136.4 69 udp tftp unknown
225282.221.136.4 88 tcp kerberos-sec filtered
225382.221.136.4 88 udp kerberos-sec unknown
225482.221.136.4 123 tcp ntp filtered
225582.221.136.4 123 udp ntp unknown
225682.221.136.4 137 tcp netbios-ns filtered
225782.221.136.4 137 udp netbios-ns filtered
225882.221.136.4 138 tcp netbios-dgm filtered
225982.221.136.4 138 udp netbios-dgm filtered
226082.221.136.4 139 tcp netbios-ssn closed
226182.221.136.4 139 udp netbios-ssn unknown
226282.221.136.4 161 tcp snmp filtered
226382.221.136.4 161 udp snmp unknown
226482.221.136.4 162 tcp snmptrap filtered
226582.221.136.4 162 udp snmptrap unknown
226682.221.136.4 389 tcp ldap filtered
226782.221.136.4 389 udp ldap unknown
226882.221.136.4 520 tcp efs filtered
226982.221.136.4 520 udp route unknown
227082.221.136.4 2049 tcp nfs filtered
227182.221.136.4 2049 udp nfs unknown
227282.221.139.217 22 tcp ssh open SSH-2.0-OpenSSH_5.3
227384.235.91.252 25 tcp smtp closed
227484.235.91.252 53 tcp domain filtered
227584.235.91.252 53 udp domain unknown
227684.235.91.252 67 tcp dhcps filtered
227784.235.91.252 67 udp dhcps unknown
227884.235.91.252 68 tcp dhcpc filtered
227984.235.91.252 68 udp dhcpc unknown
228084.235.91.252 69 tcp tftp filtered
228184.235.91.252 69 udp tftp unknown
228284.235.91.252 88 tcp kerberos-sec filtered
228384.235.91.252 88 udp kerberos-sec unknown
228484.235.91.252 123 tcp ntp filtered
228584.235.91.252 123 udp ntp unknown
228684.235.91.252 137 tcp netbios-ns filtered
228784.235.91.252 137 udp netbios-ns filtered
228884.235.91.252 138 tcp netbios-dgm filtered
228984.235.91.252 138 udp netbios-dgm filtered
229084.235.91.252 139 tcp netbios-ssn closed
229184.235.91.252 139 udp netbios-ssn unknown
229284.235.91.252 161 tcp snmp filtered
229384.235.91.252 161 udp snmp unknown
229484.235.91.252 162 tcp snmptrap filtered
229584.235.91.252 162 udp snmptrap unknown
229684.235.91.252 389 tcp ldap filtered
229784.235.91.252 389 udp ldap unknown
229884.235.91.252 445 tcp microsoft-ds closed
229984.235.91.252 520 tcp efs filtered
230084.235.91.252 520 udp route unknown
230184.235.91.252 2049 tcp nfs filtered
230284.235.91.252 2049 udp nfs unknown
230387.247.240.207 21 tcp ftp open ProFTPD
230487.247.240.207 22 tcp ssh open OpenSSH 7.4 protocol 2.0
230587.247.240.207 67 udp dhcps unknown
230687.247.240.207 68 udp dhcpc unknown
230787.247.240.207 69 udp tftp unknown
230887.247.240.207 80 tcp http open Apache httpd
230987.247.240.207 88 udp kerberos-sec unknown
231087.247.240.207 110 tcp pop3 open Dovecot pop3d
231187.247.240.207 123 udp ntp unknown
231287.247.240.207 139 udp netbios-ssn unknown
231387.247.240.207 143 tcp imap open Dovecot imapd
231487.247.240.207 161 udp snmp unknown
231587.247.240.207 162 udp snmptrap unknown
231687.247.240.207 389 udp ldap unknown
231787.247.240.207 443 tcp ssl/http open Apache httpd
231887.247.240.207 465 tcp ssl/smtp open Exim smtpd 4.92
231987.247.240.207 520 udp route unknown
232087.247.240.207 587 tcp smtp open Exim smtpd 4.92
232187.247.240.207 993 tcp ssl/imaps open
232287.247.240.207 995 tcp ssl/pop3s open
232387.247.240.207 2049 udp nfs unknown
232489.221.213.22 21 tcp ftp open vsftpd 3.0.2
232589.221.213.22 53 tcp domain filtered
232689.221.213.22 53 udp domain unknown
232789.221.213.22 67 tcp dhcps filtered
232889.221.213.22 67 udp dhcps unknown
232989.221.213.22 68 tcp dhcpc filtered
233089.221.213.22 68 udp dhcpc unknown
233189.221.213.22 69 tcp tftp filtered
233289.221.213.22 69 udp tftp unknown
233389.221.213.22 88 tcp kerberos-sec filtered
233489.221.213.22 88 udp kerberos-sec unknown
233589.221.213.22 123 tcp ntp filtered
233689.221.213.22 123 udp ntp unknown
233789.221.213.22 137 tcp netbios-ns filtered
233889.221.213.22 137 udp netbios-ns filtered
233989.221.213.22 138 tcp netbios-dgm filtered
234089.221.213.22 138 udp netbios-dgm filtered
234189.221.213.22 139 tcp netbios-ssn closed
234289.221.213.22 139 udp netbios-ssn unknown
234389.221.213.22 161 tcp snmp filtered
234489.221.213.22 161 udp snmp unknown
234589.221.213.22 162 tcp snmptrap filtered
234689.221.213.22 162 udp snmptrap unknown
234789.221.213.22 389 tcp ldap filtered
234889.221.213.22 389 udp ldap unknown
234989.221.213.22 520 tcp efs filtered
235089.221.213.22 520 udp route unknown
235189.221.213.22 2049 tcp nfs filtered
235289.221.213.22 2049 udp nfs unknown
235389.248.172.200 22 tcp ssh open SSH-2.0-OpenSSH_6.7p1 Debian-5+deb8u3
235489.248.172.200 53 tcp domain closed
235589.248.172.200 53 udp domain closed
235689.248.172.200 67 tcp dhcps closed
235789.248.172.200 67 udp dhcps closed
235889.248.172.200 68 tcp dhcpc closed
235989.248.172.200 68 udp dhcpc closed
236089.248.172.200 69 tcp tftp closed
236189.248.172.200 69 udp tftp closed
236289.248.172.200 88 tcp kerberos-sec closed
236389.248.172.200 88 udp kerberos-sec unknown
236489.248.172.200 123 tcp ntp closed
236589.248.172.200 123 udp ntp unknown
236689.248.172.200 137 tcp netbios-ns closed
236789.248.172.200 137 udp netbios-ns filtered
236889.248.172.200 138 tcp netbios-dgm closed
236989.248.172.200 138 udp netbios-dgm filtered
237089.248.172.200 139 tcp netbios-ssn closed
237189.248.172.200 139 udp netbios-ssn closed
237289.248.172.200 161 tcp snmp closed
237389.248.172.200 161 udp snmp closed
237489.248.172.200 162 tcp snmptrap closed
237589.248.172.200 162 udp snmptrap unknown
237689.248.172.200 389 tcp ldap closed
237789.248.172.200 389 udp ldap closed
237889.248.172.200 520 tcp efs closed
237989.248.172.200 520 udp route closed
238089.248.172.200 2049 tcp nfs closed
238189.248.172.200 2049 udp nfs unknown
238293.89.20.20 21 tcp ftp open 220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------\x0d\x0a220-You are user number 2 of 50 allowed.\x0d\x0a220-Local time is now 21:36. Server port: 21.\x0d\x0a220-This is a private system - No anonymous login\x0d\x0a220-IPv6 connections are also welcome on this server.\x0d\x0a220 You will be disconnected after 15 minutes of inactivity.\x0d\x0a
238393.95.228.158 22 tcp ssh open SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3
238493.95.228.158 53 tcp domain closed
238593.95.228.158 53 udp domain closed
238693.95.228.158 67 tcp dhcps closed
238793.95.228.158 67 udp dhcps closed
238893.95.228.158 68 tcp dhcpc closed
238993.95.228.158 68 udp dhcpc unknown
239093.95.228.158 69 tcp tftp closed
239193.95.228.158 69 udp tftp unknown
239293.95.228.158 88 tcp kerberos-sec closed
239393.95.228.158 88 udp kerberos-sec unknown
239493.95.228.158 123 tcp ntp closed
239593.95.228.158 123 udp ntp unknown
239693.95.228.158 137 tcp netbios-ns closed
239793.95.228.158 137 udp netbios-ns filtered
239893.95.228.158 138 tcp netbios-dgm closed
239993.95.228.158 138 udp netbios-dgm filtered
240093.95.228.158 139 tcp netbios-ssn closed
240193.95.228.158 139 udp netbios-ssn closed
240293.95.228.158 161 tcp snmp closed
240393.95.228.158 161 udp snmp unknown
240493.95.228.158 162 tcp snmptrap closed
240593.95.228.158 162 udp snmptrap unknown
240693.95.228.158 389 tcp ldap closed
240793.95.228.158 389 udp ldap closed
240893.95.228.158 520 tcp efs closed
240993.95.228.158 520 udp route unknown
241093.95.228.158 2049 tcp nfs closed
241193.95.228.158 2049 udp nfs unknown
241293.113.37.250 21 tcp ftp open 220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------\x0d\x0a220-You are user number 1 of 50 allowed.\x0d\x0a220-Local time is now 13:36. Server port: 21.\x0d\x0a220-This is a private system - No anonymous login\x0d\x0a220-IPv6 connections are also welcome on this server.\x0d\x0a220 You will be disconnected after 15 minutes of inactivity.\x0d\x0a
241393.113.37.250 53 tcp domain open PowerDNS Authoritative Server 4.1.10
241493.113.37.250 53 udp domain open PowerDNS Authoritative Server 4.1.10
241593.113.37.250 389 udp ldap unknown
241693.113.37.250 520 udp route unknown
241793.113.37.250 2049 udp nfs unknown
241893.174.93.84 21 tcp ftp open vsftpd 3.0.2
241993.174.93.84 25 tcp smtp closed
242093.174.93.84 53 tcp domain filtered
242193.174.93.84 53 udp domain filtered
242293.174.93.84 67 tcp dhcps filtered
242393.174.93.84 67 udp dhcps filtered
242493.174.93.84 68 tcp dhcpc filtered
242593.174.93.84 68 udp dhcpc unknown
242693.174.93.84 69 tcp tftp filtered
242793.174.93.84 69 udp tftp unknown
242893.174.93.84 80 tcp http open Apache httpd 2.4.6 (CentOS) PHP/5.4.16
242993.174.93.84 88 tcp kerberos-sec filtered
243093.174.93.84 88 udp kerberos-sec unknown
243193.174.93.84 123 tcp ntp filtered
243293.174.93.84 123 udp ntp filtered
243393.174.93.84 137 tcp netbios-ns filtered
243493.174.93.84 137 udp netbios-ns filtered
243593.174.93.84 138 tcp netbios-dgm filtered
243693.174.93.84 138 udp netbios-dgm filtered
243793.174.93.84 139 tcp netbios-ssn closed
243893.174.93.84 139 udp netbios-ssn unknown
243993.174.93.84 161 tcp snmp filtered
244093.174.93.84 161 udp snmp unknown
244193.174.93.84 162 tcp snmptrap filtered
244293.174.93.84 162 udp snmptrap unknown
244393.174.93.84 389 tcp ldap filtered
244493.174.93.84 389 udp ldap filtered
244593.174.93.84 445 tcp microsoft-ds closed
244693.174.93.84 520 tcp efs filtered
244793.174.93.84 520 udp route unknown
244893.174.93.84 2049 tcp nfs filtered
244993.174.93.84 2049 udp nfs unknown
245093.191.156.197 22 tcp ssh open SSH-2.0-OpenSSH_5.3
245194.102.51.33 22 tcp ssh open
245294.102.51.33 53 tcp domain open ISC BIND 9.9.4 RedHat Enterprise Linux 7
245394.102.51.33 53 udp domain open ISC BIND 9.9.4 RedHat Enterprise Linux 7
245494.102.51.33 67 tcp dhcps filtered
245594.102.51.33 67 udp dhcps unknown
245694.102.51.33 68 tcp dhcpc filtered
245794.102.51.33 68 udp dhcpc unknown
245894.102.51.33 69 tcp tftp filtered
245994.102.51.33 69 udp tftp unknown
246094.102.51.33 80 tcp http open nginx
246194.102.51.33 88 tcp kerberos-sec filtered
246294.102.51.33 88 udp kerberos-sec unknown
246394.102.51.33 110 tcp pop3 open Dovecot pop3d
246494.102.51.33 123 tcp ntp filtered
246594.102.51.33 123 udp ntp unknown
246694.102.51.33 137 tcp netbios-ns filtered
246794.102.51.33 137 udp netbios-ns filtered
246894.102.51.33 138 tcp netbios-dgm filtered
246994.102.51.33 138 udp netbios-dgm filtered
247094.102.51.33 139 tcp netbios-ssn closed
247194.102.51.33 139 udp netbios-ssn unknown
247294.102.51.33 143 tcp imap open Dovecot imapd
247394.102.51.33 161 tcp snmp filtered
247494.102.51.33 161 udp snmp unknown
247594.102.51.33 162 tcp snmptrap filtered
247694.102.51.33 162 udp snmptrap unknown
247794.102.51.33 389 tcp ldap filtered
247894.102.51.33 389 udp ldap unknown
247994.102.51.33 465 tcp ssl/smtp open Exim smtpd 4.89
248094.102.51.33 520 tcp efs filtered
248194.102.51.33 520 udp route unknown
248294.102.51.33 993 tcp ssl/imaps open
248394.102.51.33 995 tcp ssl/pop3s open
248494.102.51.33 2049 tcp nfs filtered
248594.102.51.33 2049 udp nfs unknown
2486104.154.60.12 25 tcp smtp closed
2487104.154.60.12 53 tcp domain filtered
2488104.154.60.12 53 udp domain unknown
2489104.154.60.12 67 tcp dhcps filtered
2490104.154.60.12 67 udp dhcps unknown
2491104.154.60.12 68 tcp dhcpc filtered
2492104.154.60.12 68 udp dhcpc unknown
2493104.154.60.12 69 tcp tftp filtered
2494104.154.60.12 69 udp tftp unknown
2495104.154.60.12 80 tcp http open nginx
2496104.154.60.12 88 tcp kerberos-sec filtered
2497104.154.60.12 88 udp kerberos-sec unknown
2498104.154.60.12 123 tcp ntp filtered
2499104.154.60.12 123 udp ntp unknown
2500104.154.60.12 137 tcp netbios-ns filtered
2501104.154.60.12 137 udp netbios-ns filtered
2502104.154.60.12 138 tcp netbios-dgm filtered
2503104.154.60.12 138 udp netbios-dgm filtered
2504104.154.60.12 139 tcp netbios-ssn closed
2505104.154.60.12 139 udp netbios-ssn unknown
2506104.154.60.12 161 tcp snmp filtered
2507104.154.60.12 161 udp snmp unknown
2508104.154.60.12 162 tcp snmptrap filtered
2509104.154.60.12 162 udp snmptrap unknown
2510104.154.60.12 389 tcp ldap filtered
2511104.154.60.12 389 udp ldap unknown
2512104.154.60.12 443 tcp ssl/http open nginx
2513104.154.60.12 445 tcp microsoft-ds closed
2514104.154.60.12 520 tcp efs filtered
2515104.154.60.12 520 udp route unknown
2516104.154.60.12 2049 tcp nfs filtered
2517104.154.60.12 2049 udp nfs unknown
2518104.154.60.12 2222 tcp ssh open ProFTPD mod_sftp 0.9.9 protocol 2.0
2519104.218.232.66 22 tcp ssh open OpenSSH 7.4p1 Debian 10+deb9u3 protocol 2.0
2520104.218.232.66 53 tcp domain closed
2521104.218.232.66 53 udp domain unknown
2522104.218.232.66 67 tcp dhcps closed
2523104.218.232.66 67 udp dhcps unknown
2524104.218.232.66 68 tcp dhcpc closed
2525104.218.232.66 68 udp dhcpc closed
2526104.218.232.66 69 tcp tftp closed
2527104.218.232.66 69 udp tftp closed
2528104.218.232.66 80 tcp http open ngjit
2529104.218.232.66 88 tcp kerberos-sec closed
2530104.218.232.66 88 udp kerberos-sec closed
2531104.218.232.66 123 tcp ntp closed
2532104.218.232.66 123 udp ntp closed
2533104.218.232.66 137 tcp netbios-ns closed
2534104.218.232.66 137 udp netbios-ns filtered
2535104.218.232.66 138 tcp netbios-dgm closed
2536104.218.232.66 138 udp netbios-dgm filtered
2537104.218.232.66 139 tcp netbios-ssn closed
2538104.218.232.66 139 udp netbios-ssn closed
2539104.218.232.66 161 tcp snmp closed
2540104.218.232.66 161 udp snmp unknown
2541104.218.232.66 162 tcp snmptrap closed
2542104.218.232.66 162 udp snmptrap closed
2543104.218.232.66 389 tcp ldap closed
2544104.218.232.66 389 udp ldap closed
2545104.218.232.66 443 tcp ssl/https open ngjit
2546104.218.232.66 520 tcp efs closed
2547104.218.232.66 520 udp route unknown
2548104.218.232.66 2049 tcp nfs closed
2549104.218.232.66 2049 udp nfs closed
2550107.154.130.27 53 tcp domain open
2551107.154.130.27 53 udp domain open
2552107.154.130.27 67 tcp dhcps filtered
2553107.154.130.27 67 udp dhcps unknown
2554107.154.130.27 68 tcp dhcpc filtered
2555107.154.130.27 68 udp dhcpc unknown
2556107.154.130.27 69 tcp tftp filtered
2557107.154.130.27 69 udp tftp unknown
2558107.154.130.27 88 tcp http open Incapsula CDN httpd
2559107.154.130.27 88 udp kerberos-sec unknown
2560107.154.130.27 123 tcp ntp filtered
2561107.154.130.27 123 udp ntp unknown
2562107.154.130.27 137 tcp netbios-ns filtered
2563107.154.130.27 137 udp netbios-ns filtered
2564107.154.130.27 138 tcp netbios-dgm filtered
2565107.154.130.27 138 udp netbios-dgm filtered
2566107.154.130.27 139 tcp netbios-ssn closed
2567107.154.130.27 139 udp netbios-ssn unknown
2568107.154.130.27 161 tcp snmp filtered
2569107.154.130.27 161 udp snmp unknown
2570107.154.130.27 162 tcp snmptrap filtered
2571107.154.130.27 162 udp snmptrap unknown
2572107.154.130.27 389 tcp ssl/http open Incapsula CDN httpd
2573107.154.130.27 389 udp ldap unknown
2574107.154.130.27 520 tcp efs filtered
2575107.154.130.27 520 udp route unknown
2576107.154.130.27 2049 tcp http open Incapsula CDN httpd
2577107.154.130.27 2049 udp nfs unknown
2578107.154.248.27 53 tcp domain open
2579107.154.248.27 80 tcp http open Incapsula CDN httpd
2580107.154.248.27 81 tcp http open Incapsula CDN httpd
2581107.154.248.27 85 tcp http open Incapsula CDN httpd
2582107.154.248.27 88 tcp http open Incapsula CDN httpd
2583107.154.248.27 389 tcp ssl/http open Incapsula CDN httpd
2584107.154.248.27 443 tcp ssl/http open Incapsula CDN httpd
2585107.154.248.27 444 tcp ssl/http open Incapsula CDN httpd
2586107.154.248.27 446 tcp http open Incapsula CDN httpd
2587107.154.248.27 587 tcp http open Incapsula CDN httpd
2588107.154.248.27 631 tcp http open Incapsula CDN httpd
2589107.154.248.27 888 tcp http open Incapsula CDN httpd
2590107.154.248.27 995 tcp ssl/http open Incapsula CDN httpd
2591107.154.248.27 998 tcp ssl/http open Incapsula CDN httpd
2592107.154.248.27 999 tcp http open Incapsula CDN httpd
2593107.154.248.27 1000 tcp http open Incapsula CDN httpd
2594107.154.248.27 1024 tcp http open Incapsula CDN httpd
2595107.154.248.27 1103 tcp http open Incapsula CDN httpd
2596107.154.248.27 1234 tcp http open Incapsula CDN httpd
2597107.154.248.27 1433 tcp http open Incapsula CDN httpd
2598107.154.248.27 1494 tcp http open Incapsula CDN httpd
2599107.154.248.27 2000 tcp ssl/http open Incapsula CDN httpd
2600107.154.248.27 2001 tcp http open Incapsula CDN httpd
2601107.154.248.27 2049 tcp http open Incapsula CDN httpd
2602107.154.248.27 2067 tcp http open Incapsula CDN httpd
2603107.154.248.27 2100 tcp ssl/http open Incapsula CDN httpd
2604107.154.248.27 2222 tcp http open Incapsula CDN httpd
2605107.154.248.27 2598 tcp http open Incapsula CDN httpd
2606107.154.248.27 3000 tcp http open Incapsula CDN httpd
2607107.154.248.27 3050 tcp http open Incapsula CDN httpd
2608107.154.248.27 3057 tcp http open Incapsula CDN httpd
2609107.154.248.27 3299 tcp http open Incapsula CDN httpd
2610107.154.248.27 3306 tcp ssl/http open Incapsula CDN httpd
2611107.154.248.27 3333 tcp http open Incapsula CDN httpd
2612107.154.248.27 3389 tcp ssl/http open Incapsula CDN httpd
2613107.154.248.27 3500 tcp http open Incapsula CDN httpd
2614107.154.248.27 3790 tcp http open Incapsula CDN httpd
2615107.154.248.27 4000 tcp http open Incapsula CDN httpd
2616107.154.248.27 4444 tcp ssl/http open Incapsula CDN httpd
2617107.154.248.27 4445 tcp ssl/http open Incapsula CDN httpd
2618107.154.248.27 5000 tcp http open Incapsula CDN httpd
2619107.154.248.27 5009 tcp http open Incapsula CDN httpd
2620107.154.248.27 5060 tcp ssl/http open Incapsula CDN httpd
2621107.154.248.27 5061 tcp ssl/http open Incapsula CDN httpd
2622107.154.248.27 5227 tcp ssl/http open Incapsula CDN httpd
2623107.154.248.27 5247 tcp ssl/http open Incapsula CDN httpd
2624107.154.248.27 5250 tcp ssl/http open Incapsula CDN httpd
2625107.154.248.27 5555 tcp http open Incapsula CDN httpd
2626107.154.248.27 5900 tcp http open Incapsula CDN httpd
2627107.154.248.27 5901 tcp ssl/http open Incapsula CDN httpd
2628107.154.248.27 5902 tcp ssl/http open Incapsula CDN httpd
2629107.154.248.27 5903 tcp ssl/http open Incapsula CDN httpd
2630107.154.248.27 5904 tcp ssl/http open Incapsula CDN httpd
2631107.154.248.27 5905 tcp ssl/http open Incapsula CDN httpd
2632107.154.248.27 5906 tcp ssl/http open Incapsula CDN httpd
2633107.154.248.27 5907 tcp ssl/http open Incapsula CDN httpd
2634107.154.248.27 5908 tcp ssl/http open Incapsula CDN httpd
2635107.154.248.27 5909 tcp ssl/http open Incapsula CDN httpd
2636107.154.248.27 5910 tcp ssl/http open Incapsula CDN httpd
2637107.154.248.27 5920 tcp ssl/http open Incapsula CDN httpd
2638107.154.248.27 5984 tcp ssl/http open Incapsula CDN httpd
2639107.154.248.27 5985 tcp http open Incapsula CDN httpd
2640107.154.248.27 5986 tcp ssl/http open Incapsula CDN httpd
2641107.154.248.27 5999 tcp ssl/http open Incapsula CDN httpd
2642107.154.248.27 6000 tcp http open Incapsula CDN httpd
2643107.154.248.27 6060 tcp http open Incapsula CDN httpd
2644107.154.248.27 6161 tcp http open Incapsula CDN httpd
2645107.154.248.27 6379 tcp http open Incapsula CDN httpd
2646107.154.248.27 6661 tcp ssl/http open Incapsula CDN httpd
2647107.154.248.27 6789 tcp http open Incapsula CDN httpd
2648107.154.248.27 7000 tcp ssl/http open Incapsula CDN httpd
2649107.154.248.27 7001 tcp http open Incapsula CDN httpd
2650107.154.248.27 7021 tcp http open Incapsula CDN httpd
2651107.154.248.27 7071 tcp ssl/http open Incapsula CDN httpd
2652107.154.248.27 7080 tcp http open Incapsula CDN httpd
2653107.154.248.27 7272 tcp ssl/http open Incapsula CDN httpd
2654107.154.248.27 7443 tcp ssl/http open Incapsula CDN httpd
2655107.154.248.27 7700 tcp http open Incapsula CDN httpd
2656107.154.248.27 7777 tcp http open Incapsula CDN httpd
2657107.154.248.27 7778 tcp http open Incapsula CDN httpd
2658107.154.248.27 8000 tcp http open Incapsula CDN httpd
2659107.154.248.27 8001 tcp http open Incapsula CDN httpd
2660107.154.248.27 8008 tcp http open Incapsula CDN httpd
2661107.154.248.27 8014 tcp http open Incapsula CDN httpd
2662107.154.248.27 8020 tcp http open Incapsula CDN httpd
2663107.154.248.27 8023 tcp http open Incapsula CDN httpd
2664107.154.248.27 8028 tcp http open Incapsula CDN httpd
2665107.154.248.27 8030 tcp http open Incapsula CDN httpd
2666107.154.248.27 8050 tcp http open Incapsula CDN httpd
2667107.154.248.27 8051 tcp http open Incapsula CDN httpd
2668107.154.248.27 8080 tcp http open Incapsula CDN httpd
2669107.154.248.27 8081 tcp http open Incapsula CDN httpd
2670107.154.248.27 8082 tcp http open Incapsula CDN httpd
2671107.154.248.27 8085 tcp http open Incapsula CDN httpd
2672107.154.248.27 8086 tcp http open Incapsula CDN httpd
2673107.154.248.27 8087 tcp http open Incapsula CDN httpd
2674107.154.248.27 8088 tcp http open Incapsula CDN httpd
2675107.154.248.27 8090 tcp http open Incapsula CDN httpd
2676107.154.248.27 8091 tcp http open Incapsula CDN httpd
2677107.154.248.27 8095 tcp http open Incapsula CDN httpd
2678107.154.248.27 8101 tcp http open Incapsula CDN httpd
2679107.154.248.27 8161 tcp http open Incapsula CDN httpd
2680107.154.248.27 8180 tcp http open Incapsula CDN httpd
2681107.154.248.27 8222 tcp http open Incapsula CDN httpd
2682107.154.248.27 8333 tcp http open Incapsula CDN httpd
2683107.154.248.27 8443 tcp ssl/http open Incapsula CDN httpd
2684107.154.248.27 8444 tcp http open Incapsula CDN httpd
2685107.154.248.27 8445 tcp http open Incapsula CDN httpd
2686107.154.248.27 8503 tcp ssl/http open Incapsula CDN httpd
2687107.154.248.27 8686 tcp http open Incapsula CDN httpd
2688107.154.248.27 8787 tcp http open Incapsula CDN httpd
2689107.154.248.27 8800 tcp http open Incapsula CDN httpd
2690107.154.248.27 8812 tcp http open Incapsula CDN httpd
2691107.154.248.27 8834 tcp http open Incapsula CDN httpd
2692107.154.248.27 8880 tcp http open Incapsula CDN httpd
2693107.154.248.27 8888 tcp http open Incapsula CDN httpd
2694107.154.248.27 8889 tcp http open Incapsula CDN httpd
2695107.154.248.27 8890 tcp http open Incapsula CDN httpd
2696107.154.248.27 8899 tcp http open Incapsula CDN httpd
2697107.154.248.27 9000 tcp http open Incapsula CDN httpd
2698107.154.248.27 9001 tcp http open Incapsula CDN httpd
2699107.154.248.27 9002 tcp http open Incapsula CDN httpd
2700107.154.248.27 9003 tcp http open Incapsula CDN httpd
2701107.154.248.27 9004 tcp http open Incapsula CDN httpd
2702107.154.248.27 9005 tcp http open Incapsula CDN httpd
2703107.154.248.27 9010 tcp http open Incapsula CDN httpd
2704107.154.248.27 9050 tcp http open Incapsula CDN httpd
2705107.154.248.27 9080 tcp http open Incapsula CDN httpd
2706107.154.248.27 9081 tcp ssl/http open Incapsula CDN httpd
2707107.154.248.27 9084 tcp http open Incapsula CDN httpd
2708107.154.248.27 9090 tcp http open Incapsula CDN httpd
2709107.154.248.27 9099 tcp http open Incapsula CDN httpd
2710107.154.248.27 9100 tcp jetdirect open
2711107.154.248.27 9111 tcp http open Incapsula CDN httpd
2712107.154.248.27 9200 tcp http open Incapsula CDN httpd
2713107.154.248.27 9300 tcp http open Incapsula CDN httpd
2714107.154.248.27 9500 tcp http open Incapsula CDN httpd
2715107.154.248.27 9711 tcp ssl/http open Incapsula CDN httpd
2716107.154.248.27 9991 tcp http open Incapsula CDN httpd
2717107.154.248.27 9999 tcp http open Incapsula CDN httpd
2718107.154.248.27 10000 tcp http open Incapsula CDN httpd
2719107.154.248.27 10001 tcp http open Incapsula CDN httpd
2720107.154.248.27 10008 tcp http open Incapsula CDN httpd
2721107.154.248.27 10443 tcp ssl/http open Incapsula CDN httpd
2722107.154.248.27 11001 tcp ssl/http open Incapsula CDN httpd
2723107.154.248.27 12174 tcp http open Incapsula CDN httpd
2724107.154.248.27 12203 tcp http open Incapsula CDN httpd
2725107.154.248.27 12221 tcp http open Incapsula CDN httpd
2726107.154.248.27 12345 tcp http open Incapsula CDN httpd
2727107.154.248.27 12397 tcp http open Incapsula CDN httpd
2728107.154.248.27 12401 tcp http open Incapsula CDN httpd
2729107.154.248.27 14330 tcp http open Incapsula CDN httpd
2730107.154.248.27 16000 tcp http open Incapsula CDN httpd
2731107.154.248.27 20000 tcp http open Incapsula CDN httpd
2732107.154.248.27 20010 tcp ssl/http open Incapsula CDN httpd
2733107.154.248.27 25000 tcp ssl/http open Incapsula CDN httpd
2734107.154.248.27 30000 tcp http open Incapsula CDN httpd
2735107.154.248.27 44334 tcp ssl/http open Incapsula CDN httpd
2736107.154.248.27 50000 tcp http open Incapsula CDN httpd
2737107.154.248.27 50001 tcp ssl/http open Incapsula CDN httpd
2738107.154.248.27 50050 tcp ssl/http open Incapsula CDN httpd
2739141.105.65.111 25 tcp smtp closed
2740141.105.65.111 53 tcp domain open ISC BIND 9.8.2rc1 RedHat Enterprise Linux 6
2741141.105.65.111 53 udp domain open ISC BIND 9.8.2rc1 RedHat Enterprise Linux 6
2742141.105.65.111 67 tcp dhcps filtered
2743141.105.65.111 67 udp dhcps unknown
2744141.105.65.111 68 tcp dhcpc filtered
2745141.105.65.111 68 udp dhcpc unknown
2746141.105.65.111 69 tcp tftp filtered
2747141.105.65.111 69 udp tftp unknown
2748141.105.65.111 88 tcp kerberos-sec filtered
2749141.105.65.111 88 udp kerberos-sec unknown
2750141.105.65.111 123 tcp ntp filtered
2751141.105.65.111 123 udp ntp unknown
2752141.105.65.111 137 tcp netbios-ns filtered
2753141.105.65.111 137 udp netbios-ns filtered
2754141.105.65.111 138 tcp netbios-dgm filtered
2755141.105.65.111 138 udp netbios-dgm filtered
2756141.105.65.111 139 tcp netbios-ssn closed
2757141.105.65.111 139 udp netbios-ssn unknown
2758141.105.65.111 161 tcp snmp filtered
2759141.105.65.111 161 udp snmp unknown
2760141.105.65.111 162 tcp snmptrap filtered
2761141.105.65.111 162 udp snmptrap unknown
2762141.105.65.111 389 tcp ldap filtered
2763141.105.65.111 389 udp ldap unknown
2764141.105.65.111 445 tcp microsoft-ds closed
2765141.105.65.111 520 tcp efs filtered
2766141.105.65.111 520 udp route unknown
2767141.105.65.111 2049 tcp nfs filtered
2768141.105.65.111 2049 udp nfs unknown
2769147.237.0.206 53 udp domain unknown
2770147.237.0.206 67 udp dhcps unknown
2771147.237.0.206 68 udp dhcpc unknown
2772147.237.0.206 69 udp tftp unknown
2773147.237.0.206 80 tcp http open
2774147.237.0.206 88 udp kerberos-sec unknown
2775147.237.0.206 123 udp ntp unknown
2776147.237.0.206 139 udp netbios-ssn unknown
2777147.237.0.206 161 udp snmp unknown
2778147.237.0.206 162 udp snmptrap unknown
2779147.237.0.206 389 udp ldap unknown
2780147.237.0.206 443 tcp ssl/https open
2781147.237.0.206 520 udp route unknown
2782147.237.0.206 2049 udp nfs unknown
2783150.95.250.133 25 tcp smtp closed
2784150.95.250.133 53 tcp domain filtered
2785150.95.250.133 53 udp domain unknown
2786150.95.250.133 67 tcp dhcps filtered
2787150.95.250.133 67 udp dhcps unknown
2788150.95.250.133 68 tcp dhcpc filtered
2789150.95.250.133 68 udp dhcpc unknown
2790150.95.250.133 69 tcp tftp filtered
2791150.95.250.133 69 udp tftp unknown
2792150.95.250.133 80 tcp http open nginx
2793150.95.250.133 88 tcp kerberos-sec filtered
2794150.95.250.133 88 udp kerberos-sec unknown
2795150.95.250.133 123 tcp ntp filtered
2796150.95.250.133 123 udp ntp unknown
2797150.95.250.133 137 tcp netbios-ns filtered
2798150.95.250.133 137 udp netbios-ns filtered
2799150.95.250.133 138 tcp netbios-dgm filtered
2800150.95.250.133 138 udp netbios-dgm filtered
2801150.95.250.133 139 tcp netbios-ssn closed
2802150.95.250.133 139 udp netbios-ssn unknown
2803150.95.250.133 161 tcp snmp filtered
2804150.95.250.133 161 udp snmp unknown
2805150.95.250.133 162 tcp snmptrap filtered
2806150.95.250.133 162 udp snmptrap unknown
2807150.95.250.133 389 tcp ldap filtered
2808150.95.250.133 389 udp ldap unknown
2809150.95.250.133 443 tcp ssl/http open nginx
2810150.95.250.133 445 tcp microsoft-ds closed
2811150.95.250.133 520 tcp efs filtered
2812150.95.250.133 520 udp route unknown
2813150.95.250.133 2049 tcp nfs filtered
2814150.95.250.133 2049 udp nfs unknown
2815151.139.243.11 25 tcp smtp closed
2816151.139.243.11 53 tcp domain filtered
2817151.139.243.11 53 udp domain unknown
2818151.139.243.11 67 tcp dhcps filtered
2819151.139.243.11 67 udp dhcps unknown
2820151.139.243.11 68 tcp dhcpc filtered
2821151.139.243.11 68 udp dhcpc unknown
2822151.139.243.11 69 tcp tftp filtered
2823151.139.243.11 69 udp tftp unknown
2824151.139.243.11 80 tcp http open Varnish
2825151.139.243.11 88 tcp kerberos-sec filtered
2826151.139.243.11 88 udp kerberos-sec unknown
2827151.139.243.11 123 tcp ntp filtered
2828151.139.243.11 123 udp ntp unknown
2829151.139.243.11 137 tcp netbios-ns filtered
2830151.139.243.11 137 udp netbios-ns filtered
2831151.139.243.11 138 tcp netbios-dgm filtered
2832151.139.243.11 138 udp netbios-dgm filtered
2833151.139.243.11 139 tcp netbios-ssn closed
2834151.139.243.11 139 udp netbios-ssn unknown
2835151.139.243.11 161 tcp snmp filtered
2836151.139.243.11 161 udp snmp unknown
2837151.139.243.11 162 tcp snmptrap filtered
2838151.139.243.11 162 udp snmptrap unknown
2839151.139.243.11 389 tcp ldap filtered
2840151.139.243.11 389 udp ldap unknown
2841151.139.243.11 443 tcp ssl/http open nginx
2842151.139.243.11 445 tcp microsoft-ds closed
2843151.139.243.11 520 tcp efs filtered
2844151.139.243.11 520 udp route unknown
2845151.139.243.11 2049 tcp nfs filtered
2846151.139.243.11 2049 udp nfs unknown
2847154.73.84.17 21 tcp ftp open 220 (vsFTPd 3.0.3)\x0d\x0a
2848157.7.107.254 25 tcp smtp closed
2849157.7.107.254 53 tcp domain filtered
2850157.7.107.254 53 udp domain unknown
2851157.7.107.254 67 tcp dhcps filtered
2852157.7.107.254 67 udp dhcps unknown
2853157.7.107.254 68 tcp dhcpc filtered
2854157.7.107.254 68 udp dhcpc filtered
2855157.7.107.254 69 tcp tftp filtered
2856157.7.107.254 69 udp tftp unknown
2857157.7.107.254 80 tcp http open Apache httpd
2858157.7.107.254 88 tcp kerberos-sec filtered
2859157.7.107.254 88 udp kerberos-sec unknown
2860157.7.107.254 123 tcp ntp filtered
2861157.7.107.254 123 udp ntp unknown
2862157.7.107.254 137 tcp netbios-ns filtered
2863157.7.107.254 137 udp netbios-ns filtered
2864157.7.107.254 138 tcp netbios-dgm filtered
2865157.7.107.254 138 udp netbios-dgm filtered
2866157.7.107.254 139 tcp netbios-ssn closed
2867157.7.107.254 139 udp netbios-ssn unknown
2868157.7.107.254 161 tcp snmp filtered
2869157.7.107.254 161 udp snmp unknown
2870157.7.107.254 162 tcp snmptrap filtered
2871157.7.107.254 162 udp snmptrap unknown
2872157.7.107.254 389 tcp ldap filtered
2873157.7.107.254 389 udp ldap filtered
2874157.7.107.254 443 tcp ssl/https open Apache
2875157.7.107.254 445 tcp microsoft-ds closed
2876157.7.107.254 520 tcp efs filtered
2877157.7.107.254 520 udp route unknown
2878157.7.107.254 2049 tcp nfs filtered
2879157.7.107.254 2049 udp nfs unknown
2880159.89.0.72 22 tcp ssh open SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.8
2881160.153.72.166 21 tcp ftp open Pure-FTPd
2882160.153.72.166 22 tcp ssh open OpenSSH 5.3 protocol 2.0
2883160.153.72.166 53 udp domain unknown
2884160.153.72.166 67 udp dhcps unknown
2885160.153.72.166 68 udp dhcpc unknown
2886160.153.72.166 69 udp tftp unknown
2887160.153.72.166 80 tcp http open Apache httpd
2888160.153.72.166 88 udp kerberos-sec unknown
2889160.153.72.166 110 tcp pop3 open Dovecot pop3d
2890160.153.72.166 123 udp ntp unknown
2891160.153.72.166 139 udp netbios-ssn unknown
2892160.153.72.166 143 tcp imap open Dovecot imapd
2893160.153.72.166 161 udp snmp unknown
2894160.153.72.166 162 udp snmptrap unknown
2895160.153.72.166 389 udp ldap unknown
2896160.153.72.166 443 tcp ssl/http open Apache httpd
2897160.153.72.166 465 tcp ssl/smtp open Exim smtpd 4.92
2898160.153.72.166 520 udp route unknown
2899160.153.72.166 587 tcp smtp open Exim smtpd 4.92
2900160.153.72.166 993 tcp ssl/imaps open
2901160.153.72.166 995 tcp ssl/pop3s open
2902160.153.72.166 2049 udp nfs unknown
2903160.153.72.166 3306 tcp mysql open MySQL 5.6.44-cll-lve
2904163.247.52.17 25 tcp smtp closed
2905163.247.52.17 53 tcp domain filtered
2906163.247.52.17 53 udp domain unknown
2907163.247.52.17 67 tcp dhcps filtered
2908163.247.52.17 67 udp dhcps unknown
2909163.247.52.17 68 tcp dhcpc filtered
2910163.247.52.17 68 udp dhcpc unknown
2911163.247.52.17 69 tcp tftp filtered
2912163.247.52.17 69 udp tftp unknown
2913163.247.52.17 80 tcp http open Apache httpd
2914163.247.52.17 88 tcp kerberos-sec filtered
2915163.247.52.17 88 udp kerberos-sec unknown
2916163.247.52.17 113 tcp ident closed
2917163.247.52.17 123 tcp ntp filtered
2918163.247.52.17 123 udp ntp unknown
2919163.247.52.17 137 tcp netbios-ns filtered
2920163.247.52.17 137 udp netbios-ns filtered
2921163.247.52.17 138 tcp netbios-dgm filtered
2922163.247.52.17 138 udp netbios-dgm filtered
2923163.247.52.17 139 tcp netbios-ssn closed
2924163.247.52.17 139 udp netbios-ssn unknown
2925163.247.52.17 161 tcp snmp filtered
2926163.247.52.17 161 udp snmp unknown
2927163.247.52.17 162 tcp snmptrap filtered
2928163.247.52.17 162 udp snmptrap unknown
2929163.247.52.17 389 tcp ldap filtered
2930163.247.52.17 389 udp ldap unknown
2931163.247.52.17 443 tcp ssl/https open
2932163.247.52.17 445 tcp microsoft-ds closed
2933163.247.52.17 520 tcp efs filtered
2934163.247.52.17 520 udp route unknown
2935163.247.52.17 2049 tcp nfs filtered
2936163.247.52.17 2049 udp nfs unknown
2937163.247.96.10 25 tcp smtp closed
2938163.247.96.10 53 tcp domain filtered
2939163.247.96.10 53 udp domain unknown
2940163.247.96.10 67 tcp dhcps filtered
2941163.247.96.10 67 udp dhcps unknown
2942163.247.96.10 68 tcp dhcpc filtered
2943163.247.96.10 68 udp dhcpc unknown
2944163.247.96.10 69 tcp tftp filtered
2945163.247.96.10 69 udp tftp unknown
2946163.247.96.10 80 tcp http open Apache httpd 2.2.22
2947163.247.96.10 88 tcp kerberos-sec filtered
2948163.247.96.10 88 udp kerberos-sec unknown
2949163.247.96.10 113 tcp ident closed
2950163.247.96.10 123 tcp ntp filtered
2951163.247.96.10 123 udp ntp unknown
2952163.247.96.10 137 tcp netbios-ns filtered
2953163.247.96.10 137 udp netbios-ns filtered
2954163.247.96.10 138 tcp netbios-dgm filtered
2955163.247.96.10 138 udp netbios-dgm filtered
2956163.247.96.10 139 tcp netbios-ssn closed
2957163.247.96.10 139 udp netbios-ssn unknown
2958163.247.96.10 161 tcp snmp filtered
2959163.247.96.10 161 udp snmp unknown
2960163.247.96.10 162 tcp snmptrap filtered
2961163.247.96.10 162 udp snmptrap unknown
2962163.247.96.10 389 tcp ldap filtered
2963163.247.96.10 389 udp ldap unknown
2964163.247.96.10 445 tcp microsoft-ds closed
2965163.247.96.10 465 tcp ssl/smtp open Exim smtpd 4.X
2966163.247.96.10 520 tcp efs filtered
2967163.247.96.10 520 udp route unknown
2968163.247.96.10 587 tcp smtp open Exim smtpd
2969163.247.96.10 2000 tcp cisco-sccp open
2970163.247.96.10 2049 tcp nfs filtered
2971163.247.96.10 2049 udp nfs unknown
2972163.247.96.10 4443 tcp http open Apache httpd
2973163.247.96.10 5060 tcp sip open
2974170.246.172.178 21 tcp ftp open 220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------\x0d\x0a220-You are user number 2 of 50 allowed.\x0d\x0a220-Local time is now 23:38. Server port: 21.\x0d\x0a220-This is a private system - No anonymous login\x0d\x0a220-IPv6 connections are also welcome on this server.\x0d\x0a220 You will be disconnected after 15 minutes of inactivity.\x0d\x0a
2975170.246.172.178 25 tcp smtp closed
2976170.246.172.178 53 tcp domain open PowerDNS Authoritative Server 4.1.10
2977170.246.172.178 53 udp domain open PowerDNS Authoritative Server 4.1.10
2978170.246.172.178 67 tcp dhcps filtered
2979170.246.172.178 67 udp dhcps unknown
2980170.246.172.178 68 tcp dhcpc filtered
2981170.246.172.178 68 udp dhcpc unknown
2982170.246.172.178 69 tcp tftp filtered
2983170.246.172.178 69 udp tftp unknown
2984170.246.172.178 88 tcp kerberos-sec filtered
2985170.246.172.178 88 udp kerberos-sec unknown
2986170.246.172.178 123 tcp ntp filtered
2987170.246.172.178 123 udp ntp unknown
2988170.246.172.178 137 tcp netbios-ns filtered
2989170.246.172.178 137 udp netbios-ns filtered
2990170.246.172.178 138 tcp netbios-dgm filtered
2991170.246.172.178 138 udp netbios-dgm filtered
2992170.246.172.178 139 tcp netbios-ssn closed
2993170.246.172.178 139 udp netbios-ssn unknown
2994170.246.172.178 161 tcp snmp filtered
2995170.246.172.178 161 udp snmp unknown
2996170.246.172.178 162 tcp snmptrap filtered
2997170.246.172.178 162 udp snmptrap unknown
2998170.246.172.178 389 tcp ldap filtered
2999170.246.172.178 389 udp ldap unknown
3000170.246.172.178 445 tcp microsoft-ds closed
3001170.246.172.178 520 tcp efs filtered
3002170.246.172.178 520 udp route unknown
3003170.246.172.178 2049 tcp nfs filtered
3004170.246.172.178 2049 udp nfs unknown
3005180.222.81.193 21 tcp ftp open ProFTPD or KnFTPD
3006180.222.81.193 25 tcp smtp closed
3007180.222.81.193 53 tcp domain filtered
3008180.222.81.193 53 udp domain unknown
3009180.222.81.193 67 tcp dhcps filtered
3010180.222.81.193 67 udp dhcps unknown
3011180.222.81.193 68 tcp dhcpc filtered
3012180.222.81.193 68 udp dhcpc unknown
3013180.222.81.193 69 tcp tftp filtered
3014180.222.81.193 69 udp tftp unknown
3015180.222.81.193 80 tcp http open Apache httpd PHP 5.2.8
3016180.222.81.193 88 tcp kerberos-sec filtered
3017180.222.81.193 88 udp kerberos-sec unknown
3018180.222.81.193 110 tcp pop3 open qmail pop3d
3019180.222.81.193 113 tcp ident closed
3020180.222.81.193 123 tcp ntp filtered
3021180.222.81.193 123 udp ntp unknown
3022180.222.81.193 137 tcp netbios-ns filtered
3023180.222.81.193 137 udp netbios-ns filtered
3024180.222.81.193 138 tcp netbios-dgm filtered
3025180.222.81.193 138 udp netbios-dgm filtered
3026180.222.81.193 139 tcp netbios-ssn closed
3027180.222.81.193 139 udp netbios-ssn unknown
3028180.222.81.193 143 tcp imap open Courier Imapd released 2005
3029180.222.81.193 161 tcp snmp filtered
3030180.222.81.193 161 udp snmp unknown
3031180.222.81.193 162 tcp snmptrap filtered
3032180.222.81.193 162 udp snmptrap unknown
3033180.222.81.193 389 tcp ldap filtered
3034180.222.81.193 389 udp ldap unknown
3035180.222.81.193 443 tcp ssl/http open Apache httpd PHP 5.2.8
3036180.222.81.193 445 tcp microsoft-ds closed
3037180.222.81.193 465 tcp ssl/smtps open
3038180.222.81.193 520 tcp efs filtered
3039180.222.81.193 520 udp route unknown
3040180.222.81.193 587 tcp smtp open Access Remote PC smtpd
3041180.222.81.193 993 tcp ssl/imaps open
3042180.222.81.193 995 tcp ssl/pop3s open
3043180.222.81.193 2049 tcp nfs filtered
3044180.222.81.193 2049 udp nfs unknown
3045180.222.81.193 8080 tcp ssl/http open Apache httpd
3046184.72.111.210 25 tcp smtp closed
3047184.72.111.210 53 tcp domain filtered
3048184.72.111.210 53 udp domain unknown
3049184.72.111.210 67 tcp dhcps filtered
3050184.72.111.210 67 udp dhcps unknown
3051184.72.111.210 68 tcp dhcpc filtered
3052184.72.111.210 68 udp dhcpc unknown
3053184.72.111.210 69 tcp tftp filtered
3054184.72.111.210 69 udp tftp unknown
3055184.72.111.210 80 tcp http open Microsoft HTTPAPI httpd 2.0 SSDP/UPnP
3056184.72.111.210 88 tcp kerberos-sec filtered
3057184.72.111.210 88 udp kerberos-sec unknown
3058184.72.111.210 123 tcp ntp filtered
3059184.72.111.210 123 udp ntp unknown
3060184.72.111.210 137 tcp netbios-ns filtered
3061184.72.111.210 137 udp netbios-ns filtered
3062184.72.111.210 138 tcp netbios-dgm filtered
3063184.72.111.210 138 udp netbios-dgm filtered
3064184.72.111.210 139 tcp netbios-ssn closed
3065184.72.111.210 139 udp netbios-ssn unknown
3066184.72.111.210 161 tcp snmp filtered
3067184.72.111.210 161 udp snmp unknown
3068184.72.111.210 162 tcp snmptrap filtered
3069184.72.111.210 162 udp snmptrap unknown
3070184.72.111.210 389 tcp ldap filtered
3071184.72.111.210 389 udp ldap unknown
3072184.72.111.210 443 tcp ssl/http open Microsoft HTTPAPI httpd 2.0 SSDP/UPnP
3073184.72.111.210 445 tcp microsoft-ds closed
3074184.72.111.210 520 tcp efs filtered
3075184.72.111.210 520 udp route unknown
3076184.72.111.210 2049 tcp nfs filtered
3077184.72.111.210 2049 udp nfs unknown
3078185.2.4.98 21 tcp ftp open 220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------\x0d\x0a220-You are user number 1 of 300 allowed.\x0d\x0a220-Local time is now 17:27. Server port: 21.\x0d\x0a220-This is a private system - No anonymous login\x0d\x0a220-IPv6 connections are also welcome on this server.\x0d\x0a220 You will be disconnected after 60 seconds of inactivity.\x0d\x0a
3079185.2.4.98 25 tcp smtp closed
3080185.2.4.98 53 tcp domain filtered
3081185.2.4.98 53 udp domain unknown
3082185.2.4.98 67 tcp dhcps filtered
3083185.2.4.98 67 udp dhcps unknown
3084185.2.4.98 68 tcp dhcpc filtered
3085185.2.4.98 68 udp dhcpc unknown
3086185.2.4.98 69 tcp tftp filtered
3087185.2.4.98 69 udp tftp unknown
3088185.2.4.98 88 tcp kerberos-sec filtered
3089185.2.4.98 88 udp kerberos-sec unknown
3090185.2.4.98 123 tcp ntp filtered
3091185.2.4.98 123 udp ntp unknown
3092185.2.4.98 137 tcp netbios-ns filtered
3093185.2.4.98 137 udp netbios-ns filtered
3094185.2.4.98 138 tcp netbios-dgm filtered
3095185.2.4.98 138 udp netbios-dgm filtered
3096185.2.4.98 139 tcp netbios-ssn closed
3097185.2.4.98 139 udp netbios-ssn unknown
3098185.2.4.98 161 tcp snmp filtered
3099185.2.4.98 161 udp snmp unknown
3100185.2.4.98 162 tcp snmptrap filtered
3101185.2.4.98 162 udp snmptrap unknown
3102185.2.4.98 389 tcp ldap filtered
3103185.2.4.98 389 udp ldap unknown
3104185.2.4.98 445 tcp microsoft-ds closed
3105185.2.4.98 520 tcp efs filtered
3106185.2.4.98 520 udp route unknown
3107185.2.4.98 2049 tcp nfs filtered
3108185.2.4.98 2049 udp nfs unknown
3109185.68.93.22 22 tcp ssh open SSH-2.0-OpenSSH_5.3
3110185.68.93.22 53 tcp domain closed
3111185.68.93.22 53 udp domain unknown
3112185.68.93.22 67 tcp dhcps closed
3113185.68.93.22 67 udp dhcps closed
3114185.68.93.22 68 tcp dhcpc closed
3115185.68.93.22 68 udp dhcpc closed
3116185.68.93.22 69 tcp tftp closed
3117185.68.93.22 69 udp tftp unknown
3118185.68.93.22 88 tcp kerberos-sec closed
3119185.68.93.22 88 udp kerberos-sec unknown
3120185.68.93.22 123 tcp ntp closed
3121185.68.93.22 123 udp ntp closed
3122185.68.93.22 137 tcp netbios-ns closed
3123185.68.93.22 137 udp netbios-ns filtered
3124185.68.93.22 138 tcp netbios-dgm closed
3125185.68.93.22 138 udp netbios-dgm filtered
3126185.68.93.22 139 tcp netbios-ssn closed
3127185.68.93.22 139 udp netbios-ssn closed
3128185.68.93.22 161 tcp snmp closed
3129185.68.93.22 161 udp snmp unknown
3130185.68.93.22 162 tcp snmptrap closed
3131185.68.93.22 162 udp snmptrap closed
3132185.68.93.22 389 tcp ldap closed
3133185.68.93.22 389 udp ldap unknown
3134185.68.93.22 520 tcp efs closed
3135185.68.93.22 520 udp route unknown
3136185.68.93.22 2049 tcp nfs closed
3137185.68.93.22 2049 udp nfs closed
3138185.119.173.237 25 tcp smtp closed
3139185.119.173.237 53 tcp domain filtered
3140185.119.173.237 53 udp domain unknown
3141185.119.173.237 67 tcp dhcps filtered
3142185.119.173.237 67 udp dhcps unknown
3143185.119.173.237 68 tcp dhcpc filtered
3144185.119.173.237 68 udp dhcpc unknown
3145185.119.173.237 69 tcp tftp filtered
3146185.119.173.237 69 udp tftp unknown
3147185.119.173.237 80 tcp http open Apache httpd
3148185.119.173.237 88 tcp kerberos-sec filtered
3149185.119.173.237 88 udp kerberos-sec unknown
3150185.119.173.237 123 tcp ntp filtered
3151185.119.173.237 123 udp ntp unknown
3152185.119.173.237 137 tcp netbios-ns filtered
3153185.119.173.237 137 udp netbios-ns filtered
3154185.119.173.237 138 tcp netbios-dgm filtered
3155185.119.173.237 138 udp netbios-dgm filtered
3156185.119.173.237 139 tcp netbios-ssn closed
3157185.119.173.237 139 udp netbios-ssn unknown
3158185.119.173.237 161 tcp snmp filtered
3159185.119.173.237 161 udp snmp unknown
3160185.119.173.237 162 tcp snmptrap filtered
3161185.119.173.237 162 udp snmptrap unknown
3162185.119.173.237 389 tcp ldap filtered
3163185.119.173.237 389 udp ldap unknown
3164185.119.173.237 443 tcp ssl/http open Apache httpd
3165185.119.173.237 445 tcp microsoft-ds closed
3166185.119.173.237 520 tcp efs filtered
3167185.119.173.237 520 udp route unknown
3168185.119.173.237 2049 tcp nfs filtered
3169185.119.173.237 2049 udp nfs unknown
3170186.67.91.110 25 tcp smtp closed
3171186.67.91.110 53 tcp domain filtered
3172186.67.91.110 53 udp domain unknown
3173186.67.91.110 67 tcp dhcps filtered
3174186.67.91.110 67 udp dhcps unknown
3175186.67.91.110 68 tcp dhcpc filtered
3176186.67.91.110 68 udp dhcpc unknown
3177186.67.91.110 69 tcp tftp filtered
3178186.67.91.110 69 udp tftp unknown
3179186.67.91.110 80 tcp http-proxy open F5 BIG-IP load balancer http proxy
3180186.67.91.110 88 tcp kerberos-sec filtered
3181186.67.91.110 88 udp kerberos-sec unknown
3182186.67.91.110 123 tcp ntp filtered
3183186.67.91.110 123 udp ntp unknown
3184186.67.91.110 137 tcp netbios-ns filtered
3185186.67.91.110 137 udp netbios-ns filtered
3186186.67.91.110 138 tcp netbios-dgm filtered
3187186.67.91.110 138 udp netbios-dgm filtered
3188186.67.91.110 139 tcp netbios-ssn closed
3189186.67.91.110 139 udp netbios-ssn unknown
3190186.67.91.110 161 tcp snmp filtered
3191186.67.91.110 161 udp snmp unknown
3192186.67.91.110 162 tcp snmptrap filtered
3193186.67.91.110 162 udp snmptrap unknown
3194186.67.91.110 389 tcp ldap filtered
3195186.67.91.110 389 udp ldap unknown
3196186.67.91.110 443 tcp ssl/https open
3197186.67.91.110 445 tcp microsoft-ds closed
3198186.67.91.110 520 tcp efs filtered
3199186.67.91.110 520 udp route unknown
3200186.67.91.110 2049 tcp nfs filtered
3201186.67.91.110 2049 udp nfs unknown
3202192.0.78.12 25 tcp smtp closed
3203192.0.78.12 53 tcp domain filtered
3204192.0.78.12 53 udp domain unknown
3205192.0.78.12 67 tcp dhcps filtered
3206192.0.78.12 67 udp dhcps unknown
3207192.0.78.12 68 tcp dhcpc filtered
3208192.0.78.12 68 udp dhcpc unknown
3209192.0.78.12 69 tcp tftp filtered
3210192.0.78.12 69 udp tftp unknown
3211192.0.78.12 80 tcp http open nginx
3212192.0.78.12 88 tcp kerberos-sec filtered
3213192.0.78.12 88 udp kerberos-sec unknown
3214192.0.78.12 123 tcp ntp filtered
3215192.0.78.12 123 udp ntp unknown
3216192.0.78.12 137 tcp netbios-ns filtered
3217192.0.78.12 137 udp netbios-ns filtered
3218192.0.78.12 138 tcp netbios-dgm filtered
3219192.0.78.12 138 udp netbios-dgm filtered
3220192.0.78.12 139 tcp netbios-ssn closed
3221192.0.78.12 139 udp netbios-ssn unknown
3222192.0.78.12 161 tcp snmp filtered
3223192.0.78.12 161 udp snmp unknown
3224192.0.78.12 162 tcp snmptrap filtered
3225192.0.78.12 162 udp snmptrap unknown
3226192.0.78.12 389 tcp ldap filtered
3227192.0.78.12 389 udp ldap unknown
3228192.0.78.12 443 tcp ssl/http open nginx
3229192.0.78.12 445 tcp microsoft-ds closed
3230192.0.78.12 520 tcp efs filtered
3231192.0.78.12 520 udp route unknown
3232192.0.78.12 2049 tcp nfs filtered
3233192.0.78.12 2049 udp nfs unknown
3234192.0.78.13 25 tcp smtp closed
3235192.0.78.13 53 tcp domain filtered
3236192.0.78.13 53 udp domain unknown
3237192.0.78.13 67 tcp dhcps filtered
3238192.0.78.13 67 udp dhcps unknown
3239192.0.78.13 68 tcp dhcpc filtered
3240192.0.78.13 68 udp dhcpc unknown
3241192.0.78.13 69 tcp tftp filtered
3242192.0.78.13 69 udp tftp unknown
3243192.0.78.13 80 tcp http open nginx
3244192.0.78.13 88 tcp kerberos-sec filtered
3245192.0.78.13 88 udp kerberos-sec unknown
3246192.0.78.13 123 tcp ntp filtered
3247192.0.78.13 123 udp ntp unknown
3248192.0.78.13 137 tcp netbios-ns filtered
3249192.0.78.13 137 udp netbios-ns filtered
3250192.0.78.13 138 tcp netbios-dgm filtered
3251192.0.78.13 138 udp netbios-dgm filtered
3252192.0.78.13 139 tcp netbios-ssn closed
3253192.0.78.13 139 udp netbios-ssn unknown
3254192.0.78.13 161 tcp snmp filtered
3255192.0.78.13 161 udp snmp unknown
3256192.0.78.13 162 tcp snmptrap filtered
3257192.0.78.13 162 udp snmptrap unknown
3258192.0.78.13 389 tcp ldap filtered
3259192.0.78.13 389 udp ldap unknown
3260192.0.78.13 443 tcp ssl/http open nginx
3261192.0.78.13 445 tcp microsoft-ds closed
3262192.0.78.13 520 tcp efs filtered
3263192.0.78.13 520 udp route unknown
3264192.0.78.13 2049 tcp nfs filtered
3265192.0.78.13 2049 udp nfs unknown
3266194.18.73.2 25 tcp smtp closed
3267194.18.73.2 53 tcp domain filtered
3268194.18.73.2 53 udp domain unknown
3269194.18.73.2 67 tcp dhcps filtered
3270194.18.73.2 67 udp dhcps unknown
3271194.18.73.2 68 tcp dhcpc filtered
3272194.18.73.2 68 udp dhcpc unknown
3273194.18.73.2 69 tcp tftp filtered
3274194.18.73.2 69 udp tftp unknown
3275194.18.73.2 80 tcp http-proxy open HAProxy http proxy 1.3.1 or later
3276194.18.73.2 88 tcp kerberos-sec filtered
3277194.18.73.2 88 udp kerberos-sec unknown
3278194.18.73.2 113 tcp ident closed
3279194.18.73.2 123 tcp ntp filtered
3280194.18.73.2 123 udp ntp unknown
3281194.18.73.2 137 tcp netbios-ns filtered
3282194.18.73.2 137 udp netbios-ns filtered
3283194.18.73.2 138 tcp netbios-dgm filtered
3284194.18.73.2 138 udp netbios-dgm filtered
3285194.18.73.2 139 tcp netbios-ssn closed
3286194.18.73.2 139 udp netbios-ssn unknown
3287194.18.73.2 161 tcp snmp filtered
3288194.18.73.2 161 udp snmp unknown
3289194.18.73.2 162 tcp snmptrap filtered
3290194.18.73.2 162 udp snmptrap unknown
3291194.18.73.2 389 tcp ldap filtered
3292194.18.73.2 389 udp ldap unknown
3293194.18.73.2 443 tcp ssl/http-proxy open HAProxy http proxy 1.3.1 or later
3294194.18.73.2 445 tcp microsoft-ds closed
3295194.18.73.2 520 tcp efs filtered
3296194.18.73.2 520 udp route closed
3297194.18.73.2 2049 tcp nfs filtered
3298194.18.73.2 2049 udp nfs unknown
3299194.39.164.140 21 tcp ftp open ProFTPD
3300194.39.164.140 53 tcp domain filtered
3301194.39.164.140 53 udp domain unknown
3302194.39.164.140 67 tcp dhcps filtered
3303194.39.164.140 67 udp dhcps unknown
3304194.39.164.140 68 tcp dhcpc filtered
3305194.39.164.140 68 udp dhcpc unknown
3306194.39.164.140 69 tcp tftp filtered
3307194.39.164.140 69 udp tftp unknown
3308194.39.164.140 80 tcp http open nginx
3309194.39.164.140 88 tcp kerberos-sec filtered
3310194.39.164.140 88 udp kerberos-sec unknown
3311194.39.164.140 110 tcp pop3 open Courier pop3d
3312194.39.164.140 123 tcp ntp filtered
3313194.39.164.140 123 udp ntp unknown
3314194.39.164.140 137 tcp netbios-ns filtered
3315194.39.164.140 137 udp netbios-ns filtered
3316194.39.164.140 138 tcp netbios-dgm filtered
3317194.39.164.140 138 udp netbios-dgm filtered
3318194.39.164.140 139 tcp netbios-ssn closed
3319194.39.164.140 139 udp netbios-ssn unknown
3320194.39.164.140 161 tcp snmp filtered
3321194.39.164.140 161 udp snmp unknown
3322194.39.164.140 162 tcp snmptrap filtered
3323194.39.164.140 162 udp snmptrap unknown
3324194.39.164.140 389 tcp ldap filtered
3325194.39.164.140 389 udp ldap unknown
3326194.39.164.140 443 tcp ssl/http open nginx
3327194.39.164.140 465 tcp ssl/smtps open
3328194.39.164.140 520 tcp efs filtered
3329194.39.164.140 520 udp route unknown
3330194.39.164.140 587 tcp smtp open Postfix smtpd
3331194.39.164.140 993 tcp ssl/imaps open
3332194.39.164.140 2020 tcp ssh open OpenSSH 7.4 protocol 2.0
3333194.39.164.140 2049 tcp nfs filtered
3334194.39.164.140 2049 udp nfs unknown
3335194.39.164.140 8443 tcp ssl/https-alt open sw-cp-server
3336194.39.164.140 8880 tcp http open sw-cp-server httpd Plesk Onyx 17.8.11
3337200.14.67.43 25 tcp smtp closed
3338200.14.67.43 53 tcp domain filtered
3339200.14.67.43 53 udp domain unknown
3340200.14.67.43 67 tcp dhcps filtered
3341200.14.67.43 67 udp dhcps unknown
3342200.14.67.43 68 tcp dhcpc filtered
3343200.14.67.43 68 udp dhcpc unknown
3344200.14.67.43 69 tcp tftp filtered
3345200.14.67.43 69 udp tftp unknown
3346200.14.67.43 80 tcp http open nginx 1.16.1 Ubuntu
3347200.14.67.43 88 tcp kerberos-sec filtered
3348200.14.67.43 88 udp kerberos-sec unknown
3349200.14.67.43 123 tcp ntp filtered
3350200.14.67.43 123 udp ntp unknown
3351200.14.67.43 137 tcp netbios-ns filtered
3352200.14.67.43 137 udp netbios-ns filtered
3353200.14.67.43 138 tcp netbios-dgm filtered
3354200.14.67.43 138 udp netbios-dgm filtered
3355200.14.67.43 139 tcp netbios-ssn closed
3356200.14.67.43 139 udp netbios-ssn unknown
3357200.14.67.43 161 tcp snmp filtered
3358200.14.67.43 161 udp snmp unknown
3359200.14.67.43 162 tcp snmptrap filtered
3360200.14.67.43 162 udp snmptrap unknown
3361200.14.67.43 389 tcp ldap filtered
3362200.14.67.43 389 udp ldap unknown
3363200.14.67.43 443 tcp ssl/http open nginx 1.16.1 Ubuntu
3364200.14.67.43 445 tcp microsoft-ds closed
3365200.14.67.43 520 tcp efs filtered
3366200.14.67.43 520 udp route unknown
3367200.14.67.43 2049 tcp nfs filtered
3368200.14.67.43 2049 udp nfs unknown
3369200.14.67.65 25 tcp smtp closed
3370200.14.67.65 53 tcp domain filtered
3371200.14.67.65 53 udp domain unknown
3372200.14.67.65 67 tcp dhcps filtered
3373200.14.67.65 67 udp dhcps unknown
3374200.14.67.65 68 tcp dhcpc filtered
3375200.14.67.65 68 udp dhcpc unknown
3376200.14.67.65 69 tcp tftp filtered
3377200.14.67.65 69 udp tftp unknown
3378200.14.67.65 80 tcp http open nginx 1.16.1 Ubuntu
3379200.14.67.65 88 tcp kerberos-sec filtered
3380200.14.67.65 88 udp kerberos-sec unknown
3381200.14.67.65 123 tcp ntp filtered
3382200.14.67.65 123 udp ntp unknown
3383200.14.67.65 137 tcp netbios-ns filtered
3384200.14.67.65 137 udp netbios-ns filtered
3385200.14.67.65 138 tcp netbios-dgm filtered
3386200.14.67.65 138 udp netbios-dgm filtered
3387200.14.67.65 139 tcp netbios-ssn closed
3388200.14.67.65 139 udp netbios-ssn unknown
3389200.14.67.65 161 tcp snmp filtered
3390200.14.67.65 161 udp snmp unknown
3391200.14.67.65 162 tcp snmptrap filtered
3392200.14.67.65 162 udp snmptrap unknown
3393200.14.67.65 389 tcp ldap filtered
3394200.14.67.65 389 udp ldap unknown
3395200.14.67.65 443 tcp ssl/http open nginx 1.16.1 Ubuntu
3396200.14.67.65 445 tcp microsoft-ds closed
3397200.14.67.65 520 tcp efs filtered
3398200.14.67.65 520 udp route unknown
3399200.14.67.65 2049 tcp nfs filtered
3400200.14.67.65 2049 udp nfs unknown
3401200.35.157.77 53 tcp domain filtered
3402200.35.157.77 53 udp domain unknown
3403200.35.157.77 67 tcp dhcps filtered
3404200.35.157.77 67 udp dhcps unknown
3405200.35.157.77 68 tcp dhcpc filtered
3406200.35.157.77 68 udp dhcpc unknown
3407200.35.157.77 69 tcp tftp filtered
3408200.35.157.77 69 udp tftp unknown
3409200.35.157.77 88 tcp kerberos-sec filtered
3410200.35.157.77 88 udp kerberos-sec unknown
3411200.35.157.77 123 tcp ntp filtered
3412200.35.157.77 123 udp ntp unknown
3413200.35.157.77 137 tcp netbios-ns filtered
3414200.35.157.77 137 udp netbios-ns filtered
3415200.35.157.77 138 tcp netbios-dgm filtered
3416200.35.157.77 138 udp netbios-dgm filtered
3417200.35.157.77 139 tcp netbios-ssn closed
3418200.35.157.77 139 udp netbios-ssn unknown
3419200.35.157.77 161 tcp snmp filtered
3420200.35.157.77 161 udp snmp unknown
3421200.35.157.77 162 tcp snmptrap filtered
3422200.35.157.77 162 udp snmptrap unknown
3423200.35.157.77 389 tcp ldap filtered
3424200.35.157.77 389 udp ldap unknown
3425200.35.157.77 520 tcp efs filtered
3426200.35.157.77 520 udp route unknown
3427200.35.157.77 2049 tcp nfs filtered
3428200.35.157.77 2049 udp nfs unknown
3429201.131.38.40 25 tcp smtp closed
3430201.131.38.40 53 tcp domain filtered
3431201.131.38.40 53 udp domain unknown
3432201.131.38.40 67 tcp dhcps filtered
3433201.131.38.40 67 udp dhcps unknown
3434201.131.38.40 68 tcp dhcpc filtered
3435201.131.38.40 68 udp dhcpc unknown
3436201.131.38.40 69 tcp tftp filtered
3437201.131.38.40 69 udp tftp unknown
3438201.131.38.40 80 tcp http open Apache httpd
3439201.131.38.40 88 tcp kerberos-sec filtered
3440201.131.38.40 88 udp kerberos-sec unknown
3441201.131.38.40 123 tcp ntp filtered
3442201.131.38.40 123 udp ntp unknown
3443201.131.38.40 137 tcp netbios-ns filtered
3444201.131.38.40 137 udp netbios-ns filtered
3445201.131.38.40 138 tcp netbios-dgm filtered
3446201.131.38.40 138 udp netbios-dgm filtered
3447201.131.38.40 139 tcp netbios-ssn closed
3448201.131.38.40 139 udp netbios-ssn unknown
3449201.131.38.40 161 tcp snmp filtered
3450201.131.38.40 161 udp snmp unknown
3451201.131.38.40 162 tcp snmptrap filtered
3452201.131.38.40 162 udp snmptrap unknown
3453201.131.38.40 389 tcp ldap filtered
3454201.131.38.40 389 udp ldap unknown
3455201.131.38.40 443 tcp ssl/http open Apache httpd
3456201.131.38.40 445 tcp microsoft-ds closed
3457201.131.38.40 520 tcp efs filtered
3458201.131.38.40 520 udp route unknown
3459201.131.38.40 2049 tcp nfs filtered
3460201.131.38.40 2049 udp nfs unknown
3461201.238.246.43 21 tcp ftp open 220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------\x0d\x0a220-You are user number 1 of 50 allowed.\x0d\x0a220-Local time is now 05:39. Server port: 21.\x0d\x0a220-This is a private system - No anonymous login\x0d\x0a220-IPv6 connections are also welcome on this server.\x0d\x0a220 You will be disconnected after 15 minutes of inactivity.\x0d\x0a
3462201.238.246.43 25 tcp smtp closed
3463201.238.246.43 53 tcp domain filtered
3464201.238.246.43 53 udp domain unknown
3465201.238.246.43 67 tcp dhcps filtered
3466201.238.246.43 67 udp dhcps unknown
3467201.238.246.43 68 tcp dhcpc filtered
3468201.238.246.43 68 udp dhcpc unknown
3469201.238.246.43 69 tcp tftp filtered
3470201.238.246.43 69 udp tftp unknown
3471201.238.246.43 88 tcp kerberos-sec filtered
3472201.238.246.43 88 udp kerberos-sec unknown
3473201.238.246.43 113 tcp ident closed
3474201.238.246.43 123 tcp ntp filtered
3475201.238.246.43 123 udp ntp unknown
3476201.238.246.43 137 tcp netbios-ns filtered
3477201.238.246.43 137 udp netbios-ns filtered
3478201.238.246.43 138 tcp netbios-dgm filtered
3479201.238.246.43 138 udp netbios-dgm filtered
3480201.238.246.43 139 tcp netbios-ssn closed
3481201.238.246.43 139 udp netbios-ssn unknown
3482201.238.246.43 161 tcp snmp filtered
3483201.238.246.43 161 udp snmp unknown
3484201.238.246.43 162 tcp snmptrap filtered
3485201.238.246.43 162 udp snmptrap unknown
3486201.238.246.43 389 tcp ldap filtered
3487201.238.246.43 389 udp ldap unknown
3488201.238.246.43 445 tcp microsoft-ds closed
3489201.238.246.43 520 tcp efs filtered
3490201.238.246.43 520 udp route unknown
3491201.238.246.43 2049 tcp nfs filtered
3492201.238.246.43 2049 udp nfs unknown
3493202.214.194.138 25 tcp smtp closed
3494202.214.194.138 53 tcp domain filtered
3495202.214.194.138 53 udp domain unknown
3496202.214.194.138 67 tcp dhcps filtered
3497202.214.194.138 67 udp dhcps unknown
3498202.214.194.138 68 tcp dhcpc filtered
3499202.214.194.138 68 udp dhcpc unknown
3500202.214.194.138 69 tcp tftp filtered
3501202.214.194.138 69 udp tftp unknown
3502202.214.194.138 80 tcp http open
3503202.214.194.138 88 tcp kerberos-sec filtered
3504202.214.194.138 88 udp kerberos-sec unknown
3505202.214.194.138 123 tcp ntp filtered
3506202.214.194.138 123 udp ntp unknown
3507202.214.194.138 137 tcp netbios-ns filtered
3508202.214.194.138 137 udp netbios-ns filtered
3509202.214.194.138 138 tcp netbios-dgm filtered
3510202.214.194.138 138 udp netbios-dgm filtered
3511202.214.194.138 139 tcp netbios-ssn closed
3512202.214.194.138 139 udp netbios-ssn unknown
3513202.214.194.138 161 tcp snmp filtered
3514202.214.194.138 161 udp snmp unknown
3515202.214.194.138 162 tcp snmptrap filtered
3516202.214.194.138 162 udp snmptrap unknown
3517202.214.194.138 389 tcp ldap filtered
3518202.214.194.138 389 udp ldap unknown
3519202.214.194.138 443 tcp ssl/https open
3520202.214.194.138 445 tcp microsoft-ds closed
3521202.214.194.138 520 tcp efs filtered
3522202.214.194.138 520 udp route unknown
3523202.214.194.138 2049 tcp nfs filtered
3524202.214.194.138 2049 udp nfs unknown
3525202.238.130.103 25 tcp smtp closed
3526202.238.130.103 53 tcp domain filtered
3527202.238.130.103 53 udp domain unknown
3528202.238.130.103 67 tcp dhcps filtered
3529202.238.130.103 67 udp dhcps unknown
3530202.238.130.103 68 tcp dhcpc filtered
3531202.238.130.103 68 udp dhcpc unknown
3532202.238.130.103 69 tcp tftp filtered
3533202.238.130.103 69 udp tftp unknown
3534202.238.130.103 80 tcp http-proxy open F5 BIG-IP load balancer http proxy
3535202.238.130.103 88 tcp kerberos-sec filtered
3536202.238.130.103 88 udp kerberos-sec unknown
3537202.238.130.103 113 tcp ident closed
3538202.238.130.103 123 tcp ntp filtered
3539202.238.130.103 123 udp ntp unknown
3540202.238.130.103 137 tcp netbios-ns filtered
3541202.238.130.103 137 udp netbios-ns filtered
3542202.238.130.103 138 tcp netbios-dgm filtered
3543202.238.130.103 138 udp netbios-dgm filtered
3544202.238.130.103 139 tcp netbios-ssn closed
3545202.238.130.103 139 udp netbios-ssn unknown
3546202.238.130.103 161 tcp snmp filtered
3547202.238.130.103 161 udp snmp unknown
3548202.238.130.103 162 tcp snmptrap filtered
3549202.238.130.103 162 udp snmptrap unknown
3550202.238.130.103 389 tcp ldap filtered
3551202.238.130.103 389 udp ldap unknown
3552202.238.130.103 443 tcp ssl/http open Apache httpd
3553202.238.130.103 445 tcp microsoft-ds closed
3554202.238.130.103 520 tcp efs filtered
3555202.238.130.103 520 udp route unknown
3556202.238.130.103 2049 tcp nfs filtered
3557202.238.130.103 2049 udp nfs unknown
3558202.238.130.103 8008 tcp http open
3559203.137.110.66 21 tcp ftp open 220 203.137.110.66 FTP server ready\x0d\x0a
3560203.180.216.224 25 tcp smtp closed
3561203.180.216.224 53 tcp domain filtered
3562203.180.216.224 53 udp domain unknown
3563203.180.216.224 67 tcp dhcps filtered
3564203.180.216.224 67 udp dhcps unknown
3565203.180.216.224 68 tcp dhcpc filtered
3566203.180.216.224 68 udp dhcpc unknown
3567203.180.216.224 69 tcp tftp filtered
3568203.180.216.224 69 udp tftp unknown
3569203.180.216.224 80 tcp http open nginx
3570203.180.216.224 88 tcp kerberos-sec filtered
3571203.180.216.224 88 udp kerberos-sec unknown
3572203.180.216.224 123 tcp ntp filtered
3573203.180.216.224 123 udp ntp unknown
3574203.180.216.224 137 tcp netbios-ns filtered
3575203.180.216.224 137 udp netbios-ns filtered
3576203.180.216.224 138 tcp netbios-dgm filtered
3577203.180.216.224 138 udp netbios-dgm filtered
3578203.180.216.224 139 tcp netbios-ssn closed
3579203.180.216.224 139 udp netbios-ssn unknown
3580203.180.216.224 161 tcp snmp filtered
3581203.180.216.224 161 udp snmp unknown
3582203.180.216.224 162 tcp snmptrap filtered
3583203.180.216.224 162 udp snmptrap unknown
3584203.180.216.224 389 tcp ldap filtered
3585203.180.216.224 389 udp ldap unknown
3586203.180.216.224 443 tcp ssl/http open nginx
3587203.180.216.224 445 tcp microsoft-ds closed
3588203.180.216.224 520 tcp efs filtered
3589203.180.216.224 520 udp route unknown
3590203.180.216.224 2049 tcp nfs filtered
3591203.180.216.224 2049 udp nfs unknown
3592203.183.218.244 21 tcp ftp open 220 203.183.218.130 FTP server ready\x0d\x0a
3593208.113.216.185 25 tcp smtp closed
3594208.113.216.185 53 tcp domain filtered
3595208.113.216.185 53 udp domain unknown
3596208.113.216.185 67 tcp dhcps filtered
3597208.113.216.185 67 udp dhcps unknown
3598208.113.216.185 68 tcp dhcpc filtered
3599208.113.216.185 68 udp dhcpc unknown
3600208.113.216.185 69 tcp tftp filtered
3601208.113.216.185 69 udp tftp unknown
3602208.113.216.185 88 tcp kerberos-sec filtered
3603208.113.216.185 88 udp kerberos-sec unknown
3604208.113.216.185 123 tcp ntp filtered
3605208.113.216.185 123 udp ntp unknown
3606208.113.216.185 137 tcp netbios-ns filtered
3607208.113.216.185 137 udp netbios-ns filtered
3608208.113.216.185 138 tcp netbios-dgm filtered
3609208.113.216.185 138 udp netbios-dgm filtered
3610208.113.216.185 139 tcp netbios-ssn closed
3611208.113.216.185 139 udp netbios-ssn unknown
3612208.113.216.185 161 tcp snmp filtered
3613208.113.216.185 161 udp snmp unknown
3614208.113.216.185 162 tcp snmptrap filtered
3615208.113.216.185 162 udp snmptrap unknown
3616208.113.216.185 389 tcp ldap filtered
3617208.113.216.185 389 udp ldap unknown
3618208.113.216.185 445 tcp microsoft-ds closed
3619208.113.216.185 520 tcp efs filtered
3620208.113.216.185 520 udp route unknown
3621208.113.216.185 2049 tcp nfs filtered
3622208.113.216.185 2049 udp nfs unknown
3623208.113.220.218 25 tcp smtp closed
3624208.113.220.218 53 tcp domain filtered
3625208.113.220.218 53 udp domain unknown
3626208.113.220.218 67 tcp dhcps filtered
3627208.113.220.218 67 udp dhcps unknown
3628208.113.220.218 68 tcp dhcpc filtered
3629208.113.220.218 68 udp dhcpc unknown
3630208.113.220.218 69 tcp tftp filtered
3631208.113.220.218 69 udp tftp unknown
3632208.113.220.218 88 tcp kerberos-sec filtered
3633208.113.220.218 88 udp kerberos-sec unknown
3634208.113.220.218 123 tcp ntp filtered
3635208.113.220.218 123 udp ntp unknown
3636208.113.220.218 137 tcp netbios-ns filtered
3637208.113.220.218 137 udp netbios-ns filtered
3638208.113.220.218 138 tcp netbios-dgm filtered
3639208.113.220.218 138 udp netbios-dgm filtered
3640208.113.220.218 139 tcp netbios-ssn closed
3641208.113.220.218 139 udp netbios-ssn unknown
3642208.113.220.218 161 tcp snmp filtered
3643208.113.220.218 161 udp snmp unknown
3644208.113.220.218 162 tcp snmptrap filtered
3645208.113.220.218 162 udp snmptrap unknown
3646208.113.220.218 389 tcp ldap filtered
3647208.113.220.218 389 udp ldap unknown
3648208.113.220.218 445 tcp microsoft-ds closed
3649208.113.220.218 520 tcp efs filtered
3650208.113.220.218 520 udp route unknown
3651208.113.220.218 2049 tcp nfs filtered
3652208.113.220.218 2049 udp nfs unknown
3653209.59.165.178 25 tcp smtp closed
3654209.59.165.178 53 tcp domain filtered PowerDNS Authoritative Server 4.1.10
3655209.59.165.178 53 udp domain unknown PowerDNS Authoritative Server 4.1.10
3656209.59.165.178 67 tcp dhcps filtered
3657209.59.165.178 67 udp dhcps unknown
3658209.59.165.178 68 tcp dhcpc filtered
3659209.59.165.178 68 udp dhcpc unknown
3660209.59.165.178 69 tcp tftp filtered
3661209.59.165.178 69 udp tftp unknown
3662209.59.165.178 88 tcp kerberos-sec filtered
3663209.59.165.178 88 udp kerberos-sec unknown
3664209.59.165.178 123 tcp ntp filtered
3665209.59.165.178 123 udp ntp unknown
3666209.59.165.178 137 tcp netbios-ns filtered
3667209.59.165.178 137 udp netbios-ns filtered
3668209.59.165.178 138 tcp netbios-dgm filtered
3669209.59.165.178 138 udp netbios-dgm filtered
3670209.59.165.178 139 tcp netbios-ssn closed
3671209.59.165.178 139 udp netbios-ssn unknown
3672209.59.165.178 161 tcp snmp filtered
3673209.59.165.178 161 udp snmp unknown
3674209.59.165.178 162 tcp snmptrap filtered
3675209.59.165.178 162 udp snmptrap unknown
3676209.59.165.178 389 tcp ldap filtered
3677209.59.165.178 389 udp ldap unknown
3678209.59.165.178 445 tcp microsoft-ds closed
3679209.59.165.178 520 tcp efs filtered
3680209.59.165.178 520 udp route unknown
3681209.59.165.178 2049 tcp nfs filtered
3682209.59.165.178 2049 udp nfs unknown
3683210.149.141.34 53 tcp domain filtered
3684210.149.141.34 53 udp domain unknown
3685210.149.141.34 67 tcp dhcps filtered
3686210.149.141.34 67 udp dhcps unknown
3687210.149.141.34 68 tcp dhcpc filtered
3688210.149.141.34 68 udp dhcpc unknown
3689210.149.141.34 69 tcp tftp filtered
3690210.149.141.34 69 udp tftp unknown
3691210.149.141.34 88 tcp kerberos-sec filtered
3692210.149.141.34 88 udp kerberos-sec unknown
3693210.149.141.34 123 tcp ntp filtered
3694210.149.141.34 123 udp ntp unknown
3695210.149.141.34 137 tcp netbios-ns filtered
3696210.149.141.34 137 udp netbios-ns filtered
3697210.149.141.34 138 tcp netbios-dgm filtered
3698210.149.141.34 138 udp netbios-dgm filtered
3699210.149.141.34 139 tcp netbios-ssn closed
3700210.149.141.34 139 udp netbios-ssn unknown
3701210.149.141.34 161 tcp snmp filtered
3702210.149.141.34 161 udp snmp unknown
3703210.149.141.34 162 tcp snmptrap filtered
3704210.149.141.34 162 udp snmptrap unknown
3705210.149.141.34 389 tcp ldap filtered
3706210.149.141.34 389 udp ldap unknown
3707210.149.141.34 520 tcp efs filtered
3708210.149.141.34 520 udp route unknown
3709210.149.141.34 2049 tcp nfs filtered
3710210.149.141.34 2049 udp nfs unknown
3711210.152.243.182 21 tcp ftp open 220 (vsFTPd 2.2.2)\x0d\x0a
3712210.160.220.105 53 tcp domain closed
3713210.160.220.105 53 udp domain unknown
3714210.160.220.105 67 tcp dhcps closed
3715210.160.220.105 67 udp dhcps unknown
3716210.160.220.105 68 tcp dhcpc closed
3717210.160.220.105 68 udp dhcpc unknown
3718210.160.220.105 69 tcp tftp filtered
3719210.160.220.105 69 udp tftp unknown
3720210.160.220.105 88 tcp kerberos-sec closed
3721210.160.220.105 88 udp kerberos-sec unknown
3722210.160.220.105 123 tcp ntp filtered
3723210.160.220.105 123 udp ntp unknown
3724210.160.220.105 137 tcp netbios-ns closed
3725210.160.220.105 137 udp netbios-ns filtered
3726210.160.220.105 138 tcp netbios-dgm closed
3727210.160.220.105 138 udp netbios-dgm filtered
3728210.160.220.105 139 tcp netbios-ssn closed
3729210.160.220.105 139 udp netbios-ssn unknown
3730210.160.220.105 161 tcp snmp closed
3731210.160.220.105 161 udp snmp unknown
3732210.160.220.105 162 tcp snmptrap filtered
3733210.160.220.105 162 udp snmptrap unknown
3734210.160.220.105 389 tcp ldap closed
3735210.160.220.105 389 udp ldap unknown
3736210.160.220.105 520 tcp efs closed
3737210.160.220.105 520 udp route unknown
3738210.160.220.105 2049 tcp nfs closed
3739210.160.220.105 2049 udp nfs unknown
3740210.160.220.113 53 tcp domain closed
3741210.160.220.113 53 udp domain unknown
3742210.160.220.113 67 tcp dhcps closed
3743210.160.220.113 67 udp dhcps unknown
3744210.160.220.113 68 tcp dhcpc closed
3745210.160.220.113 68 udp dhcpc unknown
3746210.160.220.113 69 tcp tftp closed
3747210.160.220.113 69 udp tftp unknown
3748210.160.220.113 88 tcp kerberos-sec filtered
3749210.160.220.113 88 udp kerberos-sec unknown
3750210.160.220.113 123 tcp ntp filtered
3751210.160.220.113 123 udp ntp unknown
3752210.160.220.113 137 tcp netbios-ns closed
3753210.160.220.113 137 udp netbios-ns filtered
3754210.160.220.113 138 tcp netbios-dgm closed
3755210.160.220.113 138 udp netbios-dgm filtered
3756210.160.220.113 139 tcp netbios-ssn closed
3757210.160.220.113 139 udp netbios-ssn unknown
3758210.160.220.113 161 tcp snmp closed
3759210.160.220.113 161 udp snmp unknown
3760210.160.220.113 162 tcp snmptrap closed
3761210.160.220.113 162 udp snmptrap unknown
3762210.160.220.113 389 tcp ldap filtered
3763210.160.220.113 389 udp ldap unknown
3764210.160.220.113 520 tcp efs closed
3765210.160.220.113 520 udp route unknown
3766210.160.220.113 2049 tcp nfs closed
3767210.160.220.113 2049 udp nfs unknown
3768210.226.36.2 25 tcp smtp closed
3769210.226.36.2 53 tcp domain filtered
3770210.226.36.2 53 udp domain unknown
3771210.226.36.2 67 tcp dhcps filtered
3772210.226.36.2 67 udp dhcps unknown
3773210.226.36.2 68 tcp dhcpc filtered
3774210.226.36.2 68 udp dhcpc unknown
3775210.226.36.2 69 tcp tftp filtered
3776210.226.36.2 69 udp tftp unknown
3777210.226.36.2 80 tcp http open Apache httpd 1.3.41 (Unix) PHP/3.0.18-i18n-ja-3
3778210.226.36.2 88 tcp kerberos-sec filtered
3779210.226.36.2 88 udp kerberos-sec unknown
3780210.226.36.2 123 tcp ntp filtered
3781210.226.36.2 123 udp ntp unknown
3782210.226.36.2 137 tcp netbios-ns filtered
3783210.226.36.2 137 udp netbios-ns filtered
3784210.226.36.2 138 tcp netbios-dgm filtered
3785210.226.36.2 138 udp netbios-dgm filtered
3786210.226.36.2 139 tcp netbios-ssn closed
3787210.226.36.2 139 udp netbios-ssn unknown
3788210.226.36.2 161 tcp snmp filtered
3789210.226.36.2 161 udp snmp unknown
3790210.226.36.2 162 tcp snmptrap filtered
3791210.226.36.2 162 udp snmptrap unknown
3792210.226.36.2 389 tcp ldap filtered
3793210.226.36.2 389 udp ldap unknown
3794210.226.36.2 445 tcp microsoft-ds closed
3795210.226.36.2 520 tcp efs filtered
3796210.226.36.2 520 udp route unknown
3797210.226.36.2 2049 tcp nfs filtered
3798210.226.36.2 2049 udp nfs unknown
3799217.160.131.142 21 tcp ftp open ProFTPD
3800217.160.131.142 22 tcp ssh open OpenSSH 5.3 protocol 2.0
3801217.160.131.142 53 tcp domain closed
3802217.160.131.142 53 udp domain unknown
3803217.160.131.142 67 tcp dhcps closed
3804217.160.131.142 67 udp dhcps unknown
3805217.160.131.142 68 tcp dhcpc closed
3806217.160.131.142 68 udp dhcpc closed
3807217.160.131.142 69 tcp tftp closed
3808217.160.131.142 69 udp tftp unknown
3809217.160.131.142 80 tcp http open Apache httpd PleskLin
3810217.160.131.142 88 tcp kerberos-sec closed
3811217.160.131.142 88 udp kerberos-sec unknown
3812217.160.131.142 123 tcp ntp closed
3813217.160.131.142 123 udp ntp unknown
3814217.160.131.142 137 tcp netbios-ns closed
3815217.160.131.142 137 udp netbios-ns filtered
3816217.160.131.142 138 tcp netbios-dgm closed
3817217.160.131.142 138 udp netbios-dgm filtered
3818217.160.131.142 139 tcp netbios-ssn closed
3819217.160.131.142 139 udp netbios-ssn closed
3820217.160.131.142 161 tcp snmp closed
3821217.160.131.142 161 udp snmp unknown
3822217.160.131.142 162 tcp snmptrap closed
3823217.160.131.142 162 udp snmptrap closed
3824217.160.131.142 389 tcp ldap closed
3825217.160.131.142 389 udp ldap closed
3826217.160.131.142 443 tcp ssl/http open Apache httpd PleskLin
3827217.160.131.142 520 tcp efs closed
3828217.160.131.142 520 udp route unknown
3829217.160.131.142 2049 tcp nfs closed
3830217.160.131.142 2049 udp nfs closed
3831217.160.131.142 3306 tcp mysql open MySQL 5.1.73
3832217.160.131.142 4643 tcp ssl/http open Apache httpd
3833217.160.131.142 8443 tcp ssl/http open sw-cp-server httpd Plesk Onyx 17.8.11
3834217.160.131.142 8880 tcp http open sw-cp-server httpd Plesk Onyx 17.8.11
3835######################################################################################################################################
3836[+] URL: https://childsexstories.com/
3837[+] Started: Sun Feb 9 18:21:52 2020
3838
3839Interesting Finding(s):
3840
3841[+] https://childsexstories.com/
3842 | Interesting Entries:
3843 | - Server: Apache
3844 | - Upgrade: h2
3845 | Found By: Headers (Passive Detection)
3846 | Confidence: 100%
3847
3848[+] https://childsexstories.com/robots.txt
3849 | Found By: Robots Txt (Aggressive Detection)
3850 | Confidence: 100%
3851
3852[+] https://childsexstories.com/xmlrpc.php
3853 | Found By: Link Tag (Passive Detection)
3854 | Confidence: 100%
3855 | Confirmed By: Direct Access (Aggressive Detection), 100% confidence
3856 | References:
3857 | - http://codex.wordpress.org/XML-RPC_Pingback_API
3858 | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_ghost_scanner
3859 | - https://www.rapid7.com/db/modules/auxiliary/dos/http/wordpress_xmlrpc_dos
3860 | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_xmlrpc_login
3861 | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_pingback_access
3862
3863[+] Upload directory has listing enabled: https://childsexstories.com/wp-content/uploads/
3864 | Found By: Direct Access (Aggressive Detection)
3865 | Confidence: 100%
3866
3867[+] https://childsexstories.com/wp-cron.php
3868 | Found By: Direct Access (Aggressive Detection)
3869 | Confidence: 60%
3870 | References:
3871 | - https://www.iplocation.net/defend-wordpress-from-ddos
3872 | - https://github.com/wpscanteam/wpscan/issues/1299
3873
3874[+] WordPress version 5.3.2 identified (Latest, released on 2019-12-18).
3875 | Found By: Query Parameter In Install Page (Aggressive Detection)
3876 | - https://childsexstories.com/wp-includes/css/dashicons.min.css?ver=5.3.2
3877 | - https://childsexstories.com/wp-includes/css/buttons.min.css?ver=5.3.2
3878 | - https://childsexstories.com/wp-admin/css/install.min.css?ver=5.3.2
3879 | Confirmed By: Query Parameter In Upgrade Page (Aggressive Detection)
3880 | - https://childsexstories.com/wp-includes/css/buttons.min.css?ver=5.3.2
3881 | - https://childsexstories.com/wp-admin/css/install.min.css?ver=5.3.2
3882
3883[+] WordPress theme in use: spike
3884 | Location: https://childsexstories.com/wp-content/themes/spike/
3885 | Style URL: https://childsexstories.com/wp-content/themes/spike/style.css?ver=a5bdc702f69e297de7573e729ccc52ce
3886 | Style Name: Spike
3887 | Style URI: http://mythemeshop.com/themes/spike
3888 | Description: Spike is a bright and colorful WordPress blog theme. Spike is packed with 9 different layouts, sleek...
3889 | Author: MyThemeShop
3890 | Author URI: http://mythemeshop.com/
3891 |
3892 | Found By: Css Style In Homepage (Passive Detection)
3893 | Confirmed By: Css Style In 404 Page (Passive Detection)
3894 |
3895 | Version: 2.2.2 (80% confidence)
3896 | Found By: Style (Passive Detection)
3897 | - https://childsexstories.com/wp-content/themes/spike/style.css?ver=a5bdc702f69e297de7573e729ccc52ce, Match: 'Version: 2.2.2'
3898
3899[+] Enumerating All Plugins (via Passive Methods)
3900
3901[i] No plugins Found.
3902
3903[+] Enumerating Config Backups (via Passive and Aggressive Methods)
3904 Checking Config Backups - Time: 00:00:06 <=============> (21 / 21) 100.00% Time: 00:00:06
3905
3906[i] No Config Backups Found.
3907
3908[!] No WPVulnDB API Token given, as a result vulnerability data has not been output.
3909[!] You can get a free API token with 50 daily requests by registering at https://wpvulndb.com/users/sign_up
3910
3911[+] Finished: Sun Feb 9 18:22:32 2020
3912[+] Requests Done: 61
3913[+] Cached Requests: 10
3914[+] Data Sent: 16.745 KB
3915[+] Data Received: 208.396 KB
3916[+] Memory used: 195.832 MB
3917[+] Elapsed time: 00:00:39
3918######################################################################################################################################
3919[+] URL: https://childsexstories.com/
3920[+] Started: Sun Feb 9 18:21:58 2020
3921
3922Interesting Finding(s):
3923
3924[+] https://childsexstories.com/
3925 | Interesting Entries:
3926 | - Server: Apache
3927 | - Upgrade: h2
3928 | Found By: Headers (Passive Detection)
3929 | Confidence: 100%
3930
3931[+] https://childsexstories.com/robots.txt
3932 | Found By: Robots Txt (Aggressive Detection)
3933 | Confidence: 100%
3934
3935[+] https://childsexstories.com/xmlrpc.php
3936 | Found By: Link Tag (Passive Detection)
3937 | Confidence: 100%
3938 | Confirmed By: Direct Access (Aggressive Detection), 100% confidence
3939 | References:
3940 | - http://codex.wordpress.org/XML-RPC_Pingback_API
3941 | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_ghost_scanner
3942 | - https://www.rapid7.com/db/modules/auxiliary/dos/http/wordpress_xmlrpc_dos
3943 | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_xmlrpc_login
3944 | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_pingback_access
3945
3946[+] Upload directory has listing enabled: https://childsexstories.com/wp-content/uploads/
3947 | Found By: Direct Access (Aggressive Detection)
3948 | Confidence: 100%
3949
3950[+] https://childsexstories.com/wp-cron.php
3951 | Found By: Direct Access (Aggressive Detection)
3952 | Confidence: 60%
3953 | References:
3954 | - https://www.iplocation.net/defend-wordpress-from-ddos
3955 | - https://github.com/wpscanteam/wpscan/issues/1299
3956
3957[+] WordPress version 5.3.2 identified (Latest, released on 2019-12-18).
3958 | Found By: Query Parameter In Install Page (Aggressive Detection)
3959 | - https://childsexstories.com/wp-includes/css/dashicons.min.css?ver=5.3.2
3960 | - https://childsexstories.com/wp-includes/css/buttons.min.css?ver=5.3.2
3961 | - https://childsexstories.com/wp-admin/css/install.min.css?ver=5.3.2
3962 | Confirmed By: Query Parameter In Upgrade Page (Aggressive Detection)
3963 | - https://childsexstories.com/wp-includes/css/buttons.min.css?ver=5.3.2
3964 | - https://childsexstories.com/wp-admin/css/install.min.css?ver=5.3.2
3965
3966[+] WordPress theme in use: spike
3967 | Location: https://childsexstories.com/wp-content/themes/spike/
3968 | Style URL: https://childsexstories.com/wp-content/themes/spike/style.css?ver=a5bdc702f69e297de7573e729ccc52ce
3969 | Style Name: Spike
3970 | Style URI: http://mythemeshop.com/themes/spike
3971 | Description: Spike is a bright and colorful WordPress blog theme. Spike is packed with 9 different layouts, sleek...
3972 | Author: MyThemeShop
3973 | Author URI: http://mythemeshop.com/
3974 |
3975 | Found By: Css Style In Homepage (Passive Detection)
3976 | Confirmed By: Css Style In 404 Page (Passive Detection)
3977 |
3978 | Version: 2.2.2 (80% confidence)
3979 | Found By: Style (Passive Detection)
3980 | - https://childsexstories.com/wp-content/themes/spike/style.css?ver=a5bdc702f69e297de7573e729ccc52ce, Match: 'Version: 2.2.2'
3981
3982[+] Enumerating Users (via Passive and Aggressive Methods)
3983 Brute Forcing Author IDs - Time: 00:00:03 <==> (10 / 10) 100.00% Time: 00:00:03
3984
3985[i] User(s) Identified:
3986
3987[+] ed1torcss
3988 | Found By: Author Posts - Author Pattern (Passive Detection)
3989
3990[+] hgcollins
3991 | Found By: Author Posts - Author Pattern (Passive Detection)
3992
3993[+] HG Collins
3994 | Found By: Rss Generator (Passive Detection)
3995 | Confirmed By: Rss Generator (Aggressive Detection)
3996
3997[!] No WPVulnDB API Token given, as a result vulnerability data has not been output.
3998[!] You can get a free API token with 50 daily requests by registering at https://wpvulndb.com/users/sign_up
3999
4000[+] Finished: Sun Feb 9 18:22:35 2020
4001[+] Requests Done: 44
4002[+] Cached Requests: 25
4003[+] Data Sent: 11.526 KB
4004[+] Data Received: 207.689 KB
4005[+] Memory used: 115.051 MB
4006[+] Elapsed time: 00:00:36
4007#####################################################################################################################################
4008[+] URL: https://childsexstories.com/
4009[+] Started: Sun Feb 9 18:36:09 2020
4010
4011Interesting Finding(s):
4012
4013[+] https://childsexstories.com/
4014 | Interesting Entries:
4015 | - Server: Apache
4016 | - Upgrade: h2
4017 | Found By: Headers (Passive Detection)
4018 | Confidence: 100%
4019
4020[+] https://childsexstories.com/robots.txt
4021 | Found By: Robots Txt (Aggressive Detection)
4022 | Confidence: 100%
4023
4024[+] https://childsexstories.com/xmlrpc.php
4025 | Found By: Link Tag (Passive Detection)
4026 | Confidence: 30%
4027 | References:
4028 | - http://codex.wordpress.org/XML-RPC_Pingback_API
4029 | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_ghost_scanner
4030 | - https://www.rapid7.com/db/modules/auxiliary/dos/http/wordpress_xmlrpc_dos
4031 | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_xmlrpc_login
4032 | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_pingback_access
4033
4034[+] Upload directory has listing enabled: https://childsexstories.com/wp-content/uploads/
4035 | Found By: Direct Access (Aggressive Detection)
4036 | Confidence: 100%
4037
4038[+] https://childsexstories.com/wp-cron.php
4039 | Found By: Direct Access (Aggressive Detection)
4040 | Confidence: 60%
4041 | References:
4042 | - https://www.iplocation.net/defend-wordpress-from-ddos
4043 | - https://github.com/wpscanteam/wpscan/issues/1299
4044
4045[+] WordPress version 5.3.2 identified (Latest, released on 2019-12-18).
4046 | Found By: Query Parameter In Install Page (Aggressive Detection)
4047 | - https://childsexstories.com/wp-includes/css/dashicons.min.css?ver=5.3.2
4048 | - https://childsexstories.com/wp-includes/css/buttons.min.css?ver=5.3.2
4049 | - https://childsexstories.com/wp-admin/css/install.min.css?ver=5.3.2
4050 | Confirmed By: Query Parameter In Upgrade Page (Aggressive Detection)
4051 | - https://childsexstories.com/wp-includes/css/buttons.min.css?ver=5.3.2
4052 | - https://childsexstories.com/wp-admin/css/install.min.css?ver=5.3.2
4053
4054[+] WordPress theme in use: spike
4055 | Location: https://childsexstories.com/wp-content/themes/spike/
4056 | Style URL: https://childsexstories.com/wp-content/themes/spike/style.css?ver=a5bdc702f69e297de7573e729ccc52ce
4057 | Style Name: Spike
4058 | Style URI: http://mythemeshop.com/themes/spike
4059 | Description: Spike is a bright and colorful WordPress blog theme. Spike is packed with 9 different layouts, sleek...
4060 | Author: MyThemeShop
4061 | Author URI: http://mythemeshop.com/
4062 |
4063 | Found By: Css Style In Homepage (Passive Detection)
4064 | Confirmed By: Css Style In 404 Page (Passive Detection)
4065 |
4066 | Version: 2.2.2 (80% confidence)
4067 | Found By: Style (Passive Detection)
4068 | - https://childsexstories.com/wp-content/themes/spike/style.css?ver=a5bdc702f69e297de7573e729ccc52ce, Match: 'Version: 2.2.2'
4069
4070[+] Enumerating Users (via Passive and Aggressive Methods)
4071 Brute Forcing Author IDs - Time: 00:00:02 <============> (10 / 10) 100.00% Time: 00:00:02
4072
4073[i] User(s) Identified:
4074
4075[+] ed1torcss
4076 | Found By: Author Posts - Author Pattern (Passive Detection)
4077
4078[+] hgcollins
4079 | Found By: Author Posts - Author Pattern (Passive Detection)
4080
4081[+] HG Collins
4082 | Found By: Rss Generator (Passive Detection)
4083 | Confirmed By: Rss Generator (Aggressive Detection)
4084
4085[!] No WPVulnDB API Token given, as a result vulnerability data has not been output.
4086[!] You can get a free API token with 50 daily requests by registering at https://wpvulndb.com/users/sign_up
4087
4088[+] Finished: Sun Feb 9 18:36:41 2020
4089[+] Requests Done: 58
4090[+] Cached Requests: 9
4091[+] Data Sent: 14.586 KB
4092[+] Data Received: 300.8 KB
4093[+] Memory used: 114.695 MB
4094[+] Elapsed time: 00:00:32
4095######################################################################################################################################
4096[INFO] ------TARGET info------
4097[*] TARGET: https://childsexstories.com/
4098[*] TARGET IP: 208.113.220.218
4099[INFO] NO load balancer detected for childsexstories.com...
4100[*] DNS servers: ns1.dreamhost.com.
4101[*] TARGET server: Apache
4102[*] CC: US
4103[*] Country: United States
4104[*] RegionCode: CA
4105[*] RegionName: California
4106[*] City: Brea
4107[*] ASN: AS26347
4108[*] BGP_PREFIX: 208.113.128.0/17
4109[*] ISP: DREAMHOST-AS, US
4110[INFO] SSL/HTTPS certificate detected
4111[*] Issuer: issuer=C = US, O = Let's Encrypt, CN = Let's Encrypt Authority X3
4112[*] Subject: subject=CN = childsexstories.com
4113[ALERT] Let's Encrypt is commonly used for Phishing
4114[INFO] DNS enumeration:
4115[*] ftp.childsexstories.com 208.113.220.218
4116[INFO] Possible abuse mails are:
4117[*] abuse@childsexstories.com
4118[*] spamcop-fbl@hq.newdream.net
4119[INFO] NO PAC (Proxy Auto Configuration) file FOUND
4120[ALERT] robots.txt file FOUND in http://childsexstories.com/robots.txt
4121[INFO] Checking for HTTP status codes recursively from http://childsexstories.com/robots.txt
4122[INFO] Status code Folders
4123[*] 200 http://childsexstories.com/
4124[*] 200 http://childsexstories.com/wp-content/uploads/
4125[*] 200 http://childsexstories.com/wp-includes/
4126[INFO] Starting FUZZing in http://childsexstories.com/FUzZzZzZzZz...
4127[INFO] Status code Folders
4128[ALERT] Look in the source code. It may contain passwords
4129[INFO] Links found from https://childsexstories.com/ http://208.113.220.218/:
4130[*] https://childsexstories.com/
4131[*] https://childsexstories.com/about/
4132[*] https://childsexstories.com/author/ed1torcss/
4133[*] https://childsexstories.com/author/hgcollins/
4134[*] https://childsexstories.com/books/
4135[*] https://childsexstories.com/category/jailbait/
4136[*] https://childsexstories.com/category/kids-sex/
4137[*] https://childsexstories.com/category/little-boy/
4138[*] https://childsexstories.com/category/little-girl/
4139[*] https://childsexstories.com/category/lone-dog-pedo-stories/
4140[*] https://childsexstories.com/category/other-pedo/
4141[*] https://childsexstories.com/category/spanish-espanol/
4142[*] https://childsexstories.com/comments/feed/
4143[*] https://childsexstories.com/feed/
4144[*] https://childsexstories.com/girlloverboylover/
4145[*] https://childsexstories.com/kids-sex/aileens-sleepover-m-g-oral-anal-1st-ws/
4146[*] https://childsexstories.com/kids-sex/aileens-sleepover-m-g-oral-anal-1st-ws/#respond
4147[*] https://childsexstories.com/kids-sex/fist-time-with-no-sitter-bbbgincest/
4148[*] https://childsexstories.com/kids-sex/fist-time-with-no-sitter-bbbgincest/#comments
4149[*] https://childsexstories.com/kids-sex/flirting-on-the-school-bus-goes-to-farmg/
4150[*] https://childsexstories.com/kids-sex/flirting-on-the-school-bus-goes-to-farmg/#comments
4151[*] https://childsexstories.com/links/
4152[*] https://childsexstories.com/little-girl/little-sister-mgg-gg-oral-nc-incest/
4153[*] https://childsexstories.com/little-girl/little-sister-mgg-gg-oral-nc-incest/#comments
4154[*] https://childsexstories.com/little-girl/robin-and-her-daddy-m-g-incest/
4155[*] https://childsexstories.com/little-girl/robin-and-her-daddy-m-g-incest/#respond
4156[*] https://childsexstories.com/little-girl/the-love-street-mg/
4157[*] https://childsexstories.com/little-girl/the-love-street-mg/#respond
4158[*] https://childsexstories.com/page/2/
4159[*] https://childsexstories.com/page/3/
4160[*] https://childsexstories.com/page/34/
4161[*] https://childsexstories.com/page/4/
4162[*] https://childsexstories.com/privacy/
4163[*] https://childsexstories.com/#top
4164[*] https://help.dreamhost.com/hc/en-us/articles/215613517
4165[*] https://panel.dreamhost.com/index.cgi?tree=support.msg
4166[*] https://realanon.com/
4167[*] https://statcounter.com/
4168[*] http://www.bleachbit.org/
4169[*] http://www.dreamhost.com/
4170cut: intervalle de champ incorrecte
4171Saisissez « cut --help » pour plus d'informations.
4172[INFO] Shodan detected the following opened ports on 208.113.220.218:
4173[*] 22
4174[*] 443
4175[*] 5269
4176[*] 80
4177[INFO] ------VirusTotal SECTION------
4178[INFO] VirusTotal passive DNS only stores address records. The following domains resolved to the given IP address:
4179[INFO] Latest URLs hosted in this IP address detected by at least one URL scanner or malicious URL dataset:
4180[INFO] Latest files that are not detected by any antivirus solution and were downloaded by VirusTotal from the IP address provided:
4181[INFO] ------Alexa Rank SECTION------
4182[INFO] Percent of Visitors Rank in Country:
4183[INFO] Percent of Search Traffic:
4184[INFO] Percent of Unique Visits:
4185[INFO] Total Sites Linking In:
4186[*] Total Sites
4187[INFO] Useful links related to childsexstories.com - 208.113.220.218:
4188[*] https://www.virustotal.com/pt/ip-address/208.113.220.218/information/
4189[*] https://www.hybrid-analysis.com/search?host=208.113.220.218
4190[*] https://www.shodan.io/host/208.113.220.218
4191[*] https://www.senderbase.org/lookup/?search_string=208.113.220.218
4192[*] https://www.alienvault.com/open-threat-exchange/ip/208.113.220.218
4193[*] http://pastebin.com/search?q=208.113.220.218
4194[*] http://urlquery.net/search.php?q=208.113.220.218
4195[*] http://www.alexa.com/siteinfo/childsexstories.com
4196[*] http://www.google.com/safebrowsing/diagnostic?site=childsexstories.com
4197[*] https://censys.io/ipv4/208.113.220.218
4198[*] https://www.abuseipdb.com/check/208.113.220.218
4199[*] https://urlscan.io/search/#208.113.220.218
4200[*] https://github.com/search?q=208.113.220.218&type=Code
4201[INFO] Useful links related to AS26347 - 208.113.128.0/17:
4202[*] http://www.google.com/safebrowsing/diagnostic?site=AS:26347
4203[*] https://www.senderbase.org/lookup/?search_string=208.113.128.0/17
4204[*] http://bgp.he.net/AS26347
4205[*] https://stat.ripe.net/AS26347
4206[INFO] Date: 09/02/20 | Time: 18:37:19
4207[INFO] Total time: 1 minute(s) and 12 second(s)
4208######################################################################################################################################
4209[-] Target: https://childsexstories.com (208.113.220.218)
4210[I] Server: Apache
4211[L] X-Frame-Options: Not Enforced
4212[I] Strict-Transport-Security: Not Enforced
4213[I] X-Content-Security-Policy: Not Enforced
4214[I] X-Content-Type-Options: Not Enforced
4215[L] Robots.txt Found: https://childsexstories.com/robots.txt
4216[I] CMS Detection: WordPress
4217[I] Wordpress Theme: spike
4218[-] WordPress usernames identified:
4219[M] Björk
4220[M] HG Collins
4221[M] XML-RPC services are enabled
4222[I] Autocomplete Off Not Found: https://childsexstories.com/wp-login.php
4223[-] Default WordPress Files:
4224[I] https://childsexstories.com/license.txt
4225[I] https://childsexstories.com/wp-content/themes/twentytwenty/readme.txt
4226[I] https://childsexstories.com/wp-includes/ID3/license.commercial.txt
4227[I] https://childsexstories.com/wp-includes/ID3/license.txt
4228[I] https://childsexstories.com/wp-includes/ID3/readme.txt
4229[I] https://childsexstories.com/wp-includes/images/crystal/license.txt
4230[I] https://childsexstories.com/wp-includes/js/plupload/license.txt
4231[I] https://childsexstories.com/wp-includes/js/swfupload/license.txt
4232[I] https://childsexstories.com/wp-includes/js/tinymce/license.txt
4233[-] Searching Wordpress Plugins ...
4234[I] feed
4235[M] EDB-ID: 38624 "WordPress Plugin WP Feed - 'nid' SQL Injection"
4236[I] Checking for Directory Listing Enabled ...
4237[L] https://childsexstories.com/wp-admin/css
4238[L] https://childsexstories.com/wp-admin/images
4239[L] https://childsexstories.com/wp-admin/includes
4240[L] https://childsexstories.com/wp-admin/js
4241[L] https://childsexstories.com/wp-admin/maint
4242[L] https://childsexstories.com/wp-includes
4243[L] https://childsexstories.com/wp-includes/ID3
4244[L] https://childsexstories.com/wp-includes/IXR
4245[L] https://childsexstories.com/wp-includes/Requests
4246[L] https://childsexstories.com/wp-includes/SimplePie
4247[L] https://childsexstories.com/wp-includes/Text
4248[L] https://childsexstories.com/wp-includes/blocks
4249[L] https://childsexstories.com/wp-includes/certificates
4250[L] https://childsexstories.com/wp-includes/css
4251[L] https://childsexstories.com/wp-includes/customize
4252[L] https://childsexstories.com/wp-includes/fonts
4253[L] https://childsexstories.com/wp-includes/images
4254[L] https://childsexstories.com/wp-includes/js
4255[L] https://childsexstories.com/wp-includes/pomo
4256[L] https://childsexstories.com/wp-includes/random_compat
4257[L] https://childsexstories.com/wp-includes/rest-api
4258[L] https://childsexstories.com/wp-includes/sodium_compat
4259[L] https://childsexstories.com/wp-includes/theme-compat
4260[L] https://childsexstories.com/wp-includes/widgets
4261[-] Date & Time: 09/02/2020 18:27:47
4262[-] Completed in: 0:05:46
4263######################################################################################################################################
4264 Anonymous JTSEC #OpDeathEathers Full Recon #4